$ rpki-client -vvf rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft File: bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft (raw, json) Hash identifier: V/qHIJHQlibK1R6oYwPsWeg0n/KR2vCRWYEo8iPHytw= Subject key identifier: 3C:FC:19:23:64:C7:5B:E0:3C:84:B1:D3:9E:D8:8F:D9:FD:E7:23:02 Authority key identifier: 6C:9B:96:87:D0:5E:2B:5B:E5:36:10:9A:6A:F9:BF:FA:19:98:73:D4 Certificate issuer: /CN=A91C95AA/serialNumber=6C9B9687D05E2B5BE536109A6AF9BFFA199873D4 Certificate serial: 01E2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft Manifest number: 01DE Signing time: Thu 21 Nov 2024 01:42:13 +0000 Manifest this update: Thu 21 Nov 2024 01:42:12 +0000 Manifest next update: Thu 28 Nov 2024 01:42:12 +0000 Files and hashes: 1: bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl (hash: J0eyiLrkwDCu1o9HYyibc9GpvMQ3/9ndZzEMdRmygdw=) 2: FB1F8158242A11ED9547B486C4F9AE02.roa (hash: fvux1k7GikvVMbvsyR+ZqxhQBbFbbVFEy4QXKcI06RM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C95AA/serialNumber=6C9B9687D05E2B5BE536109A6AF9BFFA199873D4 Validity Not Before: Nov 21 01:42:12 2024 GMT Not After : Nov 28 01:42:12 2024 GMT Subject: CN=673e8ff5-62d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7b:42:c3:e9:a2:04:59:48:87:12:41:15:3d: e3:91:e9:6e:30:92:a5:0d:0c:af:c2:d2:8d:2a:6c: 7f:bc:7c:63:97:eb:bd:52:06:cd:21:95:90:68:9a: 37:70:0a:a5:3a:49:7c:87:a2:9c:e4:c1:fb:3f:30: 50:f5:00:3d:c4:b0:b9:31:db:31:81:82:2a:6a:f5: 58:fe:1e:60:2c:8f:72:a2:01:48:62:db:40:71:45: dd:2b:ae:be:19:2e:96:ed:70:2d:5c:20:84:ad:32: 94:ef:b9:49:47:44:37:de:08:c4:f5:5f:4d:18:49: 56:34:4b:66:94:44:c6:b8:38:cc:37:f1:b1:7b:82: 97:af:4e:74:dc:5b:2c:18:f4:1a:ee:ed:5a:64:25: 19:63:e9:cf:e7:aa:f5:e8:01:62:50:a6:78:de:23: b4:e0:f9:20:a0:d6:c6:32:08:5d:d3:97:0e:97:19: 94:ea:61:82:5b:72:ac:58:64:1f:a5:19:3c:34:14: 09:13:1b:46:db:5e:d7:e1:b3:39:e4:97:b8:01:a8: 6d:8d:80:10:f8:68:4c:b0:89:2c:28:e5:4f:a2:07: 01:85:df:40:c1:cf:b9:ec:48:bc:18:3a:c6:b4:e1: 4b:5f:e5:25:a4:3f:fb:8d:69:1b:3f:4f:29:b1:a4: 26:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:FC:19:23:64:C7:5B:E0:3C:84:B1:D3:9E:D8:8F:D9:FD:E7:23:02 X509v3 Authority Key Identifier: keyid:6C:9B:96:87:D0:5E:2B:5B:E5:36:10:9A:6A:F9:BF:FA:19:98:73:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e9:c5:84:cf:3b:05:aa:a8:4a:51:6a:a6:9a:69:ba:49:2b:6e: 