$ rpki-client -vvf rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.mft File: bAgKK6farJXU2TSIqQAVGuOlnfg.mft (raw, json) Hash identifier: ssLQJhVDN4J6rrL1P+EZtirgNR79bFKqAY76LmFFFW0= Subject key identifier: 75:34:89:AB:99:2D:2E:AC:C1:F3:3B:BE:E4:AB:E5:DA:45:D5:4A:48 Authority key identifier: 6C:08:0A:2B:A7:DA:AC:95:D4:D9:34:88:A9:00:15:1A:E3:A5:9D:F8 Certificate issuer: /CN=A91B74E8/serialNumber=6C080A2BA7DAAC95D4D93488A900151AE3A59DF8 Certificate serial: 0445 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bAgKK6farJXU2TSIqQAVGuOlnfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.mft Manifest number: 0430 Signing time: Fri 22 Nov 2024 23:56:27 +0000 Manifest this update: Fri 22 Nov 2024 23:56:27 +0000 Manifest next update: Fri 29 Nov 2024 23:56:27 +0000 Files and hashes: 1: bAgKK6farJXU2TSIqQAVGuOlnfg.crl (hash: 9iOjjQCgBK3cwqRjjDCSS+awmcqr85tHjM/wOo8PA3k=) 2: AE3FB66CC0A711EE97A2E984C4F9AE02.roa (hash: 8WuVLtXpW7cGua7WEy7sq6GUNZjMo1nKjeIaIqPgw3Q=) 3: AD5EE696C0A711EE97A2E984C4F9AE02.roa (hash: FcWJi7DlN7uMWlMUmB7LQJ+WXKlsCTtubCazxvuIgKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.crl rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bAgKK6farJXU2TSIqQAVGuOlnfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1093 (0x445) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B74E8/serialNumber=6C080A2BA7DAAC95D4D93488A900151AE3A59DF8 Validity Not Before: Nov 22 23:56:27 2024 GMT Not After : Nov 29 23:56:27 2024 GMT Subject: CN=67411a2b-0126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:00:75:07:59:15:2b:8c:24:89:f5:28:53:58: 7c:2c:30:62:fc:74:1d:b3:2c:bd:7b:8b:33:ee:37: 5b:8e:c5:d4:85:b9:7f:65:eb:cd:e2:17:33:31:d8: d7:a2:56:1b:0e:e2:bb:08:5e:32:e7:41:a1:b1:cc: b0:7e:e8:e5:36:7d:f4:c1:6b:34:bb:b4:56:9e:17: d9:d0:cf:8f:61:4c:d6:56:54:b6:36:b5:1c:14:3d: 96:fc:70:32:2b:4d:ae:5e:b2:d5:f9:83:26:d1:c6: 49:6e:db:59:a8:21:66:0f:38:21:c0:31:03:d1:2b: 96:f6:a3:18:62:8c:e6:de:88:e3:4b:b4:1a:af:ca: 9e:74:91:34:be:7c:99:6d:86:e1:c8:65:9c:fd:9b: 66:e5:b7:bb:c1:71:c7:b3:4e:09:78:e8:d5:9b:05: c4:2e:7c:cd:a6:bd:21:3a:b2:63:f0:5a:f0:eb:d6: 40:14:7a:62:0c:0d:73:68:7c:2e:4f:52:a8:9d:53: 23:f5:98:94:ee:c3:cf:54:e4:66:17:26:fb:cf:c9: b9:2e:1b:26:a3:62:b7:3d:77:15:f0:79:a7:af:ca: f3:61:13:c6:85:38:92:11:1c:d6:03:a7:71:c8:76: b9:8c:b9:4b:e5:a9:bc:3a:18:e5:75:0c:2e:58:0d: 70:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:34:89:AB:99:2D:2E:AC:C1:F3:3B:BE:E4:AB:E5:DA:45:D5:4A:48 X509v3 Authority Key Identifier: