$ rpki-client -vvf rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft File: bjpCzSsjnaPmWO-5fq0VsObt2qE.mft (raw, json) Hash identifier: TTc9mHndQ1SnkOkNP1s99cNXxNL1rcxvK6XFn2iuWc8= Subject key identifier: 2C:AD:9A:2F:6E:3D:7D:FE:2B:B6:9C:2A:E7:27:DA:C9:19:08:D7:07 Authority key identifier: 6E:3A:42:CD:2B:23:9D:A3:E6:58:EF:B9:7E:AD:15:B0:E6:ED:DA:A1 Certificate issuer: /CN=A914AA58/serialNumber=6E3A42CD2B239DA3E658EFB97EAD15B0E6EDDAA1 Certificate serial: 0315 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjpCzSsjnaPmWO-5fq0VsObt2qE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft Manifest number: 0312 Signing time: Sat 23 Nov 2024 00:45:16 +0000 Manifest this update: Sat 23 Nov 2024 00:45:15 +0000 Manifest next update: Sat 30 Nov 2024 00:45:15 +0000 Files and hashes: 1: bjpCzSsjnaPmWO-5fq0VsObt2qE.crl (hash: Lis9H4KhryL6Q0djLAmtGbOQuzNqp4pIZB9SE55SpYw=) 2: CC2E531EAA7811ECB6791A3EC4F9AE02.roa (hash: nblh+5P2jzg1bMqRThBjnqcnLIQTwLiSBjLF6YnXjMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.crl rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjpCzSsjnaPmWO-5fq0VsObt2qE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 00:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 789 (0x315) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AA58/serialNumber=6E3A42CD2B239DA3E658EFB97EAD15B0E6EDDAA1 Validity Not Before: Nov 23 00:45:15 2024 GMT Not After : Nov 30 00:45:15 2024 GMT Subject: CN=6741259b-2cc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:5a:1b:fc:e8:c9:5a:2d:d0:3e:1a:7a:c0:fa: 32:5b:f5:b1:4e:b9:96:0a:e4:95:39:a3:90:cb:83: d3:cd:5a:47:11:eb:6e:6f:19:dd:4c:cd:1c:b7:41: 2b:05:02:1e:9e:54:6b:fc:35:47:e9:26:16:00:b6: bf:8f:34:26:d5:6a:f5:22:fb:d3:28:24:23:17:ac: 2c:f0:42:52:7f:a1:2d:b2:39:45:21:bb:63:20:e9: 57:8b:18:8e:f7:44:ba:2b:fc:e2:3f:83:5c:42:21: b6:c0:3a:10:25:b5:db:c2:dd:43:75:e8:95:a7:28: d0:30:8d:38:10:15:7e:df:b6:f0:97:0e:c4:e7:30: 68:da:31:77:56:28:b2:b8:dc:8f:1f:72:75:4d:1f: 44:63:7a:3c:23:c3:34:d6:32:fc:d2:98:de:a9:3a: 67:c9:ed:d8:46:83:03:8f:9f:f9:76:64:14:1f:66: 7f:3c:54:9f:27:62:23:a0:4f:f8:cc:37:6c:82:8b: 14:a2:1b:1f:7d:a0:fa:a9:ef:c6:e2:47:1c:bb:ca: 10:0e:3d:b1:76:d5:13:e5:0c:34:ef:78:36:80:8e: de:61:0c:59:6d:c2:3c:f5:e7:b6:0a:8f:2d:f4:18: 33:f4:14:33:88:15:e3:89:9a:f8:a0:ff:4e:f4:bc: 9c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:AD:9A:2F:6E:3D:7D:FE:2B:B6:9C:2A:E7:27:DA:C9:19:08:D7:07 X509v3 Authority Key Identifier: