$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft File: bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft (raw, json) Hash identifier: r+mCzzvRC3QUAWbgHzHilkgvzbldaGKSUY+NDQCLsSw= Subject key identifier: 97:42:F1:C9:D8:0E:CC:9B:96:BD:5E:38:7C:82:C5:D5:81:A0:CB:27 Authority key identifier: 6D:D0:75:C0:70:CD:19:40:5C:09:4D:4D:3D:4B:DA:16:34:0C:EE:FC Certificate issuer: /CN=A91B4873/serialNumber=6DD075C070CD19405C094D4D3D4BDA16340CEEFC Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft Manifest number: 4A Signing time: Sat 23 Nov 2024 05:15:18 +0000 Manifest this update: Sat 23 Nov 2024 05:15:18 +0000 Manifest next update: Sat 30 Nov 2024 05:15:18 +0000 Files and hashes: 1: bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl (hash: MmcQwu2ShhAr/8TQ5i6pOA1/e2Vx5sCV8djZ9pWYZgU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873/serialNumber=6DD075C070CD19405C094D4D3D4BDA16340CEEFC Validity Not Before: Nov 23 05:15:18 2024 GMT Not After : Nov 30 05:15:18 2024 GMT Subject: CN=674164e6-6d94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:2d:83:70:ae:ba:e2:eb:5a:74:03:28:6e:6b: af:91:6c:bf:dd:9d:cc:61:fd:ca:60:bf:65:40:76: be:6e:0e:80:21:60:e6:2e:b6:7b:24:16:27:f0:08: 71:be:f9:46:d1:8c:22:3d:a5:57:83:c3:50:00:c7: fa:05:80:01:04:ee:b3:74:12:71:cd:d3:c5:43:5b: 41:fa:c7:e4:7f:0f:98:04:1e:17:1a:a5:d2:e1:79: a7:b5:7a:fb:45:cd:12:7a:94:27:24:a6:7e:5d:b6: f7:8a:af:48:b5:08:19:70:c2:22:61:d2:2b:cf:ef: 2c:d4:0f:66:8a:6e:77:62:eb:f6:64:6c:f7:f9:15: bd:89:7f:e4:22:6d:e9:83:25:02:2d:58:e4:66:03: 9e:9b:c5:76:d4:e4:c6:33:7c:76:c8:a9:09:4a:07: cf:7e:43:a7:a1:18:e3:08:05:79:0e:2a:7f:1b:8c: 02:62:c1:d1:26:61:52:23:e6:2d:e5:8e:7b:49:43: 22:d7:83:a9:dc:2c:05:aa:c2:88:8e:e7:21:d5:16: bc:89:35:da:19:86:54:51:35:01:66:50:26:47:c7: 02:68:51:ac:23:fb:7e:90:6e:a7:64:cb:72:cc:ee: ab:e5:11:87:85:6b:b2:de:ce:65:7f:df:59:b0:18: 21:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:42:F1:C9:D8:0E:CC:9B:96:BD:5E:38:7C:82:C5:D5:81:A0:CB:27 X509v3 Authority Key Identifier: keyid:6D:D0:75:C0:70:CD:19:40:5C:09:4D:4D:3D:4B:DA:16:34:0C:EE:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:c6:40:7c:2f:b8:2d:44:e3:ac:ab:f4:12:98:5a:b6:4c:8a: c8:44:ef:58:e9:ef:ff:27:71:ff:79:8f:14:1e:a6:ca:a8:46: 09:8c:8f:9f:84:6f:dd:3c:4f:92:37:b1:0e:0b:48:2f:37:7e: 0d:c8:48:7c:ac:14:96:8c:4d:0e:bb:5a:06:e1:81:bb:7c:54: 00:68:42:34:aa:c8:21:c8:ca:3f:d8:aa:b5:17:09:af:a2:9f: ef:e1:1a:4c:dc:fc:ee:bb:52:9c:3f:f8:d9:cd:17:fb:60:96: fb:9b:b1:e0:b4:3a:19:31:e3:31:f0:2f:9e:e0:f8:a8:30:60: 8f:9b:ab:9a:99:ad:ec:63:38:3d:0a:80:f3:6d:e2:a7:d7:1e: cd:91:4a:8f:e3:93:f4:f7:22:b0:15:5c:10:d0:e2:65:4e:9c: 7e:90:2f:3d:12:5e:7d:7c:fe:1f:ed:2c:2f:e8:f2:3c:01:7b: 6c:af:cb:2a:15:8f:f0:c3:7c:39:a8:e2:3f:95:5e:67:b1:7b: 70:ca:9d:de:12:b8:f2:ad:da:13:de:a2:39:dc:fd:2a:e1:d4: 6b:ce:f0:2f:83:21:5e:3d:4a:18:d2:7b:83:c6:bd:db:6a:6a: df:22:6a:60:c6:ad:b3:e3:90:35:c9:70:ae:e8:74:42:72:df: c6:e1:36:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDg3MzExMC8GA1UEBRMoNkREMDc1QzA3MENEMTk0MDVDMDk0RDREM0Q0QkRBMTYz NDBDRUVGQzAeFw0yNDExMjMwNTE1MThaFw0yNDExMzAwNTE1MThaMBgxFjAUBgNV BAMTDTY3NDE2NGU2LTZkOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoLYNwrrri61p0Ayhua6+RbL/dncxh/cpgv2VAdr5uDoAhYOYutnskFifwCHG+ +UbRjCI9pVeDw1AAx/oFgAEE7rN0EnHN08VDW0H6x+R/D5gEHhcapdLheae1evtF zRJ6lCckpn5dtveKr0i1CBlwwiJh0ivP7yzUD2aKbndi6/ZkbPf5Fb2Jf+QibemD JQItWORmA56bxXbU5MYzfHbIqQlKB89+Q6ehGOMIBXkOKn8bjAJiwdEmYVIj5i3l jntJQyLXg6ncLAWqwoiO5yHVFryJNdoZhlRRNQFmUCZHxwJoUawj+36Qbqdky3LM 7qvlEYeFa7LezmV/31mwGCEJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUl0LxydgO zJuWvV44fILF1YGgyycwHwYDVR0jBBgwFoAUbdB1wHDNGUBcCU1NPUvaFjQM7vww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0ODczLzU2QTVCMkFFMzhF NzExRUY4NDRCNEY2NUM0RjlBRTAyL2JkQjF3SEROR1VCY0NVMU5QVXZhRmpRTTd2 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYmRCMXdIRE5HVUJjQ1UxTlBVdmFGalFNN3Z3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 ODczLzU2QTVCMkFFMzhFNzExRUY4NDRCNEY2NUM0RjlBRTAyL2JkQjF3SEROR1VC Y0NVMU5QVXZhRmpRTTd2dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACbGQHwvuC1E46yr9BKYWrZMishE71jp7/8ncf95jxQepsqoRgmMj5+E b908T5I3sQ4LSC83fg3ISHysFJaMTQ67Wgbhgbt8VABoQjSqyCHIyj/YqrUXCa+i n+/hGkzc/O67Upw/+NnNF/tglvubseC0Ohkx4zHwL57g+KgwYI+bq5qZrexjOD0K gPNt4qfXHs2RSo/jk/T3IrAVXBDQ4mVOnH6QLz0SXn18/h/tLC/o8jwBe2yvyyoV j/DDfDmo4j+VXmexe3DKnd4SuPKt2hPeojnc/Srh1GvO8C+DIV49ShjSe4PGvdtq at8iamDGrbPjkDXJcK7odEJy38bhNuA= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:20 2024 by rpki-client on console-ams.rpki-client.org