$ rpki-client -vvf rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft File: Bst2YhlvZE7eydz72HmbjHPjlwk.mft (raw, json) Hash identifier: r4udLFIEKb4VOEjfjEsWQOWvGZVy4/s2/PJNn4fiiyc= Subject key identifier: E9:C6:10:A6:34:FC:8D:F0:3B:B5:5A:3A:68:2A:BC:F1:3E:3D:3C:1E Authority key identifier: 06:CB:76:62:19:6F:64:4E:DE:C9:DC:FB:D8:79:9B:8C:73:E3:97:09 Certificate issuer: /CN=A9127C93/serialNumber=06CB7662196F644EDEC9DCFBD8799B8C73E39709 Certificate serial: 0188 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bst2YhlvZE7eydz72HmbjHPjlwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft Manifest number: 0183 Signing time: Sat 23 Nov 2024 02:01:48 +0000 Manifest this update: Sat 23 Nov 2024 02:01:47 +0000 Manifest next update: Sat 30 Nov 2024 02:01:47 +0000 Files and hashes: 1: Bst2YhlvZE7eydz72HmbjHPjlwk.crl (hash: Gd1ZA2TZUibJZOIYXQCeUyonGZXHA5GR+P3WxvtOYOc=) 2: 2965791E5F4011ED9361C246C4F9AE02.roa (hash: wcboBkBsiOUc1fILeS4MBz6tRlg1NvPPP97/P2NtfGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.crl rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bst2YhlvZE7eydz72HmbjHPjlwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127C93/serialNumber=06CB7662196F644EDEC9DCFBD8799B8C73E39709 Validity Not Before: Nov 23 02:01:47 2024 GMT Not After : Nov 30 02:01:47 2024 GMT Subject: CN=6741378b-4d36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a4:c5:a7:6f:3a:e3:c7:4a:61:76:47:fb:7d: c0:2f:c9:3a:3a:49:45:8b:3b:0e:56:83:35:71:5c: 46:cf:0e:2a:cf:e3:51:10:5b:a4:f5:eb:ee:29:a6: bd:98:1c:e8:9c:8b:af:c4:a5:2e:35:20:75:ce:93: 18:05:99:68:60:f3:c5:f5:fd:e9:c8:42:1e:62:6b: 7e:71:8d:d8:fb:53:a8:eb:94:97:0e:1b:9b:cb:90: e4:ac:78:86:5a:50:5a:16:2c:09:43:6a:b7:70:e6: ce:3c:49:a2:79:c4:28:15:b4:79:d3:82:b4:4d:87: bf:84:13:72:24:27:5c:22:f5:23:0d:ee:60:5d:6a: 28:b2:b2:f8:cf:76:6a:ee:f0:d6:fe:15:71:c4:5b: 20:f5:4f:ec:50:a0:e4:51:26:cd:c9:57:5c:ca:33: 3c:e2:4b:23:84:de:80:a0:23:a4:94:0f:c2:e4:6b: 1f:45:7d:97:83:a2:b0:32:c7:da:a0:46:ff:00:1e: 3c:0a:df:4e:82:b9:1f:70:66:1b:62:25:b0:a0:02: 29:2f:54:94:99:83:63:4b:dd:4c:b2:36:ff:d7:2c: 55:96:8e:a5:96:b7:7b:d1:c4:03:31:da:12:0e:70: b0:af:52:04:d7:45:4c:f3:69:6a:c8:99:a4:a3:96: 34:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:C6:10:A6:34:FC:8D:F0:3B:B5:5A:3A:68:2A:BC:F1:3E:3D:3C:1E X509v3 Authority Key Identifier: keyid:06:CB:76:62:19:6F:64:4E:DE:C9:DC:FB:D8:79:9B:8C:73:E3:97:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bst2YhlvZE7eydz72HmbjHPjlwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:94:e1:16:c9:9e:83:64:20:a4:51:e3:43:c2:7c:9f:71:c0: 