$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft File: BUM8OuqKSXAsmoLuyV0WtVA86mA.mft (raw, json) Hash identifier: T5RyjkmZgdOWvsWbJiUsdM3GYY4OY3o4AI5q5GcPWG8= Subject key identifier: 07:92:9A:1F:B1:AA:6F:4C:0A:3C:8A:35:41:3E:D3:F8:9D:DF:F4:6B Authority key identifier: 05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 Certificate issuer: /CN=A91CFFA0/serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Certificate serial: 0CEC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft Manifest number: 0CCF Signing time: Sun 24 Nov 2024 17:53:21 +0000 Manifest this update: Sun 24 Nov 2024 17:53:20 +0000 Manifest next update: Sun 01 Dec 2024 17:53:20 +0000 Files and hashes: 1: BUM8OuqKSXAsmoLuyV0WtVA86mA.crl (hash: MILSa8+w2BzJQPmeUhbrTgjJhjKGuCOED6lUkwwG1/w=) 2: 83ECD7C40CCA11ED97820077C4F9AE02.roa (hash: 2FP7e7gw78ziNTwpgl6+p7JSr0SareWjNhn+aYnzAJs=) 3: 0E3F36D8C43D11EBAB31777FC4F9AE02.roa (hash: QsGXNJhyly1Cy0cu8F4jtfSmyRJHgjGfwS+cLqakTAo=) 4: 1F4E1CC014D311EA81309110C4F9AE02.roa (hash: TDYDydBX1PxrqDWmEJLGeZLYBXFUNq2KeD+oxooLvK4=) 5: E6F0F39214CE11EA9E740182C4F9AE02.roa (hash: BVKfghQ7tAg6bhpCne7JUjhk+MWk1O2HwLOjb+QyPOc=) 6: 4CD3C8DC14D011EA93366A85C4F9AE02.roa (hash: XB2QXLLzdZtLLUf24MhxFCrf2t9zzRGffOxjlSP+z00=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3308 (0xcec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0/serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Validity Not Before: Nov 24 17:53:20 2024 GMT Not After : Dec 1 17:53:20 2024 GMT Subject: CN=67436810-9af4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1e:ff:d2:a0:58:f8:b2:ba:0c:bc:12:ae:d8: e5:bb:91:c4:cb:3a:5b:e7:b4:7f:a7:48:7c:00:ec: 5a:09:76:27:d1:99:85:63:73:b7:86:98:e8:ce:79: 39:a7:b2:2a:6e:18:5b:8d:0b:67:05:74:27:35:9d: 82:a9:ec:ef:4d:ad:5b:84:fc:a9:97:c8:31:60:21: 76:f8:db:a7:bb:f2:aa:89:9a:4e:1d:33:a6:64:83: 57:14:c4:20:00:be:6f:16:dc:86:55:c6:e8:af:b7: 75:dd:62:e1:6c:00:22:f4:d7:e2:e0:a5:6e:99:08: 2b:78:03:88:c1:2a:31:28:a3:bd:b4:1f:c7:9e:33: 8e:b4:b3:b3:1e:9f:89:ee:a7:6d:0f:4f:e9:1f:61: 22:aa:74:f3:d4:01:e8:5b:60:e9:8a:80:5b:cc:9d: 14:78:c3:6f:d5:5d:17:91:4a:ce:11:c3:d0:6f:e1: 63:be:c0:7f:bf:15:58:af:49:62:f4:fc:20:87:16: 51:af:ad:17:ac:b7:d1:4c:85:f4:6b:17:d4:fc:eb: 67:5e:10:39:ca:d2:d5:8c:43:e2:37:df:81:c7:06: 41:14:eb:2f:c1:6a:ac:5e:6b:e7:f2:4e:b0:00:c2: 5f:d5:3c:e4:af:bc:62:14:95:e1:88:40:2e:7c:b1: 22:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:92:9A:1F:B1:AA:6F:4C:0A:3C:8A:35:41:3E:D3:F8:9D:DF:F4:6B