$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: V4pkdLHNAxlEzQhnEmkBg3AfRhk9EScNu+QiC14H8h8= Subject key identifier: 4E:96:26:88:CB:3D:0C:CF:65:B7:B5:EE:6C:DE:BA:04:40:3B:0E:B9 Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: E9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: E7 Signing time: Thu 21 Nov 2024 03:33:13 +0000 Manifest this update: Thu 21 Nov 2024 03:33:12 +0000 Manifest next update: Thu 28 Nov 2024 03:33:12 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: WvoFi9drAUwjPnaWDekhhvC2hnCLwk4q+/ydPVVm2vE=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: g/+jUDFbmU3qj9AfAKSl3kwzplQXj9NIVbGDOmw78Ds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Nov 21 03:33:12 2024 GMT Not After : Nov 28 03:33:12 2024 GMT Subject: CN=673ea9f9-d7aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:45:7d:c6:1d:22:53:0b:31:63:7c:38:4d:95: a2:9c:31:46:73:18:01:94:50:35:69:6b:23:46:c6: af:df:95:fd:8b:7c:79:13:37:57:07:5c:b6:01:f5: 25:9b:f6:d5:57:c9:68:f4:73:2e:50:37:15:4b:10: bd:28:0a:a0:b0:29:74:b5:16:44:0b:b7:d3:4e:82: c3:00:df:8e:86:37:76:9c:ec:e3:90:a9:dc:ae:5f: 53:d6:39:ec:27:2b:cc:00:e9:ac:78:aa:d3:11:38: 91:42:61:f3:4a:33:2f:f0:c1:06:f4:89:68:3c:60: 72:7d:b8:32:b5:a1:34:5c:4e:34:fc:45:74:19:7a: f4:17:7c:57:05:7a:49:74:c5:77:b5:93:0a:93:1d: 89:6e:1b:5a:79:d8:c8:2f:96:a4:d1:6b:9f:b2:40: 73:d3:95:32:6b:59:f8:71:f1:e8:88:6b:a7:37:d4: 24:71:b8:2e:1d:cc:d8:4e:3e:e9:89:d2:64:9f:d3: 54:5f:82:48:f6:45:cf:2c:8a:bd:9e:86:ef:cf:a1: 90:0f:a4:e2:af:57:0d:0e:c6:cc:d4:54:c8:9e:40: b0:b8:13:97:85:0e:1b:04:bf:67:1c:be:85:82:8c: 31:bb:9a:9f:9e:b1:62:33:72:58:bf:50:8f:af:fc: 15:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:96:26:88:CB:3D:0C:CF:65:B7:B5:EE:6C:DE:BA:04:40:3B:0E:B9 X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:b6:21:99:ad:2c:a8:6a:0c:fc:fa:7a:d0:5c:27:54:f7:e9: d9:28:c8:dd:39:bf:bb:fb:27:6f:2b:ec:f0:63:c6:d3:ef:fd: 30:53:82:ec:9b:55:2b:e8:fa:3c:1f:f8:7f:a2:ec:6f:13:b3: 2d:5b:af:51:43:36:7b:4c:a1:b8:32:66:60:93:05:63:12:9a: d4:05:92:bd:12:7f:4c:c8:66:b0:96:22:7d:f6:bc:b7:38:b7: 62:41:65:12:f5:d7:5f:8b:12:f4:02:cb:24:0b:52:81:98:03: 7d:4f:40:7f:7e:e5:9c:2d:11:96:2e:78:b1:58:4e:2a:90:cf: 79:a9:69:44:c0:c1:5f:e7:30:ae:da:a3:3b:26:0a:c1:2d:62: 88:da:9c:d7:b7:ff:9f:03:86:16:42:5f:3e:38:51:d4:51:d3: 20:c8:1d:91:57:b1:ee:4b:c4:91:64:7d:70:9f:76:71:1a:37: 4c:1a:22:39:47:d0:68:18:e3:05:c4:a1:23:69:81:b1:0c:89: 43:1b:0d:1d:d6:19:b4:3a:fe:07:81:da:eb:96:90:f9:fa:3b: b5:07:6b:c6:d6:8c:2e:6f:6a:5d:dc:ce:e5:ad:38:d6:4d:d1: 4e:9f:82:ce:04:17:46:9c:e1:7c:90:a3:5a:20:64:3a:6b:ff: 69:4e:86:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjQxMTIxMDMzMzEyWhcNMjQxMTI4MDMzMzEyWjAYMRYwFAYD VQQDEw02NzNlYTlmOS1kN2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kV9xh0iUwsxY3w4TZWinDFGcxgBlFA1aWsjRsav35X9i3x5EzdXB1y2AfUl m/bVV8lo9HMuUDcVSxC9KAqgsCl0tRZEC7fTToLDAN+Ohjd2nOzjkKncrl9T1jns JyvMAOmseKrTETiRQmHzSjMv8MEG9IloPGByfbgytaE0XE40/EV0GXr0F3xXBXpJ dMV3tZMKkx2JbhtaedjIL5ak0WufskBz05Uya1n4cfHoiGunN9QkcbguHczYTj7p idJkn9NUX4JI9kXPLIq9nobvz6GQD6Tir1cNDsbM1FTInkCwuBOXhQ4bBL9nHL6F gowxu5qfnrFiM3JYv1CPr/wV2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE6WJojL PQzPZbe17mzeugRAOw65MB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrtiGZrSyoagz8+nrQXCdU9+nZKMjdOb+7+ydvK+zwY8bT7/0wU4Ls m1Ur6Po8H/h/ouxvE7MtW69RQzZ7TKG4MmZgkwVjEprUBZK9En9MyGawliJ99ry3 OLdiQWUS9ddfixL0AsskC1KBmAN9T0B/fuWcLRGWLnixWE4qkM95qWlEwMFf5zCu 2qM7JgrBLWKI2pzXt/+fA4YWQl8+OFHUUdMgyB2RV7HuS8SRZH1wn3ZxGjdMGiI5 R9BoGOMFxKEjaYGxDIlDGw0d1hm0Ov4HgdrrlpD5+ju1B2vG1owub2pd3M7lrTjW TdFOn4LOBBdGnOF8kKNaIGQ6a/9pToa+ -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:55 2024 by rpki-client on console-fra.rpki-client.org