$ rpki-client -vvf rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft File: BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft (raw, json) Hash identifier: jmXnrUQ7KiaawKLapMvcDpJFBlCLbC+L9qUwxyr7GB8= Subject key identifier: 6C:6E:46:53:BF:B1:2E:F3:0C:50:0A:74:88:48:78:19:16:53:A8:6E Authority key identifier: 05:A3:36:F6:46:C6:83:37:89:B6:AE:7C:92:07:2B:7F:94:D9:DC:29 Certificate issuer: /CN=A9199B85/serialNumber=05A336F646C6833789B6AE7C92072B7F94D9DC29 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft Manifest number: 95 Signing time: Thu 21 Nov 2024 01:19:02 +0000 Manifest this update: Thu 21 Nov 2024 01:19:02 +0000 Manifest next update: Thu 28 Nov 2024 01:19:02 +0000 Files and hashes: 1: BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl (hash: 2d/NbNqq2atPUABG7JsI4t8h8/YqHwVriG2krOe0w3g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199B85/serialNumber=05A336F646C6833789B6AE7C92072B7F94D9DC29 Validity Not Before: Nov 21 01:19:02 2024 GMT Not After : Nov 28 01:19:02 2024 GMT Subject: CN=673e8a86-290a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1d:36:8d:9a:f4:a1:2e:81:2a:a8:0d:b8:da: 48:7d:b4:48:81:8c:9a:44:d7:7c:86:82:48:71:cf: ca:6b:9d:88:78:bb:84:0f:a1:5e:bd:a4:a2:e5:b8: 8f:46:58:c5:df:28:65:1f:40:de:a3:bc:68:57:f1: 2a:e3:d0:2d:b4:a6:ad:20:50:13:be:7e:28:4b:98: 2d:7b:72:fb:0e:57:34:e8:a2:da:78:35:08:57:ea: 6f:ad:08:7e:e2:7b:8f:e8:97:fd:a0:98:df:84:44: 0f:e4:c2:e0:69:d9:f9:a7:04:d4:8a:b4:75:2a:4f: 3d:02:c9:6a:ac:9b:3c:32:94:34:01:ae:b2:18:ee: 09:9e:53:cb:fc:cc:4d:be:94:ae:ab:06:6b:bb:70: 8e:ce:57:ab:e1:a1:44:b8:c1:c4:89:84:0f:b5:be: 23:1a:b6:22:f6:e9:9f:c5:88:57:5f:63:1f:dc:ee: bd:37:27:53:ea:c8:b8:b5:d5:a6:f8:08:d7:2a:9c: b7:68:cb:32:49:e6:32:1e:ac:d0:b5:d7:c2:2d:cd: 07:86:ee:93:46:f2:f5:5e:87:5e:ea:9b:8e:79:6b: 99:dc:e9:00:13:07:3a:4e:42:c9:ab:72:4f:e7:31: 5b:65:dc:c1:8a:0b:69:b5:a9:6e:38:5b:9b:dd:2e: 6f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:6E:46:53:BF:B1:2E:F3:0C:50:0A:74:88:48:78:19:16:53:A8:6E X509v3 Authority Key Identifier: keyid:05:A3:36:F6:46:C6:83:37:89:B6:AE:7C:92:07:2B:7F:94:D9:DC:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:f4:52:f8:f3:0d:a7:0a:46:87:01:66:5c:d7:9b:f8:9b:3a: 3c:01:f4:43:79:12:41:db:a5:5a:b8:4d:ad:a2:10:44:b8:e5: 94:dc:b0:4e:e3:b7:15:3b:96:0a:d7:b9:da:8d:c0:3e:e1:a5: e4:81:7e:fb:88:a6:70:ca:0e:77:b1:1f:da:1d:9f:25:d3:0a: ba:f9:e0:8d:f4:87:70:e8:e4:bf:c9:9b:f2:34:0b:ac:20:e3: 61:29:fe:b5:b8:5c:b0:a7:60:85:20:3e:f7:46:0e:9f:b4:81: a0:b5:39:01:ce:22:28:c3:c3:2e:41:46:ac:87:52:34:ba:e9: 24:05:ad:29:4a:b8:7d:70:aa:ad:32:92:55:95:22:5f:82:a3: c1:bb:b0:4d:76:e0:28:c5:07:02:dc:d5:67:37:47:72:e1:28: d6:58:62:b5:13:39:3c:66:46:f8:9d:76:07:4d:17:d3:72:a6: bf:12:db:e4:e3:81:1f:1f:86:75:fb:1a:cb:63:1d:10:7e:51: a1:fc:23:90:42:3d:d2:93:24:9f:e6:99:da:fc:1d:e5:1c:ac: 1b:47:f4:0a:14:e8:74:f5:13:81:7b:44:6f:5d:81:1d:2e:95: e7:53:03:17:ee:5b:74:25:41:a6:df:64:10:9a:c3:c3:1b:e7: 54:6f:be:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlCODUxMTAvBgNVBAUTKDA1QTMzNkY2NDZDNjgzMzc4OUI2QUU3QzkyMDcyQjdG OTREOURDMjkwHhcNMjQxMTIxMDExOTAyWhcNMjQxMTI4MDExOTAyWjAYMRYwFAYD VQQDEw02NzNlOGE4Ni0yOTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwx02jZr0oS6BKqgNuNpIfbRIgYyaRNd8hoJIcc/Ka52IeLuED6FevaSi5biP RljF3yhlH0Deo7xoV/Eq49AttKatIFATvn4oS5gte3L7Dlc06KLaeDUIV+pvrQh+ 4nuP6Jf9oJjfhEQP5MLgadn5pwTUirR1Kk89AslqrJs8MpQ0Aa6yGO4JnlPL/MxN vpSuqwZru3COzler4aFEuMHEiYQPtb4jGrYi9umfxYhXX2Mf3O69NydT6si4tdWm +AjXKpy3aMsySeYyHqzQtdfCLc0Hhu6TRvL1Xode6puOeWuZ3OkAEwc6TkLJq3JP 5zFbZdzBigtptaluOFub3S5v+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGxuRlO/ sS7zDFAKdIhIeBkWU6huMB8GA1UdIwQYMBaAFAWjNvZGxoM3ibaufJIHK3+U2dwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUI4NS83RDg2QTIzOEM2 MTUxMUVFQTcxOEUzMzhDNEY5QUUwMi9CYU0yOWtiR2d6ZUp0cTU4a2djcmY1VFoz Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JhTTI5a2JHZ3plSnRxNThrZ2NyZjVUWjNDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUI4NS83RDg2QTIzOEM2MTUxMUVFQTcxOEUzMzhDNEY5QUUwMi9CYU0yOWtiR2d6 ZUp0cTU4a2djcmY1VFozQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk9FL48w2nCkaHAWZc15v4mzo8AfRDeRJB26VauE2tohBEuOWU3LBO 47cVO5YK17najcA+4aXkgX77iKZwyg53sR/aHZ8l0wq6+eCN9Idw6OS/yZvyNAus IONhKf61uFywp2CFID73Rg6ftIGgtTkBziIow8MuQUash1I0uukkBa0pSrh9cKqt MpJVlSJfgqPBu7BNduAoxQcC3NVnN0dy4SjWWGK1Ezk8Zkb4nXYHTRfTcqa/Etvk 44EfH4Z1+xrLYx0QflGh/COQQj3SkySf5pna/B3lHKwbR/QKFOh09ROBe0RvXYEd LpXnUwMX7lt0JUGm32QQmsPDG+dUb76b -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:01 2024 by rpki-client on console-fra.rpki-client.org