$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft File: bb1cTQEh_LMY54xFG29WcyCYYAI.mft (raw, json) Hash identifier: JtU26SieiBpaPWP2mnu6L067tcEJzimk77fWfUBXdl4= Subject key identifier: BF:56:68:AD:51:6E:EE:3B:00:76:6D:04:C0:D8:CA:31:79:57:E0:60 Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 Certificate issuer: /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Certificate serial: 0351 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft Manifest number: 0323 Signing time: Thu 21 Nov 2024 00:50:58 +0000 Manifest this update: Thu 21 Nov 2024 00:50:57 +0000 Manifest next update: Thu 28 Nov 2024 00:50:57 +0000 Files and hashes: 1: bb1cTQEh_LMY54xFG29WcyCYYAI.crl (hash: WFg+HMtEWd7ebD9NzWve6VOQdh87hmvhR3+dDWTTpG8=) 2: AEE9F9E6326011ED9031BC4FC4F9AE02.roa (hash: SqiFzOJRZ9/ptRmFEbei+eAgBX8rWvQzMTY6uO6l7Mw=) 3: AD17704445F611EE97DF317CC4F9AE02.roa (hash: z1yiyQwN0DqJrBGmQfoo/wLic8yaS6jpAe3MuePiWjE=) 4: 943D15902D1011EFBBEBA67BC4F9AE02.roa (hash: fU6wBgRfhiuZgpgLWpVCXuIdWzE0XlueCJBlp8QO+XQ=) 5: 9B0C244C73B611EEB18A0385C4F9AE02.roa (hash: A2ghXqX96Mx1uhUOiKDYj1cFNvYrDt5jbB5+9b7umVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 849 (0x351) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Validity Not Before: Nov 21 00:50:57 2024 GMT Not After : Nov 28 00:50:57 2024 GMT Subject: CN=673e83f2-02d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:17:f2:7f:66:97:50:36:73:96:a0:4b:d4:54: a7:36:32:0e:36:f2:f5:e8:99:3d:de:3a:fd:49:ca: ff:73:7d:f7:bf:aa:90:3c:b8:c9:75:68:42:95:27: 70:10:2a:f0:c8:e6:e8:5c:70:57:18:e4:65:e9:f5: 10:c0:ab:3a:a9:d6:85:53:b1:1e:0b:6f:a5:7e:4f: 96:fd:de:2b:50:8f:74:42:fb:3f:ba:6d:d4:fa:7d: e8:6e:a1:e8:c7:b8:9e:e9:ba:5b:58:c5:61:86:eb: 5e:1d:70:12:da:29:eb:41:02:20:e7:b9:c3:28:63: 49:40:fe:aa:fe:fa:12:47:38:22:4f:f3:f2:14:1c: 96:73:53:2a:51:36:c9:13:14:8a:a3:e0:2e:c1:3a: 88:41:f0:cc:86:4e:cd:ea:8e:4d:0e:34:b8:7d:d0: 1b:2c:00:f9:bf:09:2a:98:42:35:5b:61:d0:e4:20: c4:8e:5a:a6:12:0d:4a:f8:d2:6e:27:68:c6:90:fd: fc:d1:51:1f:76:06:ff:e3:24:ee:0c:6b:58:d8:a0: 7f:b1:dc:67:77:69:20:43:2d:86:1a:e4:86:d8:18: 23:c6:08:14:11:86:34:89:08:dc:a4:87:d4:29:5e: 6e:80:88:32:cd:18:91:71:85:45:fa:56:af:18:02: 8e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:56:68:AD:51:6E:EE:3B:00:76:6D:04:C0:D8:CA:31:79:57:E0:60 X509v3 Authority Key Identifier: keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:f7:ad:3c:5c:93:21:77:eb:36:85:c7:fe:5a:3f:e7:df:ef: 