X509v3 Authority Key Identifier: keyid:05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:10:f8:0b:eb:d1:b2:f1:db:d8:87:19:c0:4a:43:cb:5b:f7: 74:37:53:df:25:03:23:7b:cf:09:62:4c:27:90:16:8f:6d:46: 72:dc:7c:83:17:c9:b1:7c:c3:54:e5:e5:eb:6d:e5:e9:c4:e1: 9a:ab:84:35:b2:f6:b5:fc:eb:74:37:5b:f9:8c:3b:f5:f4:0e: cd:56:c4:a6:50:81:d7:25:a9:1c:60:82:31:72:5e:45:b8:ad: fa:77:c0:8a:da:5a:4d:92:b9:1f:81:16:99:e8:9c:28:d2:12: c4:a3:3e:42:bc:65:d8:2d:9c:0e:3a:6a:c0:cf:e5:16:c0:37: de:4b:9b:9b:a5:92:2c:3a:2a:eb:6b:a4:94:ef:92:85:06:e1: 83:b4:e1:5e:86:f0:35:f5:a4:79:e6:71:a6:4c:f6:61:6a:2e: 56:e7:27:20:57:7f:32:6d:cf:a1:5f:fa:7b:23:86:87:d8:1d: eb:85:be:e3:dd:c7:eb:76:0a:86:e5:17:eb:3c:9d:af:33:98: 4e:1d:c9:b2:90:16:ae:cb:28:ed:15:b3:dc:c8:a0:a2:8d:bb: 86:09:c7:4b:0a:65:85:59:62:91:ba:28:4c:26:d2:0c:5e:b3: 19:a8:4c:ce:b4:b8:ec:a7:2c:9d:06:df:53:48:95:20:58:78: 88:bc:e3:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKDA1NDMzQzNBRUE4QTQ5NzAyQzlBODJFRUM5NUQxNkI1 NTAzQ0VBNjAwHhcNMjQxMTI0MTc1MzIwWhcNMjQxMjAxMTc1MzIwWjAYMRYwFAYD VQQDEw02NzQzNjgxMC05YWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwB7/0qBY+LK6DLwSrtjlu5HEyzpb57R/p0h8AOxaCXYn0ZmFY3O3hpjoznk5 p7IqbhhbjQtnBXQnNZ2CqezvTa1bhPypl8gxYCF2+Nunu/KqiZpOHTOmZINXFMQg AL5vFtyGVcbor7d13WLhbAAi9Nfi4KVumQgreAOIwSoxKKO9tB/HnjOOtLOzHp+J 7qdtD0/pH2EiqnTz1AHoW2DpioBbzJ0UeMNv1V0XkUrOEcPQb+FjvsB/vxVYr0li 9PwghxZRr60XrLfRTIX0axfU/OtnXhA5ytLVjEPiN9+BxwZBFOsvwWqsXmvn8k6w AMJf1Tzkr7xiFJXhiEAufLEiCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAeSmh+x qm9MCjyKNUE+0/id3/RrMB8GA1UdIwQYMBaAFAVDPDrqiklwLJqC7sldFrVQPOpg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xNTBCRjY5MEQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NYQXNtb0x1eVYwV3RWQTg2 bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JVTThPdXFLU1hBc21vTHV5VjBXdFZBODZtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZBMC8xNTBCRjY5MEQ4Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NY QXNtb0x1eVYwV3RWQTg2bUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0EPgL69Gy8dvYhxnASkPLW/d0N1PfJQMje88JYkwnkBaPbUZy3HyD F8mxfMNU5eXrbeXpxOGaq4Q1sva1/Ot0N1v5jDv19A7NVsSmUIHXJakcYIIxcl5F uK36d8CK2lpNkrkfgRaZ6Jwo0hLEoz5CvGXYLZwOOmrAz+UWwDfeS5ubpZIsOirr a6SU75KFBuGDtOFehvA19aR55nGmTPZhai5W5ycgV38ybc+hX/p7I4aH2B3rhb7j 3cfrdgqG5RfrPJ2vM5hOHcmykBauyyjtFbPcyKCijbuGCcdLCmWFWWKRuihMJtIM XrMZqEzOtLjspyydBt9TSJUgWHiIvONx -----END CERTIFICATE-----Generated at Sun Nov 24 18:36:25 2024 by rpki-client on console-fra.rpki-client.org