$ rpki-client -vvf rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft File: Bzzm268iYrP6YRXW_6ezNCFe-g0.mft (raw, json) Hash identifier: kcKV4Bt/dAaSFf4mpkmRk22BestaopCoGFWzupgt06U= Subject key identifier: 76:40:C6:23:04:D8:A7:E5:7C:9A:F5:7F:49:D5:70:77:29:73:DD:4A Authority key identifier: 07:3C:E6:DB:AF:22:62:B3:FA:61:15:D6:FF:A7:B3:34:21:5E:FA:0D Certificate issuer: /CN=A91859C2/serialNumber=073CE6DBAF2262B3FA6115D6FFA7B334215EFA0D Certificate serial: 05BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft Manifest number: 05B8 Signing time: Fri 22 Nov 2024 22:40:01 +0000 Manifest this update: Fri 22 Nov 2024 22:40:00 +0000 Manifest next update: Fri 29 Nov 2024 22:40:00 +0000 Files and hashes: 1: Bzzm268iYrP6YRXW_6ezNCFe-g0.crl (hash: wnsxWYHscJz00CrWGiZFQWyJ6hyozRlVWLw3c5hABQ8=) 2: A80223709F4411EB92132051C4F9AE02.roa (hash: s/fUirQhduJl9wnAhHh3ONw1QuvIAurXUVtBZUNnkC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.crl rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1468 (0x5bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91859C2/serialNumber=073CE6DBAF2262B3FA6115D6FFA7B334215EFA0D Validity Not Before: Nov 22 22:40:00 2024 GMT Not After : Nov 29 22:40:00 2024 GMT Subject: CN=67410840-070a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:82:4b:57:bf:47:48:13:06:38:f6:75:c7:a1: eb:2e:65:97:34:e8:d2:15:36:c4:6c:04:22:92:dc: 73:b4:df:7f:c1:32:55:37:f8:5f:a5:a8:72:d5:89: eb:9a:03:ef:c9:5f:36:90:37:75:ab:e8:82:1a:ed: 39:94:c1:f0:f5:82:ec:99:e5:85:e2:1b:31:38:93: de:55:91:5e:e5:de:a6:d4:b7:16:65:85:cc:44:29: 5c:1e:a1:c6:7c:07:b5:0d:6a:5d:49:65:92:06:50: e0:ab:1e:ca:7d:f8:8a:db:22:bb:98:bd:0a:64:cc: 51:de:62:c8:17:16:e3:3c:88:e7:de:51:84:e4:e1: af:78:08:11:5c:b9:1d:7e:b0:88:ea:16:f6:73:9c: 7f:fa:a1:5b:53:d0:3d:f6:85:d9:9a:ca:da:4a:35: a8:d3:ea:02:99:76:14:22:58:e6:18:1e:72:4a:d4: e6:f7:7c:ec:c2:7a:98:23:2a:f5:2f:55:58:f1:73: 0d:44:21:15:bf:0c:5d:2b:02:11:09:55:22:f9:c9: 78:2f:fb:e1:c8:73:71:fd:29:97:e9:b1:c4:21:bc: 7b:80:c9:34:65:19:a0:32:76:e2:ed:63:7b:e2:fd: fa:30:ca:60:9d:2d:51:f5:58:b0:67:84:99:fc:82: 51:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:40:C6:23:04:D8:A7:E5:7C:9A:F5:7F:49:D5:70:77:29:73:DD:4A X509v3 Authority Key Identifier: keyid:07:3C:E6:DB:AF:22:62:B3:FA:61:15:D6:FF:A7:B3:34:21:5E:FA:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:27:3d:07:60:88:91:8c:44:ee:66:a3:53:89:c0:34:b8:18: 