$ rpki-client -vvf rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.mft File: bP1Wp36tnhWbyxjrbehic1CRtUo.mft (raw, json) Hash identifier: /+C5t5vfHvxCzNQNGsZSGpZWZP/13O7uDwC9d7M1RbA= Subject key identifier: 17:63:11:97:AB:7B:0B:C4:E8:DD:E2:EF:6F:1B:3E:E8:C9:87:86:6E Authority key identifier: 6C:FD:56:A7:7E:AD:9E:15:9B:CB:18:EB:6D:E8:62:73:50:91:B5:4A Certificate issuer: /CN=A918E319/serialNumber=6CFD56A77EAD9E159BCB18EB6DE862735091B54A Certificate serial: 18EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bP1Wp36tnhWbyxjrbehic1CRtUo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.mft Manifest number: 18A8 Signing time: Fri 22 Nov 2024 16:29:56 +0000 Manifest this update: Fri 22 Nov 2024 16:29:56 +0000 Manifest next update: Fri 29 Nov 2024 16:29:56 +0000 Files and hashes: 1: bP1Wp36tnhWbyxjrbehic1CRtUo.crl (hash: LxvjLV/k0PjGeIO0+eFqKrwckT4l3/G4NeyK3I8IkS4=) 2: E611E95E6B9E11EB87785D16C4F9AE02.roa (hash: 23kvYq8AUoZj2oZKRBV6LwP3RYjPvLZl9vzan/M5+OU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.crl rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bP1Wp36tnhWbyxjrbehic1CRtUo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:29:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6380 (0x18ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E319/serialNumber=6CFD56A77EAD9E159BCB18EB6DE862735091B54A Validity Not Before: Nov 22 16:29:56 2024 GMT Not After : Nov 29 16:29:56 2024 GMT Subject: CN=6740b184-276d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fc:b3:3b:4a:90:26:77:e6:07:9f:ef:7e:0c: dd:13:94:47:6a:bf:01:03:eb:41:47:31:47:5c:c8: 4e:32:f9:93:a4:a1:6d:c5:08:f5:68:31:ef:66:ed: c0:e5:10:2c:1f:8e:2b:c1:03:6a:ff:55:29:30:f4: 50:3c:0d:91:49:91:be:98:64:7d:7d:84:28:f7:82: 63:4d:97:9d:fc:6a:3a:52:2e:a7:4b:67:6e:9d:77: 17:ba:b4:dd:80:c8:8a:82:75:7a:c5:5f:1f:c8:a9: 9c:82:bf:7c:67:25:e7:7f:24:57:b1:c1:fa:a5:a9: 19:bd:f4:eb:10:a9:27:6e:02:1f:33:d0:83:d5:6e: 3e:ee:69:b2:6a:c7:8a:dd:44:17:33:d7:20:20:42: 40:8f:f6:90:67:cd:0b:f9:09:67:fa:af:c3:62:a5: 00:90:51:f7:fa:20:ca:d0:18:93:11:fb:5c:77:12: 33:a1:bd:26:7b:1f:d2:17:f6:ea:50:a5:59:53:dc: 3c:9a:70:4b:76:9a:b9:b9:a1:7c:38:9b:b5:48:c2: 8c:5e:26:95:97:de:12:3d:9c:11:3e:2e:01:2e:98: c9:0a:56:eb:48:c0:d1:31:5a:5b:7e:c5:44:d1:d2: e4:48:1d:de:73:a1:91:62:85:50:34:2f:ab:ea:ca: fe:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:63:11:97:AB:7B:0B:C4:E8:DD:E2:EF:6F:1B:3E:E8:C9:87:86:6E X509v3 Authority Key Identifier: