$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft File: vBRJ7peREatw2N-Y2rpOJrprxls.mft (raw, json) Hash identifier: 3c6WJcMmwzy2WWq+ISGoGqv9OKVu2aftziyEkc7lL2s= Subject key identifier: E6:6A:B6:22:D5:FE:5C:A4:5D:97:DF:92:93:53:BF:83:66:9A:40:BB Authority key identifier: BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B Certificate issuer: /CN=A91CCA34/serialNumber=BC1449EE979111AB70D8DF98DABA4E26BA6BC65B Certificate serial: 06D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft Manifest number: 06CA Signing time: Fri 22 Nov 2024 21:40:00 +0000 Manifest this update: Fri 22 Nov 2024 21:39:59 +0000 Manifest next update: Fri 29 Nov 2024 21:39:59 +0000 Files and hashes: 1: vBRJ7peREatw2N-Y2rpOJrprxls.crl (hash: h1vxKbTlv/m1IsPHVosTE2jwnJaoA3k5byXAm7l9FZc=) 2: 7633392033B411EB98035F74C4F9AE02.roa (hash: 2z51i9dV66CcllhW8qVIGTGYHAdnhuR+CInt6YNJqFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.crl rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1745 (0x6d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCA34/serialNumber=BC1449EE979111AB70D8DF98DABA4E26BA6BC65B Validity Not Before: Nov 22 21:39:59 2024 GMT Not After : Nov 29 21:39:59 2024 GMT Subject: CN=6740fa30-18cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ae:d8:13:f0:18:d3:65:53:a9:d8:78:d0:dd: df:e5:20:64:ed:12:bf:71:0b:c6:b7:3b:f9:20:e4: f8:d9:53:b7:c8:cd:6b:bb:f6:2e:04:c4:24:57:55: 28:12:31:d9:7c:12:5c:92:df:2b:a1:ca:cc:04:24: 42:b5:f8:d9:f2:ac:f3:67:70:0e:c0:3b:3a:f6:1b: 95:a8:46:2b:21:ff:fb:9d:d2:89:79:f6:cb:c0:5f: 26:c2:82:26:31:ef:a9:d6:38:62:97:96:fb:2f:30: 85:eb:f5:c7:2b:78:f3:53:1c:b9:b1:95:7b:3d:7f: 10:40:36:f9:b6:65:70:f0:7d:c3:19:fe:97:30:d1: d9:d6:09:f3:6c:c3:a9:ba:51:e7:b8:5e:aa:9f:72: 4e:7b:57:e9:77:be:ce:f0:83:59:dd:15:22:25:ac: 84:dc:38:46:f8:35:6b:ca:51:d4:ad:9a:5b:b4:fd: e5:81:27:27:c8:2d:72:59:ab:eb:3e:bb:87:18:8d: fe:86:0c:a6:50:81:3c:f9:14:c2:84:a9:26:f8:d2: 11:d5:92:55:16:aa:d3:4a:15:17:29:27:66:dc:fa: 55:54:e2:48:ea:a2:02:e5:ad:0f:b0:90:d8:ff:e2: 94:f6:0a:df:87:85:69:a8:74:d2:73:3a:fa:84:de: cc:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:6A:B6:22:D5:FE:5C:A4:5D:97:DF:92:93:53:BF:83:66:9A:40:BB X509v3 Authority Key Identifier: keyid:BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:be:a6:5c:e0:6f:c6:db:82:53:ef:b9:a1:11:a9:c1:a8:87: