$ rpki-client -vvf rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft File: B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft (raw, json) Hash identifier: dDEeGOQxRVJlrqdQCdxxiJJDpX2Ety/iXqboXHnpNOY= Subject key identifier: D5:B2:AD:D7:68:32:08:21:65:CE:BE:1F:C0:BA:98:77:76:C1:F5:E5 Authority key identifier: 07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B Certificate issuer: /CN=A917C5E0/serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft Manifest number: 37 Signing time: Thu 21 Nov 2024 05:35:56 +0000 Manifest this update: Thu 21 Nov 2024 05:35:56 +0000 Manifest next update: Thu 28 Nov 2024 05:35:56 +0000 Files and hashes: 1: B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl (hash: aSZGxdSrgOK/QeumQe7pUqmZq8SpgGs5ARlxdz9Bpck=) 2: 335E880A5A1811EFB08E4F38C4F9AE02.roa (hash: uB7Em80PKGY4uO2oMYJtskRF61M8oMXLAmFb1PjEp7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C5E0/serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Validity Not Before: Nov 21 05:35:56 2024 GMT Not After : Nov 28 05:35:56 2024 GMT Subject: CN=673ec6bc-3f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:01:fc:0c:84:4f:4e:37:18:b2:9f:4d:8a:f3: 75:d3:99:94:60:08:a9:1e:16:93:05:97:6b:a4:ce: 36:14:b7:80:3d:81:1a:89:b9:9c:4a:c3:c0:b3:0f: c0:a5:43:b4:47:1e:30:ed:c1:ea:03:0b:cc:78:12: c1:02:14:a9:f6:3d:b9:72:bd:dc:bd:59:8f:30:29: ac:87:7e:02:18:49:76:c8:3a:ea:33:13:23:f2:c9: 69:05:62:87:8b:9b:f5:15:08:13:88:6f:ea:19:e7: 9c:5b:e8:ba:28:0f:88:3a:4b:bd:e3:02:3f:05:cd: 39:eb:df:93:60:6c:2d:54:d1:53:5c:6a:72:8c:e1: e5:8c:f1:d0:92:60:02:2a:f1:ec:7d:ea:28:f3:7e: 25:a6:49:d2:36:6a:71:c9:ce:e1:77:d9:17:be:d4: 70:52:9f:51:11:2f:de:7c:d2:90:24:8b:07:8b:9e: 95:04:d4:89:c3:54:18:76:a4:e6:d5:05:84:91:2f: 91:0b:ad:71:e9:16:ea:33:8e:e0:b0:7d:71:8d:b9: b9:cc:ff:23:0d:8f:2f:85:b7:ee:d1:6c:bb:cd:6c: bb:8a:2f:33:8a:6f:10:52:dc:bf:0d:d3:3f:e8:45: cf:39:e2:39:23:23:ab:9e:f7:45:18:b7:55:7f:06: 2e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:B2:AD:D7:68:32:08:21:65:CE:BE:1F:C0:BA:98:77:76:C1:F5:E5 X509v3 Authority Key Identifier: keyid:07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e7:ea:0b:6e:ed:a3:60:fa:7c:55:36:dc:e7:8c:3b:4f:38:4b: 82:b1:80:61:de:d9:0b:eb:e6:06:60:17:53:48:84:cc:b2:4f: c4:fb:18:2c:e2:5c:15:ae:19:09:c4:61:e0:10:a8:29:e7:30: 51:32:e5:fa:d4:8d:2b:ce:1c:66:7b:41:57:b5:50:db:39:f7: 75:ac:f3:25:be:f3:c9:25:05:c4:5d:d9:c4:60:e9:1c:20:1a: ee:f5:aa:57:76:6b:d1:b7:f7:b4:70:fc:aa:3a:00:72:3a:db: bd:cb:7a:48:f7:de:60:a9:61:f0:8a:7e:c2:5b:a7:8f:6e:7b: 27:7e:81:54:be:16:94:62:67:08:79:26:34:b6:49:83:7f:e1: 4a:46:d6:78:1b:c0:1c:55:de:1f:3b:07:4d:63:9c:f0:6d:37: fe:39:16:3b:98:7c:08:68:96:ec:40:4f:e2:af:ee:26:ea:ed: e7:4a:06:ab:b5:7c:76:2c:b7:94:36:c0:24:21:88:11:e7:ca: 3f:66:b7:81:53:f9:4f:a6:da:92:6b:f2:d3:e3:7d:c6:38:12: 4c:9f:01:a2:8d:11:68:4d:7e:eb:d4:00:7d:5c:eb:a8:49:30: 0f:51:16:ea:f9:88:17:67:d5:4d:6b:d5:e5:c2:39:7d:90:c2: 2c:fe:93:19 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzVFMDExMC8GA1UEBRMoMDc4QjRBODBEMURGRTZDMDUyNTMzQUFEQjE5NTM0QUM1 OUEzOTU0QjAeFw0yNDExMjEwNTM1NTZaFw0yNDExMjgwNTM1NTZaMBgxFjAUBgNV BAMTDTY3M2VjNmJjLTNmNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1AfwMhE9ONxiyn02K83XTmZRgCKkeFpMFl2ukzjYUt4A9gRqJuZxKw8CzD8Cl Q7RHHjDtweoDC8x4EsECFKn2Pblyvdy9WY8wKayHfgIYSXbIOuozEyPyyWkFYoeL m/UVCBOIb+oZ55xb6LooD4g6S73jAj8FzTnr35NgbC1U0VNcanKM4eWM8dCSYAIq 8ex96ijzfiWmSdI2anHJzuF32Re+1HBSn1ERL9580pAkiweLnpUE1InDVBh2pObV BYSRL5ELrXHpFuozjuCwfXGNubnM/yMNjy+Ft+7RbLvNbLuKLzOKbxBS3L8N0z/o Rc854jkjI6ue90UYt1V/Bi6hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1bKt12gy CCFlzr4fwLqYd3bB9eUwHwYDVR0jBBgwFoAUB4tKgNHf5sBSUzqtsZU0rFmjlUsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDNUUwLzg3MjBBQjE4NUEx NzExRUZBQTIyQTcyOUM0RjlBRTAyL0I0dEtnTkhmNXNCU1V6cXRzWlUwckZtamxV cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQjR0S2dOSGY1c0JTVXpxdHNaVTByRm1qbFVzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD NUUwLzg3MjBBQjE4NUExNzExRUZBQTIyQTcyOUM0RjlBRTAyL0I0dEtnTkhmNXNC U1V6cXRzWlUwckZtamxVcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAOfqC27to2D6fFU23OeMO084S4KxgGHe2Qvr5gZgF1NIhMyyT8T7GCzi XBWuGQnEYeAQqCnnMFEy5frUjSvOHGZ7QVe1UNs593Ws8yW+88klBcRd2cRg6Rwg Gu71qld2a9G397Rw/Ko6AHI6273Lekj33mCpYfCKfsJbp49ueyd+gVS+FpRiZwh5 JjS2SYN/4UpG1ngbwBxV3h87B01jnPBtN/45FjuYfAholuxAT+Kv7ibq7edKBqu1 fHYst5Q2wCQhiBHnyj9mt4FT+U+m2pJr8tPjfcY4EkyfAaKNEWhNfuvUAH1c66hJ MA9RFur5iBdn1U1r1eXCOX2Qwiz+kxk= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:18 2024 by rpki-client on console-fra.rpki-client.org