$ rpki-client -vvf rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft File: bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft (raw, json) Hash identifier: CKmtBchLjkbuPT/h0HWTi/ZqbXa3LEn3BzWez6ag4Ds= Subject key identifier: 32:17:FA:EB:01:7F:9B:7A:55:E8:C4:B8:31:64:45:41:6A:C3:15:7F Authority key identifier: 6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D Certificate issuer: /CN=A9130A53/serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D Certificate serial: 089A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft Manifest number: 088E Signing time: Fri 22 Nov 2024 20:19:13 +0000 Manifest this update: Fri 22 Nov 2024 20:19:13 +0000 Manifest next update: Fri 29 Nov 2024 20:19:13 +0000 Files and hashes: 1: bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl (hash: E3LVKYNZdtI+efXxBGmNwrZbXj9GGpMePBuc/8ODjes=) 2: F36A0E2EAB4B11EAA2CA585BC4F9AE02.roa (hash: BidxYSVmBabzb42KTEQRZnYy7Sbks/SN1w8y9yUGtJQ=) 3: F2CD89AAAB4B11EAA2CA585BC4F9AE02.roa (hash: OlzMxXAfrSP6Nj86W0pq9Qh2aWjxJmFySgPE4i+83ow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:19:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2202 (0x89a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130A53/serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D Validity Not Before: Nov 22 20:19:13 2024 GMT Not After : Nov 29 20:19:13 2024 GMT Subject: CN=6740e741-612b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:26:12:38:49:bf:e5:83:b7:da:c9:5d:60:bb: d7:20:ba:80:a8:8e:51:e8:a6:c3:b6:0e:e6:53:74: dd:35:57:a0:3a:4b:cf:ee:d5:82:e6:dd:db:f1:1f: 2c:e1:e2:51:e5:2d:e4:f8:7d:09:b2:6d:17:66:6c: 55:80:61:98:99:a4:03:87:1d:d5:86:f3:05:25:f6: 43:f1:62:4a:cb:c4:28:31:96:97:cf:59:5f:c3:60: d3:9e:fd:ca:e4:40:44:c8:07:ac:00:28:db:ce:10: c3:fd:95:61:9f:3f:39:b8:37:ef:99:73:34:19:44: 11:6c:e3:d6:99:d5:79:b3:5d:ce:96:c7:f5:e5:ad: 51:83:02:41:58:ca:8a:46:f0:d7:99:81:34:1b:9e: 75:8d:aa:e0:5c:f2:c9:fa:96:e2:ca:10:8a:e2:75: 2e:95:37:19:29:7b:1b:f7:a7:f9:9b:99:9f:90:84: c0:40:15:de:f0:8a:17:b1:79:db:b8:c9:a4:e3:e9: 2a:7d:58:9f:b6:7d:67:41:83:56:cd:6b:77:94:6f: fb:d3:f5:a1:87:28:74:4a:5d:48:94:93:89:8d:0c: 9e:bc:d3:fe:10:06:3d:45:b9:e5:0a:8b:2c:88:1f: 76:ad:ae:a3:5a:93:78:6b:4c:07:07:1b:17:b2:33: 82:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:17:FA:EB:01:7F:9B:7A:55:E8:C4:B8:31:64:45:41:6A:C3:15:7F X509v3 Authority Key Identifier: