$ rpki-client -vvf rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft File: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft (raw, json) Hash identifier: FHJFc0E44VRQ+csuOQYDRnYf0+6zWtC5rgOIYcTTZxE= Subject key identifier: 29:8F:9E:28:DC:64:12:41:2F:6E:41:EE:69:07:2A:8F:52:56:31:3F Authority key identifier: 05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 Certificate issuer: /CN=A915E575/serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Certificate serial: 035C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft Manifest number: 0358 Signing time: Sat 23 Nov 2024 00:32:06 +0000 Manifest this update: Sat 23 Nov 2024 00:32:06 +0000 Manifest next update: Sat 30 Nov 2024 00:32:06 +0000 Files and hashes: 1: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl (hash: p4Vo0gnMI+ipw0Inl/AUagT/xCLDc6xLVprMOFkAhGc=) 2: D86008008FAA11ECB0728B0FC4F9AE02.roa (hash: RsMIAFkbpydCDPohis69ldhzmBpnzB7IY6eRBCKfLas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 860 (0x35c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E575/serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Validity Not Before: Nov 23 00:32:06 2024 GMT Not After : Nov 30 00:32:06 2024 GMT Subject: CN=67412286-0f8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0e:60:3e:d8:3c:e0:45:2b:9e:99:c5:d6:26: 7b:25:41:34:8a:b5:1c:f3:5b:57:9d:64:95:ea:f9: c8:36:92:14:b3:9e:c8:53:ce:0b:31:71:a8:0e:30: 61:04:b7:c5:11:c0:d9:c3:5d:63:ee:3e:79:5a:8c: c6:08:32:ba:7f:76:98:27:91:c9:a8:ac:2a:02:48: 94:8c:69:7a:31:ba:77:87:fd:65:4b:bf:99:d3:74: d7:80:f0:fa:e5:32:48:0d:e5:d5:fd:d7:ef:6b:6a: 02:19:e1:91:92:87:1a:27:7f:7d:e2:a2:cb:91:99: 8f:12:4b:22:c1:2a:b6:e5:40:26:70:2d:24:5c:f9: bc:09:86:a4:d6:0c:37:1d:3b:50:f7:0e:df:ad:e1: 22:e7:ff:a7:44:be:4e:69:cb:05:b5:ad:f6:f5:41: 6c:7a:ec:ef:2a:ef:be:df:85:9d:bb:7e:ea:e6:de: 4f:b5:fe:bb:06:1c:6b:a7:15:de:d6:e9:01:5f:74: 81:12:5a:f6:fe:ea:ce:fd:48:b5:48:78:94:22:c2: 20:cf:73:ff:02:68:7a:67:08:83:a5:83:40:04:44: 56:96:dd:91:13:51:32:5f:c2:c3:da:a4:ef:b7:fc: 67:f2:39:da:11:02:d8:9e:3d:b5:b8:82:03:7b:5c: 6c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:8F:9E:28:DC:64:12:41:2F:6E:41:EE:69:07:2A:8F:52:56:31:3F X509v3 Authority Key Identifier: keyid:05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:db:3e:05:1f:98:0f:27:7b:fe:fa:46:71:94:57:44:e3:a9: 6b:4b:85:8e:35:9f:e5:47:be:7b:f8:74:ff:fe:80:4d:2e:5b: 76:b5:b5:23:a2:28:e5:4b:08:ae:7a:3e:af:12:df:2f:fc:7a: 24:19:ee:f6:81:6a:70:93:0b:95:32:25:81:20:58:32:3e:c5: 62:28:3f:57:b2:a0:3b:29:bd:e3:3e:d4:2c:62:83:2e:64:62: 9f:c1:70:d0:bd:8e:bb:dc:89:12:d6:a9:99:68:30:a9:1a:57: c6:f4:1f:72:c7:36:a7:0e:b8:3c:3b:ce:d6:a5:38:c2:e1:1b: ea:29:49:75:63:8d:8b:68:de:30:22:ee:b5:10:04:36:88:0a: 0d:cf:07:08:db:f3:5d:bb:80:a1:56:1f:70:53:9b:9a:bc:8b: 46:97:f7:82:27:80:6d:6f:1f:8d:4c:c8:26:ca:07:fe:fe:ce: 58:95:1f:6d:f4:10:ef:c9:1d:90:5c:67:f9:5c:b4:de:48:38: d9:1b:b0:a8:56:68:e6:94:bd:26:ae:39:68:19:21:7c:e5:99: ba:39:29:6e:04:47:c2:23:c7:9a:ca:2f:b4:87:0d:11:fe:9e: fa:55:fb:92:f3:97:d5:31:f5:ae:24:5b:44:c4:2c:e1:40:c0: 78:ca:00:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU1NzUxMTAvBgNVBAUTKDA1Rjg0MTlBRjlBQTMxODRFQUIxRkY4NzQyNEE2QUUz M0NGNzMyQzQwHhcNMjQxMTIzMDAzMjA2WhcNMjQxMTMwMDAzMjA2WjAYMRYwFAYD VQQDEw02NzQxMjI4Ni0wZjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1A5gPtg84EUrnpnF1iZ7JUE0irUc81tXnWSV6vnINpIUs57IU84LMXGoDjBh BLfFEcDZw11j7j55WozGCDK6f3aYJ5HJqKwqAkiUjGl6Mbp3h/1lS7+Z03TXgPD6 5TJIDeXV/dfva2oCGeGRkocaJ3994qLLkZmPEksiwSq25UAmcC0kXPm8CYak1gw3 HTtQ9w7freEi5/+nRL5OacsFta329UFseuzvKu++34Wdu37q5t5Ptf67BhxrpxXe 1ukBX3SBElr2/urO/Ui1SHiUIsIgz3P/Amh6ZwiDpYNABERWlt2RE1EyX8LD2qTv t/xn8jnaEQLYnj21uIIDe1xsrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCmPnijc ZBJBL25B7mkHKo9SVjE/MB8GA1UdIwQYMBaAFAX4QZr5qjGE6rH/h0JKauM89zLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTU3NS9GMEIyNDIxNDhG QTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1ZVHFzZi1IUWtwcTR6ejNN c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JmaEJtdm1xTVlUcXNmLUhRa3BxNHp6M01zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTU3NS9GMEIyNDIxNDhGQTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1Z VHFzZi1IUWtwcTR6ejNNc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+2z4FH5gPJ3v++kZxlFdE46lrS4WONZ/lR757+HT//oBNLlt2tbUj oijlSwiuej6vEt8v/HokGe72gWpwkwuVMiWBIFgyPsViKD9XsqA7Kb3jPtQsYoMu ZGKfwXDQvY673IkS1qmZaDCpGlfG9B9yxzanDrg8O87WpTjC4RvqKUl1Y42LaN4w Iu61EAQ2iAoNzwcI2/Ndu4ChVh9wU5uavItGl/eCJ4Btbx+NTMgmygf+/s5YlR9t 9BDvyR2QXGf5XLTeSDjZG7CoVmjmlL0mrjloGSF85Zm6OSluBEfCI8eayi+0hw0R /p76VfuS85fVMfWuJFtExCzhQMB4ygD4 -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:22 2024 by rpki-client on console-ams.rpki-client.org