08:81:67:df:55:27:3d:70:ff:fa:52:2a:8d:ae:1b:b6:f8:7a: 56:00:aa:51:fd:88:9b:8d:c3:68:f9:53:c2:63:da:46:fd:b6: c7:12:07:ef:51:b4:27:d0:01:03:bf:e2:ff:92:48:2a:54:d7: c0:eb:34:86:f4:ea:b5:cc:bb:c9:57:03:16:5f:3d:fe:05:f2: e1:99:ef:d7:f1:80:a0:64:78:8a:8a:ff:b1:a3:47:e7:fa:5b: c8:77:18:00:14:1f:d9:68:2f:04:7a:51:92:04:e5:8c:a1:83: 94:86:7a:50:b9:42:90:39:2d:3a:8f:77:7d:ef:d4:16:9c:b7: e7:b5:f7:f5:41:7b:27:9d:00:0f:74:27:c7:00:30:0d:4c:4c: 73:13:81:85:f4:14:ae:5e:ea:29:61:e6:f6:ab:38:ef:2b:18: 73:5a:dd:2f:bf:f8:0b:57:14:0a:2f:77:bb:f3:30:cf:c3:ec: 40:1a:90:50:88:df:4f:e7:19:7b:20:ee:02:45:bd:6f:56:84: 57:ff:c1:9a:b3:8f:7c:b4:4c:0d:ee:44:bd:a6:a7:e2:0a:96: e8:9c:bd:aa:c1:a0:cf:b6:58:9e:d4:d1:4b:44:e3:f4:a8:5f: 64:c6:ed:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdDOTMxMTAvBgNVBAUTKDA2Q0I3NjYyMTk2RjY0NEVERUM5RENGQkQ4Nzk5QjhD NzNFMzk3MDkwHhcNMjQxMTIzMDIwMTQ3WhcNMjQxMTMwMDIwMTQ3WjAYMRYwFAYD VQQDEw02NzQxMzc4Yi00ZDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqTFp28648dKYXZH+33AL8k6OklFizsOVoM1cVxGzw4qz+NREFuk9evuKaa9 mBzonIuvxKUuNSB1zpMYBZloYPPF9f3pyEIeYmt+cY3Y+1Oo65SXDhuby5DkrHiG WlBaFiwJQ2q3cObOPEmiecQoFbR504K0TYe/hBNyJCdcIvUjDe5gXWoosrL4z3Zq 7vDW/hVxxFsg9U/sUKDkUSbNyVdcyjM84ksjhN6AoCOklA/C5GsfRX2Xg6KwMsfa oEb/AB48Ct9OgrkfcGYbYiWwoAIpL1SUmYNjS91Msjb/1yxVlo6llrd70cQDMdoS DnCwr1IE10VM82lqyJmko5Y0JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnGEKY0 /I3wO7VaOmgqvPE+PTweMB8GA1UdIwQYMBaAFAbLdmIZb2RO3snc+9h5m4xz45cJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0M5My80MDIxQTRFNjVG MjQxMUVEQjgwQzE5MjFDNEY5QUUwMi9Cc3QyWWhsdlpFN2V5ZHo3MkhtYmpIUGps d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JzdDJZaGx2WkU3ZXlkejcySG1iakhQamx3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0M5My80MDIxQTRFNjVGMjQxMUVEQjgwQzE5MjFDNEY5QUUwMi9Cc3QyWWhsdlpF N2V5ZHo3MkhtYmpIUGpsd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChlOEWyZ6DZCCkUeNDwnyfccAIgWffVSc9cP/6UiqNrhu2+HpWAKpR /YibjcNo+VPCY9pG/bbHEgfvUbQn0AEDv+L/kkgqVNfA6zSG9Oq1zLvJVwMWXz3+ BfLhme/X8YCgZHiKiv+xo0fn+lvIdxgAFB/ZaC8EelGSBOWMoYOUhnpQuUKQOS06 j3d979QWnLfntff1QXsnnQAPdCfHADANTExzE4GF9BSuXuopYeb2qzjvKxhzWt0v v/gLVxQKL3e78zDPw+xAGpBQiN9P5xl7IO4CRb1vVoRX/8Gas498tEwN7kS9pqfi CpbonL2qwaDPtlie1NFLROP0qF9kxu0j -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:45 2024 by rpki-client on console-fra.rpki-client.org