$ rpki-client -vvf rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft File: BHT0BqF40ixU1e9yTGssLJo7a5g.mft (raw, json) Hash identifier: QQcZk+d/w05UcD6tm4NC7FpvAAIUP9D3uvXoG4nHyUo= Subject key identifier: 54:5F:2E:A9:D6:A9:FE:21:E4:2F:EF:FE:69:F3:82:65:A1:A3:B6:F5 Authority key identifier: 04:74:F4:06:A1:78:D2:2C:54:D5:EF:72:4C:6B:2C:2C:9A:3B:6B:98 Certificate issuer: /CN=A91D60CF/serialNumber=0474F406A178D22C54D5EF724C6B2C2C9A3B6B98 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft Manifest number: 51 Signing time: Thu 21 Nov 2024 05:15:19 +0000 Manifest this update: Thu 21 Nov 2024 05:15:18 +0000 Manifest next update: Thu 28 Nov 2024 05:15:18 +0000 Files and hashes: 1: BHT0BqF40ixU1e9yTGssLJo7a5g.crl (hash: /qKByevr4VMZgPMB9aBgx12oFViSmehmE+57jfFSdY0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.crl rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D60CF/serialNumber=0474F406A178D22C54D5EF724C6B2C2C9A3B6B98 Validity Not Before: Nov 21 05:15:18 2024 GMT Not After : Nov 28 05:15:18 2024 GMT Subject: CN=673ec1e7-96a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:69:1c:d5:84:74:d3:3d:92:f9:dc:93:db:42: b4:54:e9:e6:be:c7:1c:48:6d:7b:83:26:ae:ce:2e: 69:3d:15:52:45:a8:43:39:b9:1f:28:55:62:44:7f: c5:34:f1:a1:52:ba:7d:56:72:4b:63:07:58:2f:e5: 3a:02:92:4b:27:90:03:50:d6:5e:34:b2:c6:18:b2: d6:60:1d:97:74:1c:1b:49:5c:6d:ab:67:6b:ce:44: e0:9d:86:ea:1b:e5:01:f3:c7:45:57:5d:e9:5a:85: d8:3c:c7:01:63:95:4f:52:60:90:18:09:0d:27:1e: ae:5e:0a:56:9d:6c:aa:60:85:31:c5:5c:56:af:24: db:2b:37:05:55:de:88:4d:5b:8a:a2:20:4a:44:ea: 0b:5a:21:d6:58:3b:b5:22:63:6d:a6:92:dc:bb:1b: 85:8a:5e:84:9d:63:21:88:7d:f5:70:1a:a2:03:e2: 3a:a4:87:20:9d:41:dd:78:97:af:a9:3d:53:0c:3d: 04:b0:5b:9b:ab:5d:e4:6b:7c:06:55:28:b4:d4:bc: ac:80:56:3c:96:2e:38:3e:a9:00:98:a6:b5:09:b3: 36:0a:1e:fa:d7:03:77:fe:7c:00:34:18:7b:7f:75: 9f:84:6a:d8:b5:e9:fc:9d:69:b6:97:0a:18:a4:55: 66:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:5F:2E:A9:D6:A9:FE:21:E4:2F:EF:FE:69:F3:82:65:A1:A3:B6:F5 X509v3 Authority Key Identifier: keyid:04:74:F4:06:A1:78:D2:2C:54:D5:EF:72:4C:6B:2C:2C:9A:3B:6B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:93:25:20:d6:1a:8f:9f:e1:1a:93:79:b4:ef:52:39:fd:f0: e4:52:7d:49:55:8a:16:b6:e8:17:ff:9e:10:08:86:04:6b:c0: 