$ rpki-client -vvf rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft File: BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft (raw, json) Hash identifier: dL7DWOOsR1TIiIpWpKZpf05Tt1RpdclJ/Kk2Bs0UKMI= Subject key identifier: C9:2B:31:3B:3C:19:19:94:82:27:B4:4F:37:53:26:93:0A:71:CC:7C Authority key identifier: 04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7 Certificate issuer: /CN=A91D425A/serialNumber=048AA98F3EC54A9060E5BC30059D5C4220D7C2F7 Certificate serial: 0AB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft Manifest number: 0AAB Signing time: Fri 22 Nov 2024 19:13:58 +0000 Manifest this update: Fri 22 Nov 2024 19:13:57 +0000 Manifest next update: Fri 29 Nov 2024 19:13:57 +0000 Files and hashes: 1: BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl (hash: E1M5myAd3TGi/P89Mb3HQxRJ64K7WrZ48ewEQJJOOEk=) 2: 494B4070419C11EAAE836772C4F9AE02.roa (hash: Tlot9sCT0dKzDi+iGMaa7IKkM12iDzM+MG45fS4fB3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:13:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2737 (0xab1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D425A/serialNumber=048AA98F3EC54A9060E5BC30059D5C4220D7C2F7 Validity Not Before: Nov 22 19:13:57 2024 GMT Not After : Nov 29 19:13:57 2024 GMT Subject: CN=6740d7f5-3d61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:07:f3:fd:90:0b:09:e2:6f:6a:4f:8c:61:fd: 0b:2e:74:b2:15:5b:f1:c1:d7:67:97:b7:8b:c6:11: 33:85:29:de:d6:02:e4:a4:cd:ee:b4:59:7d:2c:14: 7e:5f:41:ff:4b:43:25:ef:e1:b7:9d:e3:f4:e7:1f: ee:31:90:dd:9f:6b:08:12:51:4e:93:bb:88:e6:ae: d0:dd:01:48:38:e3:df:8f:6c:ea:b5:35:82:bc:f2: fd:b8:53:f7:f0:75:d2:78:1f:c3:12:6b:ac:93:99: 2b:25:e5:42:34:cd:f8:51:c9:5f:a6:c9:6b:74:14: 72:a9:e0:8d:c7:95:19:c0:33:27:60:84:47:11:2f: 93:08:57:80:83:de:f6:1c:7c:cd:ba:20:a8:6f:fe: 56:0d:f3:85:7b:84:47:e0:6c:81:d9:a1:a0:75:ec: 3b:df:f5:1b:34:37:87:b7:13:66:4a:97:17:84:62: cd:40:0b:a8:49:f3:78:b4:83:90:a4:1d:13:73:7d: c2:78:15:c6:a2:07:01:2f:1c:2c:22:3f:57:a2:17: f6:d7:34:35:08:a3:4d:2c:73:3e:b4:f6:5d:b4:49: 0e:99:44:4f:7d:d6:9a:b0:f8:f1:25:78:fb:20:5a: 38:24:76:c4:3a:24:30:fb:57:34:8c:a7:85:b0:65: e1:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:2B:31:3B:3C:19:19:94:82:27:B4:4F:37:53:26:93:0A:71:CC:7C X509v3 Authority Key Identifier: keyid:04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:92:f5:dd:b8:df:93:f1:de:e1:e2:16:e6:d8:7d:bb:9f:e1: 5e:1c:11:7c:09:a4:f1:11:e2:96:1c:2d:1c:60:39:cf:3a:29: 0d:7b:9d:0a:a2:9f:e6:b3:1d:11:a1:63:5e:41:df:32:3e:0f: 3c:8d:09:ba:3d:fa:03:13:e5:91:2d:cf:b3:49:c0:8c:46:3c: 26:eb:4e:6c:ca:90:c9:61:6c:52:18:e0:57:7a:1e:3e:51:25: e3:02:0e:b3:0c:5e:f6:e6:85:e3:4f:ad:f1:3b:7c:bb:a0:cf: 3c:7f:b8:b3:3f:10:cb:f3:40:88:e6:e2:4c:91:13:dd:e2:8b: 2f:5e:92:f0:74:9b:60:05:4d:20:8a:41:d4:56:c7:1c:cd:c3: de:6d:da:72:46:cf:36:9b:b2:be:d2:46:09:63:6b:dc:76:58: 36:06:3d:58:c4:9b:42:e9:35:65:fc:2a:2b:fa:39:7e:17:2a: b1:c5:2a:5b:a5:18:1d:b6:10:db:85:ec:b7:af:c9:84:ee:54: bc:3f:ad:f5:89:22:f3:c4:01:a3:c5:55:00:fe:3b:7b:70:8f: ba:35:43:d3:fc:65:29:92:d8:7a:f3:11:37:78:d9:13:ae:81: 61:e6:3b:f5:62:57:5a:67:24:f5:3b:a5:f9:df:5b:73:65:99: 19:99:c8:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQyNUExMTAvBgNVBAUTKDA0OEFBOThGM0VDNTRBOTA2MEU1QkMzMDA1OUQ1QzQy MjBEN0MyRjcwHhcNMjQxMTIyMTkxMzU3WhcNMjQxMTI5MTkxMzU3WjAYMRYwFAYD VQQDEw02NzQwZDdmNS0zZDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQfz/ZALCeJvak+MYf0LLnSyFVvxwddnl7eLxhEzhSne1gLkpM3utFl9LBR+ X0H/S0Ml7+G3neP05x/uMZDdn2sIElFOk7uI5q7Q3QFIOOPfj2zqtTWCvPL9uFP3 8HXSeB/DEmusk5krJeVCNM34UclfpslrdBRyqeCNx5UZwDMnYIRHES+TCFeAg972 HHzNuiCob/5WDfOFe4RH4GyB2aGgdew73/UbNDeHtxNmSpcXhGLNQAuoSfN4tIOQ pB0Tc33CeBXGogcBLxwsIj9Xohf21zQ1CKNNLHM+tPZdtEkOmURPfdaasPjxJXj7 IFo4JHbEOiQw+1c0jKeFsGXhBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMkrMTs8 GRmUgie0TzdTJpMKccx8MB8GA1UdIwQYMBaAFASKqY8+xUqQYOW8MAWdXEIg18L3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDI1QS8wMjRDMjRGODQx NkMxMUVBODNDM0VGNUFDNEY5QUUwMi9CSXFwano3RlNwQmc1Ynd3QloxY1FpRFh3 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJcXBqejdGU3BCZzVid3dCWjFjUWlEWHd2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDI1QS8wMjRDMjRGODQxNkMxMUVBODNDM0VGNUFDNEY5QUUwMi9CSXFwano3RlNw Qmc1Ynd3QloxY1FpRFh3dmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBkvXduN+T8d7h4hbm2H27n+FeHBF8CaTxEeKWHC0cYDnPOikNe50K op/msx0RoWNeQd8yPg88jQm6PfoDE+WRLc+zScCMRjwm605sypDJYWxSGOBXeh4+ USXjAg6zDF725oXjT63xO3y7oM88f7izPxDL80CI5uJMkRPd4osvXpLwdJtgBU0g ikHUVscczcPebdpyRs82m7K+0kYJY2vcdlg2Bj1YxJtC6TVl/Cor+jl+FyqxxSpb pRgdthDbhey3r8mE7lS8P631iSLzxAGjxVUA/jt7cI+6NUPT/GUpkth68xE3eNkT roFh5jv1YldaZyT1O6X531tzZZkZmci1 -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:33 2024 by rpki-client on console-fra.rpki-client.org