$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft File: 1bm7ozBeiMAA9WKTnROLpQYieyo.mft (raw, json) Hash identifier: aitv22nPbbB8HFY/plNyLCatDfM+gX/OFRR36A777hE= Subject key identifier: 1D:18:EF:F2:86:84:20:19:4E:30:94:3C:D2:28:41:11:C6:F7:9B:66 Authority key identifier: D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A Certificate issuer: /CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Certificate serial: 0AA8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft Manifest number: 0B20 Signing time: Fri 22 Nov 2024 19:20:30 +0000 Manifest this update: Fri 22 Nov 2024 19:20:30 +0000 Manifest next update: Fri 29 Nov 2024 19:20:30 +0000 Files and hashes: 1: 1bm7ozBeiMAA9WKTnROLpQYieyo.crl (hash: xXP/RxgVY3NxoLNiQr3x9K664aivDnetInzo4WDvtE4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2728 (0xaa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Validity Not Before: Nov 22 19:20:30 2024 GMT Not After : Nov 29 19:20:30 2024 GMT Subject: CN=6740d97e-a2d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f3:ad:85:1d:f1:bd:d2:52:44:5c:06:77:e9: d0:d0:c6:ad:58:ed:ef:e7:88:38:7a:70:21:e9:b8: 71:53:12:76:e6:a6:1f:6c:08:83:0f:93:ae:46:58: 49:79:02:de:59:25:07:0e:d5:41:67:cc:1a:da:7d: 83:07:85:f0:4d:38:ae:eb:f8:2c:bf:da:e8:68:69: ec:82:7f:bc:5a:e9:46:73:a6:0f:0b:e5:64:fd:66: 8c:83:b9:ff:6f:45:16:54:7d:9c:18:8b:6c:5c:27: 81:34:5f:dd:b5:c0:f9:8a:a4:29:0d:04:11:4a:32: c2:cc:29:de:37:0b:21:43:7a:b0:f6:2c:0c:11:96: 85:4f:8c:2c:c1:fc:d8:ba:88:74:1c:3e:3a:35:05: 90:d0:55:a8:7c:2e:5b:6e:be:f5:e6:ec:15:d0:60: 0a:13:23:5f:0d:23:8c:39:ca:8f:90:2e:a6:b6:2c: 51:fd:f7:ee:bc:1b:4b:5d:d9:6d:62:71:ac:0f:15: b6:c2:f4:ba:12:78:a5:47:27:93:a5:b5:5d:4c:60: e6:24:23:7a:00:34:c3:c8:cf:0e:e6:b7:0e:16:d4: 41:34:70:aa:5b:52:fa:d0:24:be:a2:4e:7d:12:bc: b1:5b:af:9b:d7:4e:c6:eb:db:2b:aa:f8:3d:bf:3e: d2:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:18:EF:F2:86:84:20:19:4E:30:94:3C:D2:28:41:11:C6:F7:9B:66 X509v3 Authority Key Identifier: keyid:D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:75:dd:a5:ab:6b:39:e4:8e:33:e1:b7:b9:86:2a:0f:5c:57: 79:ee:04:57:f5:41:fc:b1:48:09:32:5a:99:21:b4:e0:53:e0: 7b:16:56:fe:26:15:89:2a:13:de:14:50:b8:3c:83:47:0a:17: c8:21:f8:24:82:c5:7c:44:83:22:1b:61:de:7d:96:09:75:81: 9f:3c:12:95:ed:81:d5:a6:8e:ca:c9:55:96:76:aa:5c:df:eb: 4a:f0:de:61:87:32:f9:e5:ce:7a:dd:62:53:66:89:7d:93:48: fa:2a:b2:1c:d2:18:cf:49:b9:37:ee:fe:39:a6:5d:e0:d3:8e: 75:f5:54:68:8f:ed:65:d7:84:c3:36:03:06:b0:39:1b:01:ba: 06:23:50:5f:b8:eb:e9:04:44:a5:c3:61:ac:04:3b:db:12:10: 7e:af:36:5f:ec:4a:c0:37:1d:ef:b2:e6:a8:1e:2d:d2:2c:d7: 15:82:ca:23:e3:d1:67:64:30:ea:a4:66:6a:ef:bf:ff:06:f1: 0d:43:7f:ab:a7:b7:a3:eb:2a:5d:73:87:36:29:e9:82:07:3f: 55:fe:8e:2e:80:be:a4:82:ba:e5:81:b7:fa:bb:aa:86:34:5c: b9:fd:fd:38:cc:c9:0e:f6:3b:1a:84:2d:3d:12:8b:17:f6:e0: 0d:7e:1d:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEQ1QjlCQkEzMzA1RTg4QzAwMEY1NjI5MzlEMTM4QkE1 MDYyMjdCMkEwHhcNMjQxMTIyMTkyMDMwWhcNMjQxMTI5MTkyMDMwWjAYMRYwFAYD VQQDEw02NzQwZDk3ZS1hMmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfOthR3xvdJSRFwGd+nQ0MatWO3v54g4enAh6bhxUxJ25qYfbAiDD5OuRlhJ eQLeWSUHDtVBZ8wa2n2DB4XwTTiu6/gsv9roaGnsgn+8WulGc6YPC+Vk/WaMg7n/ b0UWVH2cGItsXCeBNF/dtcD5iqQpDQQRSjLCzCneNwshQ3qw9iwMEZaFT4wswfzY uoh0HD46NQWQ0FWofC5bbr715uwV0GAKEyNfDSOMOcqPkC6mtixR/ffuvBtLXdlt YnGsDxW2wvS6EnilRyeTpbVdTGDmJCN6ADTDyM8O5rcOFtRBNHCqW1L60CS+ok59 EryxW6+b107G69srqvg9vz7SSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0Y7/KG hCAZTjCUPNIoQRHG95tmMB8GA1UdIwQYMBaAFNW5u6MwXojAAPVik50Ti6UGInsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlNQUE5V0tUblJPTHBRWWll eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFibTdvekJlaU1BQTlXS1RuUk9McFFZaWV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlN QUE5V0tUblJPTHBRWWlleW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfdd2lq2s55I4z4be5hioPXFd57gRX9UH8sUgJMlqZIbTgU+B7Flb+ JhWJKhPeFFC4PINHChfIIfgkgsV8RIMiG2HefZYJdYGfPBKV7YHVpo7KyVWWdqpc 3+tK8N5hhzL55c563WJTZol9k0j6KrIc0hjPSbk37v45pl3g04519VRoj+1l14TD NgMGsDkbAboGI1BfuOvpBESlw2GsBDvbEhB+rzZf7ErANx3vsuaoHi3SLNcVgsoj 49FnZDDqpGZq77//BvENQ3+rp7ej6ypdc4c2KemCBz9V/o4ugL6kgrrlgbf6u6qG NFy5/f04zMkO9jsahC09EosX9uANfh29 -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:49 2024 by rpki-client on console-ams.rpki-client.org