keyid:6C:08:0A:2B:A7:DA:AC:95:D4:D9:34:88:A9:00:15:1A:E3:A5:9D:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bAgKK6farJXU2TSIqQAVGuOlnfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:14:33:62:09:10:ee:ae:37:e0:76:9e:59:b1:a8:65:a6:3d: 5c:6f:60:81:30:34:29:83:22:87:26:c8:9c:c9:4a:45:ec:8d: 5f:38:b4:17:14:2b:61:31:53:c0:a5:f4:28:cc:e8:8b:cd:c1: 61:e2:48:ab:98:38:0f:4e:8c:66:21:64:ae:a3:2c:39:96:36: c2:c6:3d:20:25:c0:49:37:0d:28:67:c9:a7:93:ea:0e:85:0b: d4:bb:16:2c:41:2e:c9:b3:2b:d3:77:83:61:fd:a5:fb:a3:55: 5d:dd:94:29:bf:6a:6a:64:c0:62:eb:df:b1:0e:98:f6:88:fa: 7c:be:50:60:88:f9:32:0e:71:9d:29:a3:e4:5a:cb:65:70:01: 40:f9:d6:1a:de:25:20:e6:ad:5a:73:f5:72:d5:61:35:2a:c7: bc:34:5f:15:3b:bb:d5:c6:98:6b:50:de:88:80:b4:40:6f:1a: 43:69:a2:53:c8:d7:44:ba:90:13:d0:2f:bd:0f:c1:8a:d8:10: 81:b6:7c:cc:d2:92:ab:7e:01:f2:98:74:86:1e:28:01:e5:8a: f6:82:54:db:43:61:ab:94:5b:db:09:d8:c5:c4:d8:a6:c8:0b: e2:39:99:85:a8:db:ce:7c:ae:ad:bd:e2:a7:24:d3:80:f7:53: b6:83:cd:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc0RTgxMTAvBgNVBAUTKDZDMDgwQTJCQTdEQUFDOTVENEQ5MzQ4OEE5MDAxNTFB RTNBNTlERjgwHhcNMjQxMTIyMjM1NjI3WhcNMjQxMTI5MjM1NjI3WjAYMRYwFAYD VQQDEw02NzQxMWEyYi0wMTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5AB1B1kVK4wkifUoU1h8LDBi/HQdsyy9e4sz7jdbjsXUhbl/ZevN4hczMdjX olYbDuK7CF4y50GhscywfujlNn30wWs0u7RWnhfZ0M+PYUzWVlS2NrUcFD2W/HAy K02uXrLV+YMm0cZJbttZqCFmDzghwDED0SuW9qMYYozm3ojjS7Qar8qedJE0vnyZ bYbhyGWc/Ztm5be7wXHHs04JeOjVmwXELnzNpr0hOrJj8Frw69ZAFHpiDA1zaHwu T1KonVMj9ZiU7sPPVORmFyb7z8m5Lhsmo2K3PXcV8Hmnr8rzYRPGhTiSERzWA6dx yHa5jLlL5am8OhjldQwuWA1wlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHU0iauZ LS6swfM7vuSr5dpF1UpIMB8GA1UdIwQYMBaAFGwICiun2qyV1Nk0iKkAFRrjpZ34 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzRFOC80N0Y2MjAxMjQz RUExMUVDODRBQjYzNDdDNEY5QUUwMi9iQWdLSzZmYXJKWFUyVFNJcVFBVkd1T2xu ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JBZ0tLNmZhckpYVTJUU0lxUUFWR3VPbG5mZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzRFOC80N0Y2MjAxMjQzRUExMUVDODRBQjYzNDdDNEY5QUUwMi9iQWdLSzZmYXJK WFUyVFNJcVFBVkd1T2xuZmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClFDNiCRDurjfgdp5Zsahlpj1cb2CBMDQpgyKHJsicyUpF7I1fOLQX FCthMVPApfQozOiLzcFh4kirmDgPToxmIWSuoyw5ljbCxj0gJcBJNw0oZ8mnk+oO hQvUuxYsQS7JsyvTd4Nh/aX7o1Vd3ZQpv2pqZMBi69+xDpj2iPp8vlBgiPkyDnGd KaPkWstlcAFA+dYa3iUg5q1ac/Vy1WE1Kse8NF8VO7vVxphrUN6IgLRAbxpDaaJT yNdEupAT0C+9D8GK2BCBtnzM0pKrfgHymHSGHigB5Yr2glTbQ2GrlFvbCdjFxNim yAviOZmFqNvOfK6tveKnJNOA91O2g81J -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:27 2024 by rpki-client on console-ams.rpki-client.org