$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft File: bzPCWtM2F4RBLEKweYYz0Dslvso.mft (raw, json) Hash identifier: zv8o0E+z0I/lWq9PR8ZQCtxYgGg7Bb+quIgUTVR/CjI= Subject key identifier: D7:8C:A3:04:D6:C0:0A:4A:70:92:9B:73:14:B2:05:0B:F4:FF:2F:E6 Authority key identifier: 6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA Certificate issuer: /CN=A91AB027/serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Certificate serial: 0ED2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft Manifest number: 0ECA Signing time: Fri 22 Nov 2024 17:39:38 +0000 Manifest this update: Fri 22 Nov 2024 17:39:37 +0000 Manifest next update: Fri 29 Nov 2024 17:39:37 +0000 Files and hashes: 1: bzPCWtM2F4RBLEKweYYz0Dslvso.crl (hash: Cz2cwCfGMucUb19/vUKurWc/gx2+vxNR87Y1JAxliAU=) 2: 62C1F5587ACD11E9AC0A867BC4F9AE02.roa (hash: nPLVWy54o20K9NCgnKMQdW3UHlJN80xYDJGM9u1xe5s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:39:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3794 (0xed2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB027/serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Validity Not Before: Nov 22 17:39:37 2024 GMT Not After : Nov 29 17:39:37 2024 GMT Subject: CN=6740c1d9-ec16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2f:53:59:3e:5f:22:d3:38:ca:f1:76:d4:f2: 2f:dc:ae:28:a4:c2:2d:3f:03:c0:5b:7b:fe:1f:2b: 87:02:83:5e:cf:33:a9:61:b3:50:0c:d0:c4:1d:45: 03:be:2e:b5:6e:ef:53:af:a0:70:8c:c4:6f:85:79: 26:53:eb:77:ae:7c:be:91:51:0f:74:b3:21:ab:1c: 85:25:e4:97:c4:19:95:ec:99:37:77:b9:a1:02:30: 2d:e7:10:7b:51:49:56:a4:37:5e:58:fc:af:b3:77: da:43:ae:19:89:b5:68:2a:d6:d3:bf:72:7b:45:e3: 27:91:9a:02:26:07:1a:72:91:47:f8:d5:39:cb:c4: 36:ed:86:88:26:f9:2e:cb:5f:06:88:4b:3c:a4:43: 0a:5e:5a:cf:df:b4:5e:dc:5a:d6:81:87:a9:bf:04: 31:92:a3:42:b7:37:fb:6d:59:07:c4:22:bd:3a:ec: 28:7e:33:38:b4:f2:f7:75:f7:98:47:bc:ab:9d:1e: 77:35:65:c7:d7:e2:57:3c:70:02:fe:7a:a1:74:34: 81:c8:e6:db:6c:31:34:25:60:96:5d:d9:53:25:90: 8d:d0:01:87:3a:92:f6:ff:91:08:dc:21:be:c6:be: 41:77:6f:31:6c:28:ee:52:84:15:df:04:52:a6:1a: 8f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:8C:A3:04:D6:C0:0A:4A:70:92:9B:73:14:B2:05:0B:F4:FF:2F:E6 X509v3 Authority Key Identifier: keyid:6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:17:41:8d:eb:de:15:ec:50:ff:ea:77:62:1f:2f:36:2c:4b: 27:dd:d5:bd:e7:38:b2:df:d9:8f:ae:33:fa:31:ec:cb:ac:5a: 6e:e2:0d:cb:a9:26:b5:2b:d2:f4:d8:d3:38:16:58:a8:d3:97: 32:48:2a:9e:4f:38:f8:97:45:06:0e:bc:7b:f6:a3:b7:a0:72: 4d:bd:5c:90:b0:28:c1:36:a1:0a:c3:c2:75:0e:fa:41:14:a1: 70:44:54:40:4d:f8:45:9e:3d:f8:22:1d:5e:6f:49:68:e4:5c: b1:14:c0:e6:ab:d6:de:c9:da:b8:38:68:3a:18:82:f6:87:45: df:10:aa:b1:c3:88:16:ff:15:5e:fe:5f:24:78:4e:30:86:b0: 6e:7e:9d:bd:4d:af:7c:3e:c2:91:5c:a9:cb:1a:db:dc:b7:cf: 88:ae:f4:82:ab:53:19:31:a7:6c:e8:00:17:67:25:2a:2d:6c: 3a:03:a8:15:85:ef:26:40:93:21:2a:42:9c:54:da:76:11:a3: fb:4b:8f:ab:34:cc:00:d5:10:4c:0d:bc:23:e0:f9:3c:93:da: 75:6b:d1:1b:76:8b:11:44:0f:ed:fd:92:24:71:f6:71:8e:73: 35:b9:2c:44:cc:a7:d9:f8:20:aa:07:d4:48:a5:43:ae:20:98: d5:97:3c:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwMjcxMTAvBgNVBAUTKDZGMzNDMjVBRDMzNjE3ODQ0MTJDNDJCMDc5ODYzM0Qw M0IyNUJFQ0EwHhcNMjQxMTIyMTczOTM3WhcNMjQxMTI5MTczOTM3WjAYMRYwFAYD VQQDEw02NzQwYzFkOS1lYzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxC9TWT5fItM4yvF21PIv3K4opMItPwPAW3v+HyuHAoNezzOpYbNQDNDEHUUD vi61bu9Tr6BwjMRvhXkmU+t3rny+kVEPdLMhqxyFJeSXxBmV7Jk3d7mhAjAt5xB7 UUlWpDdeWPyvs3faQ64ZibVoKtbTv3J7ReMnkZoCJgcacpFH+NU5y8Q27YaIJvku y18GiEs8pEMKXlrP37Re3FrWgYepvwQxkqNCtzf7bVkHxCK9OuwofjM4tPL3dfeY R7yrnR53NWXH1+JXPHAC/nqhdDSByObbbDE0JWCWXdlTJZCN0AGHOpL2/5EI3CG+ xr5Bd28xbCjuUoQV3wRSphqPcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNeMowTW wApKcJKbcxSyBQv0/y/mMB8GA1UdIwQYMBaAFG8zwlrTNheEQSxCsHmGM9A7Jb7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjAyNy82OEY3NTkxMDcz NDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0UkJMRUt3ZVlZejBEc2x2 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J6UENXdE0yRjRSQkxFS3dlWVl6MERzbHZzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjAyNy82OEY3NTkxMDczNDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0 UkJMRUt3ZVlZejBEc2x2c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdF0GN694V7FD/6ndiHy82LEsn3dW95ziy39mPrjP6MezLrFpu4g3L qSa1K9L02NM4Flio05cySCqeTzj4l0UGDrx79qO3oHJNvVyQsCjBNqEKw8J1DvpB FKFwRFRATfhFnj34Ih1eb0lo5FyxFMDmq9beydq4OGg6GIL2h0XfEKqxw4gW/xVe /l8keE4whrBufp29Ta98PsKRXKnLGtvct8+IrvSCq1MZMads6AAXZyUqLWw6A6gV he8mQJMhKkKcVNp2EaP7S4+rNMwA1RBMDbwj4Pk8k9p1a9EbdosRRA/t/ZIkcfZx jnM1uSxEzKfZ+CCqB9RIpUOuIJjVlzy2 -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:02 2024 by rpki-client on console-fra.rpki-client.org