$ rpki-client -vvf rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft File: 9bzqkIXorbqorCGgTlPb_sMgvOI.mft (raw, json) Hash identifier: iuDDnhhoJUqQF0SI8e1QWmc/79mUdOsoXW+dur0IJP4= Subject key identifier: B2:F9:F1:D0:6A:D7:92:45:9F:E5:F3:AE:D8:FC:10:10:13:53:92:C8 Authority key identifier: F5:BC:EA:90:85:E8:AD:BA:A8:AC:21:A0:4E:53:DB:FE:C3:20:BC:E2 Certificate issuer: /CN=A916B6AA/serialNumber=F5BCEA9085E8ADBAA8AC21A04E53DBFEC320BCE2 Certificate serial: F0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9bzqkIXorbqorCGgTlPb_sMgvOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft Manifest number: F0 Signing time: Wed 20 Nov 2024 15:47:39 +0000 Manifest this update: Wed 20 Nov 2024 15:47:39 +0000 Manifest next update: Wed 27 Nov 2024 15:47:39 +0000 Files and hashes: 1: 9bzqkIXorbqorCGgTlPb_sMgvOI.crl (hash: NGA9t5XFo0wURYVmnhLr2R0vVRTXNmG2yzPQ6AQe8/I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.crl rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9bzqkIXorbqorCGgTlPb_sMgvOI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B6AA/serialNumber=F5BCEA9085E8ADBAA8AC21A04E53DBFEC320BCE2 Validity Not Before: Nov 20 15:47:39 2024 GMT Not After : Nov 27 15:47:39 2024 GMT Subject: CN=673e049b-c305 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:70:6a:b3:33:82:55:90:1c:fe:3a:38:fa:d5: 97:c9:78:cd:8d:ef:eb:13:cd:83:31:74:9a:2c:03: bb:9c:52:bb:6e:5d:ab:49:91:a1:25:ca:8e:04:d9: e7:9f:f6:c6:ce:89:19:8e:9e:59:65:a6:fc:97:4c: dc:9e:7a:b0:45:e9:5e:8a:06:58:03:95:6e:07:42: ca:aa:0c:62:b3:7a:96:4f:ff:dd:56:aa:7e:7e:10: 5a:a4:b8:d2:71:4d:6d:8d:9f:5f:66:4c:1e:80:8d: 6d:e5:52:9e:35:a6:e0:75:8b:b4:27:a1:b4:84:ab: 69:f0:b5:60:a2:84:4b:60:53:d4:0b:ba:9c:ee:1e: 39:67:a3:21:e6:53:05:01:3c:f4:b8:f3:66:fd:76: 25:65:0d:fd:40:be:34:37:d4:46:15:e4:f2:68:b3: db:f4:4e:b7:c6:e5:50:21:3a:d5:dc:39:3f:8e:32: 02:84:d3:a3:44:b0:98:d6:02:f1:10:5e:40:4c:a9: b6:c5:3d:a3:9e:a4:79:aa:2d:87:6f:5d:87:51:f2: 49:22:03:49:18:9c:67:ec:69:47:95:f1:ee:1b:e4: 57:80:28:48:cb:1a:a2:06:42:22:b9:d7:93:a1:92: c6:be:5b:49:80:ee:23:14:58:17:bd:d3:bf:2b:83: a2:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:F9:F1:D0:6A:D7:92:45:9F:E5:F3:AE:D8:FC:10:10:13:53:92:C8 X509v3 Authority Key Identifier: keyid:F5:BC:EA:90:85:E8:AD:BA:A8:AC:21:A0:4E:53:DB:FE:C3:20:BC:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9bzqkIXorbqorCGgTlPb_sMgvOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:7e:7e:2e:5d:1c:2a:21:c2:e5:4f:04:d3:d1:ae:b6:86:5a: 