$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft File: bKwrcgiF6COCTBln7fw2Psh0do0.mft (raw, json) Hash identifier: OKZNg2rqV8u53H88FEgHiR4Ehs7nJ2ZvJ0PNzc93zSY= Subject key identifier: 03:21:91:67:28:7B:23:BE:8E:F1:F1:E2:10:52:22:95:50:ED:39:ED Authority key identifier: 6C:AC:2B:72:08:85:E8:23:82:4C:19:67:ED:FC:36:3E:C8:74:76:8D Certificate issuer: /CN=A91D5BA2/serialNumber=6CAC2B720885E823824C1967EDFC363EC874768D Certificate serial: 03EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft Manifest number: 03E8 Signing time: Sat 23 Nov 2024 00:07:15 +0000 Manifest this update: Sat 23 Nov 2024 00:07:14 +0000 Manifest next update: Sat 30 Nov 2024 00:07:14 +0000 Files and hashes: 1: bKwrcgiF6COCTBln7fw2Psh0do0.crl (hash: GhQIY14cJvNDVc6IQR2e3mFTf/zuNu/irsgH2J8Q6S8=) 2: AA5ADA7C579511ECA9BDE14AC4F9AE02.roa (hash: cikoyhuqavK+MFZkdQ9w/OIVV8ZcalMBLZhc0JWWGjQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.crl rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1004 (0x3ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5BA2/serialNumber=6CAC2B720885E823824C1967EDFC363EC874768D Validity Not Before: Nov 23 00:07:14 2024 GMT Not After : Nov 30 00:07:14 2024 GMT Subject: CN=67411cb2-3637 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:be:58:d9:a2:24:83:d8:09:50:35:5a:e8:b5: 0b:87:b4:e8:fc:b2:f7:a4:32:47:1b:59:d0:db:a8: f4:86:ba:1b:b5:c8:15:4f:34:99:10:c0:03:81:66: 38:69:11:bb:74:61:b8:b7:37:6f:b8:78:64:b9:9e: 10:81:e3:e8:71:72:af:66:2d:71:a7:a9:31:77:e9: 1c:c7:a0:62:1e:f6:c2:56:99:78:bf:58:88:e5:97: bb:68:b1:41:21:29:4b:49:f1:7e:f6:f8:91:34:54: 83:9e:32:f3:a2:bd:c9:45:09:53:58:73:e6:85:f3: b9:29:12:b2:69:a8:0d:ba:17:e2:22:0a:03:e0:42: 00:14:fc:96:d7:38:28:38:f1:fb:6d:00:c2:ce:0e: 88:c7:25:6d:97:6d:62:92:47:d5:9f:dd:34:04:fd: 65:c1:4a:49:ca:4d:95:ac:9d:10:6b:07:e5:ac:77: 7b:0f:9a:58:5d:b3:f9:61:69:ee:80:36:d5:90:85: bd:a5:aa:dd:73:dc:57:dc:15:15:65:28:90:c3:65: fe:19:46:d3:57:33:e3:76:0a:e0:ba:32:bc:d0:c2: 19:01:ca:50:b5:5d:75:d4:e3:f6:e6:84:7e:1b:20: 6b:d2:1f:57:57:3b:86:72:2d:8d:61:b3:6c:bb:1b: 80:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:21:91:67:28:7B:23:BE:8E:F1:F1:E2:10:52:22:95:50:ED:39:ED X509v3 Authority Key Identifier: keyid:6C:AC:2B:72:08:85:E8:23:82:4C:19:67:ED:FC:36:3E:C8:74:76:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:d9:a5:c9:82:2c:91:ec:76:0c:f4:d0:30:7c:39:22:30:b9: