$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft File: iBzVaxmrfMJiYzdmnqtzClWnLLY.mft (raw, json) Hash identifier: bTYJMIY5/4gvNu7mACR3KRNsHXay7C/Kxu3vxqu1tPk= Subject key identifier: 7F:E3:B0:9E:BA:E4:78:0B:D9:53:E1:EB:8D:47:BF:48:0C:6A:F9:84 Authority key identifier: 88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 Certificate issuer: /CN=A91ED9F9/serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Certificate serial: 94 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft Manifest number: 92 Signing time: Thu 21 Nov 2024 04:34:58 +0000 Manifest this update: Thu 21 Nov 2024 04:34:58 +0000 Manifest next update: Thu 28 Nov 2024 04:34:57 +0000 Files and hashes: 1: iBzVaxmrfMJiYzdmnqtzClWnLLY.crl (hash: Rz6hUtbw7M/QcNbJCwcUaOtZiDnoUPNI/Ah37404ZVY=) 2: FD45DD80C95411EEAF356F5BC4F9AE02.roa (hash: gYpJagU18gGICx19YL3Dg0Dl6FywJhnJI47VXBuygto=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED9F9/serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Validity Not Before: Nov 21 04:34:58 2024 GMT Not After : Nov 28 04:34:57 2024 GMT Subject: CN=673eb872-3cb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2a:9b:af:b1:d0:67:97:c8:6e:50:4c:cf:2c: 26:ac:99:4c:d0:5f:2e:aa:7b:cf:84:a7:0c:b6:d6: c1:bf:60:06:d5:d7:d3:d1:14:18:70:e2:c2:e0:05: 0a:e6:1d:e1:10:6e:b5:bd:65:9a:c8:54:3f:a3:8f: 99:7b:6d:b7:fd:6b:bc:d7:63:0d:44:6d:7c:67:c6: 13:64:51:0f:32:42:c7:36:21:f8:8d:7c:f8:46:9d: d4:cd:82:ad:32:bc:92:45:da:1b:d5:a6:8a:35:2d: f2:d0:67:80:f3:eb:6d:1c:92:1c:c2:da:00:3e:d1: 9b:bc:a2:a3:84:2f:e4:81:8f:c6:3a:da:ab:b5:5d: 24:7c:d4:cf:c0:20:d1:c7:5b:53:c8:03:2c:03:e1: 4d:e9:23:2c:01:b6:48:fc:ac:6f:ba:a7:8b:e7:58: 46:76:7a:48:01:8b:25:d0:6a:e8:09:2b:bf:3b:9d: a1:d4:27:78:56:4d:d2:25:98:93:b7:79:66:13:9f: f2:54:23:7b:a5:b4:02:bc:9c:39:e1:0f:ea:fa:fc: 54:e4:fe:fe:40:92:79:e5:2f:2f:df:2c:bd:23:49: 8c:73:ff:4b:4b:23:db:23:9f:90:cd:d5:4c:f6:20: e4:3e:f8:37:58:e7:56:b9:07:31:46:df:c9:fe:09: 51:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:E3:B0:9E:BA:E4:78:0B:D9:53:E1:EB:8D:47:BF:48:0C:6A:F9:84 X509v3 Authority Key Identifier: keyid:88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:91:b8:b6:fb:aa:6e:cf:b4:3e:e8:e9:2d:00:f7:87:1d:fe: c2:de:a6:4c:39:13:fa:f4:6b:f6:f0:95:4c:85:82:12:43:ca: 84:8f:7f:de:0e:20:03:3a:83:b5:19:1f:26:ca:3c:69:1e:31: 9f:ee:59:05:ed:bd:6a:64:20:63:a7:e5:de:1f:e7:99:6a:53: 5c:0f:d0:94:c5:46:26:bf:40:5f:5e:38:85:66:49:7c:8d:27: 73:a3:8c:d6:05:a4:a0:ca:6b:ce:44:2a:0c:0b:b8:f3:f7:93: f1:ae:3b:c3:96:2e:5d:ca:62:f3:3a:b9:03:02:b5:c9:c3:3c: 3b:f7:82:dd:f5:84:73:d9:ea:b4:42:cf:4e:c0:54:30:ff:1e: 23:c8:f5:89:c8:ea:1f:79:37:41:4c:c2:27:dd:8a:29:77:4c: df:46:77:0e:54:0a:f8:cd:db:f1:ee:6f:60:84:8c:bf:f1:13: 7e:cc:b3:46:c9:e6:66:ee:97:51:f9:99:cc:61:83:b5:25:48: 7f:64:29:0d:4d:88:6c:d0:6c:38:71:18:c9:fa:82:15:14:e8: 72:8b:4e:07:23:bc:8f:2b:75:b5:46:9d:62:af:1a:5d:95:d7: c1:8b:87:67:23:6d:d9:01:71:66:33:a2:6b:8f:85:35:f6:a8: 3d:81:d2:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ5RjkxMTAvBgNVBAUTKDg4MUNENTZCMTlBQjdDQzI2MjYzMzc2NjlFQUI3MzBB NTVBNzJDQjYwHhcNMjQxMTIxMDQzNDU4WhcNMjQxMTI4MDQzNDU3WjAYMRYwFAYD VQQDEw02NzNlYjg3Mi0zY2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3iqbr7HQZ5fIblBMzywmrJlM0F8uqnvPhKcMttbBv2AG1dfT0RQYcOLC4AUK 5h3hEG61vWWayFQ/o4+Ze223/Wu812MNRG18Z8YTZFEPMkLHNiH4jXz4Rp3UzYKt MrySRdob1aaKNS3y0GeA8+ttHJIcwtoAPtGbvKKjhC/kgY/GOtqrtV0kfNTPwCDR x1tTyAMsA+FN6SMsAbZI/KxvuqeL51hGdnpIAYsl0GroCSu/O52h1Cd4Vk3SJZiT t3lmE5/yVCN7pbQCvJw54Q/q+vxU5P7+QJJ55S8v3yy9I0mMc/9LSyPbI5+QzdVM 9iDkPvg3WOdWuQcxRt/J/glRXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/jsJ66 5HgL2VPh641Hv0gMavmEMB8GA1UdIwQYMBaAFIgc1WsZq3zCYmM3Zp6rcwpVpyy2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDlGOS81RjM3OURCMEM5 NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZNSmlZemRtbnF0ekNsV25M TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lCelZheG1yZk1KaVl6ZG1ucXR6Q2xXbkxMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDlGOS81RjM3OURCMEM5NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZN SmlZemRtbnF0ekNsV25MTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfkbi2+6puz7Q+6OktAPeHHf7C3qZMORP69Gv28JVMhYISQ8qEj3/e DiADOoO1GR8myjxpHjGf7lkF7b1qZCBjp+XeH+eZalNcD9CUxUYmv0BfXjiFZkl8 jSdzo4zWBaSgymvORCoMC7jz95PxrjvDli5dymLzOrkDArXJwzw794Ld9YRz2eq0 Qs9OwFQw/x4jyPWJyOofeTdBTMIn3Yopd0zfRncOVAr4zdvx7m9ghIy/8RN+zLNG yeZm7pdR+ZnMYYO1JUh/ZCkNTYhs0Gw4cRjJ+oIVFOhyi04HI7yPK3W1Rp1irxpd ldfBi4dnI23ZAXFmM6Jrj4U19qg9gdKp -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:18 2024 by rpki-client on console-ams.rpki-client.org