$ rpki-client -vvf rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft File: bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft (raw, json) Hash identifier: Vs5lvJ5tFy2Dy71OFawbXicClQMrNwXvubjT0nr0A/E= Subject key identifier: C7:DE:92:08:EF:2F:D8:9F:95:AD:D8:73:42:79:69:2D:11:7A:2D:D4 Authority key identifier: 6E:18:4B:E1:46:12:D5:A2:B5:3C:49:87:68:44:50:85:0D:B0:2C:74 Certificate issuer: /CN=A916B232/serialNumber=6E184BE14612D5A2B53C4987684450850DB02C74 Certificate serial: 06B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft Manifest number: 06AB Signing time: Fri 22 Nov 2024 21:45:21 +0000 Manifest this update: Fri 22 Nov 2024 21:45:21 +0000 Manifest next update: Fri 29 Nov 2024 21:45:21 +0000 Files and hashes: 1: bhhL4UYS1aK1PEmHaERQhQ2wLHQ.crl (hash: cEEFWqGlXce6KcEZqwQTh79pANpegmItcwQWsm31HcI=) 2: A2C94D9C3F0F11EB80256B25C4F9AE02.roa (hash: FkpyV66ijxqb32HGtkQFlUte90FSVmvzcK3LzeRXqb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.crl rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1713 (0x6b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B232/serialNumber=6E184BE14612D5A2B53C4987684450850DB02C74 Validity Not Before: Nov 22 21:45:21 2024 GMT Not After : Nov 29 21:45:21 2024 GMT Subject: CN=6740fb71-71eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8b:72:c8:16:39:e4:11:20:81:00:98:02:b1: 81:eb:4c:03:76:29:6c:57:20:ea:74:9e:ca:95:5c: 7e:96:88:e7:29:81:4b:77:2d:d6:a7:13:4e:67:7d: c4:6d:c0:c8:49:ba:39:c8:f7:d2:0c:53:0f:25:1f: 9d:03:b4:45:29:0a:af:de:67:70:9b:65:f8:6f:4f: 3b:db:49:75:fe:c9:d5:88:5d:e5:01:ad:ce:24:62: 10:4f:87:bf:ab:28:50:30:c0:9b:10:f9:6e:c3:d8: 5e:f2:71:b4:15:55:4e:fd:3b:ac:ec:92:45:78:f0: 53:26:9f:6a:1e:04:c7:f0:0d:b2:cf:8c:92:f2:65: bc:fd:44:5e:ea:11:95:f5:32:07:a3:9b:d0:a3:8b: 80:f8:88:d9:a2:6a:4a:1a:4f:5d:83:16:84:d3:d3: f6:78:1f:00:46:03:3b:59:99:1b:ac:d3:64:80:31: ac:60:87:58:7e:8c:72:08:4e:1b:9e:89:b9:1f:01: 5e:b4:56:90:c7:ed:b8:da:69:63:6f:ae:fd:2b:b6: 38:09:d7:19:52:65:b5:b5:e8:17:a7:9c:b0:23:e6: 9d:e5:2b:81:57:95:31:50:a6:fd:4a:9e:34:66:0e: fa:dd:51:7c:4c:d8:32:3d:bf:0a:83:e3:8e:38:0c: 1f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:DE:92:08:EF:2F:D8:9F:95:AD:D8:73:42:79:69:2D:11:7A:2D:D4 X509v3 Authority Key Identifier: keyid:6E:18:4B:E1:46:12:D5:A2:B5:3C:49:87:68:44:50:85:0D:B0:2C:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:04:b5:ac:d9:df:97:f1:66:bb:44:50:fe:91:1d:ab:96:a0: 