dc:1b:9f:42:7c:f1:fb:aa:e7:c2:1a:0c:87:80:61:71:24:6c: 50:58:8e:dd:fa:e2:80:b5:8c:0c:08:60:eb:d3:41:cc:85:32: 89:35:0a:b3:0d:58:3d:01:d1:d6:dc:d5:9e:2b:06:08:ba:7e: f4:d9:27:36:44:cc:8c:e1:04:88:d1:8b:11:58:87:5d:10:05: 5b:9c:e3:b6:3d:c2:8b:08:c1:ab:19:bd:75:97:72:b2:31:6d: 2c:b8:65:12:ca:5f:75:6f:6b:9e:1a:5e:93:98:10:73:a0:99: c9:ae:93:be:ff:4b:ce:c6:e6:ed:ab:09:52:83:2d:7b:bd:5e: 6b:67:72:c5:e5:07:10:21:9c:a3:d4:2f:0f:ed:fe:65:5e:4e: 53:b6:b4:73:52:92:fe:71:78:01:44:24:e3:e6:73:30:31:8a: 99:c5:e0:75:5c:0f:a7:3f:00:30:c9:ef:94:9f:f7:48:92:1c: e7:58:69:e7:ca:03:39:94:aa:40:1b:10:aa:35:17:6e:e3:51: 47:79:58:03:5b:b8:d5:6e:a8:ab:58:29:f2:a5:80:12:3f:c7: cf:35:ef:99:17:c2:05:89:74:a4:c6:8a:00:a6:2d:7a:01:a2: fa:d8:75:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVCQTIxMTAvBgNVBAUTKDZDQUMyQjcyMDg4NUU4MjM4MjRDMTk2N0VERkMzNjNF Qzg3NDc2OEQwHhcNMjQxMTIzMDAwNzE0WhcNMjQxMTMwMDAwNzE0WjAYMRYwFAYD VQQDEw02NzQxMWNiMi0zNjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0b5Y2aIkg9gJUDVa6LULh7To/LL3pDJHG1nQ26j0hrobtcgVTzSZEMADgWY4 aRG7dGG4tzdvuHhkuZ4QgePocXKvZi1xp6kxd+kcx6BiHvbCVpl4v1iI5Ze7aLFB ISlLSfF+9viRNFSDnjLzor3JRQlTWHPmhfO5KRKyaagNuhfiIgoD4EIAFPyW1zgo OPH7bQDCzg6IxyVtl21ikkfVn900BP1lwUpJyk2VrJ0QawflrHd7D5pYXbP5YWnu gDbVkIW9pardc9xX3BUVZSiQw2X+GUbTVzPjdgrgujK80MIZAcpQtV111OP25oR+ GyBr0h9XVzuGci2NYbNsuxuAHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAMhkWco eyO+jvHx4hBSIpVQ7TntMB8GA1UdIwQYMBaAFGysK3IIhegjgkwZZ+38Nj7IdHaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUJBMi8xNEZFQzJFQzU3 OTMxMUVDQkEyRkIwNDhDNEY5QUUwMi9iS3dyY2dpRjZDT0NUQmxuN2Z3MlBzaDBk bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLd3JjZ2lGNkNPQ1RCbG43ZncyUHNoMGRvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUJBMi8xNEZFQzJFQzU3OTMxMUVDQkEyRkIwNDhDNEY5QUUwMi9iS3dyY2dpRjZD T0NUQmxuN2Z3MlBzaDBkbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY2aXJgiyR7HYM9NAwfDkiMLncG59CfPH7qufCGgyHgGFxJGxQWI7d +uKAtYwMCGDr00HMhTKJNQqzDVg9AdHW3NWeKwYIun702Sc2RMyM4QSI0YsRWIdd EAVbnOO2PcKLCMGrGb11l3KyMW0suGUSyl91b2ueGl6TmBBzoJnJrpO+/0vOxubt qwlSgy17vV5rZ3LF5QcQIZyj1C8P7f5lXk5TtrRzUpL+cXgBRCTj5nMwMYqZxeB1 XA+nPwAwye+Un/dIkhznWGnnygM5lKpAGxCqNRdu41FHeVgDW7jVbqirWCnypYAS P8fPNe+ZF8IFiXSkxooApi16AaL62HWZ -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:28 2024 by rpki-client on console-ams.rpki-client.org