cf:d3:b8:c0:0e:ca:7d:2d:af:7a:4c:eb:5c:ea:92:93:d5:65: c9:a5:41:0b:8b:2e:7e:c3:de:04:44:85:c0:5e:6d:d3:2c:af: 84:68:be:26:b8:57:05:bb:67:39:c5:6a:a0:ba:c3:dd:bf:a2: fc:e2:85:a2:87:83:e2:29:7b:1d:47:12:d8:3b:8b:4a:71:34: 31:b6:7a:da:f2:12:c5:b0:f2:45:57:74:3f:01:c1:f6:ff:9a: 70:fd:aa:0f:59:c6:24:ce:de:ba:a1:e7:3e:b7:9e:f4:ae:b7: 93:af:fd:92:e4:7b:1c:d7:83:3e:2e:94:42:2d:fc:e7:e8:d4: e2:a1:e4:82:d1:8c:02:69:54:aa:7b:bd:7d:0d:1d:c1:0f:77: 26:1f:e7:d6:d1:e2:73:bb:46:d6:9f:47:49:af:7d:f8:24:4f: c4:1c:fc:07:d2:03:c8:4d:9b:40:e3:e3:1e:26:26:16:c1:64: a9:87:f9:7b:1e:65:3e:85:ad:90:ef:d9:89:89:6e:a9:24:9c: 43:f7:30:1b:c9:94:c6:bf:72:12:ed:a3:24:ec:60:fd:d1:04: 70:76:d9:c2:ec:42:3e:ef:cb:f5:9a:b8:f2:87:5f:c6:ba:e2: 5e:86:6b:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBMzQxMTAvBgNVBAUTKEJDMTQ0OUVFOTc5MTExQUI3MEQ4REY5OERBQkE0RTI2 QkE2QkM2NUIwHhcNMjQxMTIyMjEzOTU5WhcNMjQxMTI5MjEzOTU5WjAYMRYwFAYD VQQDEw02NzQwZmEzMC0xOGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAta7YE/AY02VTqdh40N3f5SBk7RK/cQvGtzv5IOT42VO3yM1ru/YuBMQkV1Uo EjHZfBJckt8rocrMBCRCtfjZ8qzzZ3AOwDs69huVqEYrIf/7ndKJefbLwF8mwoIm Me+p1jhil5b7LzCF6/XHK3jzUxy5sZV7PX8QQDb5tmVw8H3DGf6XMNHZ1gnzbMOp ulHnuF6qn3JOe1fpd77O8INZ3RUiJayE3DhG+DVrylHUrZpbtP3lgScnyC1yWavr PruHGI3+hgymUIE8+RTChKkm+NIR1ZJVFqrTShUXKSdm3PpVVOJI6qIC5a0PsJDY /+KU9grfh4VpqHTSczr6hN7M3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZqtiLV /lykXZffkpNTv4NmmkC7MB8GA1UdIwQYMBaAFLwUSe6XkRGrcNjfmNq6Tia6a8Zb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0EzNC82RkFBMzY3ODMz QjIxMUVCQTg4QTBBNkZDNEY5QUUwMi92QlJKN3BlUkVhdHcyTi1ZMnJwT0pycHJ4 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZCUko3cGVSRWF0dzJOLVkycnBPSnJwcnhscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0EzNC82RkFBMzY3ODMzQjIxMUVCQTg4QTBBNkZDNEY5QUUwMi92QlJKN3BlUkVh dHcyTi1ZMnJwT0pycHJ4bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8vqZc4G/G24JT77mhEanBqIfP07jADsp9La96TOtc6pKT1WXJpUEL iy5+w94ERIXAXm3TLK+EaL4muFcFu2c5xWqgusPdv6L84oWih4PiKXsdRxLYO4tK cTQxtnra8hLFsPJFV3Q/AcH2/5pw/aoPWcYkzt66oec+t570rreTr/2S5Hsc14M+ LpRCLfzn6NTioeSC0YwCaVSqe719DR3BD3cmH+fW0eJzu0bWn0dJr334JE/EHPwH 0gPITZtA4+MeJiYWwWSph/l7HmU+ha2Q79mJiW6pJJxD9zAbyZTGv3IS7aMk7GD9 0QRwdtnC7EI+78v1mrjyh1/GuuJehmsr -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:50 2024 by rpki-client on console-ams.rpki-client.org