$ rpki-client -vvf rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft File: bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft (raw, json) Hash identifier: phZnkERTQSMnpLKiEOiq8aOaKaog/90tkkMoE4h8lMI= Subject key identifier: 17:3B:0B:60:E2:BB:21:98:73:3D:30:75:4F:A1:4B:2F:7A:24:7B:2F Authority key identifier: 6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 Certificate issuer: /CN=A91240E6/serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Certificate serial: 25B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft Manifest number: 259F Signing time: Fri 22 Nov 2024 15:43:21 +0000 Manifest this update: Fri 22 Nov 2024 15:43:20 +0000 Manifest next update: Fri 29 Nov 2024 15:43:20 +0000 Files and hashes: 1: bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl (hash: z1aGVdqr9vTgnFqOY1SO7rMieWu0ClUn+XYbrBLlnpU=) 2: 8A721F4EB10C11E5BB6B2A16C4F9AE02.roa (hash: bCqdq6Z6AyxbXSebcht3seS/C9Ype0jJA9pNV7rNcXk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:43:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9654 (0x25b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91240E6/serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Validity Not Before: Nov 22 15:43:20 2024 GMT Not After : Nov 29 15:43:20 2024 GMT Subject: CN=6740a698-e9bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4a:e8:bf:b8:17:9a:8b:11:f5:d8:9c:b8:0f: 27:47:91:40:17:65:0b:75:83:fc:26:0e:3b:1c:59: 16:cc:47:79:76:43:bc:5d:01:02:2d:b6:6b:28:03: 47:9f:1c:95:be:2b:c5:88:4b:8a:cf:c2:d4:57:5d: d2:04:14:1c:c2:bc:f8:c8:9d:eb:7b:27:44:84:33: e2:a6:49:fa:13:b6:2a:d3:5a:f9:4d:e9:04:16:0f: 0b:27:93:44:46:b0:0a:f7:db:61:6d:a3:1f:9b:0e: 93:7f:03:f1:88:a4:53:2d:6c:d1:c5:ef:8e:12:fa: 55:73:72:f3:d7:d2:a4:38:8d:ec:ac:6e:52:4e:80: af:5c:b4:32:af:37:b5:de:84:ad:15:ad:70:da:36: a9:02:dc:98:e1:8b:3a:f2:0d:d0:a8:7a:f4:bf:a4: 13:94:ab:e8:8e:f2:af:f1:c3:09:8f:ff:39:64:1c: 07:51:03:19:b6:ad:aa:31:6b:97:a7:74:83:68:a2: d4:dd:b2:c8:52:f3:4b:ab:31:01:98:f1:e3:f3:0f: f5:d1:52:06:5d:18:57:37:46:06:f3:07:10:14:5c: 19:53:43:6d:38:19:c2:62:a7:6d:2a:66:cb:69:fb: dd:6a:63:73:9c:b1:69:45:90:8b:24:b7:54:00:a6: dd:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:3B:0B:60:E2:BB:21:98:73:3D:30:75:4F:A1:4B:2F:7A:24:7B:2F X509v3 Authority Key Identifier: keyid:6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:7f:55:95:d7:0f:4a:39:ab:ba:6a:3a:f3:c8:4e:3c:40:b9: 38:ed:75:e5:3d:1e:ec:08:4a:7b:65:79:be:56:ba:2e:8e:3f: 71:ed:a1:58:6a:89:12:a9:e3:31:d2:8f:9f:b8:1a:d5:f4:23: 1a:6d:b6:48:2b:2b:2f:13:67:b2:32:d9:8d:84:16:c1:b6:5a: e9:76:a0:94:ce:6c:a2:f6:11:9b:e9:e0:6f:ea:f6:8b:52:85: 39:6d:0e:27:a9:a9:84:f6:37:eb:94:d5:2d:fe:40:6d:dc:e6: 44:01:d1:0a:f9:7f:7d:8c:83:b6:44:83:b2:01:78:83:21:15: 8c:0c:b8:19:72:65:54:8e:a2:90:91:55:ce:74:51:fc:8a:f4: e1:e7:ea:19:7d:3c:d4:8b:c7:b1:2b:df:5a:de:ec:38:f3:06: d8:e5:12:34:ba:8f:57:50:67:56:76:65:a4:8e:dc:f8:16:37: ea:49:6e:0f:ec:35:4f:d0:f7:77:56:11:aa:bd:32:b5:a4:28: fa:2b:cd:4d:be:27:d2:f7:ec:c1:10:6c:b6:33:1a:66:6c:d2: f1:50:02:d9:f8:10:77:3c:77:60:81:ef:86:05:32:b9:2c:56: 08:04:88:11:4b:3f:7a:5b:6b:08:21:f3:85:de:51:24:72:64: 92:ad:62:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQwRTYxMTAvBgNVBAUTKDZEQ0U1MkY5QTIyOENCRjZGMzBDRDU1RDQzMzg0RDEy Njg0ODdCNjUwHhcNMjQxMTIyMTU0MzIwWhcNMjQxMTI5MTU0MzIwWjAYMRYwFAYD VQQDEw02NzQwYTY5OC1lOWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvErov7gXmosR9dicuA8nR5FAF2ULdYP8Jg47HFkWzEd5dkO8XQECLbZrKANH nxyVvivFiEuKz8LUV13SBBQcwrz4yJ3reydEhDPipkn6E7Yq01r5TekEFg8LJ5NE RrAK99thbaMfmw6TfwPxiKRTLWzRxe+OEvpVc3Lz19KkOI3srG5SToCvXLQyrze1 3oStFa1w2japAtyY4Ys68g3QqHr0v6QTlKvojvKv8cMJj/85ZBwHUQMZtq2qMWuX p3SDaKLU3bLIUvNLqzEBmPHj8w/10VIGXRhXN0YG8wcQFFwZU0NtOBnCYqdtKmbL afvdamNznLFpRZCLJLdUAKbdAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBc7C2Di uyGYcz0wdU+hSy96JHsvMB8GA1UdIwQYMBaAFG3OUvmiKMv28wzVXUM4TRJoSHtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDBFNi82NjA3NDJDOEZE MjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lfYnpETlZkUXpoTkVtaEll MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjNVMtYUlveV9iekROVmRRemhORW1oSWUyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDBFNi82NjA3NDJDOEZEMjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lf YnpETlZkUXpoTkVtaEllMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9f1WV1w9KOau6ajrzyE48QLk47XXlPR7sCEp7ZXm+Vroujj9x7aFY aokSqeMx0o+fuBrV9CMabbZIKysvE2eyMtmNhBbBtlrpdqCUzmyi9hGb6eBv6vaL UoU5bQ4nqamE9jfrlNUt/kBt3OZEAdEK+X99jIO2RIOyAXiDIRWMDLgZcmVUjqKQ kVXOdFH8ivTh5+oZfTzUi8exK99a3uw48wbY5RI0uo9XUGdWdmWkjtz4FjfqSW4P 7DVP0Pd3VhGqvTK1pCj6K81NvifS9+zBEGy2MxpmbNLxUALZ+BB3PHdgge+GBTK5 LFYIBIgRSz96W2sIIfOF3lEkcmSSrWLC -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:39 2024 by rpki-client on console-fra.rpki-client.org