90:60:df:13:4f:3a:19:8c:41:2f:36:1c:05:bf:0e:fb:b0:91: 19:87:2e:ab:ae:23:16:55:43:62:af:b1:8a:b7:36:f8:86:92: cd:db:81:aa:d6:e6:e0:42:60:12:33:80:3d:54:73:2a:32:d2: ba:79:9b:fb:8b:28:3f:cc:84:46:69:17:ef:c4:46:85:ed:15: 39:d2:a8:9d:fb:fc:33:0d:7c:b6:01:3a:dd:c8:d3:d4:b6:8c: 61:ca:d1:8d:1a:1d:ee:f3:c8:22:fb:b9:bf:93:7e:2f:24:ab: a2:ef:c5:56:fb:6f:11:21:01:67:5f:08:d5:ec:09:06:32:be: 0f:d3:1d:2a:32:b8:f4:02:5b:da:12:41:49:c1:96:29:02:86: 9e:60:ce:04:ae:86:e3:34:e4:43:d5:59:ee:cd:3a:ab:b4:28: fb:81:c9:0e:32:0a:49:f4:24:40:6c:57:07:d9:76:db:90:9e: 79:11:bb:85:32:37:fc:04:96:ec:57:ca:0a:be:68:be:e0:73: 8f:8f:f5:f7:07:1f:79:b9:d2:8e:94:07:5b:2a:94:04:f0:8c: 14:0a:40:c5:41:6c:b0:e2:1c:90:fc:f5:16:4d:61:eb:95:1b: bb:9f:7f:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMTYxMTAvBgNVBAUTKDZEQkQ1QzREMDEyMUZDQjMxOEU3OEM0NTFCNkY1Njcz MjA5ODYwMDIwHhcNMjQxMTIxMDA1MDU3WhcNMjQxMTI4MDA1MDU3WjAYMRYwFAYD VQQDEw02NzNlODNmMi0wMmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Bfyf2aXUDZzlqBL1FSnNjIONvL16Jk93jr9Scr/c333v6qQPLjJdWhClSdw ECrwyOboXHBXGORl6fUQwKs6qdaFU7EeC2+lfk+W/d4rUI90Qvs/um3U+n3obqHo x7ie6bpbWMVhhuteHXAS2inrQQIg57nDKGNJQP6q/voSRzgiT/PyFByWc1MqUTbJ ExSKo+AuwTqIQfDMhk7N6o5NDjS4fdAbLAD5vwkqmEI1W2HQ5CDEjlqmEg1K+NJu J2jGkP380VEfdgb/4yTuDGtY2KB/sdxnd2kgQy2GGuSG2BgjxggUEYY0iQjcpIfU KV5ugIgyzRiRcYVF+lavGAKOGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9WaK1R bu47AHZtBMDYyjF5V+BgMB8GA1UdIwQYMBaAFG29XE0BIfyzGOeMRRtvVnMgmGAC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIxNi9EQzc4MjY4Q0I5 NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9MTVk1NHhGRzI5V2N5Q1lZ QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JiMWNUUUVoX0xNWTU0eEZHMjlXY3lDWVlBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTIxNi9EQzc4MjY4Q0I5NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9M TVk1NHhGRzI5V2N5Q1lZQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCh9608XJMhd+s2hcf+Wj/n3++QYN8TTzoZjEEvNhwFvw77sJEZhy6r riMWVUNir7GKtzb4hpLN24Gq1ubgQmASM4A9VHMqMtK6eZv7iyg/zIRGaRfvxEaF 7RU50qid+/wzDXy2ATrdyNPUtoxhytGNGh3u88gi+7m/k34vJKui78VW+28RIQFn XwjV7AkGMr4P0x0qMrj0AlvaEkFJwZYpAoaeYM4ErobjNORD1VnuzTqrtCj7gckO MgpJ9CRAbFcH2XbbkJ55EbuFMjf8BJbsV8oKvmi+4HOPj/X3Bx95udKOlAdbKpQE 8IwUCkDFQWyw4hyQ/PUWTWHrlRu7n38w -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:58 2024 by rpki-client on console-fra.rpki-client.org