$ rpki-client -vvf rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft File: bu53G7POfpjbOWDE2C90Kiz36Ek.mft (raw, json) Hash identifier: dp7+Xdg9T/0KYkr9Vnec8m8cvaf90vpDMuT6AABazO4= Subject key identifier: 90:28:6A:BD:64:C9:C7:CC:A5:E5:2B:86:E4:E3:39:3E:63:D4:CF:6D Authority key identifier: 6E:EE:77:1B:B3:CE:7E:98:DB:39:60:C4:D8:2F:74:2A:2C:F7:E8:49 Certificate issuer: /CN=A9118827/serialNumber=6EEE771BB3CE7E98DB3960C4D82F742A2CF7E849 Certificate serial: 0481 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft Manifest number: 047D Signing time: Fri 22 Nov 2024 23:36:53 +0000 Manifest this update: Fri 22 Nov 2024 23:36:52 +0000 Manifest next update: Fri 29 Nov 2024 23:36:52 +0000 Files and hashes: 1: bu53G7POfpjbOWDE2C90Kiz36Ek.crl (hash: 77IHkEZneboO3Tc04Rx3JEipC5A27tlfegE3LCvN3tg=) 2: 95D9A9461BEC11EC97B39812C4F9AE02.roa (hash: O7MsLUw+gaoXTG9KiMvLQn/bjyCnjO8H09gMJ3FbG7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.crl rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1153 (0x481) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118827/serialNumber=6EEE771BB3CE7E98DB3960C4D82F742A2CF7E849 Validity Not Before: Nov 22 23:36:52 2024 GMT Not After : Nov 29 23:36:52 2024 GMT Subject: CN=67411595-96a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:e6:36:29:8d:c2:a8:71:22:70:8a:ba:6f:4f: 7d:bf:7c:28:87:26:e9:0e:ef:30:e7:49:2c:f2:2e: 75:4e:bf:8d:58:c3:79:92:93:1c:06:31:48:96:3c: 3c:18:e4:2b:19:a9:47:93:52:09:fa:45:5f:79:15: af:2d:60:6e:b1:87:2d:fc:55:28:f9:66:cc:84:7f: df:c5:a5:65:80:d9:74:de:d0:9a:7e:88:6f:4f:1f: 06:9f:89:a4:4c:3a:2c:ab:70:02:a4:7f:a8:93:52: 19:51:0c:ce:56:54:66:b3:20:bd:01:a5:05:ff:a2: 1b:f9:bd:02:81:5c:47:7a:9d:fa:17:93:90:b4:57: 31:0c:b2:b3:52:7e:74:04:d0:12:d6:51:ea:4b:8a: ab:70:fe:8f:45:7f:99:45:ca:70:73:f3:4a:b9:c7: df:12:73:3c:c3:22:f8:f4:f2:fb:39:6e:ed:86:e6: bf:26:d7:fd:06:04:a0:34:cb:92:0c:25:0f:ed:45: 98:01:ac:d8:5b:ca:ed:32:c0:74:52:9b:74:49:6c: 59:cc:a5:a5:65:e1:d5:be:af:83:81:78:b9:5e:5c: c0:f3:ea:5f:d7:8f:fe:e6:3b:05:4c:9b:d6:02:84: ec:92:71:1f:39:4f:ac:cd:47:e0:88:a4:6d:77:ec: f3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:28:6A:BD:64:C9:C7:CC:A5:E5:2B:86:E4:E3:39:3E:63:D4:CF:6D X509v3 Authority Key Identifier: keyid:6E:EE:77:1B:B3:CE:7E:98:DB:39:60:C4:D8:2F:74:2A:2C:F7:E8:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:82:8e:a6:aa:4d:03:85:4e:81:f5:06:60:5b:6b:ef:7a:5b: 