49:b5:49:dd:3a:66:90:bf:ab:a9:b8:99:bb:d9:d5:0f:78:07: a2:65:04:5b:19:94:68:70:a1:cc:bc:46:21:32:b2:0d:29:00: 51:61:4e:12:2a:40:8e:fe:a3:b7:d9:4f:e7:f9:36:d9:38:14: 22:b2:44:d2:e2:44:60:86:92:12:22:ab:d1:2b:1e:bd:ba:52: 6a:6d:51:14:81:a1:ef:92:f0:a8:90:96:b0:28:32:9b:14:f4: 84:f1:5a:cd:86:0c:90:12:f5:83:5b:e3:69:d4:1b:cd:10:6c: f9:3c:1d:c7:4d:85:2f:b8:6c:a2:94:7c:38:9f:ad:91:75:0c: 8c:a1:85:09:73:c8:fc:2d:6b:d4:77:ba:61:8b:2a:fe:c1:a6: 3f:7b:ca:fb:70:b7:0d:f2:96:31:fa:03:0b:03:7b:34:bf:53: 72:eb:a1:9f:4a:18:1b:73:d0:d5:be:70:34:2a:ba:74:ce:8d: da:5e:1b:19:17:47:c0:d5:95:32:b2:19:56:09:66:27:f6:0c: 33:f6:02:e7:44:a1:f9:cc:81:30:c6:76:06:9a:85:b5:3d:08: 08:d4:fd:20:28:e6:5e:8f:65:69:19:66:27:2e:dc:5e:9a:28: 2c:08:c4:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1QUExMTAvBgNVBAUTKDZDOUI5Njg3RDA1RTJCNUJFNTM2MTA5QTZBRjlCRkZB MTk5ODczRDQwHhcNMjQxMTIxMDE0MjEyWhcNMjQxMTI4MDE0MjEyWjAYMRYwFAYD VQQDEw02NzNlOGZmNS02MmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtntCw+miBFlIhxJBFT3jkeluMJKlDQyvwtKNKmx/vHxjl+u9UgbNIZWQaJo3 cAqlOkl8h6Kc5MH7PzBQ9QA9xLC5MdsxgYIqavVY/h5gLI9yogFIYttAcUXdK66+ GS6W7XAtXCCErTKU77lJR0Q33gjE9V9NGElWNEtmlETGuDjMN/Gxe4KXr0503Fss GPQa7u1aZCUZY+nP56r16AFiUKZ43iO04PkgoNbGMghd05cOlxmU6mGCW3KsWGQf pRk8NBQJExtG217X4bM55Je4AahtjYAQ+GhMsIksKOVPogcBhd9Awc+57Ei8GDrG tOFLX+UlpD/7jWkbP08psaQmWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDz8GSNk x1vgPISx057Yj9n95yMCMB8GA1UdIwQYMBaAFGyblofQXitb5TYQmmr5v/oZmHPU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTVBQS8xNTZCRDg5RTI0 MjcxMUVEQjNFQTM0ODBDNEY5QUUwMi9iSnVXaDlCZUsxdmxOaENhYXZtXy1obVlj OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2JKdVdoOUJlSzF2bE5oQ2Fhdm1fLWhtWWM5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTVBQS8xNTZCRDg5RTI0MjcxMUVEQjNFQTM0ODBDNEY5QUUwMi9iSnVXaDlCZUsx dmxOaENhYXZtXy1obVljOVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDpxYTPOwWqqEpRaqaaabpJK25JtUndOmaQv6upuJm72dUPeAeiZQRb GZRocKHMvEYhMrINKQBRYU4SKkCO/qO32U/n+TbZOBQiskTS4kRghpISIqvRKx69 ulJqbVEUgaHvkvCokJawKDKbFPSE8VrNhgyQEvWDW+Np1BvNEGz5PB3HTYUvuGyi lHw4n62RdQyMoYUJc8j8LWvUd7phiyr+waY/e8r7cLcN8pYx+gMLA3s0v1Ny66Gf Shgbc9DVvnA0Krp0zo3aXhsZF0fA1ZUyshlWCWYn9gwz9gLnRKH5zIEwxnYGmoW1 PQgI1P0gKOZej2VpGWYnLtxemigsCMTb -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:51 2024 by rpki-client on console-ams.rpki-client.org