83:67:ed:87:aa:59:25:12:cf:71:87:e0:9b:61:50:00:ac:7d: 3c:3e:c7:96:be:da:dc:38:5e:2a:d7:67:f5:6b:1e:dd:b9:45: 7c:ea:b7:5b:d7:47:17:bf:e4:f6:30:22:6e:8a:88:a5:4e:b4: 06:79:2b:67:f2:af:07:48:d8:ce:4c:f9:3a:cc:b9:11:35:40: 6e:68:ef:1c:bb:01:0d:78:c3:97:38:5b:ca:a9:e5:f2:8e:38: 69:2c:7a:70:db:b3:0d:dd:31:88:53:9f:4f:f8:70:c1:57:54: de:8c:19:7d:7e:be:f4:17:6a:e7:a9:d6:58:f6:6c:c3:58:e8: 49:f6:98:ac:fa:d2:3c:0b:07:56:96:42:10:ef:b8:f3:c2:a9: 6a:0d:b3:57:5a:b5:71:60:74:d8:3c:a6:fe:64:52:c0:28:71: 9c:44:f5:47:6a:63:dc:c7:c9:49:69:22:c0:81:d1:cc:62:82: 8d:56:9a:39:da:e8:fc:49:4e:52:7a:3e:5e:ac:d3:5a:89:78: 02:a2:77:1c:58:8c:e5:63:3c:83:6a:7a:59:21:35:cc:1f:85: 89:f8:61:c5:46:c4:27:2d:87:ae:56:74:bd:7b:65:bb:4b:21: bf:59:c1:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIyMzIxMTAvBgNVBAUTKDZFMTg0QkUxNDYxMkQ1QTJCNTNDNDk4NzY4NDQ1MDg1 MERCMDJDNzQwHhcNMjQxMTIyMjE0NTIxWhcNMjQxMTI5MjE0NTIxWjAYMRYwFAYD VQQDEw02NzQwZmI3MS03MWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvotyyBY55BEggQCYArGB60wDdilsVyDqdJ7KlVx+lojnKYFLdy3WpxNOZ33E bcDISbo5yPfSDFMPJR+dA7RFKQqv3mdwm2X4b08720l1/snViF3lAa3OJGIQT4e/ qyhQMMCbEPluw9he8nG0FVVO/Tus7JJFePBTJp9qHgTH8A2yz4yS8mW8/URe6hGV 9TIHo5vQo4uA+IjZompKGk9dgxaE09P2eB8ARgM7WZkbrNNkgDGsYIdYfoxyCE4b nom5HwFetFaQx+242mljb679K7Y4CdcZUmW1tegXp5ywI+ad5SuBV5UxUKb9Sp40 Zg763VF8TNgyPb8Kg+OOOAwfYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMfekgjv L9ifla3Yc0J5aS0Rei3UMB8GA1UdIwQYMBaAFG4YS+FGEtWitTxJh2hEUIUNsCx0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjIzMi85NEQ0Qzc0MDNG MEQxMUVCQUYxRkNFMjJDNEY5QUUwMi9iaGhMNFVZUzFhSzFQRW1IYUVSUWhRMndM SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JoaEw0VVlTMWFLMVBFbUhhRVJRaFEyd0xIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjIzMi85NEQ0Qzc0MDNGMEQxMUVCQUYxRkNFMjJDNEY5QUUwMi9iaGhMNFVZUzFh SzFQRW1IYUVSUWhRMndMSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvBLWs2d+X8Wa7RFD+kR2rlqCDZ+2HqlklEs9xh+CbYVAArH08PseW vtrcOF4q12f1ax7duUV86rdb10cXv+T2MCJuioilTrQGeStn8q8HSNjOTPk6zLkR NUBuaO8cuwENeMOXOFvKqeXyjjhpLHpw27MN3TGIU59P+HDBV1TejBl9fr70F2rn qdZY9mzDWOhJ9pis+tI8CwdWlkIQ77jzwqlqDbNXWrVxYHTYPKb+ZFLAKHGcRPVH amPcx8lJaSLAgdHMYoKNVpo52uj8SU5Sej5erNNaiXgConccWIzlYzyDanpZITXM H4WJ+GHFRsQnLYeuVnS9e2W7SyG/WcFl -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:41 2024 by rpki-client on console-ams.rpki-client.org