$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft File: bODpSXEbID5KyyK2gPP_9H7RbGE.mft (raw, json) Hash identifier: OETfJRCwFMwRax/zFU8q34b5QcLRoBr7hEHaxgczdd4= Subject key identifier: 1E:4B:CC:04:93:E3:4D:1A:E3:D0:5E:FD:60:48:1A:92:85:4C:49:1C Authority key identifier: 6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61 Certificate issuer: /CN=A91BDC3F/serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61 Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft Manifest number: 71 Signing time: Sat 23 Nov 2024 04:56:42 +0000 Manifest this update: Sat 23 Nov 2024 04:56:42 +0000 Manifest next update: Sat 30 Nov 2024 04:56:42 +0000 Files and hashes: 1: bODpSXEbID5KyyK2gPP_9H7RbGE.crl (hash: 5HOup28XQ5xnPimc+e28yUAT2rGHdF4BPd6dL3mbygM=) 2: 7980C32AA71B11EFA8320136C4F9AE02.roa (hash: hJsUf4TXH8x/dBCx0NqRGC8PLycMzLRzxEAEp3v9Kv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDC3F/serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61 Validity Not Before: Nov 23 04:56:42 2024 GMT Not After : Nov 30 04:56:42 2024 GMT Subject: CN=6741608a-d674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:24:33:7e:ab:8a:1f:55:8e:14:73:e3:90:83: 9d:c5:3a:a3:44:8b:fa:db:7e:65:fc:4b:59:34:31: 6b:07:55:93:1e:d7:f9:a2:f9:80:9f:8d:95:ab:7b: 1d:1e:78:57:9c:61:04:f7:6e:44:9f:b6:ba:3d:85: 45:8c:15:dc:86:25:20:4a:6a:54:08:03:99:aa:23: e4:a4:8c:33:f4:6c:74:c4:85:53:bd:87:3c:56:dc: b1:e3:08:63:a9:95:fa:d5:d1:d5:4a:49:3d:80:98: a5:a2:2a:d0:de:1e:70:8e:58:64:d1:25:20:73:af: 96:12:1e:58:25:f3:d7:88:d7:47:6b:f4:30:9d:4e: d6:e5:36:03:cb:43:98:08:d7:55:e0:3e:bb:f2:d1: 42:32:ae:47:ba:14:b5:30:19:cf:b4:8d:ab:d2:6a: 47:f8:c2:e7:02:d8:70:45:f0:59:5f:fc:16:29:58: 74:03:7a:7c:2e:ae:e8:1d:42:73:23:d7:d4:56:a8: f1:cb:54:5d:39:c8:86:33:d5:4e:dc:d3:53:dd:5a: 9b:0b:43:ef:a6:f0:ee:6c:b6:05:75:2e:3d:8c:d2: 99:31:63:af:a9:5e:a8:7f:9b:fe:29:40:84:56:44: f6:31:0a:8f:b2:b6:1c:4a:3b:68:9c:2c:7c:64:95: ed:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:4B:CC:04:93:E3:4D:1A:E3:D0:5E:FD:60:48:1A:92:85:4C:49:1C X509v3 Authority Key Identifier: keyid:6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:18:57:9b:6e:e7:aa:79:53:c4:6f:6e:6e:17:bf:96:a2:f3: 68:99:0e:5e:27:7a:84:86:bf:ff:69:9b:2f:2c:64:c0:cd:f8: 0a:4e:84:19:a4:5a:65:21:ab:0d:17:64:c9:59:5c:7c:ce:c9: 62:fb:63:50:47:4e:ac:8f:98:5a:50:90:47:12:d0:f2:32:a0: 60:8a:53:82:b7:ce:0d:92:92:61:ad:e0:41:25:71:ea:b3:d9: 07:dd:7e:2c:2a:58:25:f4:a4:eb:45:67:f3:e8:3e:dc:1e:73: 43:32:7b:cf:58:da:4f:ed:43:13:c0:bf:e8:13:06:4c:00:de: 41:7f:e5:f6:a0:10:cf:ae:9a:c7:be:61:f1:52:e1:cc:63:85: 54:47:ba:7a:31:ac:46:b5:fe:3d:b7:01:62:e5:7c:16:79:22: 91:2e:65:a3:15:1f:12:2e:56:e9:a2:7f:8f:dc:0c:ab:7c:a9: 9d:ed:8f:62:cf:52:b6:2c:65:6e:a3:4e:d9:cc:c5:19:b7:9f: bf:01:6c:be:2a:f6:7b:b9:9a:cf:7a:2e:52:2d:fc:77:d2:a9: 41:34:34:61:5e:54:45:12:18:5a:97:3e:77:97:8f:38:9f:4e: 7f:e3:68:f6:9d:93:e8:95:f1:6f:54:85:1a:57:f0:45:de:c2: 11:a5:ea:78 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC REMzRjExMC8GA1UEBRMoNkNFMEU5NDk3MTFCMjAzRTRBQ0IyMkI2ODBGM0ZGRjQ3 RUQxNkM2MTAeFw0yNDExMjMwNDU2NDJaFw0yNDExMzAwNDU2NDJaMBgxFjAUBgNV BAMTDTY3NDE2MDhhLWQ2NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAJDN+q4ofVY4Uc+OQg53FOqNEi/rbfmX8S1k0MWsHVZMe1/mi+YCfjZWrex0e eFecYQT3bkSftro9hUWMFdyGJSBKalQIA5mqI+SkjDP0bHTEhVO9hzxW3LHjCGOp lfrV0dVKST2AmKWiKtDeHnCOWGTRJSBzr5YSHlgl89eI10dr9DCdTtblNgPLQ5gI 11XgPrvy0UIyrke6FLUwGc+0javSakf4wucC2HBF8Flf/BYpWHQDenwurugdQnMj 19RWqPHLVF05yIYz1U7c01PdWpsLQ++m8O5stgV1Lj2M0pkxY6+pXqh/m/4pQIRW RPYxCo+ythxKO2icLHxkle3nAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHkvMBJPj TRrj0F79YEgakoVMSRwwHwYDVR0jBBgwFoAUbODpSXEbID5KyyK2gPP/9H7RbGEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJEQzNGLzVDRTgxMDQ2MEVC MDExRUY4NzJFODEyN0M0RjlBRTAyL2JPRHBTWEViSUQ1S3l5SzJnUFBfOUg3UmJH RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYk9EcFNYRWJJRDVLeXlLMmdQUF85SDdSYkdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJE QzNGLzVDRTgxMDQ2MEVCMDExRUY4NzJFODEyN0M0RjlBRTAyL2JPRHBTWEViSUQ1 S3l5SzJnUFBfOUg3UmJHRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB8YV5tu56p5U8Rvbm4Xv5ai82iZDl4neoSGv/9pmy8sZMDN+ApOhBmk WmUhqw0XZMlZXHzOyWL7Y1BHTqyPmFpQkEcS0PIyoGCKU4K3zg2SkmGt4EElceqz 2QfdfiwqWCX0pOtFZ/PoPtwec0Mye89Y2k/tQxPAv+gTBkwA3kF/5fagEM+umse+ YfFS4cxjhVRHunoxrEa1/j23AWLlfBZ5IpEuZaMVHxIuVumif4/cDKt8qZ3tj2LP UrYsZW6jTtnMxRm3n78BbL4q9nu5ms96LlIt/HfSqUE0NGFeVEUSGFqXPneXjzif Tn/jaPadk+iV8W9UhRpX8EXewhGl6ng= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:22 2024 by rpki-client on console-ams.rpki-client.org