$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft File: bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft (raw, json) Hash identifier: UeSSbkhWUMSFt3A9mZBdOL2opO0CDqdlwnfejgVVHck= Subject key identifier: FB:FE:D2:5C:46:64:C4:7D:2C:96:DB:02:FA:1D:E9:8D:2F:19:E7:1C Authority key identifier: 6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C Certificate issuer: /CN=A9148F80/serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Certificate serial: 0622 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft Manifest number: 061C Signing time: Wed 20 Nov 2024 22:12:40 +0000 Manifest this update: Wed 20 Nov 2024 22:12:40 +0000 Manifest next update: Wed 27 Nov 2024 22:12:40 +0000 Files and hashes: 1: bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl (hash: 1x7Bpvo2JFtOpTUY4GJBe079p9+xod6P1nntmxXDAUQ=) 2: 1C93BF747CD011EB9F876E78C4F9AE02.roa (hash: 1nhYzuuN3iiBPUuYvjPfED8ITVM34g4WPuGCXKX1a14=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1570 (0x622) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F80/serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Validity Not Before: Nov 20 22:12:40 2024 GMT Not After : Nov 27 22:12:40 2024 GMT Subject: CN=673e5ed8-c3af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5f:e9:02:2f:1d:a5:51:40:56:3d:03:2e:c6: b7:e5:66:4c:d2:9d:5d:57:be:9d:3a:d0:19:9f:bd: 28:ef:10:fb:17:ad:75:fa:f2:61:ba:7b:4e:45:24: fb:bb:95:52:ef:f0:1c:88:79:e1:06:2e:b7:a0:67: 7f:2b:b8:de:79:1f:41:50:b5:3c:8f:b2:0f:ad:39: 70:cc:1e:7b:a7:e6:13:c2:98:86:5c:8e:f6:21:6b: 5a:bc:d6:1f:a2:90:4b:b2:0f:e7:99:dc:48:d1:17: 59:60:b7:7e:78:ba:53:8c:ad:05:13:06:ec:8a:2a: 5a:a3:ae:dc:dc:f7:aa:3d:f1:32:ff:80:fa:f1:59: b6:a9:7d:72:8a:a0:17:f6:2c:fc:87:bf:12:c9:44: 22:57:2d:39:b4:7e:70:bb:c1:eb:d6:a8:d0:43:aa: ee:90:23:35:0d:26:d0:67:35:fe:e3:35:a4:c0:d0: 1c:57:32:f6:9f:5b:ff:28:5a:6f:81:5e:08:08:d9: b7:ed:76:16:4e:c3:ed:35:05:14:85:a9:eb:87:88: 09:d5:63:3b:12:b2:ce:9e:e4:69:54:a2:6e:24:2b: e5:4b:94:83:6e:67:ce:84:95:9b:0f:72:91:d8:14: 7d:5c:f9:71:af:df:7b:9d:17:09:c0:20:7a:17:39: 1c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:FE:D2:5C:46:64:C4:7D:2C:96:DB:02:FA:1D:E9:8D:2F:19:E7:1C X509v3 Authority Key Identifier: keyid:6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:25:c5:8d:82:c9:a2:66:bd:0b:ec:96:37:98:e8:ea:5e:ce: af:f0:9c:a5:15:f4:60:43:f3:86:70:f1:fd:fe:25:80:98:e5: ca:85:e5:63:31:3d:07:a0:aa:90:9e:3e:db:b6:0e:46:7a:60: 1c:9d:d7:e2:67:6b:54:6d:0c:b8:f8:44:53:df:0c:fa:63:52: 0c:04:92:c1:b3:38:b4:4e:f3:1f:85:07:d4:cb:0c:46:0e:8e: 4b:a9:3e:55:7c:7c:a8:67:04:bc:38:00:a3:9c:e7:0c:cf:ff: 15:fd:67:b1:0d:59:43:c2:e0:1b:86:51:e2:e6:73:b7:7f:08: b4:f6:03:6c:88:61:e8:4c:99:00:2a:74:24:5a:28:af:3c:09: 52:d0:3d:94:b5:48:53:92:de:4b:55:86:32:0d:bc:fa:3c:48: 11:59:16:d1:6e:18:9f:2c:b3:ae:76:bb:35:25:90:fe:6e:7d: 78:3c:e0:c2:1b:7f:2a:1e:8d:ce:aa:29:9c:de:e6:90:f0:1e: f2:48:23:f7:c2:d6:67:60:89:70:41:c7:8d:78:98:13:86:94: 81:38:7e:6f:07:fc:a2:5b:76:bf:fc:09:bb:73:3d:95:21:b6: ac:42:53:43:ec:1a:d8:cd:34:27:29:b3:4f:88:b2:a6:da:30: 80:11:93:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGODAxMTAvBgNVBAUTKDZDQTJDRkE2ODhCREY5RTJENjU2MTYwODY3N0EzMEM5 MTUyNDNEMEMwHhcNMjQxMTIwMjIxMjQwWhcNMjQxMTI3MjIxMjQwWjAYMRYwFAYD VQQDEw02NzNlNWVkOC1jM2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuF/pAi8dpVFAVj0DLsa35WZM0p1dV76dOtAZn70o7xD7F611+vJhuntORST7 u5VS7/AciHnhBi63oGd/K7jeeR9BULU8j7IPrTlwzB57p+YTwpiGXI72IWtavNYf opBLsg/nmdxI0RdZYLd+eLpTjK0FEwbsiipao67c3PeqPfEy/4D68Vm2qX1yiqAX 9iz8h78SyUQiVy05tH5wu8Hr1qjQQ6rukCM1DSbQZzX+4zWkwNAcVzL2n1v/KFpv gV4ICNm37XYWTsPtNQUUhanrh4gJ1WM7ErLOnuRpVKJuJCvlS5SDbmfOhJWbD3KR 2BR9XPlxr997nRcJwCB6FzkcAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPv+0lxG ZMR9LJbbAvod6Y0vGeccMB8GA1UdIwQYMBaAFGyiz6aIvfni1lYWCGd6MMkVJD0M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY4MC8wNzFERUE0MDdD Q0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1lTFdWaFlJWjNvd3lSVWtQ UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLTFBwb2k5LWVMV1ZoWUlaM293eVJVa1BRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEY4MC8wNzFERUE0MDdDQ0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1l TFdWaFlJWjNvd3lSVWtQUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1JcWNgsmiZr0L7JY3mOjqXs6v8JylFfRgQ/OGcPH9/iWAmOXKheVj MT0HoKqQnj7btg5GemAcndfiZ2tUbQy4+ERT3wz6Y1IMBJLBszi0TvMfhQfUywxG Do5LqT5VfHyoZwS8OACjnOcMz/8V/WexDVlDwuAbhlHi5nO3fwi09gNsiGHoTJkA KnQkWiivPAlS0D2UtUhTkt5LVYYyDbz6PEgRWRbRbhifLLOudrs1JZD+bn14PODC G38qHo3Oqimc3uaQ8B7ySCP3wtZnYIlwQceNeJgThpSBOH5vB/yiW3a//Am7cz2V IbasQlND7BrYzTQnKbNPiLKm2jCAEZP5 -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:39 2024 by rpki-client on console-ams.rpki-client.org