$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft File: bkWq8A0m8fB31nRzkUTUuMOU87g.mft (raw, json) Hash identifier: zN2xOjvBtbbZIRM5TX7M85DXNavmRtL5g8qvSN9jkBQ= Subject key identifier: 76:FA:82:B7:FD:99:63:BA:6C:A8:C8:71:40:9A:09:EE:61:C4:CF:B3 Authority key identifier: 6E:45:AA:F0:0D:26:F1:F0:77:D6:74:73:91:44:D4:B8:C3:94:F3:B8 Certificate issuer: /CN=A919F0DA/serialNumber=6E45AAF00D26F1F077D674739144D4B8C394F3B8 Certificate serial: 237E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkWq8A0m8fB31nRzkUTUuMOU87g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft Manifest number: 5F10 Signing time: Fri 22 Nov 2024 14:15:27 +0000 Manifest this update: Fri 22 Nov 2024 14:15:26 +0000 Manifest next update: Fri 29 Nov 2024 14:15:26 +0000 Files and hashes: 1: bkWq8A0m8fB31nRzkUTUuMOU87g.crl (hash: 1t+TAHHQS70krSbT15IZun3KlPpFzoAxQN1zBFLN/WM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.crl rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkWq8A0m8fB31nRzkUTUuMOU87g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:15:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9086 (0x237e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA/serialNumber=6E45AAF00D26F1F077D674739144D4B8C394F3B8 Validity Not Before: Nov 22 14:15:26 2024 GMT Not After : Nov 29 14:15:26 2024 GMT Subject: CN=674091ff-c77c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:85:43:2e:29:62:a5:e9:4e:34:c6:ce:32:79: b8:27:3b:39:56:b8:f3:95:46:e8:5c:eb:87:fe:5f: 4a:eb:45:e9:9d:35:a4:8a:34:4c:af:4b:6b:f4:e1: 52:d6:59:27:a5:2d:df:f8:18:2f:17:9d:45:04:39: f2:97:4e:62:c0:ee:a7:cd:6e:38:b7:ed:ad:dd:ca: 3b:f3:bb:e0:38:17:5a:8a:d0:54:eb:dc:64:88:11: 4a:be:ee:13:90:f2:26:24:76:ad:4b:c0:4d:f7:d9: 6e:a4:6c:c2:93:24:60:b7:f3:68:6a:20:e9:0e:8c: 52:39:8e:98:55:ca:2f:26:2c:d1:48:3a:b6:fd:40: 34:c1:47:69:f1:de:4f:a1:79:18:90:66:59:89:81: b6:82:65:b9:59:1a:1d:10:3d:cf:3c:88:33:8b:af: 58:e6:c8:b1:89:4c:46:1f:ca:a7:e5:0f:fb:5a:1a: ba:a9:ed:c7:20:47:c7:12:fc:3b:97:9b:75:3b:b9: 16:82:27:cc:e0:7c:69:84:85:c4:a1:4b:2f:f1:f4: bc:95:5f:38:c6:ad:6b:68:0f:75:f5:7a:f6:28:23: c8:93:bf:65:ad:ab:b8:7b:ff:cc:fc:f2:e0:f2:2b: 11:e4:fc:54:65:6d:7b:e6:e6:9a:14:75:1c:87:93: bb:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:FA:82:B7:FD:99:63:BA:6C:A8:C8:71:40:9A:09:EE:61:C4:CF:B3 X509v3 Authority Key Identifier: keyid:6E:45:AA:F0:0D:26:F1:F0:77:D6:74:73:91:44:D4:B8:C3:94:F3:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkWq8A0m8fB31nRzkUTUuMOU87g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:a2:52:7a:27:06:65:46:67:c6:76:33:68:f4:57:b8:98:27: e2:ca:4e:09:89:e3:35:a2:9b:e3:d1:59:47:5a:fe:d2:27:0f: e7:39:b1:a1:8e:3d:5e:5b:08:aa:8e:f8:4a:8c:b5:03:5d:9a: 0a:1a:09:f4:19:df:9f:0b:79:2a:53:c2:c8:82:8e:6e:05:02: 2c:24:89:84:5e:03:7f:ea:e0:21:8f:96:50:0f:cc:dc:5f:0d: d8:7b:04:cf:d3:b4:5f:4e:8e:65:2a:70:aa:da:63:0e:a3:7c: f3:d7:a1:ea:11:41:7f:35:fd:b1:72:51:21:3a:02:1a:35:19: 58:47:93:04:48:b6:2e:b7:91:a7:b5:cb:3e:85:5a:b3:8c:54: 8e:67:97:69:6f:d1:8f:f3:9a:24:f1:ec:cf:ea:b9:d6:ba:3b: 92:31:a6:6e:b7:38:a3:c8:04:44:cd:4c:7e:f9:f9:89:e2:a1: 6f:da:cb:21:fb:c7:70:a3:f7:da:00:21:82:a3:ec:1b:72:38: c8:de:cd:fe:30:77:41:2f:59:7e:ba:0c:22:a6:1f:64:39:4f: 11:34:6d:89:41:0c:ee:29:7b:b5:0e:db:20:e4:33:a0:1f:3c: 80:0f:94:e0:1d:af:00:f6:b0:e3:4a:a7:dd:59:00:82:4d:a7: aa:f5:63:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDZFNDVBQUYwMEQyNkYxRjA3N0Q2NzQ3MzkxNDRENEI4 QzM5NEYzQjgwHhcNMjQxMTIyMTQxNTI2WhcNMjQxMTI5MTQxNTI2WjAYMRYwFAYD VQQDEw02NzQwOTFmZi1jNzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5IVDLilipelONMbOMnm4Jzs5VrjzlUboXOuH/l9K60XpnTWkijRMr0tr9OFS 1lknpS3f+BgvF51FBDnyl05iwO6nzW44t+2t3co787vgOBdaitBU69xkiBFKvu4T kPImJHatS8BN99lupGzCkyRgt/NoaiDpDoxSOY6YVcovJizRSDq2/UA0wUdp8d5P oXkYkGZZiYG2gmW5WRodED3PPIgzi69Y5sixiUxGH8qn5Q/7Whq6qe3HIEfHEvw7 l5t1O7kWgifM4HxphIXEoUsv8fS8lV84xq1raA919Xr2KCPIk79lrau4e//M/PLg 8isR5PxUZW175uaaFHUch5O7GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHb6grf9 mWO6bKjIcUCaCe5hxM+zMB8GA1UdIwQYMBaAFG5FqvANJvHwd9Z0c5FE1LjDlPO4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS8xNTBEM0VGNDFE NjgxMUUyOEMxODI4QTQwOEIwMkNEMi9ia1dxOEEwbThmQjMxblJ6a1VUVXVNT1U4 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JrV3E4QTBtOGZCMzFuUnprVVRVdU1PVTg3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS8xNTBEM0VGNDFENjgxMUUyOEMxODI4QTQwOEIwMkNEMi9ia1dxOEEwbThm QjMxblJ6a1VUVXVNT1U4N2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQolJ6JwZlRmfGdjNo9Fe4mCfiyk4JieM1opvj0VlHWv7SJw/nObGh jj1eWwiqjvhKjLUDXZoKGgn0Gd+fC3kqU8LIgo5uBQIsJImEXgN/6uAhj5ZQD8zc Xw3YewTP07RfTo5lKnCq2mMOo3zz16HqEUF/Nf2xclEhOgIaNRlYR5MESLYut5Gn tcs+hVqzjFSOZ5dpb9GP85ok8ezP6rnWujuSMaZutzijyAREzUx++fmJ4qFv2ssh +8dwo/faACGCo+wbcjjI3s3+MHdBL1l+ugwiph9kOU8RNG2JQQzuKXu1Dtsg5DOg HzyAD5TgHa8A9rDjSqfdWQCCTaeq9WPL -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:39 2024 by rpki-client on console-fra.rpki-client.org