$ rpki-client -vvf rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft File: baFr8M0J73aPkCE7ZtjLw86TQgY.mft (raw, json) Hash identifier: 2zRbpTEhR1kV2YuGAMLrlmXHsDpD8HcZmv2a/4pwQu4= Subject key identifier: 74:6C:73:93:E2:CE:18:BC:4E:19:BA:CE:8A:31:99:7A:06:29:17:72 Authority key identifier: 6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 Certificate issuer: /CN=A9151B71/serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Certificate serial: 06E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft Manifest number: 06E0 Signing time: Fri 22 Nov 2024 21:37:13 +0000 Manifest this update: Fri 22 Nov 2024 21:37:13 +0000 Manifest next update: Fri 29 Nov 2024 21:37:13 +0000 Files and hashes: 1: baFr8M0J73aPkCE7ZtjLw86TQgY.crl (hash: dx/020eJ7vkkYiSMDKVvEyv1YqbJhUEGfbn85BMOe88=) 2: 0A866A522EAB11EBAB198239C4F9AE02.roa (hash: y8a8NpATY6YYaN1sCCi6QGlP5oTWUdFfM/H2gKyeO+A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1769 (0x6e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151B71/serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Validity Not Before: Nov 22 21:37:13 2024 GMT Not After : Nov 29 21:37:13 2024 GMT Subject: CN=6740f989-cf33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ce:50:ad:4a:6e:0d:8a:79:12:e7:6d:9a:d8: 90:82:1d:fd:00:2e:9d:a2:8f:73:1e:54:66:c8:b1: b7:45:5b:42:09:be:70:2e:31:17:b4:92:b3:70:50: d1:51:dd:dc:9b:33:b2:d3:23:21:a4:21:19:a6:0b: bb:d4:9d:09:38:b2:eb:f1:2e:38:0c:76:34:8b:fe: 78:36:24:e1:00:44:85:ba:75:7b:b5:f4:15:7c:3c: f9:a8:89:61:ac:07:6a:9e:dd:91:a3:32:4f:11:76: da:b1:b1:27:31:f3:25:34:ec:c9:c5:6a:47:ae:63: 37:90:87:e2:03:fb:d7:03:c0:36:eb:25:0d:b0:a2: ec:a9:ef:37:42:5e:ae:53:e9:0d:6e:d5:58:07:57: 75:3e:2e:9d:ef:04:f8:e3:f7:8e:f6:3d:fb:f2:11: 59:6d:4c:6e:c9:80:eb:ab:0c:06:b3:e2:85:f9:d3: 99:08:6f:53:18:8a:cf:94:5c:1d:57:8d:5c:e0:d5: 9d:b7:77:ec:d7:77:8a:9c:8a:c4:52:62:88:d5:36: 2e:b4:45:0c:08:35:2a:1e:19:8f:8a:3a:7d:b2:71: 70:95:0d:f3:77:15:84:47:cb:71:fa:2d:66:3d:ed: 72:37:72:c0:03:95:90:47:05:b1:e3:4d:44:1a:e6: bc:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:6C:73:93:E2:CE:18:BC:4E:19:BA:CE:8A:31:99:7A:06:29:17:72 X509v3 Authority Key Identifier: keyid:6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:30:0c:87:a0:71:46:55:b5:cd:45:b2:1e:88:c3:fc:bc:ee: d1:b5:bb:e3:f0:46:53:05:d4:29:22:f5:95:32:0e:d4:de:a5: 94:38:0c:ec:28:0c:49:b9:98:19:cc:0b:7c:28:28:ba:0a:27: 82:48:a5:9d:88:c0:40:e6:84:fd:26:b2:53:93:8b:2e:c0:97: 0e:27:ad:3f:fa:8e:52:ad:2c:73:00:5b:86:e6:44:05:4b:6c: 9c:51:33:9d:ed:af:c3:c8:59:5b:ce:b5:52:63:77:1b:18:ff: 5a:8e:ea:27:aa:f7:b1:d9:d6:3a:c0:13:09:4d:e8:28:58:1d: 16:e3:50:b3:67:22:ea:23:45:a8:1d:ce:39:b6:f5:70:b7:34: 21:fa:20:6e:51:2d:5d:fc:19:c3:5e:00:d9:68:dd:0e:16:71: 6d:17:47:76:ba:e8:1e:03:ad:9a:77:c0:7e:b5:83:02:55:71: 01:50:e9:74:b0:7f:b6:54:dc:d6:32:bb:e1:99:08:29:97:63: 4c:b2:b9:05:60:76:56:22:9e:2c:ec:8e:56:45:6a:6d:a6:55: a8:80:17:b0:39:51:b3:03:a3:cc:33:58:93:1a:af:37:13:10: 38:24:e4:db:05:ce:7a:74:1d:49:97:bf:a9:ce:ff:1c:2b:18: b9:4a:4f:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFCNzExMTAvBgNVBAUTKDZEQTE2QkYwQ0QwOUVGNzY4RjkwMjEzQjY2RDhDQkMz Q0U5MzQyMDYwHhcNMjQxMTIyMjEzNzEzWhcNMjQxMTI5MjEzNzEzWjAYMRYwFAYD VQQDEw02NzQwZjk4OS1jZjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwM5QrUpuDYp5EudtmtiQgh39AC6doo9zHlRmyLG3RVtCCb5wLjEXtJKzcFDR Ud3cmzOy0yMhpCEZpgu71J0JOLLr8S44DHY0i/54NiThAESFunV7tfQVfDz5qIlh rAdqnt2RozJPEXbasbEnMfMlNOzJxWpHrmM3kIfiA/vXA8A26yUNsKLsqe83Ql6u U+kNbtVYB1d1Pi6d7wT44/eO9j378hFZbUxuyYDrqwwGs+KF+dOZCG9TGIrPlFwd V41c4NWdt3fs13eKnIrEUmKI1TYutEUMCDUqHhmPijp9snFwlQ3zdxWER8tx+i1m Pe1yN3LAA5WQRwWx401EGua8vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRsc5Pi zhi8Thm6zooxmXoGKRdyMB8GA1UdIwQYMBaAFG2ha/DNCe92j5AhO2bYy8POk0IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUI3MS85RkQ1RjgwRTJF QTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjczYVBrQ0U3WnRqTHc4NlRR Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhRnI4TTBKNzNhUGtDRTdadGpMdzg2VFFnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUI3MS85RkQ1RjgwRTJFQTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjcz YVBrQ0U3WnRqTHc4NlRRZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArMAyHoHFGVbXNRbIeiMP8vO7Rtbvj8EZTBdQpIvWVMg7U3qWUOAzs KAxJuZgZzAt8KCi6CieCSKWdiMBA5oT9JrJTk4suwJcOJ60/+o5SrSxzAFuG5kQF S2ycUTOd7a/DyFlbzrVSY3cbGP9ajuonqvex2dY6wBMJTegoWB0W41CzZyLqI0Wo Hc45tvVwtzQh+iBuUS1d/BnDXgDZaN0OFnFtF0d2uugeA62ad8B+tYMCVXEBUOl0 sH+2VNzWMrvhmQgpl2NMsrkFYHZWIp4s7I5WRWptplWogBewOVGzA6PMM1iTGq83 ExA4JOTbBc56dB1Jl7+pzv8cKxi5Sk+F -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:39 2024 by rpki-client on console-ams.rpki-client.org