6e:b0:03:ae:49:10:1e:b1:a4:2a:46:ba:7d:54:e7:50:96:5a: c8:40:b8:96:66:c6:7a:eb:ee:41:de:16:2c:2f:13:03:32:44: 96:45:2d:72:da:9a:99:5c:a6:4c:3a:90:1e:ba:c0:7d:56:9f: 23:6e:9a:2b:9a:5f:a6:f5:43:51:9f:68:57:f7:07:42:65:a1: 7c:87:92:86:aa:b4:65:c1:08:e6:f5:70:c5:2d:0f:e7:19:d4: 2f:54:57:54:9e:53:2c:bf:97:d4:b9:be:e3:32:c2:21:b4:70: 6e:63:d9:2f:94:06:03:da:6d:68:cc:81:9c:19:b3:12:85:6f: 64:67:b4:eb:72:f1:7e:9c:03:66:48:e0:c5:60:7f:23:19:93: 65:3e:a1:db:eb:65:20:20:29:88:26:b8:a4:c8:00:23:0a:cc: ca:01:82:5a:fe:37:f4:24:38:e3:64:d8:ca:47:1a:f2:c9:14: b3:1d:7b:44:09:62:4d:59:12:a8:45:2e:0c:6b:4a:48:8d:ea: f0:c6:2d:0b:90:5f:52:36:e9:98:d7:15:37:d4:a4:ca:c6:b9: 58:da:24:d7:d1:09:40:7e:28:b2:4e:62:71:26:e0:c8:c2:60: cc:7a:68:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU5QzIxMTAvBgNVBAUTKDA3M0NFNkRCQUYyMjYyQjNGQTYxMTVENkZGQTdCMzM0 MjE1RUZBMEQwHhcNMjQxMTIyMjI0MDAwWhcNMjQxMTI5MjI0MDAwWjAYMRYwFAYD VQQDEw02NzQxMDg0MC0wNzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoJLV79HSBMGOPZ1x6HrLmWXNOjSFTbEbAQiktxztN9/wTJVN/hfpahy1Ynr mgPvyV82kDd1q+iCGu05lMHw9YLsmeWF4hsxOJPeVZFe5d6m1LcWZYXMRClcHqHG fAe1DWpdSWWSBlDgqx7KffiK2yK7mL0KZMxR3mLIFxbjPIjn3lGE5OGveAgRXLkd frCI6hb2c5x/+qFbU9A99oXZmsraSjWo0+oCmXYUIljmGB5yStTm93zswnqYIyr1 L1VY8XMNRCEVvwxdKwIRCVUi+cl4L/vhyHNx/SmX6bHEIbx7gMk0ZRmgMnbi7WN7 4v36MMpgnS1R9ViwZ4SZ/IJR7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZAxiME 2KflfJr1f0nVcHcpc91KMB8GA1UdIwQYMBaAFAc85tuvImKz+mEV1v+nszQhXvoN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTlDMi9FN0MwMjIzRTlG NDIxMUVCOTIyRDM1NEZDNEY5QUUwMi9CenptMjY4aVlyUDZZUlhXXzZlek5DRmUt ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J6em0yNjhpWXJQNllSWFdfNmV6TkNGZS1nMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTlDMi9FN0MwMjIzRTlGNDIxMUVCOTIyRDM1NEZDNEY5QUUwMi9CenptMjY4aVly UDZZUlhXXzZlek5DRmUtZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKJz0HYIiRjETuZqNTicA0uBhusAOuSRAesaQqRrp9VOdQllrIQLiW ZsZ66+5B3hYsLxMDMkSWRS1y2pqZXKZMOpAeusB9Vp8jbporml+m9UNRn2hX9wdC ZaF8h5KGqrRlwQjm9XDFLQ/nGdQvVFdUnlMsv5fUub7jMsIhtHBuY9kvlAYD2m1o zIGcGbMShW9kZ7TrcvF+nANmSODFYH8jGZNlPqHb62UgICmIJrikyAAjCszKAYJa /jf0JDjjZNjKRxryyRSzHXtECWJNWRKoRS4Ma0pIjerwxi0LkF9SNumY1xU31KTK xrlY2iTX0QlAfiiyTmJxJuDIwmDMemh5 -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:30 2024 by rpki-client on console-fra.rpki-client.org