$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft File: BQ5HmwmNZLazhlsr5GiFdeotTVE.mft (raw, json) Hash identifier: ViQ/tABLQhU29Vqy9bhIvLH5uVajGYDNAw8mJvHM/l0= Subject key identifier: F3:FE:D4:79:35:17:C7:9A:E9:2B:F4:59:2C:B9:86:54:A9:C1:BE:53 Authority key identifier: 05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 Certificate issuer: /CN=A91AB457/serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Certificate serial: 0B60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft Manifest number: 0B60 Signing time: Fri 22 Nov 2024 18:51:08 +0000 Manifest this update: Fri 22 Nov 2024 18:51:08 +0000 Manifest next update: Fri 29 Nov 2024 18:51:08 +0000 Files and hashes: 1: BQ5HmwmNZLazhlsr5GiFdeotTVE.crl (hash: fwY+UcqUFcgJq/XFTR1Sr2i/RBffRwABS01qNl9qcqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2912 (0xb60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB457/serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Validity Not Before: Nov 22 18:51:08 2024 GMT Not After : Nov 29 18:51:08 2024 GMT Subject: CN=6740d29c-f24e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3f:01:84:31:2c:7c:2d:74:b7:b3:84:04:aa: 9b:71:2f:06:9d:05:ea:1e:ff:89:4d:c9:35:0a:9f: 13:82:88:ad:a8:61:15:80:80:47:c7:e0:f4:0f:bc: d6:c7:00:1a:4e:56:b7:e7:c1:88:6a:ee:e0:61:f9: b0:9d:e4:2d:41:46:c8:a5:36:77:3f:cb:af:8d:e8: 2b:93:cc:e4:96:58:d6:f4:7f:13:72:ff:58:11:b7: 95:18:34:61:28:8d:bf:bb:1b:ac:87:eb:12:a2:b2: 63:80:86:f0:67:55:5c:24:78:32:40:ed:7d:5d:44: bb:5e:74:63:57:93:8c:33:1b:8f:a3:8a:31:3e:c0: 89:07:cc:c5:ce:97:46:43:9e:a0:33:d5:be:19:74: de:b0:a3:99:db:f4:f1:19:51:24:b7:d2:ba:5e:dd: 64:54:1e:d0:bb:d6:71:ab:89:d1:97:bb:ee:98:44: 0b:84:b5:31:cc:0c:2a:63:76:99:75:39:d7:92:a8: 4e:2c:2f:2c:6a:7e:e5:27:72:29:ab:d7:21:cf:32: 93:4f:b8:18:ff:dd:52:92:6c:c1:3d:c5:6d:88:ee: 26:af:ae:aa:64:0b:b1:cc:15:ea:96:16:14:e2:d5: 5c:5e:90:5f:cd:93:d1:ee:7e:f2:ec:65:78:5c:e4: c1:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:FE:D4:79:35:17:C7:9A:E9:2B:F4:59:2C:B9:86:54:A9:C1:BE:53 X509v3 Authority Key Identifier: keyid:05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:ea:e0:6c:e0:90:27:ff:a0:1d:49:cd:9c:45:db:96:33:4c: e8:9e:c4:dc:12:95:b0:5a:30:57:a2:25:05:60:55:26:36:30: cb:05:f1:f9:d9:06:3d:09:59:7d:2b:9a:60:60:f1:d0:fe:73: 66:3a:1f:a6:45:cb:da:9e:06:96:dd:bb:52:e5:f1:40:18:f3: 6d:7b:88:7f:05:37:cf:99:12:4b:47:75:38:73:90:be:11:7e: 8e:fd:39:5a:32:f6:a2:51:89:42:ad:92:d8:fd:8a:a6:ed:a0: e6:d9:b7:75:06:f8:30:a0:bb:66:58:03:40:dc:8e:9a:59:a5: d1:ce:b5:04:e3:49:28:58:cf:cb:53:7f:68:0e:8b:62:c3:ab: a0:9b:ca:2f:a9:a9:96:6f:aa:40:4f:07:cc:4e:3d:1c:c5:37: ed:ae:aa:b8:4d:bc:38:2d:2f:c4:ac:10:e6:4b:49:b4:31:19: a8:c6:d0:62:88:a6:ef:05:09:7c:e3:ca:94:cc:4e:ff:7e:a5: 03:c5:15:99:6e:8a:24:b9:ee:61:81:0c:a9:fd:f3:ff:11:af: fb:91:cb:b3:76:3e:51:77:77:bf:7d:6b:76:40:00:2f:81:a0: 4b:de:6b:aa:bf:4c:33:59:28:e0:a7:72:97:b2:c9:b3:61:d1: 66:c4:5e:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0NTcxMTAvBgNVBAUTKDA1MEU0NzlCMDk4RDY0QjZCMzg2NUIyQkU0Njg4NTc1 RUEyRDRENTEwHhcNMjQxMTIyMTg1MTA4WhcNMjQxMTI5MTg1MTA4WjAYMRYwFAYD VQQDEw02NzQwZDI5Yy1mMjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsT8BhDEsfC10t7OEBKqbcS8GnQXqHv+JTck1Cp8TgoitqGEVgIBHx+D0D7zW xwAaTla358GIau7gYfmwneQtQUbIpTZ3P8uvjegrk8zklljW9H8Tcv9YEbeVGDRh KI2/uxush+sSorJjgIbwZ1VcJHgyQO19XUS7XnRjV5OMMxuPo4oxPsCJB8zFzpdG Q56gM9W+GXTesKOZ2/TxGVEkt9K6Xt1kVB7Qu9Zxq4nRl7vumEQLhLUxzAwqY3aZ dTnXkqhOLC8san7lJ3Ipq9chzzKTT7gY/91SkmzBPcVtiO4mr66qZAuxzBXqlhYU 4tVcXpBfzZPR7n7y7GV4XOTBgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPP+1Hk1 F8ea6Sv0WSy5hlSpwb5TMB8GA1UdIwQYMBaAFAUOR5sJjWS2s4ZbK+RohXXqLU1R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjQ1Ny81QUY2NjEwMjFD OTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpMYXpobHNyNUdpRmRlb3RU VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRNUhtd21OWkxhemhsc3I1R2lGZGVvdFRWRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjQ1Ny81QUY2NjEwMjFDOTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpM YXpobHNyNUdpRmRlb3RUVkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC6uBs4JAn/6AdSc2cRduWM0zonsTcEpWwWjBXoiUFYFUmNjDLBfH5 2QY9CVl9K5pgYPHQ/nNmOh+mRcvangaW3btS5fFAGPNte4h/BTfPmRJLR3U4c5C+ EX6O/TlaMvaiUYlCrZLY/Yqm7aDm2bd1BvgwoLtmWANA3I6aWaXRzrUE40koWM/L U39oDotiw6ugm8ovqamWb6pATwfMTj0cxTftrqq4Tbw4LS/ErBDmS0m0MRmoxtBi iKbvBQl848qUzE7/fqUDxRWZbookue5hgQyp/fP/Ea/7kcuzdj5Rd3e/fWt2QAAv gaBL3muqv0wzWSjgp3KXssmzYdFmxF4r -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:15 2024 by rpki-client on console-ams.rpki-client.org