$ rpki-client -vvf rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.mft File: bYD-tReA9_EG5hkNw-LufOdO77s.mft (raw, json) Hash identifier: Zqh5D2twcRaTXczqfpvMDYZG5ecARX2+0BoW/lP+cdg= Subject key identifier: CE:90:0E:8C:C4:02:7B:3D:ED:29:B7:CD:62:9C:26:73:B2:18:E4:2C Authority key identifier: 6D:80:FE:B5:17:80:F7:F1:06:E6:19:0D:C3:E2:EE:7C:E7:4E:EF:BB Certificate issuer: /CN=A917624C/serialNumber=6D80FEB51780F7F106E6190DC3E2EE7CE74EEFBB Certificate serial: 02B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bYD-tReA9_EG5hkNw-LufOdO77s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.mft Manifest number: 02B1 Signing time: Sat 23 Nov 2024 01:02:23 +0000 Manifest this update: Sat 23 Nov 2024 01:02:23 +0000 Manifest next update: Sat 30 Nov 2024 01:02:23 +0000 Files and hashes: 1: bYD-tReA9_EG5hkNw-LufOdO77s.crl (hash: cZRh/PXQ3CvJSLjdAE5fOEUpEAxWyNjBBuc822ae7Ew=) 2: 52801AD8D07111ECAF21A75DC4F9AE02.roa (hash: qF7Z9bCq6Bb/CjCCcxi/i5YpMx2Ig2rtU2KcJKtS8jU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.crl rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bYD-tReA9_EG5hkNw-LufOdO77s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 692 (0x2b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917624C/serialNumber=6D80FEB51780F7F106E6190DC3E2EE7CE74EEFBB Validity Not Before: Nov 23 01:02:23 2024 GMT Not After : Nov 30 01:02:23 2024 GMT Subject: CN=6741299f-0cfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:55:b9:c7:2f:9e:51:09:9f:be:43:e4:2c:6a: b0:9d:04:57:43:ea:2b:0d:b3:49:db:36:cd:d5:36: 19:21:65:43:fe:62:6f:6f:d2:fa:83:18:c2:0f:e1: f2:4a:6a:26:57:ab:44:f6:f7:12:d3:8b:34:27:c9: 72:15:64:78:41:a7:70:13:c1:31:32:7c:0a:99:28: ae:26:bb:12:3f:04:a0:b8:69:ee:2c:1d:ec:86:75: b4:81:8f:5b:30:ac:82:f7:73:e9:a4:57:de:22:89: 8d:d3:c1:0d:42:ae:7a:c2:23:50:2c:86:ad:58:95: 73:d6:15:0e:3e:23:89:cd:03:96:06:5e:dc:1e:8f: ac:08:07:4d:0b:7d:27:10:60:fb:31:eb:16:c2:39: 97:05:39:65:2e:52:b6:95:c9:6c:04:c5:69:fb:c1: 1e:6c:9e:41:aa:b9:2b:12:75:c3:3f:83:41:46:12: e9:1e:b4:0a:87:2b:76:07:a6:df:82:77:58:af:6c: d4:16:c5:42:73:78:ed:54:22:3b:b8:a7:23:59:e5: 4c:2d:38:00:eb:ff:13:47:15:f6:69:08:9f:8e:a8: 68:b9:ca:a0:99:84:86:ef:58:7a:7a:b8:62:a5:17: 27:8f:ae:b0:96:9f:b2:1b:75:2f:98:c5:b5:c4:8d: e6:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:90:0E:8C:C4:02:7B:3D:ED:29:B7:CD:62:9C:26:73:B2:18:E4:2C X509v3 Authority Key Identifier: