$ rpki-client -vvf rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft File: pBhnIpZRYlTNTMrUSSUeGdG26V0.mft (raw, json) Hash identifier: rNBwsaecmOblZsuBNfcPmOCQClWcLMp8upjHWrzUCTI= Subject key identifier: 66:95:BA:29:1F:E3:72:6B:3F:AB:03:ED:56:A4:14:6F:C7:8E:96:CA Authority key identifier: A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D Certificate issuer: /CN=A913FE3D/serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D Certificate serial: 0508 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft Manifest number: 0504 Signing time: Fri 22 Nov 2024 23:12:44 +0000 Manifest this update: Fri 22 Nov 2024 23:12:43 +0000 Manifest next update: Fri 29 Nov 2024 23:12:43 +0000 Files and hashes: 1: pBhnIpZRYlTNTMrUSSUeGdG26V0.crl (hash: gPT/iJXFfbITaMvF6o+3lo1PBzwWB0NN95lcDK0WLJA=) 2: 679A6FA4E53A11EB8197AD70C4F9AE02.roa (hash: mvt83k4r04Uj589p/6oDGv6atTVgppc7yoDpOvB9Gm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.crl rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1288 (0x508) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FE3D/serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D Validity Not Before: Nov 22 23:12:43 2024 GMT Not After : Nov 29 23:12:43 2024 GMT Subject: CN=67410feb-d32b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ae:e8:47:a2:56:97:6a:e0:00:c3:cc:88:41: 2c:b7:56:60:ae:49:f9:06:f8:ec:0d:27:0a:1f:a2: 30:18:cc:fd:84:a7:08:47:eb:74:c5:99:d3:a2:c7: 8c:43:20:ef:05:95:a2:a6:64:25:10:14:e0:e7:ec: 64:92:2a:5c:8d:55:b8:8e:dd:bf:2c:dc:22:fd:bd: 08:3e:ee:ae:f3:04:d7:85:e7:8d:94:ca:85:eb:6d: fe:1f:ce:d7:49:0a:1d:99:d4:b4:28:c7:0d:96:a4: 70:fb:ef:d9:f0:39:c0:3d:18:3f:b8:33:e0:90:57: 32:4a:6f:61:f3:9b:e4:ba:4c:5c:72:d1:cc:2f:ae: 0c:1e:1c:f8:86:43:52:ad:77:aa:de:d8:ce:5b:54: 98:70:9a:af:80:ba:42:8c:07:0e:9d:e8:9f:66:49: fa:07:d4:8f:41:46:f2:b2:25:f6:51:7b:14:81:00: f9:03:95:e8:6e:d0:4f:f0:2d:71:57:65:53:6e:47: aa:8b:bc:f2:6e:f9:4b:63:34:88:68:e9:97:9d:da: e0:5a:62:2d:4b:09:6a:98:8a:44:a9:30:09:7d:4f: 7a:aa:fa:36:dc:e2:a4:76:78:09:44:e7:d9:fb:84: 8f:45:77:e5:2b:ef:9f:28:b5:27:2e:14:db:0e:dd: a3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:95:BA:29:1F:E3:72:6B:3F:AB:03:ED:56:A4:14:6F:C7:8E:96:CA X509v3 Authority Key Identifier: keyid:A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:b9:b8:e1:13:1f:fb:c2:66:18:18:4d:97:8c:4d:e4:08:f6: db:fa:3b:46:c7:9c:6c:c6:31:d2:19:44:1d:2c:c8:a0:69:90: 65:f4:f0:b5:4d:67:63:71:08:32:88:d7:dc:2f:7b:ef:bd:f3: 72:e5:13:26:d9:71:9b:ea:7f:cf:27:5a:7a:cf:62:48:81:ae: a8:65:de:ed:9b:f3:22:93:d8:ff:e6:58:ae:fb:57:84:1f:34: 89:6a:97:e1:2f:77:46:c9:33:ba:11:86:5a:9d:c5:c5:b3:80: 20:1f:57:21:10:86:42:a0:a3:f0:ee:90:7d:3f:0f:c7:78:32: 59:be:2c:2e:51:42:8b:50:df:fb:b0:c1:5e:ec:a0:7b:86:2c: d4:0c:79:af:dc:97:f5:8b:c2:08:db:c9:34:23:f8:80:30:5e: 0a:45:45:3e:f4:f9:54:74:e3:51:82:84:46:8f:65:63:46:64: 76:9d:12:a6:3b:a3:bf:81:57:b5:ba:59:0f:41:fa:51:d5:a8: 89:c2:92:96:90:82:20:43:58:ca:e5:db:ff:88:e7:99:33:17: 31:f0:fd:e3:84:c9:7c:d6:e0:60:0c:b6:bd:73:dd:ba:78:96: fb:ce:25:d3:03:ee:bf:9b:f0:f2:c6:96:af:2f:1b:46:d1:d2: 47:98:62:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZFM0QxMTAvBgNVBAUTKEE0MTg2NzIyOTY1MTYyNTRDRDRDQ0FENDQ5MjUxRTE5 RDFCNkU5NUQwHhcNMjQxMTIyMjMxMjQzWhcNMjQxMTI5MjMxMjQzWjAYMRYwFAYD VQQDEw02NzQxMGZlYi1kMzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAla7oR6JWl2rgAMPMiEEst1Zgrkn5BvjsDScKH6IwGMz9hKcIR+t0xZnToseM QyDvBZWipmQlEBTg5+xkkipcjVW4jt2/LNwi/b0IPu6u8wTXheeNlMqF623+H87X SQodmdS0KMcNlqRw++/Z8DnAPRg/uDPgkFcySm9h85vkukxcctHML64MHhz4hkNS rXeq3tjOW1SYcJqvgLpCjAcOneifZkn6B9SPQUbysiX2UXsUgQD5A5XobtBP8C1x V2VTbkeqi7zybvlLYzSIaOmXndrgWmItSwlqmIpEqTAJfU96qvo23OKkdngJROfZ +4SPRXflK++fKLUnLhTbDt2jsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGaVuikf 43JrP6sD7VakFG/HjpbKMB8GA1UdIwQYMBaAFKQYZyKWUWJUzUzK1EklHhnRtuld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkUzRC84MUU2NTRCQ0U1 MzYxMUVCQjk4MDMyNkFDNEY5QUUwMi9wQmhuSXBaUllsVE5UTXJVU1NVZUdkRzI2 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BCaG5JcFpSWWxUTlRNclVTU1VlR2RHMjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RkUzRC84MUU2NTRCQ0U1MzYxMUVCQjk4MDMyNkFDNEY5QUUwMi9wQmhuSXBaUlls VE5UTXJVU1NVZUdkRzI2VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiubjhEx/7wmYYGE2XjE3kCPbb+jtGx5xsxjHSGUQdLMigaZBl9PC1 TWdjcQgyiNfcL3vvvfNy5RMm2XGb6n/PJ1p6z2JIga6oZd7tm/Mik9j/5liu+1eE HzSJapfhL3dGyTO6EYZancXFs4AgH1chEIZCoKPw7pB9Pw/HeDJZviwuUUKLUN/7 sMFe7KB7hizUDHmv3Jf1i8II28k0I/iAMF4KRUU+9PlUdONRgoRGj2VjRmR2nRKm O6O/gVe1ulkPQfpR1aiJwpKWkIIgQ1jK5dv/iOeZMxcx8P3jhMl81uBgDLa9c926 eJb7ziXTA+6/m/DyxpavLxtG0dJHmGK3 -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:38 2024 by rpki-client on console-ams.rpki-client.org