$ rpki-client -vvf rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft File: BL27YPamYNHS0BJzSQ_PCcw1m3M.mft (raw, json) Hash identifier: DdsT6d4VOJKVeN6KYWVgDlTTfAELpjfiksKka1hhMQE= Subject key identifier: 60:8C:21:90:E4:C3:52:68:45:EC:27:FE:03:C9:C6:B8:BD:FB:4B:DA Authority key identifier: 04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 Certificate issuer: /CN=A917C59F/serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Certificate serial: 0827 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft Manifest number: 081F Signing time: Fri 22 Nov 2024 20:33:20 +0000 Manifest this update: Fri 22 Nov 2024 20:33:19 +0000 Manifest next update: Fri 29 Nov 2024 20:33:19 +0000 Files and hashes: 1: BL27YPamYNHS0BJzSQ_PCcw1m3M.crl (hash: X3egTa9IaAluRwHguyb/CBdh4Hz43gmrcLzseGvRr7s=) 2: 12482BA205A211ED81E44F6DC4F9AE02.roa (hash: fYbzp1Oz4KIx83cDiZ+b+olfYLWh9zVxHoKcBuS5W0E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:33:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2087 (0x827) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C59F/serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Validity Not Before: Nov 22 20:33:19 2024 GMT Not After : Nov 29 20:33:19 2024 GMT Subject: CN=6740ea90-1248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b5:87:8a:5b:1a:2e:da:65:55:13:b5:c7:cd: fb:fa:52:a9:76:78:22:68:ce:fe:4f:70:8f:4b:7b: 1f:46:fe:be:78:cb:2f:72:8b:e8:bd:73:6a:8a:25: 87:02:07:60:18:5c:1c:85:02:ca:9c:c3:85:ff:90: c8:2a:0a:51:92:2a:6b:37:9b:a7:12:47:6f:f3:d6: 5f:31:49:31:ef:3d:ab:18:f7:07:81:10:2e:c4:b9: bb:33:ec:16:8f:6b:11:e9:3e:0e:05:26:ff:84:c0: f9:e3:0b:ee:43:2d:d4:57:78:dc:0e:19:12:0b:88: 6f:ea:b8:41:4c:1d:ed:5d:fd:13:ef:44:fa:2f:0e: ad:27:5b:0f:ac:68:c3:c2:54:5f:ca:16:77:14:6c: 7a:d7:54:d0:c4:43:81:4f:b4:53:70:bb:1a:d2:9c: d7:8b:11:38:18:9c:0b:87:61:8a:5b:38:72:bb:05: 12:ee:fd:a4:d8:ee:df:7c:a6:9d:8f:f0:29:8a:16: 51:03:78:59:46:38:28:9e:9e:8f:9a:b2:16:82:94: b8:bf:5a:b6:6d:2d:eb:f8:c1:23:34:7f:cf:52:58: 63:52:f9:2f:9b:d3:ac:af:8d:f5:9a:c1:eb:19:69: 08:2b:97:04:7c:9a:32:9b:fa:d9:42:b3:c0:07:74: 29:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:8C:21:90:E4:C3:52:68:45:EC:27:FE:03:C9:C6:B8:BD:FB:4B:DA X509v3 Authority Key Identifier: keyid:04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:12:ec:f5:10:b6:98:01:0c:15:c0:d3:31:8f:17:30:7d:cb: 2b:37:44:24:88:57:d0:07:6b:c3:16:64:4c:af:d9:9c:5f:52: 47:1b:92:f0:d6:c8:15:c6:a0:09:9d:c1:50:7a:ce:3d:54:0d: ee:33:39:61:cc:b0:2c:f5:10:85:fe:be:d7:d1:a9:1a:09:96: 8c:39:c9:f5:43:74:ed:75:b6:5e:ba:65:26:95:89:32:8f:50: a2:29:77:7f:1d:1b:89:a7:f5:e4:b4:01:30:de:aa:89:74:3a: 33:d8:60:ae:6d:fc:0e:1a:66:be:ea:cd:50:50:69:16:14:1b: 82:21:2d:ae:4f:ab:af:b1:34:97:31:be:b9:65:b7:a8:0b:e3: 98:7e:4d:25:14:43:bd:d0:6c:bc:de:49:a4:94:5d:e5:e4:0a: 57:6a:59:a7:fe:07:6a:04:e8:cd:f4:bd:ce:84:63:8e:b5:67: 21:d2:57:95:c3:d0:08:7e:1f:a9:3e:54:dc:d4:78:6c:8b:1b: 4a:42:b4:fd:9a:46:7c:34:14:71:15:7b:a7:09:65:76:87:79: fb:b5:fe:ca:3b:c8:ed:5e:a2:20:59:5e:33:4d:ae:53:c1:2f: 60:f1:b1:70:01:0b:7c:ce:82:52:21:89:d7:5f:40:29:52:b8: 8b:20:bc:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1OUYxMTAvBgNVBAUTKDA0QkRCQjYwRjZBNjYwRDFEMkQwMTI3MzQ5MEZDRjA5 Q0MzNTlCNzMwHhcNMjQxMTIyMjAzMzE5WhcNMjQxMTI5MjAzMzE5WjAYMRYwFAYD VQQDEw02NzQwZWE5MC0xMjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrWHilsaLtplVRO1x837+lKpdngiaM7+T3CPS3sfRv6+eMsvcovovXNqiiWH AgdgGFwchQLKnMOF/5DIKgpRkiprN5unEkdv89ZfMUkx7z2rGPcHgRAuxLm7M+wW j2sR6T4OBSb/hMD54wvuQy3UV3jcDhkSC4hv6rhBTB3tXf0T70T6Lw6tJ1sPrGjD wlRfyhZ3FGx611TQxEOBT7RTcLsa0pzXixE4GJwLh2GKWzhyuwUS7v2k2O7ffKad j/ApihZRA3hZRjgonp6PmrIWgpS4v1q2bS3r+MEjNH/PUlhjUvkvm9Osr431msHr GWkIK5cEfJoym/rZQrPAB3QpMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCMIZDk w1JoRewn/gPJxri9+0vaMB8GA1UdIwQYMBaAFAS9u2D2pmDR0tASc0kPzwnMNZtz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzU5Ri80MjVFODkwMkMx NDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlOSFMwQkp6U1FfUENjdzFt M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JMMjdZUGFtWU5IUzBCSnpTUV9QQ2N3MW0zTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzU5Ri80MjVFODkwMkMxNDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlO SFMwQkp6U1FfUENjdzFtM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJEuz1ELaYAQwVwNMxjxcwfcsrN0QkiFfQB2vDFmRMr9mcX1JHG5Lw 1sgVxqAJncFQes49VA3uMzlhzLAs9RCF/r7X0akaCZaMOcn1Q3TtdbZeumUmlYky j1CiKXd/HRuJp/XktAEw3qqJdDoz2GCubfwOGma+6s1QUGkWFBuCIS2uT6uvsTSX Mb65ZbeoC+OYfk0lFEO90Gy83kmklF3l5ApXalmn/gdqBOjN9L3OhGOOtWch0leV w9AIfh+pPlTc1HhsixtKQrT9mkZ8NBRxFXunCWV2h3n7tf7KO8jtXqIgWV4zTa5T wS9g8bFwAQt8zoJSIYnXX0ApUriLILw8 -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:09 2024 by rpki-client on console-fra.rpki-client.org