$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6CAF/FD26DC22B6F411EEAC203810C4F9AE02/4BXzk-ejI8P08b_iblv-BA415VM.mft File: 4BXzk-ejI8P08b_iblv-BA415VM.mft (raw, json) Hash identifier: vQYCY/Gq7FG32UMlKswFun0v4x3T+QSW7vzKQ602OYs= Subject key identifier: 30:A4:D0:7A:42:20:94:04:39:C6:00:B0:20:83:B6:C5:01:5D:80:4C Authority key identifier: E0:15:F3:93:E7:A3:23:C3:F4:F1:BF:E2:6E:5B:FE:04:0E:35:E5:53 Certificate issuer: /CN=A91C6CAF/serialNumber=E015F393E7A323C3F4F1BFE26E5BFE040E35E553 Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BXzk-ejI8P08b_iblv-BA415VM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6CAF/FD26DC22B6F411EEAC203810C4F9AE02/4BXzk-ejI8P08b_iblv-BA415VM.mft Manifest number: A0 Signing time: Sat 23 Nov 2024 04:20:28 +0000 Manifest this update: Sat 23 Nov 2024 04:20:28 +0000 Manifest next update: Sat 30 Nov 2024 04:20:28 +0000 Files and hashes: 1: 4BXzk-ejI8P08b_iblv-BA415VM.crl (hash: 1s/QJVQdXK8LIWRNYQkOMGbCm8FqTwZOm0q02ZIpe5M=) 2: C4C0B9160E4C11EF82F91F39C4F9AE02.roa (hash: NyvsbGaq1HKR+L0PRnbDheo2EQMUIsjiG+x1CykE4V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6CAF/FD26DC22B6F411EEAC203810C4F9AE02/4BXzk-ejI8P08b_iblv-BA415VM.crl rsync://rpki.apnic.net/member_repository/A91C6CAF/FD26DC22B6F411EEAC203810C4F9AE02/4BXzk-ejI8P08b_iblv-BA415VM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BXzk-ejI8P08b_iblv-BA415VM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6CAF/serialNumber=E015F393E7A323C3F4F1BFE26E5BFE040E35E553 Validity Not Before: Nov 23 04:20:28 2024 GMT Not After : Nov 30 04:20:28 2024 GMT Subject: CN=6741580c-a3cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:cb:81:27:17:7f:6c:e4:ea:03:2b:e4:11:51: 99:27:ac:31:41:f7:a0:d8:01:c3:e7:db:db:93:04: 11:d5:39:17:47:c5:c9:c0:c6:a1:a1:95:3c:81:b6: e7:a6:bc:21:11:83:5d:f7:ba:63:1b:1f:2d:64:92: 49:cf:94:91:7d:91:c2:9a:a3:01:96:6b:53:91:ca: b3:29:93:3c:1e:e9:d3:7e:27:2e:66:5f:51:05:8d: 9c:c6:6a:ad:71:13:88:6b:18:33:e3:c2:b3:ca:1b: 94:8a:84:ae:8e:51:f5:58:c9:10:6e:68:c7:25:fb: 1f:23:14:46:5e:f7:7f:1e:cd:25:95:fb:ee:42:d5: 76:88:38:18:74:ce:f9:a8:12:a7:d2:dd:8e:f1:e5: 18:10:35:8a:02:79:3c:3a:07:77:55:3f:1b:48:f0: 8c:bf:e5:93:fd:05:ab:91:be:52:a7:10:b0:f7:24: 26:55:40:2c:03:54:46:ed:98:f8:90:68:83:19:da: d8:0d:65:50:93:8a:c3:de:19:ad:b3:ef:57:26:b3: d4:ef:2c:d9:ef:43:4f:ef:c9:57:ef:70:c4:36:c4: 1b:58:95:38:5e:7a:2e:16:27:08:bb:28:2b:e3:b2: 3a:c0:7c:b5:a2:97:26:03:83:de:97:d9:ca:d1:c0: 13:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:A4:D0:7A:42:20:94:04:39:C6:00:B0:20:83:B6:C5:01:5D:80:4C X509v3 Authority Key Identifier: