$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft File: BPDYqTArIrYOMPRlG4KumZ_3TJs.mft (raw, json) Hash identifier: eENPWSEGUGRYWukOcyyPFAMV47iTD7+/nCkXr1jmHvg= Subject key identifier: 40:B6:C0:36:76:4D:94:DC:5D:46:D3:07:3D:97:05:2D:A9:6E:07:B9 Authority key identifier: 04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B Certificate issuer: /CN=A9171882/serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft Manifest number: 76 Signing time: Thu 21 Nov 2024 04:51:58 +0000 Manifest this update: Thu 21 Nov 2024 04:51:57 +0000 Manifest next update: Thu 28 Nov 2024 04:51:57 +0000 Files and hashes: 1: BPDYqTArIrYOMPRlG4KumZ_3TJs.crl (hash: 66QWtZvozrQc2FW3dxvKzJK/mW8k+jDZpH9oy8vOyOE=) 2: 08D1870EF0B411EE962EE784C4F9AE02.roa (hash: kd+ZyEIa8OKJXxOJS7tnyqy5H5nqc0a2LvwnZGx0i2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:51:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171882/serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Validity Not Before: Nov 21 04:51:57 2024 GMT Not After : Nov 28 04:51:57 2024 GMT Subject: CN=673ebc6e-e2de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:54:1b:a7:a7:e3:7a:9e:de:5a:89:8e:8b:8f: 8f:bb:c1:67:3f:52:40:9f:bf:44:b9:cc:8a:7a:02: 27:22:9c:6e:01:ab:d6:6c:d7:b3:ee:83:c9:2f:fd: 2f:51:b3:1e:f8:b3:17:3a:cb:8b:4d:77:11:eb:4b: fc:0c:15:72:7d:07:72:7f:be:38:ca:97:74:f6:1d: 62:2b:64:64:f5:f6:24:08:6b:95:6c:b7:9f:75:1b: 31:a5:73:f8:cc:df:87:9e:6d:28:f3:ca:21:44:56: b3:7e:ec:e5:e5:38:92:a4:27:bd:bc:44:9b:91:f7: 3c:99:30:8b:52:78:7a:fa:74:35:70:95:68:cf:c2: 9f:d4:cd:3e:47:46:4f:6c:1f:bf:69:39:38:9a:77: eb:39:f5:2d:90:3d:0a:58:40:c1:07:29:49:0f:c8: da:8f:d5:98:85:06:7e:88:92:d7:8f:e0:0a:2f:49: b3:fb:2c:5b:21:0d:34:85:29:f8:8e:8b:93:ad:c9: f5:25:da:e9:f6:e6:47:f7:d6:9b:b6:5b:bb:c9:9b: 41:68:78:3e:0e:47:b9:fb:1c:ad:6a:b2:42:c5:4c: 65:8c:27:8a:1a:7f:0d:1f:5e:11:9c:71:56:ee:fc: ba:3c:a4:de:b2:14:c1:7a:df:a3:8f:2e:80:45:39: 71:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B6:C0:36:76:4D:94:DC:5D:46:D3:07:3D:97:05:2D:A9:6E:07:B9 X509v3 Authority Key Identifier: keyid:04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:14:2f:03:29:27:c4:59:a3:45:e9:9d:d9:b9:5a:4d:4f:ff: fe:e4:88:3d:33:e0:8f:bd:35:ef:cc:8a:0b:c3:05:a8:ef:06: 47:c3:58:34:e8:26:ef:7e:dd:36:94:f3:ed:06:e2:7f:08:80: 90:db:2e:41:ea:94:29:74:c1:45:f0:e7:f7:86:5b:00:17:c9: 76:53:69:68:49:69:56:b0:41:0f:32:26:6d:6b:c0:5d:c2:02: d5:ac:ec:b4:f0:8c:ab:1d:b4:3e:c8:b1:3f:8c:68:26:89:5c: 69:90:af:07:2a:d6:a0:44:83:e8:d1:3d:f1:c8:e7:fd:6b:34: 59:84:2c:00:73:45:f5:b9:0d:df:2a:d3:ce:e7:3c:d8:49:36: a1:9a:df:1a:5a:74:d1:a1:84:4e:66:84:a2:0f:a1:b3:13:63: 49:aa:7f:e8:2c:1e:e6:99:c0:08:e7:9c:19:b2:7d:a2:8a:38: 9c:14:1c:ff:91:d0:d6:4e:2a:50:b8:67:39:e8:22:24:f5:eb: 5e:6d:be:ab:41:14:15:4e:86:90:9a:e8:e6:3a:9e:3e:ac:e3: 90:ea:f3:6a:3b:0b:68:ea:91:ab:c2:35:5f:4c:46:db:6b:38: 2e:46:7b:f8:ae:1d:64:6a:d2:db:5b:26:a1:43:df:2f:a1:3c: 84:34:1f:cd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MTg4MjExMC8GA1UEBRMoMDRGMEQ4QTkzMDJCMjJCNjBFMzBGNDY1MUI4MkFFOTk5 RkY3NEM5QjAeFw0yNDExMjEwNDUxNTdaFw0yNDExMjgwNDUxNTdaMBgxFjAUBgNV BAMTDTY3M2ViYzZlLWUyZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9VBunp+N6nt5aiY6Lj4+7wWc/UkCfv0S5zIp6AicinG4Bq9Zs17Pug8kv/S9R sx74sxc6y4tNdxHrS/wMFXJ9B3J/vjjKl3T2HWIrZGT19iQIa5Vst591GzGlc/jM 34eebSjzyiFEVrN+7OXlOJKkJ728RJuR9zyZMItSeHr6dDVwlWjPwp/UzT5HRk9s H79pOTiad+s59S2QPQpYQMEHKUkPyNqP1ZiFBn6IkteP4AovSbP7LFshDTSFKfiO i5OtyfUl2un25kf31pu2W7vJm0FoeD4OR7n7HK1qskLFTGWMJ4oafw0fXhGccVbu /Lo8pN6yFMF636OPLoBFOXFzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQLbANnZN lNxdRtMHPZcFLaluB7kwHwYDVR0jBBgwFoAUBPDYqTArIrYOMPRlG4KumZ/3TJsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcxODgyL0IyMzhBMTg0RjBC MzExRUVBNEM3MkY4NEM0RjlBRTAyL0JQRFlxVEFySXJZT01QUmxHNEt1bVpfM1RK cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQlBEWXFUQXJJcllPTVBSbEc0S3VtWl8zVEpzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcx ODgyL0IyMzhBMTg0RjBCMzExRUVBNEM3MkY4NEM0RjlBRTAyL0JQRFlxVEFySXJZ T01QUmxHNEt1bVpfM1RKcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADMULwMpJ8RZo0Xpndm5Wk1P//7kiD0z4I+9Ne/MigvDBajvBkfDWDTo Ju9+3TaU8+0G4n8IgJDbLkHqlCl0wUXw5/eGWwAXyXZTaWhJaVawQQ8yJm1rwF3C AtWs7LTwjKsdtD7IsT+MaCaJXGmQrwcq1qBEg+jRPfHI5/1rNFmELABzRfW5Dd8q 087nPNhJNqGa3xpadNGhhE5mhKIPobMTY0mqf+gsHuaZwAjnnBmyfaKKOJwUHP+R 0NZOKlC4ZznoIiT1615tvqtBFBVOhpCa6OY6nj6s45Dq82o7C2jqkavCNV9MRttr OC5Ge/iuHWRq0ttbJqFD3y+hPIQ0H80= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:06 2024 by rpki-client on console-ams.rpki-client.org