$ rpki-client -vvf rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft File: BSmF8r4ox5507_TbTHFCKEVHc1w.mft (raw, json) Hash identifier: 5EryGPEesMVYcGBAEI+VgQq8ZJ85Y7+pX8FwKSnYzOA= Subject key identifier: 54:7E:31:B3:A6:06:CB:BA:B9:85:60:E4:80:5F:24:18:93:50:94:5C Authority key identifier: 05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C Certificate issuer: /CN=A9151A79/serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C Certificate serial: 0125 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft Manifest number: 011F Signing time: Sat 23 Nov 2024 02:59:32 +0000 Manifest this update: Sat 23 Nov 2024 02:59:32 +0000 Manifest next update: Sat 30 Nov 2024 02:59:32 +0000 Files and hashes: 1: BSmF8r4ox5507_TbTHFCKEVHc1w.crl (hash: rpLt5WIKayhmy+SOm0L6zhM+1lmgeAb5KpbSMH+v4WI=) 2: A799F54AF1F111EE9D899046C4F9AE02.roa (hash: s9Hq2WKNBLpIHUUpKntveP4U+1sM2OLROzstT7r+cr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151A79/serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C Validity Not Before: Nov 23 02:59:32 2024 GMT Not After : Nov 30 02:59:32 2024 GMT Subject: CN=67414514-ce60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:50:06:03:b2:eb:23:f5:23:6c:f6:38:98:44: 18:e6:ea:a8:7b:56:85:16:38:4e:9b:cb:99:fb:a8: 4b:58:e5:13:b2:b3:d0:80:10:3b:2d:79:5f:3a:9f: 40:4f:32:e9:c1:86:ee:e6:6d:f0:c8:81:34:2b:fd: e5:1c:02:a6:66:1a:d8:f6:ff:31:f8:16:6a:e4:38: 17:68:a0:96:72:21:4a:8f:db:ae:f9:82:21:4e:bb: d0:80:77:e1:ee:8d:b7:29:80:c8:67:32:32:d6:43: 36:18:b4:1e:0e:9e:51:01:66:50:d0:2c:87:ac:b5: 9f:51:6d:79:ae:33:ac:c3:a3:fd:c6:6c:fe:fa:b9: e3:d6:de:e5:cf:e1:18:2d:d7:37:de:be:8a:b9:3b: 0f:c8:02:79:cc:2c:ff:34:54:22:eb:6c:2e:10:e7: 82:5e:9d:ea:b6:6c:74:a4:34:c8:48:03:ca:2a:cc: d9:84:01:bd:21:a0:23:75:eb:f9:f4:cb:f6:df:1a: b1:92:66:e4:a6:bf:92:29:61:c3:83:5d:c9:ae:30: 99:1f:83:52:69:cb:16:c8:6d:58:f7:c0:01:29:d3: bb:6e:c4:6a:eb:d7:cc:de:c5:25:b0:68:09:ed:72: b1:5b:02:fa:d7:ae:e5:6b:d2:43:7d:b9:41:a3:e2: 10:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:7E:31:B3:A6:06:CB:BA:B9:85:60:E4:80:5F:24:18:93:50:94:5C X509v3 Authority Key Identifier: keyid:05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:91:04:ee:f4:0f:fd:5e:55:7e:ca:43:86:88:91:e9:b3:70: 77:0e:c4:49:a9:81:a9:22:8e:53:51:02:4f:78:e3:35:cb:d2: 98:17:7c:00:66:d0:41:84:9b:1d:6c:9c:98:76:e7:ac:f2:fc: 81:0d:ca:94:28:21:ca:cc:57:e3:25:2e:15:a8:99:fd:9e:01: 25:d6:fd:32:8a:c4:3b:96:66:02:6f:9e:04:47:77:2b:b1:c1: 16:d3:30:e5:eb:90:1d:68:53:c7:df:ea:0a:d4:65:6b:f3:0f: 42:60:39:b9:e8:1c:c2:93:fa:ac:06:5c:e5:4e:66:18:76:88: b1:86:2a:cd:72:ef:e0:2a:e4:a3:79:39:db:cd:67:18:57:a2: d8:3a:a3:d5:7d:12:e2:f8:7f:39:20:b8:41:52:5e:4a:4d:5e: 91:8f:1c:b6:19:95:18:9e:e9:0c:d9:57:28:ff:eb:2e:95:52: a6:43:ae:7c:3d:10:de:a7:74:29:fd:fc:b2:1c:7b:4f:e4:cc: 31:57:08:ff:97:0d:84:a7:da:52:fc:c3:80:fb:4f:ad:07:0d: 43:35:8a:76:76:47:96:d0:62:6e:e0:93:f3:69:b4:53:56:b3: f5:49:c0:7d:f3:43:00:d0:b1:ed:8f:16:9f:ef:9e:8d:6a:26: 11:cb:ae:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFBNzkxMTAvBgNVBAUTKDA1Mjk4NUYyQkUyOEM3OUU3NEVGRjREQjRDNzE0MjI4 NDU0NzczNUMwHhcNMjQxMTIzMDI1OTMyWhcNMjQxMTMwMDI1OTMyWjAYMRYwFAYD VQQDEw02NzQxNDUxNC1jZTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulAGA7LrI/UjbPY4mEQY5uqoe1aFFjhOm8uZ+6hLWOUTsrPQgBA7LXlfOp9A TzLpwYbu5m3wyIE0K/3lHAKmZhrY9v8x+BZq5DgXaKCWciFKj9uu+YIhTrvQgHfh 7o23KYDIZzIy1kM2GLQeDp5RAWZQ0CyHrLWfUW15rjOsw6P9xmz++rnj1t7lz+EY Ldc33r6KuTsPyAJ5zCz/NFQi62wuEOeCXp3qtmx0pDTISAPKKszZhAG9IaAjdev5 9Mv23xqxkmbkpr+SKWHDg13JrjCZH4NSacsWyG1Y98ABKdO7bsRq69fM3sUlsGgJ 7XKxWwL6167la9JDfblBo+IQyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFR+MbOm Bsu6uYVg5IBfJBiTUJRcMB8GA1UdIwQYMBaAFAUphfK+KMeedO/020xxQihFR3Nc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUE3OS9ENENBMTVDMEY5 NDcxMUVEODhDMTg3NDZDNEY5QUUwMi9CU21GOHI0b3g1NTA3X1RiVEhGQ0tFVkhj MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JTbUY4cjRveDU1MDdfVGJUSEZDS0VWSGMxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUE3OS9ENENBMTVDMEY5NDcxMUVEODhDMTg3NDZDNEY5QUUwMi9CU21GOHI0b3g1 NTA3X1RiVEhGQ0tFVkhjMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmkQTu9A/9XlV+ykOGiJHps3B3DsRJqYGpIo5TUQJPeOM1y9KYF3wA ZtBBhJsdbJyYdues8vyBDcqUKCHKzFfjJS4VqJn9ngEl1v0yisQ7lmYCb54ER3cr scEW0zDl65AdaFPH3+oK1GVr8w9CYDm56BzCk/qsBlzlTmYYdoixhirNcu/gKuSj eTnbzWcYV6LYOqPVfRLi+H85ILhBUl5KTV6Rjxy2GZUYnukM2Vco/+sulVKmQ658 PRDep3Qp/fyyHHtP5MwxVwj/lw2Ep9pS/MOA+0+tBw1DNYp2dkeW0GJu4JPzabRT VrP1ScB980MA0LHtjxaf756NaiYRy64W -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:48 2024 by rpki-client on console-fra.rpki-client.org