$ rpki-client -vvf rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft File: bcDHAorrOzsmYx9pJXBQC2DtJxk.mft (raw, json) Hash identifier: ZaLklsXsNXSIvno36BLRZ9N12cyTYLGy+bQsQPRceNI= Subject key identifier: 4E:F7:B8:4D:3E:34:FC:36:EC:31:23:3B:0B:16:FC:71:AC:79:2A:41 Authority key identifier: 6D:C0:C7:02:8A:EB:3B:3B:26:63:1F:69:25:70:50:0B:60:ED:27:19 Certificate issuer: /CN=A913A81E/serialNumber=6DC0C7028AEB3B3B26631F692570500B60ED2719 Certificate serial: 06D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcDHAorrOzsmYx9pJXBQC2DtJxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft Manifest number: 06CA Signing time: Fri 22 Nov 2024 21:40:16 +0000 Manifest this update: Fri 22 Nov 2024 21:40:16 +0000 Manifest next update: Fri 29 Nov 2024 21:40:16 +0000 Files and hashes: 1: bcDHAorrOzsmYx9pJXBQC2DtJxk.crl (hash: qTdP/Um02AxW98pqk4uiU8fleF32kdSNzh/IktWIoCU=) 2: C562A08C34FC11EB9AA0EE7DC4F9AE02.roa (hash: iwf2bc8877eQNQdlvgE9Pwyqx+IwGNsKelNjJ8iJuYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.crl rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcDHAorrOzsmYx9pJXBQC2DtJxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1744 (0x6d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A81E/serialNumber=6DC0C7028AEB3B3B26631F692570500B60ED2719 Validity Not Before: Nov 22 21:40:16 2024 GMT Not After : Nov 29 21:40:16 2024 GMT Subject: CN=6740fa40-5cc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:61:9d:02:e1:6a:07:98:45:9a:7c:8f:20:54: f2:87:82:b4:58:5e:55:d9:bd:7d:82:8a:8c:7b:ef: 7a:1d:b8:70:fa:36:d3:37:71:39:83:4c:c9:a7:78: 7d:60:7c:f1:9d:93:50:27:3f:ad:3e:bc:69:3e:1e: ed:2f:db:d9:62:17:3f:46:43:d6:48:62:68:c7:90: 53:a7:d8:1e:61:10:f2:69:fa:9f:58:80:08:15:ad: 02:bd:54:74:5b:fe:34:26:b5:23:fb:05:8a:31:4e: cd:68:7a:b4:0e:55:c1:cf:bd:db:43:92:54:4c:e8: d4:59:28:a0:36:b7:0d:f4:8f:7f:59:d5:5d:9a:51: cb:54:c6:c6:88:b9:82:ea:91:c2:f3:57:6c:15:07: bf:7f:0b:b1:52:a1:5b:68:09:74:c6:b1:79:2f:dd: 91:72:28:19:33:b3:38:9c:51:99:0d:29:58:2a:11: 74:98:6f:14:26:1e:66:9c:6f:10:ab:82:fa:4a:df: 2a:a0:3b:f3:07:da:a4:b7:a7:ed:ac:f0:f6:ac:b4: 79:0b:f4:bd:55:38:36:f2:41:77:a1:0a:a3:88:16: 07:40:d9:92:51:c6:cd:44:3f:f2:ef:2b:2e:e1:e6: d1:60:e5:d0:0b:c7:d2:3c:8e:aa:0f:1c:d2:d0:1b: 6f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:F7:B8:4D:3E:34:FC:36:EC:31:23:3B:0B:16:FC:71:AC:79:2A:41 X509v3 Authority Key Identifier: keyid:6D:C0:C7:02:8A:EB:3B:3B:26:63:1F:69:25:70:50:0B:60:ED:27:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcDHAorrOzsmYx9pJXBQC2DtJxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:f9:d1:cd:76:36:18:dc:5f:f7:ac:7f:bf:c5:ee:55:af:32: d8:88:28:2a:38:3a:fb:cd:05:a4:26:99:c6:ea:56:dd:d3:50: 98:27:19:cf:e2:84:ae:e4:6e:bb:6b:c6:22:e8:2a:71:f0:76: ca:7b:f7:57:97:14:ae:d2:d2:f5:8e:be:d7:dd:15:c7:7b:9e: c5:e4:39:89:03:f3:8c:3d:43:c2:4f:c2:d3:b0:bb:22:e5:3c: b6:d1:21:7e:67:b3:35:93:af:d7:a3:cb:7f:b6:24:d1:4b:66: b6:6c:bf:5b:42:f0:51:d2:fa:35:a5:68:44:da:30:23:e6:b4: 31:5f:32:8c:14:19:bf:16:26:fc:d1:ba:c0:6f:d4:9b:64:6d: 7b:c7:30:a2:8e:82:46:ea:53:45:85:ca:9d:55:a9:f9:f9:5b: 7a:b5:db:79:5f:1e:0a:fa:9d:c3:79:17:a7:98:e5:78:7e:e6: 48:da:3c:08:96:bf:0f:56:57:c7:23:64:15:85:04:ef:97:91: cb:8d:fb:65:d7:25:5d:96:48:dc:5b:27:7f:c7:e6:e9:39:5b: 17:5f:71:c5:d7:49:21:bf:04:9f:9a:9f:40:eb:50:ba:98:6d: 49:dd:ff:49:4a:dd:8d:03:4b:b0:25:75:0b:60:5c:14:08:93: 61:53:3f:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E4MUUxMTAvBgNVBAUTKDZEQzBDNzAyOEFFQjNCM0IyNjYzMUY2OTI1NzA1MDBC NjBFRDI3MTkwHhcNMjQxMTIyMjE0MDE2WhcNMjQxMTI5MjE0MDE2WjAYMRYwFAYD VQQDEw02NzQwZmE0MC01Y2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2GdAuFqB5hFmnyPIFTyh4K0WF5V2b19goqMe+96Hbhw+jbTN3E5g0zJp3h9 YHzxnZNQJz+tPrxpPh7tL9vZYhc/RkPWSGJox5BTp9geYRDyafqfWIAIFa0CvVR0 W/40JrUj+wWKMU7NaHq0DlXBz73bQ5JUTOjUWSigNrcN9I9/WdVdmlHLVMbGiLmC 6pHC81dsFQe/fwuxUqFbaAl0xrF5L92RcigZM7M4nFGZDSlYKhF0mG8UJh5mnG8Q q4L6St8qoDvzB9qkt6ftrPD2rLR5C/S9VTg28kF3oQqjiBYHQNmSUcbNRD/y7ysu 4ebRYOXQC8fSPI6qDxzS0BtvuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE73uE0+ NPw27DEjOwsW/HGseSpBMB8GA1UdIwQYMBaAFG3AxwKK6zs7JmMfaSVwUAtg7ScZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTgxRS85MUM5NTU5QzM0 RkExMUVCOTg5NDFFN0JDNEY5QUUwMi9iY0RIQW9yck96c21ZeDlwSlhCUUMyRHRK eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjREhBb3JyT3pzbVl4OXBKWEJRQzJEdEp4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTgxRS85MUM5NTU5QzM0RkExMUVCOTg5NDFFN0JDNEY5QUUwMi9iY0RIQW9yck96 c21ZeDlwSlhCUUMyRHRKeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJ+dHNdjYY3F/3rH+/xe5VrzLYiCgqODr7zQWkJpnG6lbd01CYJxnP 4oSu5G67a8Yi6Cpx8HbKe/dXlxSu0tL1jr7X3RXHe57F5DmJA/OMPUPCT8LTsLsi 5Ty20SF+Z7M1k6/Xo8t/tiTRS2a2bL9bQvBR0vo1pWhE2jAj5rQxXzKMFBm/Fib8 0brAb9SbZG17xzCijoJG6lNFhcqdVan5+Vt6tdt5Xx4K+p3DeRenmOV4fuZI2jwI lr8PVlfHI2QVhQTvl5HLjftl1yVdlkjcWyd/x+bpOVsXX3HF10khvwSfmp9A61C6 mG1J3f9JSt2NA0uwJXULYFwUCJNhUz+g -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org