3a:b1:e3:9c:d9:9b:da:54:9e:95:e1:c2:55:e1:43:cf:d5:c0: 5b:61:78:40:7b:20:22:02:97:5f:74:fd:90:12:b4:7f:30:f4: bb:77:2d:06:df:66:53:eb:87:a4:a3:23:df:39:cc:43:30:70: 9c:57:be:d9:a9:92:7a:d0:91:6f:21:2b:41:d1:6a:99:56:50: b9:98:2a:8b:ad:f7:96:31:b6:ff:e0:01:64:41:8e:9d:3b:d8: 11:9d:c1:5b:93:38:10:24:7c:a3:1c:11:fd:db:3c:a4:c4:5e: 28:2a:0c:aa:e1:e0:9c:28:56:11:68:8f:31:25:a1:12:9b:13: 24:f6:d1:45:60:2e:e2:71:1a:cc:9f:05:34:c3:fb:7c:0a:64: 18:ce:11:13:b4:0f:f6:e2:31:94:38:c3:39:0d:97:b1:62:a1: 0b:24:cb:a6:f0:c5:79:1d:e9:ee:35:fa:05:1c:51:af:cb:71: 84:d5:6e:48:da:7b:db:14:32:e2:e6:48:08:f3:de:81:ef:58: 4f:9f:42:c0:ee:1e:48:1f:6e:dc:e0:c9:ee:ed:9d:b0:82:5e: 6b:e7:c2:ec:6f:26:c2:65:e2:e2:65:9b:eb:7e:fd:a3:fd:af: 8e:6e:41:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg4MjcxMTAvBgNVBAUTKDZFRUU3NzFCQjNDRTdFOThEQjM5NjBDNEQ4MkY3NDJB MkNGN0U4NDkwHhcNMjQxMTIyMjMzNjUyWhcNMjQxMTI5MjMzNjUyWjAYMRYwFAYD VQQDEw02NzQxMTU5NS05NmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAleY2KY3CqHEicIq6b099v3wohybpDu8w50ks8i51Tr+NWMN5kpMcBjFIljw8 GOQrGalHk1IJ+kVfeRWvLWBusYct/FUo+WbMhH/fxaVlgNl03tCafohvTx8Gn4mk TDosq3ACpH+ok1IZUQzOVlRmsyC9AaUF/6Ib+b0CgVxHep36F5OQtFcxDLKzUn50 BNAS1lHqS4qrcP6PRX+ZRcpwc/NKucffEnM8wyL49PL7OW7thua/Jtf9BgSgNMuS DCUP7UWYAazYW8rtMsB0Upt0SWxZzKWlZeHVvq+DgXi5XlzA8+pf14/+5jsFTJvW AoTsknEfOU+szUfgiKRtd+zzKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJAoar1k ycfMpeUrhuTjOT5j1M9tMB8GA1UdIwQYMBaAFG7udxuzzn6Y2zlgxNgvdCos9+hJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODgyNy8zQzdDQjQ1MDFC RTgxMUVDQkJBNjVCNTBDNEY5QUUwMi9idTUzRzdQT2ZwamJPV0RFMkM5MEtpejM2 RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J1NTNHN1BPZnBqYk9XREUyQzkwS2l6MzZFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODgyNy8zQzdDQjQ1MDFCRTgxMUVDQkJBNjVCNTBDNEY5QUUwMi9idTUzRzdQT2Zw amJPV0RFMkM5MEtpejM2RWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCgo6mqk0DhU6B9QZgW2vvels6seOc2ZvaVJ6V4cJV4UPP1cBbYXhA eyAiApdfdP2QErR/MPS7dy0G32ZT64ekoyPfOcxDMHCcV77ZqZJ60JFvIStB0WqZ VlC5mCqLrfeWMbb/4AFkQY6dO9gRncFbkzgQJHyjHBH92zykxF4oKgyq4eCcKFYR aI8xJaESmxMk9tFFYC7icRrMnwU0w/t8CmQYzhETtA/24jGUOMM5DZexYqELJMum 8MV5HenuNfoFHFGvy3GE1W5I2nvbFDLi5kgI896B71hPn0LA7h5IH27c4Mnu7Z2w gl5r58LsbybCZeLiZZvrfv2j/a+ObkHa -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:31 2024 by rpki-client on console-fra.rpki-client.org