$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft File: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft (raw, json) Hash identifier: aYAlC4mM6D9sdjGGQMbBKJMWwB+1pmvA96BUmtmtp6M= Subject key identifier: 3D:A9:EA:EB:0A:20:0F:80:B9:38:BD:0A:62:FC:47:E8:29:3E:6D:28 Authority key identifier: 6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 Certificate issuer: /CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft Manifest number: 15 Signing time: Thu 21 Nov 2024 06:02:47 +0000 Manifest this update: Thu 21 Nov 2024 06:02:46 +0000 Manifest next update: Thu 28 Nov 2024 06:02:46 +0000 Files and hashes: 1: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl (hash: zgqvnGYmS/6lCrUS6XLfS3c/I7SFKQ7Z3zcNaDm9xPQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Validity Not Before: Nov 21 06:02:46 2024 GMT Not After : Nov 28 06:02:46 2024 GMT Subject: CN=673ecd07-1508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5f:25:dc:10:ab:83:dc:81:73:b4:00:04:66: 13:5c:ad:c1:f3:04:fe:41:52:60:2a:68:d9:33:f9: 0a:3f:ed:06:25:c7:22:e3:6f:08:77:8b:09:94:58: 7c:cc:c8:eb:c2:fb:90:0a:d7:bf:05:da:80:b4:6d: 62:92:41:ab:14:50:76:2d:d9:80:fb:a5:6a:a8:f5: 76:ce:0c:8b:d1:b4:15:9c:ac:11:b6:04:92:9b:dc: 5e:50:44:88:15:a6:84:b0:d8:4e:df:55:0f:7b:d7: 3b:7d:22:ab:a8:f0:e2:ed:cc:cf:c2:4e:5b:8c:54: 61:36:b5:03:51:67:c1:87:81:e1:a4:6d:2e:40:dc: cf:91:d5:df:b5:17:aa:0c:56:9f:39:29:e3:ab:0a: 95:ff:e6:42:16:ff:42:0b:c6:40:1f:e2:b8:f2:70: 8a:9b:17:b8:d5:8e:a3:9c:e9:b1:69:ef:ca:fe:8a: 62:c7:5c:0b:8a:d8:97:41:b3:d3:dc:86:81:32:eb: 39:3c:8f:ca:f1:78:38:e4:3d:07:5f:91:5d:6b:51: 4e:f0:01:f0:9d:a3:47:d3:4c:85:e8:c4:50:25:9e: 56:10:49:12:5a:c7:2c:18:6c:40:14:26:74:98:5c: 24:20:2a:6b:40:de:bd:32:6a:ce:74:4d:db:ab:2d: 0d:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A9:EA:EB:0A:20:0F:80:B9:38:BD:0A:62:FC:47:E8:29:3E:6D:28 X509v3 Authority Key Identifier: keyid:6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:92:0f:b3:97:3e:0b:9a:0c:3c:d9:2c:4f:24:09:a9:7e:87: 76:06:b5:60:58:b4:79:21:40:17:eb:45:12:03:c8:50:77:b1: 4a:25:3f:65:82:c5:78:7f:89:b6:f0:b0:d2:eb:a3:68:64:47: 63:6a:92:1c:87:b2:e7:40:b0:66:41:51:75:1c:1c:f3:55:a3: b3:07:3b:e0:a7:a6:b1:de:98:3f:cc:53:29:d3:49:5f:e4:c0: b0:cf:3d:a2:34:1f:29:65:28:08:36:1a:1f:bb:45:3a:d4:69: 3d:df:69:a7:14:da:01:75:09:3e:0f:cf:20:1c:3e:e1:82:27: 0d:8c:cc:eb:ed:bb:a6:73:cc:87:6d:2c:77:37:cd:0d:b4:a9: a2:01:27:20:c4:4e:50:c7:d4:af:1d:5d:80:fb:1f:0a:07:9a: 93:bb:99:a5:83:f7:5b:ab:89:7a:b8:3c:f5:51:25:27:06:ba: be:46:5d:03:51:fb:27:59:36:57:d7:01:f2:21:90:85:e6:d3: b2:0f:6c:d0:2d:a2:48:c4:3a:e0:88:5e:11:45:0b:0e:59:45: d2:ab:31:e6:88:ad:2b:d8:bc:63:c7:67:fb:97:bd:af:2b:56: 79:5f:e2:a6:c2:5b:1e:b1:17:46:e4:71:24:f3:6a:e3:46:3b: 4b:6e:2a:53 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Q0FGMTExMC8GA1UEBRMoNkMxOTQ2OTc4MTZGOUIxMzBCQTUzQ0Y0QkVFNjc2MDE1 OTRFOENCMTAeFw0yNDExMjEwNjAyNDZaFw0yNDExMjgwNjAyNDZaMBgxFjAUBgNV BAMTDTY3M2VjZDA3LTE1MDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJXyXcEKuD3IFztAAEZhNcrcHzBP5BUmAqaNkz+Qo/7QYlxyLjbwh3iwmUWHzM yOvC+5AK178F2oC0bWKSQasUUHYt2YD7pWqo9XbODIvRtBWcrBG2BJKb3F5QRIgV poSw2E7fVQ971zt9Iquo8OLtzM/CTluMVGE2tQNRZ8GHgeGkbS5A3M+R1d+1F6oM Vp85KeOrCpX/5kIW/0ILxkAf4rjycIqbF7jVjqOc6bFp78r+imLHXAuK2JdBs9Pc hoEy6zk8j8rxeDjkPQdfkV1rUU7wAfCdo0fTTIXoxFAlnlYQSRJaxywYbEAUJnSY XCQgKmtA3r0yas50TdurLQ3hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPanq6wog D4C5OL0KYvxH6Ck+bSgwHwYDVR0jBBgwFoAUbBlGl4FvmxMLpTz0vuZ2AVlOjLEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNDQUYxLzA5QzBEMzY2OEFB RDExRUZCRUY5MTY2QUM0RjlBRTAyL2JCbEdsNEZ2bXhNTHBUejB2dVoyQVZsT2pM RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkJsR2w0RnZteE1McFR6MHZ1WjJBVmxPakxFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUND QUYxLzA5QzBEMzY2OEFBRDExRUZCRUY5MTY2QUM0RjlBRTAyL2JCbEdsNEZ2bXhN THBUejB2dVoyQVZsT2pMRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEaSD7OXPguaDDzZLE8kCal+h3YGtWBYtHkhQBfrRRIDyFB3sUolP2WC xXh/ibbwsNLro2hkR2NqkhyHsudAsGZBUXUcHPNVo7MHO+CnprHemD/MUynTSV/k wLDPPaI0HyllKAg2Gh+7RTrUaT3faacU2gF1CT4PzyAcPuGCJw2MzOvtu6ZzzIdt LHc3zQ20qaIBJyDETlDH1K8dXYD7HwoHmpO7maWD91uriXq4PPVRJScGur5GXQNR +ydZNlfXAfIhkIXm07IPbNAtokjEOuCIXhFFCw5ZRdKrMeaIrSvYvGPHZ/uXva8r Vnlf4qbCWx6xF0bkcSTzauNGO0tuKlM= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:38 2024 by rpki-client on console-ams.rpki-client.org