keyid:E0:15:F3:93:E7:A3:23:C3:F4:F1:BF:E2:6E:5B:FE:04:0E:35:E5:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/FD26DC22B6F411EEAC203810C4F9AE02/4BXzk-ejI8P08b_iblv-BA415VM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BXzk-ejI8P08b_iblv-BA415VM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/FD26DC22B6F411EEAC203810C4F9AE02/4BXzk-ejI8P08b_iblv-BA415VM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:12:95:9b:9d:39:7e:ca:83:9d:c9:4f:ad:2b:eb:c2:87:8d: db:68:18:f1:5d:de:14:14:5e:ce:aa:7c:8c:fb:87:bc:06:5d: a2:40:16:4a:77:74:5d:5b:04:f0:e1:79:0f:35:b2:40:e7:db: 19:40:56:63:21:74:87:be:b6:d5:35:e8:bc:7f:bb:75:78:5a: 65:ac:37:7f:9d:2b:0f:a2:4c:a8:1f:ed:56:e4:2f:07:ff:27: bd:1e:7e:89:e2:6b:bc:ed:f2:db:b0:e5:31:cd:59:41:25:04: dc:88:64:7b:bd:2a:b5:30:f6:bd:0b:41:cd:f5:d9:8e:14:b8: 38:f3:de:77:5d:a7:5e:ff:cf:11:9d:ef:eb:dd:44:b2:78:5e: ba:1c:17:da:58:a2:1f:87:9e:f7:4b:a1:c8:f4:0f:10:f3:4b: c1:54:44:97:5e:0b:40:6e:70:4a:e0:a6:73:a9:b4:7d:8e:d6: f2:d0:6b:7c:c4:f2:98:39:42:42:bd:8f:a8:c4:84:92:e9:1f: 1b:6c:b3:8d:c2:49:5f:af:66:a9:78:78:7c:07:e8:e9:5b:33: d0:4a:18:3c:bd:a0:e7:d9:cc:d7:7f:cd:a1:ff:18:49:75:72: af:97:78:a5:d7:55:1b:74:b9:fb:8d:73:8c:d3:f0:29:be:6e: 27:46:7a:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZDQUYxMTAvBgNVBAUTKEUwMTVGMzkzRTdBMzIzQzNGNEYxQkZFMjZFNUJGRTA0 MEUzNUU1NTMwHhcNMjQxMTIzMDQyMDI4WhcNMjQxMTMwMDQyMDI4WjAYMRYwFAYD VQQDEw02NzQxNTgwYy1hM2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMuBJxd/bOTqAyvkEVGZJ6wxQfeg2AHD59vbkwQR1TkXR8XJwMahoZU8gbbn prwhEYNd97pjGx8tZJJJz5SRfZHCmqMBlmtTkcqzKZM8HunTficuZl9RBY2cxmqt cROIaxgz48KzyhuUioSujlH1WMkQbmjHJfsfIxRGXvd/Hs0llfvuQtV2iDgYdM75 qBKn0t2O8eUYEDWKAnk8Ogd3VT8bSPCMv+WT/QWrkb5SpxCw9yQmVUAsA1RG7Zj4 kGiDGdrYDWVQk4rD3hmts+9XJrPU7yzZ70NP78lX73DENsQbWJU4XnouFicIuygr 47I6wHy1opcmA4Pel9nK0cATTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDCk0HpC IJQEOcYAsCCDtsUBXYBMMB8GA1UdIwQYMBaAFOAV85PnoyPD9PG/4m5b/gQONeVT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkNBRi9GRDI2REMyMkI2 RjQxMUVFQUMyMDM4MTBDNEY5QUUwMi80Qlh6ay1lakk4UDA4Yl9pYmx2LUJBNDE1 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRCWHprLWVqSThQMDhiX2libHYtQkE0MTVWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkNBRi9GRDI2REMyMkI2RjQxMUVFQUMyMDM4MTBDNEY5QUUwMi80Qlh6ay1lakk4 UDA4Yl9pYmx2LUJBNDE1Vk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcEpWbnTl+yoOdyU+tK+vCh43baBjxXd4UFF7OqnyM+4e8Bl2iQBZK d3RdWwTw4XkPNbJA59sZQFZjIXSHvrbVNei8f7t1eFplrDd/nSsPokyoH+1W5C8H /ye9Hn6J4mu87fLbsOUxzVlBJQTciGR7vSq1MPa9C0HN9dmOFLg48953Xade/88R ne/r3USyeF66HBfaWKIfh573S6HI9A8Q80vBVESXXgtAbnBK4KZzqbR9jtby0Gt8 xPKYOUJCvY+oxISS6R8bbLONwklfr2apeHh8B+jpWzPQShg8vaDn2czXf82h/xhJ dXKvl3il11UbdLn7jXOM0/Apvm4nRnpi -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:57 2024 by rpki-client on console-fra.rpki-client.org