$ rpki-client -vvf rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft File: BujrLhzBcw8rcm9PAAhEw0U_qlk.mft (raw, json) Hash identifier: 1NwQXXAMZEul+wEO39NeRsyg2DczlAJHTAGuztCi0/w= Subject key identifier: 6B:86:45:58:9B:09:65:AE:7D:1F:1D:23:C3:9B:E1:69:BC:43:02:B0 Authority key identifier: 06:E8:EB:2E:1C:C1:73:0F:2B:72:6F:4F:00:08:44:C3:45:3F:AA:59 Certificate issuer: /CN=A9177B64/serialNumber=06E8EB2E1CC1730F2B726F4F000844C3453FAA59 Certificate serial: 0A52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft Manifest number: 0A44 Signing time: Fri 22 Nov 2024 19:29:56 +0000 Manifest this update: Fri 22 Nov 2024 19:29:55 +0000 Manifest next update: Fri 29 Nov 2024 19:29:55 +0000 Files and hashes: 1: BujrLhzBcw8rcm9PAAhEw0U_qlk.crl (hash: 7c+lrMxdLk52ALuC3k/5NEnIjg7B/PwuSlXL/z/b3gk=) 2: D490B9E456BE11EAA979861EC4F9AE02.roa (hash: in2s5nblYb/tpke9vnRbwWoyZYgNOrnPyRgkXN/g1XA=) 3: D5248EE456BE11EAA979861EC4F9AE02.roa (hash: GEUerLfa8AbS7w95wtfzPXRDAwXXkP8/j2LX+qI6QYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.crl rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:29:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2642 (0xa52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177B64/serialNumber=06E8EB2E1CC1730F2B726F4F000844C3453FAA59 Validity Not Before: Nov 22 19:29:55 2024 GMT Not After : Nov 29 19:29:55 2024 GMT Subject: CN=6740dbb3-72b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:65:9d:34:3a:fe:80:a7:39:7d:31:c1:28:71: 78:12:e5:dd:4a:4a:3a:50:e1:11:25:92:a6:68:4c: e4:df:f3:26:b0:34:ed:ba:80:71:9a:b4:5b:76:fc: 44:d6:5f:2d:de:cb:9a:ab:a3:05:55:d4:e0:34:5a: 29:9e:eb:cc:ca:13:52:6f:61:ae:a3:8f:50:4c:9c: 09:33:c3:2a:da:6e:7b:11:5e:15:d9:bd:db:d7:a6: 41:75:eb:c0:a9:32:8c:9e:46:25:a2:67:4a:c5:f8: 75:0a:c3:29:cb:3d:64:19:2a:03:68:8f:58:02:54: 23:da:14:a4:a2:38:11:80:91:e4:0a:8f:68:2e:a4: ed:59:ba:47:bf:59:54:97:21:1d:0d:3b:38:31:06: d8:44:a5:52:c7:3f:a4:57:ec:1d:9e:12:df:40:2d: da:11:19:41:3a:6b:1b:d1:5f:9a:8f:6d:2a:f8:87: 07:8c:d2:63:c4:ce:d9:1b:70:c0:47:fe:3b:89:5b: d4:ed:12:fc:d2:64:2a:f8:a3:49:61:fd:5b:72:9e: b3:3d:05:12:f2:d1:08:34:52:a3:dc:41:7f:46:3b: 88:34:9b:83:97:8c:68:cd:38:6e:69:31:df:7f:51: e8:24:f4:22:9a:32:ec:98:4b:1d:7f:b3:b5:bc:e2: bd:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:86:45:58:9B:09:65:AE:7D:1F:1D:23:C3:9B:E1:69:BC:43:02:B0 X509v3 Authority Key Identifier: keyid:06:E8:EB:2E:1C:C1:73:0F:2B:72:6F:4F:00:08:44:C3:45:3F:AA:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:fa:54:59:a4:0c:0e:fb:22:ce:ab:51:bd:6e:ce:cb:b6:d1: 4b:d0:9f:6d:06:e1:d9:cd:16:1b:1f:73:05:24:04:3b:22:76: 7b:e7:25:a3:34:7c:04:5a:5d:4b:b3:4f:2f:1b:11:03:f4:8c: ca:62:1a:f8:d7:44:e3:a1:85:4c:cb:67:f3:2e:5f:87:f2:33: 0c:b5:bd:b1:49:7c:2f:a7:36:f1:bd:2f:a4:31:2b:ea:9e:40: b7:8d:81:13:56:45:5e:1f:c2:50:2c:bf:2d:e7:85:d6:4a:e6: a1:2a:a9:30:67:30:99:4d:ab:33:5a:3a:d3:2a:a1:94:d7:a1: de:a0:1d:4e:85:07:5d:49:4b:61:50:26:02:6e:61:a0:16:8f: 16:b5:cf:e4:36:23:e0:84:1b:37:c8:d1:3e:17:21:6c:f4:76: 97:f3:2e:5f:a6:39:39:72:4d:be:a2:72:ff:74:53:db:e0:d9: 6c:6b:57:81:57:4c:ca:29:b8:a9:8a:a5:0b:fc:c6:10:b2:8b: 5e:14:2d:fc:9a:1f:51:4d:45:c5:60:de:f6:ed:32:3f:a5:35: 7e:37:b5:5e:1c:30:fe:4b:3b:2e:96:1d:c3:7a:b9:8e:9d:96: a7:d7:42:72:37:60:31:5b:d3:fa:38:53:fd:44:50:76:2a:e3: 5a:07:2c:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzdCNjQxMTAvBgNVBAUTKDA2RThFQjJFMUNDMTczMEYyQjcyNkY0RjAwMDg0NEMz NDUzRkFBNTkwHhcNMjQxMTIyMTkyOTU1WhcNMjQxMTI5MTkyOTU1WjAYMRYwFAYD VQQDEw02NzQwZGJiMy03MmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7GWdNDr+gKc5fTHBKHF4EuXdSko6UOERJZKmaEzk3/MmsDTtuoBxmrRbdvxE 1l8t3suaq6MFVdTgNFopnuvMyhNSb2Guo49QTJwJM8Mq2m57EV4V2b3b16ZBdevA qTKMnkYlomdKxfh1CsMpyz1kGSoDaI9YAlQj2hSkojgRgJHkCo9oLqTtWbpHv1lU lyEdDTs4MQbYRKVSxz+kV+wdnhLfQC3aERlBOmsb0V+aj20q+IcHjNJjxM7ZG3DA R/47iVvU7RL80mQq+KNJYf1bcp6zPQUS8tEINFKj3EF/RjuINJuDl4xozThuaTHf f1HoJPQimjLsmEsdf7O1vOK9NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGuGRVib CWWufR8dI8Ob4Wm8QwKwMB8GA1UdIwQYMBaAFAbo6y4cwXMPK3JvTwAIRMNFP6pZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3N0I2NC9BQkY5Nzk2ODU2 QkQxMUVBQTUwM0Q2MUNDNEY5QUUwMi9CdWpyTGh6QmN3OHJjbTlQQUFoRXcwVV9x bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J1anJMaHpCY3c4cmNtOVBBQWhFdzBVX3Fsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 N0I2NC9BQkY5Nzk2ODU2QkQxMUVBQTUwM0Q2MUNDNEY5QUUwMi9CdWpyTGh6QmN3 OHJjbTlQQUFoRXcwVV9xbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDG+lRZpAwO+yLOq1G9bs7LttFL0J9tBuHZzRYbH3MFJAQ7InZ75yWj NHwEWl1Ls08vGxED9IzKYhr410TjoYVMy2fzLl+H8jMMtb2xSXwvpzbxvS+kMSvq nkC3jYETVkVeH8JQLL8t54XWSuahKqkwZzCZTaszWjrTKqGU16HeoB1OhQddSUth UCYCbmGgFo8Wtc/kNiPghBs3yNE+FyFs9HaX8y5fpjk5ck2+onL/dFPb4Nlsa1eB V0zKKbipiqUL/MYQsoteFC38mh9RTUXFYN727TI/pTV+N7VeHDD+Szsulh3DermO nZan10JyN2AxW9P6OFP9RFB2KuNaByzw -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:29 2024 by rpki-client on console-fra.rpki-client.org