keyid:6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:7d:d0:a9:5a:03:8a:73:95:4c:64:1e:4e:0a:e0:a4:1b:1c: 1c:37:1d:bd:32:5e:2b:69:26:29:9c:c7:78:75:ec:b9:da:a1: b7:49:e0:f0:aa:b0:2d:ae:3c:37:26:82:5e:06:98:09:ca:00: 0e:fe:90:6f:71:16:df:9a:12:65:ea:6e:9b:d5:32:5e:0a:52: 8f:aa:ad:4b:e2:cf:57:73:f4:68:61:82:1b:fb:75:df:ea:39: 54:77:9d:c6:2f:00:6b:ea:e5:34:a2:eb:11:1a:45:a4:87:dc: 37:95:2c:b8:d8:01:a6:a3:db:ef:cc:e4:cc:e1:48:c2:93:d7: a7:65:76:d8:c1:ce:28:e5:d8:89:2d:5b:82:76:16:e2:67:62: 63:f5:f8:31:fe:08:84:6c:0a:12:63:85:14:a7:9f:80:04:84: 72:a6:c6:03:97:4d:b7:8d:87:55:25:30:6e:39:67:80:a1:75: 45:36:69:b6:7e:af:48:bc:20:d2:4e:ca:6f:2c:6e:c0:0c:b2: 2b:3d:ae:ae:74:e4:3f:1b:c8:e9:82:38:07:f7:e4:91:96:57: e7:2e:6f:88:4c:55:18:d4:1d:5c:be:3d:6b:7e:57:ee:18:3e: 6f:44:19:88:8b:8a:ef:a1:cb:54:f4:76:60:27:e2:eb:6b:99: b4:cd:61:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBBNTMxMTAvBgNVBAUTKDZFNEU2OUJFMTNENjEzQTcwMjc0QzBDRTc3MzgzOTIz RjE1NjI3MkQwHhcNMjQxMTIyMjAxOTEzWhcNMjQxMTI5MjAxOTEzWjAYMRYwFAYD VQQDEw02NzQwZTc0MS02MTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtyYSOEm/5YO32sldYLvXILqAqI5R6KbDtg7mU3TdNVegOkvP7tWC5t3b8R8s 4eJR5S3k+H0Jsm0XZmxVgGGYmaQDhx3VhvMFJfZD8WJKy8QoMZaXz1lfw2DTnv3K 5EBEyAesACjbzhDD/ZVhnz85uDfvmXM0GUQRbOPWmdV5s13Olsf15a1RgwJBWMqK RvDXmYE0G551jargXPLJ+pbiyhCK4nUulTcZKXsb96f5m5mfkITAQBXe8IoXsXnb uMmk4+kqfViftn1nQYNWzWt3lG/70/Whhyh0Sl1IlJOJjQyevNP+EAY9RbnlCoss iB92ra6jWpN4a0wHBxsXsjOCsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIX+usB f5t6VejEuDFkRUFqwxV/MB8GA1UdIwQYMBaAFG5Oab4T1hOnAnTAznc4OSPxVict MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEE1My83MUI3RDQ3MEFC NEExMUVBODlEMTYzNTlDNEY5QUUwMi9iazVwdmhQV0U2Y0NkTURPZHpnNUlfRldK eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JrNXB2aFBXRTZjQ2RNRE9kemc1SV9GV0p5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEE1My83MUI3RDQ3MEFCNEExMUVBODlEMTYzNTlDNEY5QUUwMi9iazVwdmhQV0U2 Y0NkTURPZHpnNUlfRldKeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOfdCpWgOKc5VMZB5OCuCkGxwcNx29Ml4raSYpnMd4dey52qG3SeDw qrAtrjw3JoJeBpgJygAO/pBvcRbfmhJl6m6b1TJeClKPqq1L4s9Xc/RoYYIb+3Xf 6jlUd53GLwBr6uU0ousRGkWkh9w3lSy42AGmo9vvzOTM4UjCk9enZXbYwc4o5diJ LVuCdhbiZ2Jj9fgx/giEbAoSY4UUp5+ABIRypsYDl023jYdVJTBuOWeAoXVFNmm2 fq9IvCDSTspvLG7ADLIrPa6udOQ/G8jpgjgH9+SRllfnLm+ITFUY1B1cvj1rflfu GD5vRBmIi4rvoctU9HZgJ+Lra5m0zWFi -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:23 2024 by rpki-client on console-ams.rpki-client.org