47:4a:b3:62:91:d2:28:11:d3:be:6a:75:71:61:25:2b:75:cd: 84:1b:61:c2:0a:b2:ef:9e:7f:5d:5a:e8:cb:de:bb:c0:e3:eb: db:19:b6:ae:37:8e:ae:13:f1:31:f0:d2:2f:a1:b7:a2:9f:05: 49:7a:77:8c:b0:35:a1:4c:be:c6:51:a1:6f:72:af:32:18:9b: 40:fe:a9:a3:b3:fa:1e:93:e7:22:dc:d9:15:88:20:fa:ba:4a: e1:eb:33:38:c8:59:99:91:6a:fb:06:b4:1f:06:2d:b1:90:77: 16:fa:83:ab:c3:11:a3:7e:fb:67:12:5f:d3:24:ad:39:e3:13: c3:18:7d:57:e6:20:3d:c5:3f:69:e6:00:a1:f6:7c:0e:97:9c: 55:db:64:44:c9:e3:04:40:be:8c:9d:9b:9a:c3:e3:d4:03:c0: 60:d2:33:a2:d0:9a:cf:7f:13:ba:bd:bd:dd:b2:45:53:d0:4b: 77:89:06:37:85:2e:20:e5:1d:68:3c:41:c3:cb:58:43:7d:f9: ff:5d:65:51:de:a5:26:10:c0:01:c9:c6:17:f5:13:6e:f9:41: 69:69:78:6c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NjBDRjExMC8GA1UEBRMoMDQ3NEY0MDZBMTc4RDIyQzU0RDVFRjcyNEM2QjJDMkM5 QTNCNkI5ODAeFw0yNDExMjEwNTE1MThaFw0yNDExMjgwNTE1MThaMBgxFjAUBgNV BAMTDTY3M2VjMWU3LTk2YTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAaRzVhHTTPZL53JPbQrRU6ea+xxxIbXuDJq7OLmk9FVJFqEM5uR8oVWJEf8U0 8aFSun1WcktjB1gv5ToCkksnkANQ1l40ssYYstZgHZd0HBtJXG2rZ2vOROCdhuob 5QHzx0VXXelahdg8xwFjlU9SYJAYCQ0nHq5eCladbKpghTHFXFavJNsrNwVV3ohN W4qiIEpE6gtaIdZYO7UiY22mkty7G4WKXoSdYyGIffVwGqID4jqkhyCdQd14l6+p PVMMPQSwW5urXeRrfAZVKLTUvKyAVjyWLjg+qQCYprUJszYKHvrXA3f+fAA0GHt/ dZ+Eati16fydabaXChikVWZXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVF8uqdap /iHkL+/+afOCZaGjtvUwHwYDVR0jBBgwFoAUBHT0BqF40ixU1e9yTGssLJo7a5gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2MENGL0U1MzYwOEYwMkFG QzExRUZBMDI0M0M0QUM0RjlBRTAyL0JIVDBCcUY0MGl4VTFlOXlUR3NzTEpvN2E1 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQkhUMEJxRjQwaXhVMWU5eVRHc3NMSm83YTVnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2 MENGL0U1MzYwOEYwMkFGQzExRUZBMDI0M0M0QUM0RjlBRTAyL0JIVDBCcUY0MGl4 VTFlOXlUR3NzTEpvN2E1Zy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANWTJSDWGo+f4RqTebTvUjn98ORSfUlViha26Bf/nhAIhgRrwEdKs2KR 0igR075qdXFhJSt1zYQbYcIKsu+ef11a6Mveu8Dj69sZtq43jq4T8THw0i+ht6Kf BUl6d4ywNaFMvsZRoW9yrzIYm0D+qaOz+h6T5yLc2RWIIPq6SuHrMzjIWZmRavsG tB8GLbGQdxb6g6vDEaN++2cSX9MkrTnjE8MYfVfmID3FP2nmAKH2fA6XnFXbZETJ 4wRAvoydm5rD49QDwGDSM6LQms9/E7q9vd2yRVPQS3eJBjeFLiDlHWg8QcPLWEN9 +f9dZVHepSYQwAHJxhf1E275QWlpeGw= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:39 2024 by rpki-client on console-ams.rpki-client.org