keyid:6D:80:FE:B5:17:80:F7:F1:06:E6:19:0D:C3:E2:EE:7C:E7:4E:EF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bYD-tReA9_EG5hkNw-LufOdO77s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:15:6b:68:6b:81:bc:97:f1:e6:b1:00:a3:b1:d1:96:7e:89: a9:5f:b8:60:00:59:c2:62:70:d9:55:b1:09:64:74:a0:7f:de: 49:a3:36:a9:f9:9c:df:3c:b1:d1:f2:14:d3:fc:2f:10:74:f7: ec:4b:39:e9:77:5c:d2:32:73:fe:af:05:27:09:53:6f:ce:43: 9a:a2:71:44:02:a8:90:4a:d0:3d:47:d2:27:f2:e9:2c:88:8d: 49:ed:66:1c:97:a8:a4:db:83:4b:27:bf:e2:24:66:2b:78:47: 26:1e:63:ca:a7:6e:89:9c:2b:33:eb:72:1c:59:97:c2:ba:7e: 90:9c:6e:52:9a:14:72:39:6f:8c:00:7d:a2:27:5e:4b:2f:8f: 7f:f8:bd:1e:8b:3a:5f:f4:e6:19:e2:30:30:c4:d1:68:17:7a: fa:ad:0f:3c:47:f4:53:28:56:1e:65:bd:81:61:82:fc:41:aa: 79:ff:c9:a3:b7:c3:93:86:73:23:53:6f:a3:a0:c5:99:4a:d7: c4:fa:29:06:72:9e:8b:8b:d8:81:c1:bf:26:48:8a:e7:18:fa: e1:aa:8f:b2:c7:09:ba:34:e3:13:b5:1d:ce:57:78:53:77:0c: ae:aa:7c:01:59:29:ee:2e:29:e4:89:c8:c9:59:e8:32:4f:f9: 89:a8:e7:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYyNEMxMTAvBgNVBAUTKDZEODBGRUI1MTc4MEY3RjEwNkU2MTkwREMzRTJFRTdD RTc0RUVGQkIwHhcNMjQxMTIzMDEwMjIzWhcNMjQxMTMwMDEwMjIzWjAYMRYwFAYD VQQDEw02NzQxMjk5Zi0wY2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4FW5xy+eUQmfvkPkLGqwnQRXQ+orDbNJ2zbN1TYZIWVD/mJvb9L6gxjCD+Hy SmomV6tE9vcS04s0J8lyFWR4QadwE8ExMnwKmSiuJrsSPwSguGnuLB3shnW0gY9b MKyC93PppFfeIomN08ENQq56wiNQLIatWJVz1hUOPiOJzQOWBl7cHo+sCAdNC30n EGD7MesWwjmXBTllLlK2lclsBMVp+8EebJ5BqrkrEnXDP4NBRhLpHrQKhyt2B6bf gndYr2zUFsVCc3jtVCI7uKcjWeVMLTgA6/8TRxX2aQifjqhoucqgmYSG71h6erhi pRcnj66wlp+yG3UvmMW1xI3mcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM6QDozE Ans97Sm3zWKcJnOyGOQsMB8GA1UdIwQYMBaAFG2A/rUXgPfxBuYZDcPi7nznTu+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjI0Qy9CQjUwRDlEMEQw NkMxMUVDQjJBQUFBMzdDNEY5QUUwMi9iWUQtdFJlQTlfRUc1aGtOdy1MdWZPZE83 N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JZRC10UmVBOV9FRzVoa053LUx1Zk9kTzc3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjI0Qy9CQjUwRDlEMEQwNkMxMUVDQjJBQUFBMzdDNEY5QUUwMi9iWUQtdFJlQTlf RUc1aGtOdy1MdWZPZE83N3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgFWtoa4G8l/HmsQCjsdGWfompX7hgAFnCYnDZVbEJZHSgf95Jozap +ZzfPLHR8hTT/C8QdPfsSznpd1zSMnP+rwUnCVNvzkOaonFEAqiQStA9R9In8uks iI1J7WYcl6ik24NLJ7/iJGYreEcmHmPKp26JnCsz63IcWZfCun6QnG5SmhRyOW+M AH2iJ15LL49/+L0eizpf9OYZ4jAwxNFoF3r6rQ88R/RTKFYeZb2BYYL8Qap5/8mj t8OThnMjU2+joMWZStfE+ikGcp6Li9iBwb8mSIrnGPrhqo+yxwm6NOMTtR3OV3hT dwyuqnwBWSnuLinkicjJWegyT/mJqOeM -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:39 2024 by rpki-client on console-fra.rpki-client.org