$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft File: bxP1UQCfJIptmHQ2AE6FeVFWkns.mft (raw, json) Hash identifier: BKR4fVCFVGE4gc5r92G44YBSoLXJGPA2kkimTxPabCE= Subject key identifier: C5:C0:25:A2:D7:0D:8D:06:AA:DA:42:44:32:A0:19:66:54:D1:CE:64 Authority key identifier: 6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B Certificate issuer: /CN=A91CAFC4/serialNumber=6F13F551009F248A6D987436004E85795156927B Certificate serial: 08A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft Manifest number: 088D Signing time: Fri 22 Nov 2024 20:21:34 +0000 Manifest this update: Fri 22 Nov 2024 20:21:33 +0000 Manifest next update: Fri 29 Nov 2024 20:21:33 +0000 Files and hashes: 1: bxP1UQCfJIptmHQ2AE6FeVFWkns.crl (hash: L28avmnbaEq9s70mBzWr/INvtrAyDFrPhvEhyyzHT20=) 2: D2039A56AABC11EEA0370F2CC4F9AE02.roa (hash: V5P8MqryTvl9uPbcl4kRoIx/Fd4WpfSFp93LMG/SR30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:21:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2208 (0x8a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAFC4/serialNumber=6F13F551009F248A6D987436004E85795156927B Validity Not Before: Nov 22 20:21:33 2024 GMT Not After : Nov 29 20:21:33 2024 GMT Subject: CN=6740e7cd-1dfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:dc:56:02:53:f0:b2:c5:c8:e1:b9:7e:97:46: 7b:e7:ca:09:1e:23:5d:ee:21:88:0d:4a:bf:24:fb: e2:d5:1b:8f:05:bd:f2:d5:4a:cd:85:eb:54:2b:9d: 7e:a7:6e:90:2f:27:7e:17:b0:9e:79:90:20:6e:96: 1a:25:54:29:e8:41:4e:27:6f:4e:e9:f0:0a:0b:bf: c7:a4:42:4f:e7:5c:3c:cd:e2:9a:06:c4:f6:bc:ca: c6:f9:02:72:6d:d3:9b:0e:59:82:fb:96:68:e8:46: 15:32:f5:3b:4c:46:64:35:ec:22:b1:33:10:11:97: e7:01:3b:2f:3b:52:f9:7e:18:03:b5:4e:f9:c9:13: 0a:d4:fe:c0:f8:5a:c3:d7:78:c5:64:ed:17:28:e4: f4:94:99:12:d0:d8:67:3a:89:c7:26:88:58:8a:53: d4:28:2f:62:fa:94:7c:b2:55:45:f2:27:a5:a0:54: 54:33:c8:b2:6e:2a:ef:db:11:35:58:70:3c:71:81: 7e:28:ab:b9:13:60:c3:13:1d:e7:e9:c0:c3:a5:75: 99:d3:f3:e5:c2:f6:09:c7:e5:5d:12:92:bd:68:6c: 57:7e:b7:a7:b5:82:27:4b:7a:90:80:00:6a:6d:8e: 69:68:c5:90:ef:83:d7:ce:a0:1f:82:d4:67:3f:fe: 01:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:C0:25:A2:D7:0D:8D:06:AA:DA:42:44:32:A0:19:66:54:D1:CE:64 X509v3 Authority Key Identifier: keyid:6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:35:60:6a:1b:b8:2b:1e:76:e5:f9:8d:cd:d3:8c:30:3b:44: 2d:7b:4c:ae:16:bd:4f:73:26:db:52:5a:fd:2d:06:83:f8:9d: 0c:8f:45:38:74:ac:02:d4:51:cf:ac:9d:98:96:81:35:12:6a: e7:10:36:c8:d2:81:34:90:f5:9b:69:51:6a:a6:ba:a2:c3:21: ef:49:5b:da:54:d2:4b:be:74:45:e4:8a:75:a3:ee:f5:de:8d: 92:81:96:93:27:1b:89:26:43:0c:88:46:ef:f9:a1:ca:58:07: 3e:ab:d8:be:d7:16:45:b7:5c:38:c2:16:85:31:d7:b7:8e:e9: f7:a4:9d:71:74:9c:78:7c:32:15:0b:97:a2:94:de:74:99:d4: 4b:5c:4f:44:4f:ea:0d:f7:b8:69:f1:fc:ac:06:f2:4f:7f:e0: 49:16:1b:ec:48:0a:77:e3:9a:dc:0d:8f:38:30:dc:54:9a:8d: 52:04:47:78:0a:d7:95:9b:f4:3d:96:99:1c:de:65:b0:36:15: 17:76:2b:11:f1:db:38:7e:e8:6c:26:9c:07:a5:d2:47:43:8f: 49:9f:08:08:a2:71:8d:24:5c:5b:f6:17:fb:63:94:9a:55:0a: 96:15:75:cc:05:52:ce:ea:3b:b9:94:39:3f:2e:10:ca:ef:a1: 0e:b1:20:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FGQzQxMTAvBgNVBAUTKDZGMTNGNTUxMDA5RjI0OEE2RDk4NzQzNjAwNEU4NTc5 NTE1NjkyN0IwHhcNMjQxMTIyMjAyMTMzWhcNMjQxMTI5MjAyMTMzWjAYMRYwFAYD VQQDEw02NzQwZTdjZC0xZGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NxWAlPwssXI4bl+l0Z758oJHiNd7iGIDUq/JPvi1RuPBb3y1UrNhetUK51+ p26QLyd+F7CeeZAgbpYaJVQp6EFOJ29O6fAKC7/HpEJP51w8zeKaBsT2vMrG+QJy bdObDlmC+5Zo6EYVMvU7TEZkNewisTMQEZfnATsvO1L5fhgDtU75yRMK1P7A+FrD 13jFZO0XKOT0lJkS0NhnOonHJohYilPUKC9i+pR8slVF8ieloFRUM8iybirv2xE1 WHA8cYF+KKu5E2DDEx3n6cDDpXWZ0/PlwvYJx+VdEpK9aGxXfrentYInS3qQgABq bY5paMWQ74PXzqAfgtRnP/4BTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXAJaLX DY0GqtpCRDKgGWZU0c5kMB8GA1UdIwQYMBaAFG8T9VEAnySKbZh0NgBOhXlRVpJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUZDNC9CQzYwNjJEQ0FG OEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJcHRtSFEyQUU2RmVWRldr bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J4UDFVUUNmSklwdG1IUTJBRTZGZVZGV2tucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUZDNC9CQzYwNjJEQ0FGOEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJ cHRtSFEyQUU2RmVWRldrbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmNWBqG7grHnbl+Y3N04wwO0Qte0yuFr1PcybbUlr9LQaD+J0Mj0U4 dKwC1FHPrJ2YloE1EmrnEDbI0oE0kPWbaVFqprqiwyHvSVvaVNJLvnRF5Ip1o+71 3o2SgZaTJxuJJkMMiEbv+aHKWAc+q9i+1xZFt1w4whaFMde3jun3pJ1xdJx4fDIV C5eilN50mdRLXE9ET+oN97hp8fysBvJPf+BJFhvsSAp345rcDY84MNxUmo1SBEd4 CteVm/Q9lpkc3mWwNhUXdisR8ds4fuhsJpwHpdJHQ49JnwgIonGNJFxb9hf7Y5Sa VQqWFXXMBVLO6ju5lDk/LhDK76EOsSBe -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:40 2024 by rpki-client on console-ams.rpki-client.org