$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft File: bBH4O5qMvdIVMt3w6mHek4jRPGs.mft (raw, json) Hash identifier: uvqzC9YF55jPJ2apgkQ/kIqjLfU7iC/iyqEXyHV5C/g= Subject key identifier: 32:40:29:6D:D8:9A:68:0C:4C:96:79:B8:07:F1:26:D0:81:7C:AB:69 Authority key identifier: 6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B Certificate issuer: /CN=A917D958/serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Certificate serial: 0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft Manifest number: 0C Signing time: Wed 25 Dec 2024 06:11:26 +0000 Manifest this update: Wed 25 Dec 2024 06:11:26 +0000 Manifest next update: Wed 01 Jan 2025 06:11:26 +0000 Files and hashes: 1: bBH4O5qMvdIVMt3w6mHek4jRPGs.crl (hash: gy/jVVFtaKNicNygfZXG8+1NVpCAHfK8GRrg/2Dgexw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jan 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958/serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Validity Not Before: Dec 25 06:11:26 2024 GMT Not After : Jan 1 06:11:26 2025 GMT Subject: CN=676ba20e-419a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ec:35:96:77:a6:95:40:5d:39:bc:3a:2f:d7: 9f:83:62:97:d4:84:2e:e6:cc:74:16:16:e4:29:f8: 5e:56:16:fa:98:32:c5:3e:fb:90:2a:67:dd:7a:30: c5:3f:d4:25:46:4f:0f:fa:78:d7:11:1f:42:27:08: 46:93:7e:57:7b:18:7d:3f:29:7c:9d:a0:fc:27:fd: 21:cc:95:ba:66:8e:d5:1e:e6:88:20:e7:3f:52:c2: ac:05:80:5f:30:bc:bd:b0:39:61:b5:ca:79:0a:b5: 50:36:29:ce:60:32:c9:09:74:f7:a2:06:5d:43:cf: fa:2c:02:64:b0:b0:44:44:f2:f4:a2:65:3d:bb:88: 6f:4f:93:17:d2:83:9d:5d:7d:f1:d1:8b:50:35:03: dd:21:9f:59:29:a1:b0:1c:dd:14:56:a4:56:d2:01: 3c:18:c9:f0:a2:e7:e8:8a:22:bc:07:3f:00:9a:89: 29:ac:e0:53:b7:b4:84:b7:3c:8e:ac:9d:2b:f8:29: 2f:fb:cd:1e:ff:aa:68:df:c0:db:7a:d9:d9:8e:d1: 28:10:e0:3e:ed:57:42:dd:5a:9e:24:a3:f7:c2:4c: 4f:d0:b4:d2:48:55:37:84:9e:6c:0a:88:be:18:85: 4c:12:fc:34:25:19:13:0f:6d:7b:ff:59:64:e9:88: d2:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:40:29:6D:D8:9A:68:0C:4C:96:79:B8:07:F1:26:D0:81:7C:AB:69 X509v3 Authority Key Identifier: keyid:6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:08:94:9b:a9:19:6c:6b:a4:da:92:3a:c6:03:96:aa:8f:b5: 65:ab:72:75:d4:8c:75:3b:46:95:cc:ac:92:f0:a8:b7:8e:c9: fb:95:a6:e9:35:69:f1:5f:23:43:d9:7e:6c:01:e4:85:65:c2: 49:bb:ee:8e:20:64:0f:45:89:96:e6:f0:ce:80:99:e2:f5:84: 17:7a:51:8a:62:df:76:10:03:32:08:5c:45:0e:7d:1c:48:b8: e4:2b:63:e1:8b:b1:5b:39:c2:04:34:96:b0:e1:91:4c:70:f5: e9:46:88:a0:6e:e2:ed:71:8a:18:d0:93:d4:84:38:72:d6:e4: ac:b1:12:d7:cc:bb:c8:9f:84:a2:a6:c5:1e:12:bb:be:fa:88: e4:55:e1:7d:10:a4:bb:62:35:97:6e:6d:09:76:df:58:bc:06: fd:19:08:7b:bb:f5:94:bc:60:98:05:19:dd:6d:12:33:f8:93: db:f3:92:e3:5a:6d:ef:72:81:61:57:71:99:7c:9c:53:74:25: 78:c9:b4:39:dc:51:49:85:d5:62:19:84:cb:72:c5:b0:1e:e2: 6f:f9:db:6a:92:95:72:e9:89:09:d7:ba:4e:ed:f7:14:e8:0e: 03:67:64:d8:c5:d2:e0:35:34:fe:13:a7:e0:b3:4f:f3:c4:e3: 3e:81:30:44 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RDk1ODExMC8GA1UEBRMoNkMxMUY4M0I5QThDQkREMjE1MzJEREYwRUE2MURFOTM4 OEQxM0M2QjAeFw0yNDEyMjUwNjExMjZaFw0yNTAxMDEwNjExMjZaMBgxFjAUBgNV BAMTDTY3NmJhMjBlLTQxOWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDL7DWWd6aVQF05vDov15+DYpfUhC7mzHQWFuQp+F5WFvqYMsU++5AqZ916MMU/ 1CVGTw/6eNcRH0InCEaTfld7GH0/KXydoPwn/SHMlbpmjtUe5ogg5z9SwqwFgF8w vL2wOWG1ynkKtVA2Kc5gMskJdPeiBl1Dz/osAmSwsERE8vSiZT27iG9PkxfSg51d ffHRi1A1A90hn1kpobAc3RRWpFbSATwYyfCi5+iKIrwHPwCaiSms4FO3tIS3PI6s nSv4KS/7zR7/qmjfwNt62dmO0SgQ4D7tV0LdWp4ko/fCTE/QtNJIVTeEnmwKiL4Y hUwS/DQlGRMPbXv/WWTpiNJnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMkApbdia aAxMlnm4B/Em0IF8q2kwHwYDVR0jBBgwFoAUbBH4O5qMvdIVMt3w6mHek4jRPGsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEOTU4LzZGNjI4Mzg4QjM5 QjExRUY4MEY2NDM1RUM0RjlBRTAyL2JCSDRPNXFNdmRJVk10M3c2bUhlazRqUlBH cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkJINE81cU12ZElWTXQzdzZtSGVrNGpSUEdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdE OTU4LzZGNjI4Mzg4QjM5QjExRUY4MEY2NDM1RUM0RjlBRTAyL2JCSDRPNXFNdmRJ Vk10M3c2bUhlazRqUlBHcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALMIlJupGWxrpNqSOsYDlqqPtWWrcnXUjHU7RpXMrJLwqLeOyfuVpuk1 afFfI0PZfmwB5IVlwkm77o4gZA9FiZbm8M6AmeL1hBd6UYpi33YQAzIIXEUOfRxI uOQrY+GLsVs5wgQ0lrDhkUxw9elGiKBu4u1xihjQk9SEOHLW5KyxEtfMu8ifhKKm xR4Su776iORV4X0QpLtiNZdubQl231i8Bv0ZCHu79ZS8YJgFGd1tEjP4k9vzkuNa be9ygWFXcZl8nFN0JXjJtDncUUmF1WIZhMtyxbAe4m/522qSlXLpiQnXuk7t9xTo DgNnZNjF0uA1NP4Tp+CzT/PE4z6BMEQ= -----END CERTIFICATE-----Generated at Wed Dec 25 08:00:03 2024 by rpki-client on console-ams.rpki-client.org