keyid:6E:3A:42:CD:2B:23:9D:A3:E6:58:EF:B9:7E:AD:15:B0:E6:ED:DA:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjpCzSsjnaPmWO-5fq0VsObt2qE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:1a:5f:bc:dd:fd:2d:3b:87:bc:fa:c7:d7:78:07:0f:d4:33: 59:d2:78:6a:af:f8:c4:7f:28:55:6e:62:59:e2:a2:3b:df:9e: e6:68:42:7b:df:2a:a6:4d:8c:0f:85:12:46:47:c2:a1:44:e5: 00:51:7a:46:81:be:84:fa:fb:aa:e1:66:61:1c:70:b7:c6:7f: ec:83:ce:76:7d:fa:14:d5:f7:94:fa:00:97:bb:ad:b0:63:43: f1:09:51:1f:33:b7:d2:b0:b6:fe:04:44:2c:3d:51:cd:71:92: 86:23:33:68:aa:96:db:17:e0:15:e6:7e:13:25:83:d8:aa:d2: 1b:be:9e:8f:63:c0:9f:7a:a7:13:67:0c:82:2e:d3:27:f3:60: 3c:50:4b:b0:ef:79:69:3e:70:d3:a8:9a:7d:75:a2:06:14:b1: 19:3e:3f:3f:d7:f3:e5:fb:83:4a:50:14:6f:da:c5:55:16:80: d4:d3:34:39:2f:31:bd:83:27:61:27:db:53:b9:73:e2:a2:54: ab:0c:99:c5:2a:55:dd:25:4d:37:3d:33:65:29:61:9f:b3:d5: 4a:e2:32:95:8d:c0:49:17:87:79:82:2c:b1:c1:c3:b0:55:c6: ea:57:41:75:2c:80:08:b7:f5:07:ae:91:32:45:46:c8:3e:cd: f1:fb:c8:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFBNTgxMTAvBgNVBAUTKDZFM0E0MkNEMkIyMzlEQTNFNjU4RUZCOTdFQUQxNUIw RTZFRERBQTEwHhcNMjQxMTIzMDA0NTE1WhcNMjQxMTMwMDA0NTE1WjAYMRYwFAYD VQQDEw02NzQxMjU5Yi0yY2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0lob/OjJWi3QPhp6wPoyW/WxTrmWCuSVOaOQy4PTzVpHEetubxndTM0ct0Er BQIenlRr/DVH6SYWALa/jzQm1Wr1IvvTKCQjF6ws8EJSf6EtsjlFIbtjIOlXixiO 90S6K/ziP4NcQiG2wDoQJbXbwt1DdeiVpyjQMI04EBV+37bwlw7E5zBo2jF3Viiy uNyPH3J1TR9EY3o8I8M01jL80pjeqTpnye3YRoMDj5/5dmQUH2Z/PFSfJ2IjoE/4 zDdsgosUohsffaD6qe/G4kccu8oQDj2xdtUT5Qw073g2gI7eYQxZbcI89ee2Co8t 9Bgz9BQziBXjiZr4oP9O9LycJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCytmi9u PX3+K7acKucn2skZCNcHMB8GA1UdIwQYMBaAFG46Qs0rI52j5ljvuX6tFbDm7dqh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUE1OC8wRkRDQTZGRUFB NzYxMUVDOEY3RDU2MzlDNEY5QUUwMi9ianBDelNzam5hUG1XTy01ZnEwVnNPYnQy cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JqcEN6U3NqbmFQbVdPLTVmcTBWc09idDJxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUE1OC8wRkRDQTZGRUFBNzYxMUVDOEY3RDU2MzlDNEY5QUUwMi9ianBDelNzam5h UG1XTy01ZnEwVnNPYnQycUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaGl+83f0tO4e8+sfXeAcP1DNZ0nhqr/jEfyhVbmJZ4qI7357maEJ7 3yqmTYwPhRJGR8KhROUAUXpGgb6E+vuq4WZhHHC3xn/sg852ffoU1feU+gCXu62w Y0PxCVEfM7fSsLb+BEQsPVHNcZKGIzNoqpbbF+AV5n4TJYPYqtIbvp6PY8CfeqcT ZwyCLtMn82A8UEuw73lpPnDTqJp9daIGFLEZPj8/1/Pl+4NKUBRv2sVVFoDU0zQ5 LzG9gydhJ9tTuXPiolSrDJnFKlXdJU03PTNlKWGfs9VK4jKVjcBJF4d5giyxwcOw VcbqV0F1LIAIt/UHrpEyRUbIPs3x+8hJ -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:38 2024 by rpki-client on console-ams.rpki-client.org