keyid:6C:FD:56:A7:7E:AD:9E:15:9B:CB:18:EB:6D:E8:62:73:50:91:B5:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bP1Wp36tnhWbyxjrbehic1CRtUo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:76:c2:cf:4e:c9:56:ea:19:05:76:42:04:3e:37:44:9e:6f: 42:cb:cc:e7:da:c2:d8:b5:14:51:05:83:d2:b4:e7:f2:2b:7d: a7:47:77:57:35:a4:50:d9:cb:96:2f:08:b0:ff:00:f4:fd:c5: 28:7a:ce:4a:b0:28:b1:ad:b1:c7:44:4f:a6:21:11:f4:4b:34: 8c:4b:a9:88:19:d7:30:89:9e:ae:f9:3b:98:a0:2a:30:05:bd: c5:05:16:b7:97:08:a5:15:b1:dd:c2:36:4a:f8:e6:2e:03:94: 5d:36:9c:f6:cd:36:57:1e:c3:5b:08:9f:79:c6:96:21:77:48: 87:8d:a7:73:97:ea:5a:5a:49:a6:56:39:ae:93:29:01:9d:89: e2:f8:5b:e5:ab:58:f8:a6:a9:f3:49:07:c8:be:46:2a:1b:f7: 5e:47:6c:e1:f3:9b:6e:90:79:66:e8:2b:25:d8:e7:34:2a:c3: d9:09:48:e3:e4:f7:48:33:15:0f:fa:92:f2:00:c6:cc:aa:f8: 35:48:ce:ed:38:92:a8:64:da:fa:85:c7:6f:4c:da:d3:1e:f3: cb:8a:11:24:d7:51:07:ab:c8:f4:9a:6e:bc:a1:e7:e4:99:26: ba:44:96:be:66:c9:bf:d7:fb:e2:f0:8b:2e:43:e6:e9:fb:17: 2b:f0:85:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUzMTkxMTAvBgNVBAUTKDZDRkQ1NkE3N0VBRDlFMTU5QkNCMThFQjZERTg2Mjcz NTA5MUI1NEEwHhcNMjQxMTIyMTYyOTU2WhcNMjQxMTI5MTYyOTU2WjAYMRYwFAYD VQQDEw02NzQwYjE4NC0yNzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/yzO0qQJnfmB5/vfgzdE5RHar8BA+tBRzFHXMhOMvmTpKFtxQj1aDHvZu3A 5RAsH44rwQNq/1UpMPRQPA2RSZG+mGR9fYQo94JjTZed/Go6Ui6nS2dunXcXurTd gMiKgnV6xV8fyKmcgr98ZyXnfyRXscH6pakZvfTrEKknbgIfM9CD1W4+7mmyaseK 3UQXM9cgIEJAj/aQZ80L+Qln+q/DYqUAkFH3+iDK0BiTEftcdxIzob0mex/SF/bq UKVZU9w8mnBLdpq5uaF8OJu1SMKMXiaVl94SPZwRPi4BLpjJClbrSMDRMVpbfsVE 0dLkSB3ec6GRYoVQNC+r6sr+gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdjEZer ewvE6N3i728bPujJh4ZuMB8GA1UdIwQYMBaAFGz9Vqd+rZ4Vm8sY623oYnNQkbVK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTMxOS84NjhERDY1NjhD MjYxMUU3QkMwNkM0NEVDNEY5QUUwMi9iUDFXcDM2dG5oV2J5eGpyYmVoaWMxQ1J0 VW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JQMVdwMzZ0bmhXYnl4anJiZWhpYzFDUnRVby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTMxOS84NjhERDY1NjhDMjYxMUU3QkMwNkM0NEVDNEY5QUUwMi9iUDFXcDM2dG5o V2J5eGpyYmVoaWMxQ1J0VW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1dsLPTslW6hkFdkIEPjdEnm9Cy8zn2sLYtRRRBYPStOfyK32nR3dX NaRQ2cuWLwiw/wD0/cUoes5KsCixrbHHRE+mIRH0SzSMS6mIGdcwiZ6u+TuYoCow Bb3FBRa3lwilFbHdwjZK+OYuA5RdNpz2zTZXHsNbCJ95xpYhd0iHjadzl+paWkmm VjmukykBnYni+Fvlq1j4pqnzSQfIvkYqG/deR2zh85tukHlm6Csl2Oc0KsPZCUjj 5PdIMxUP+pLyAMbMqvg1SM7tOJKoZNr6hcdvTNrTHvPLihEk11EHq8j0mm68oefk mSa6RJa+Zsm/1/vi8IsuQ+bp+xcr8IUB -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:07 2024 by rpki-client on console-ams.rpki-client.org