$ rpki-client -vvf rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft File: BQFHuU3J1svowLDxrQwBg6YHfDQ.mft (raw, json) Hash identifier: 0HlW2vnbgithJAARXARZBwsy9OXSbkHVbDipxDUXx/E= Subject key identifier: 7D:69:85:5A:EA:6E:29:3A:A4:A8:CB:52:AB:85:90:B3:99:34:08:9E Authority key identifier: 05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 Certificate issuer: /CN=A91629AA/serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Certificate serial: 84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft Manifest number: 81 Signing time: Sat 23 Nov 2024 04:41:51 +0000 Manifest this update: Sat 23 Nov 2024 04:41:50 +0000 Manifest next update: Sat 30 Nov 2024 04:41:50 +0000 Files and hashes: 1: BQFHuU3J1svowLDxrQwBg6YHfDQ.crl (hash: 1Zfbcv8aPQYtcORjNBf61xannp769JN4zxIn1cTUcyY=) 2: 1E347CDCE74A11EE8602742BC4F9AE02.roa (hash: RDRsbI0QCe3WCyYIAxbPkTT+7Ici1TKwxRZtpP0NFiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91629AA/serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Validity Not Before: Nov 23 04:41:50 2024 GMT Not After : Nov 30 04:41:50 2024 GMT Subject: CN=67415d0f-fe60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ec:e8:b5:1e:d9:39:ac:56:37:6d:2b:1a:9a: 6f:81:9b:4b:5d:af:05:44:23:7b:26:3d:f3:b5:7c: 71:eb:77:d5:0e:62:68:66:37:9b:a9:af:0d:0b:5c: 4f:b4:74:0a:06:0c:2c:6f:b0:4f:b1:fe:8e:6f:ff: 3b:43:27:6e:01:a4:32:7d:73:cd:41:48:b9:65:53: 21:75:34:0d:45:0f:ec:5e:20:01:c3:b0:6d:f3:ac: c9:24:08:09:86:ed:24:ad:e4:72:b9:79:9a:b8:98: 2c:61:b9:55:b2:67:b0:ca:e4:eb:05:3b:13:15:73: 78:72:85:ec:73:68:ce:71:2a:f3:06:87:62:90:05: 6c:57:3e:f5:64:ef:0d:ea:67:15:26:db:68:70:a2: a9:ea:c0:19:6c:f2:40:56:a4:74:e1:44:82:df:8f: b1:c3:8d:11:0a:d7:59:ae:64:75:50:a4:9e:17:65: fe:72:64:20:87:c0:7a:06:1b:da:6d:0e:f6:64:40: 70:54:04:2d:97:35:81:ce:d0:5f:08:ea:92:8d:45: 78:14:a8:2e:79:e8:26:3a:c0:ca:a6:60:60:55:dd: 00:5a:48:e3:d5:6f:e9:41:9e:3e:d0:5d:e7:53:9f: 25:41:b8:3e:0a:10:00:72:9e:d4:3c:e9:b8:e8:80: cc:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:69:85:5A:EA:6E:29:3A:A4:A8:CB:52:AB:85:90:B3:99:34:08:9E X509v3 Authority Key Identifier: keyid:05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:fd:c6:e6:b0:30:23:65:cf:bf:42:47:c9:b6:1d:fe:b8:7f: 50:86:25:6b:6a:74:04:3c:bb:7b:0d:7a:e8:b6:c5:9b:36:e7: 98:34:a0:61:e2:df:41:1c:bd:54:5c:04:ef:c7:2a:ed:9b:0c: 58:b6:a0:55:29:0b:5a:b2:16:2d:37:8e:88:bc:b5:be:7c:10: d3:e3:64:76:cd:e3:b7:1d:57:ee:66:07:56:df:bb:8e:38:74: f5:ad:0d:64:d7:c4:80:c8:b5:13:d1:fc:49:c3:20:30:75:15: f1:65:b9:3e:c8:e8:0c:88:67:b9:28:80:f9:97:e6:89:4f:99: ef:77:f9:f5:46:89:e4:00:0d:09:49:aa:fb:32:90:66:69:21: f9:88:f9:42:0a:f3:92:9b:b8:17:77:08:45:df:dd:98:5a:8a: 97:2a:54:01:f5:f6:ff:1c:cc:fb:88:74:c5:39:06:53:74:0f: fa:f8:1d:71:2c:85:d5:a0:06:66:2d:a4:ac:bc:67:a2:6c:22: 32:81:8f:54:ef:38:25:13:d7:5d:95:ec:1c:4b:c6:4a:52:26: fe:9b:87:cf:e5:a2:3d:45:f9:31:85:da:4f:45:45:89:15:af: 03:39:1e:c6:02:c4:aa:a0:5a:d1:3b:4c:f4:53:44:4c:43:1c: 8a:be:08:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI5QUExMTAvBgNVBAUTKDA1MDE0N0I5NERDOUQ2Q0JFOEMwQjBGMUFEMEMwMTgz QTYwNzdDMzQwHhcNMjQxMTIzMDQ0MTUwWhcNMjQxMTMwMDQ0MTUwWjAYMRYwFAYD VQQDEw02NzQxNWQwZi1mZTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuezotR7ZOaxWN20rGppvgZtLXa8FRCN7Jj3ztXxx63fVDmJoZjebqa8NC1xP tHQKBgwsb7BPsf6Ob/87QyduAaQyfXPNQUi5ZVMhdTQNRQ/sXiABw7Bt86zJJAgJ hu0kreRyuXmauJgsYblVsmewyuTrBTsTFXN4coXsc2jOcSrzBodikAVsVz71ZO8N 6mcVJttocKKp6sAZbPJAVqR04USC34+xw40RCtdZrmR1UKSeF2X+cmQgh8B6Bhva bQ72ZEBwVAQtlzWBztBfCOqSjUV4FKgueegmOsDKpmBgVd0AWkjj1W/pQZ4+0F3n U58lQbg+ChAAcp7UPOm46IDMiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1phVrq bik6pKjLUquFkLOZNAieMB8GA1UdIwQYMBaAFAUBR7lNydbL6MCw8a0MAYOmB3w0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjlBQS81RjA2OTNGNEU3 NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFzdm93TER4clF3Qmc2WUhm RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRRkh1VTNKMXN2b3dMRHhyUXdCZzZZSGZEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjlBQS81RjA2OTNGNEU3NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFz dm93TER4clF3Qmc2WUhmRFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAG/cbmsDAjZc+/QkfJth3+uH9QhiVranQEPLt7DXrotsWbNueYNKBh 4t9BHL1UXATvxyrtmwxYtqBVKQtashYtN46IvLW+fBDT42R2zeO3HVfuZgdW37uO OHT1rQ1k18SAyLUT0fxJwyAwdRXxZbk+yOgMiGe5KID5l+aJT5nvd/n1RonkAA0J Sar7MpBmaSH5iPlCCvOSm7gXdwhF392YWoqXKlQB9fb/HMz7iHTFOQZTdA/6+B1x LIXVoAZmLaSsvGeibCIygY9U7zglE9ddlewcS8ZKUib+m4fP5aI9RfkxhdpPRUWJ Fa8DOR7GAsSqoFrRO0z0U0RMQxyKvgj2 -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:25 2024 by rpki-client on console-fra.rpki-client.org