16:30:a8:77:77:2f:67:ff:f0:15:ad:0d:c3:9b:44:ec:1d:ef: bd:24:97:40:93:ad:96:74:bc:b3:a9:f1:31:af:18:b3:15:4a: 15:72:b4:a0:15:b1:f3:50:16:57:93:9a:2d:45:11:8e:23:60: d5:48:8e:27:45:77:d1:cc:4d:59:45:61:06:10:53:b5:b4:d7: 89:92:df:d3:50:8d:c1:03:65:57:77:ee:f3:8f:ad:db:91:20: d7:c4:59:96:3f:90:44:60:1e:1d:a2:15:82:ee:9c:bd:5d:ae: 38:2f:10:26:24:15:76:39:e3:70:19:08:05:c9:0b:ec:a1:78: ba:03:b6:69:ac:7b:15:0b:76:13:f7:c5:ee:95:aa:bf:dc:0f: 62:db:87:3a:29:58:37:aa:64:54:2d:46:25:aa:4c:39:d4:02: 64:25:df:3f:bd:8d:c7:a5:74:4a:55:de:fc:ea:0f:a8:34:fd: 39:44:3f:03:cb:f6:b8:cd:dc:d9:a7:7c:e4:c6:bd:fc:c6:dd: f4:32:e6:ae:f5:61:e5:c8:08:86:dc:36:4f:52:cf:93:63:d1: 38:97:f1:7b:3b:85:a0:8c:89:70:d6:c3:05:c3:bf:68:27:60: da:45:3a:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI2QUExMTAvBgNVBAUTKEY1QkNFQTkwODVFOEFEQkFBOEFDMjFBMDRFNTNEQkZF QzMyMEJDRTIwHhcNMjQxMTIwMTU0NzM5WhcNMjQxMTI3MTU0NzM5WjAYMRYwFAYD VQQDEw02NzNlMDQ5Yi1jMzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoXBqszOCVZAc/jo4+tWXyXjNje/rE82DMXSaLAO7nFK7bl2rSZGhJcqOBNnn n/bGzokZjp5ZZab8l0zcnnqwReleigZYA5VuB0LKqgxis3qWT//dVqp+fhBapLjS cU1tjZ9fZkwegI1t5VKeNabgdYu0J6G0hKtp8LVgooRLYFPUC7qc7h45Z6Mh5lMF ATz0uPNm/XYlZQ39QL40N9RGFeTyaLPb9E63xuVQITrV3Dk/jjIChNOjRLCY1gLx EF5ATKm2xT2jnqR5qi2Hb12HUfJJIgNJGJxn7GlHlfHuG+RXgChIyxqiBkIiudeT oZLGvltJgO4jFFgXvdO/K4OiGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLL58dBq 15JFn+Xzrtj8EBATU5LIMB8GA1UdIwQYMBaAFPW86pCF6K26qKwhoE5T2/7DILzi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjZBQS9BMjk4OEYzODQw QUUxMUVFOTg1MEEyNjNDNEY5QUUwMi85Ynpxa0lYb3JicW9yQ0dnVGxQYl9zTWd2 T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzlienFrSVhvcmJxb3JDR2dUbFBiX3NNZ3ZPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjZBQS9BMjk4OEYzODQwQUUxMUVFOTg1MEEyNjNDNEY5QUUwMi85Ynpxa0lYb3Ji cW9yQ0dnVGxQYl9zTWd2T0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBufn4uXRwqIcLlTwTT0a62hloWMKh3dy9n//AVrQ3Dm0TsHe+9JJdA k62WdLyzqfExrxizFUoVcrSgFbHzUBZXk5otRRGOI2DVSI4nRXfRzE1ZRWEGEFO1 tNeJkt/TUI3BA2VXd+7zj63bkSDXxFmWP5BEYB4dohWC7py9Xa44LxAmJBV2OeNw GQgFyQvsoXi6A7ZprHsVC3YT98Xulaq/3A9i24c6KVg3qmRULUYlqkw51AJkJd8/ vY3HpXRKVd786g+oNP05RD8Dy/a4zdzZp3zkxr38xt30Muau9WHlyAiG3DZPUs+T Y9E4l/F7O4WgjIlw1sMFw79oJ2DaRTqw -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:58 2024 by rpki-client on console-fra.rpki-client.org