$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft File: BNhIIeE7gDAzVMS-NDMdURHyvKY.mft (raw, json) Hash identifier: 46KGFxj7OxI7l3ko2khKsr7lnc1kEqnvDll3CozM/yU= Subject key identifier: 6C:2D:FA:FF:1E:01:9F:9C:3B:34:D8:83:25:40:8E:65:6C:49:7E:E4 Authority key identifier: 04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 Certificate issuer: /CN=A91F0721/serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft Manifest number: 014A Signing time: Sat 23 Nov 2024 02:31:37 +0000 Manifest this update: Sat 23 Nov 2024 02:31:37 +0000 Manifest next update: Sat 30 Nov 2024 02:31:37 +0000 Files and hashes: 1: BNhIIeE7gDAzVMS-NDMdURHyvKY.crl (hash: 1SC/mO9OB1uXJzCUZ0wY+dr0aPM8X+6PNM6M4SyikQM=) 2: 7659B89AADCC11ED84051211C4F9AE02.roa (hash: WyTsaKM9AgGR0mrkDwgxzr2KZxKdSvDUWhHRY9oRT+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0721/serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Validity Not Before: Nov 23 02:31:37 2024 GMT Not After : Nov 30 02:31:37 2024 GMT Subject: CN=67413e89-685e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c5:c8:b0:6a:68:40:fd:36:b4:66:5c:66:93: 67:fc:6c:4f:75:1d:4f:67:23:b2:11:81:1c:d4:84: 2f:ef:cd:7a:62:4e:a9:dc:e9:68:d9:18:ce:7d:82: d5:d7:7d:f3:71:28:76:82:e4:c2:74:ed:75:4d:cc: ba:a6:14:7e:2b:e3:3d:4b:3c:df:36:c7:be:39:5f: 3c:b2:f8:d1:73:f2:78:99:bf:ef:8d:3a:9c:0b:c9: 3a:24:8e:0f:47:22:ea:59:89:f4:91:f8:03:be:89: 08:87:b6:15:75:30:b0:2b:4d:ac:67:a4:f0:0c:66: fa:2e:bf:41:ca:b8:0d:75:da:a5:c4:59:df:63:1d: 34:7b:75:7c:3a:d2:92:77:28:23:c3:1a:8f:8d:0e: 22:51:86:76:e9:4f:22:2c:be:ac:ab:4f:17:f1:e0: 5a:a5:d0:c7:41:c4:94:7b:a4:14:18:1f:33:7e:59: ff:b2:3f:1b:29:46:b8:c3:94:8e:48:fe:c4:51:5d: ef:39:22:be:44:fa:c0:72:d1:f1:28:3a:95:62:6e: d4:0b:dc:48:f5:ae:24:d2:3d:32:38:69:50:ce:0c: 4a:63:ec:80:25:08:e4:43:3c:97:7f:4e:18:9a:89: 92:ea:d8:f8:71:9a:2f:bc:e6:e7:d6:26:f1:dd:09: 21:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:2D:FA:FF:1E:01:9F:9C:3B:34:D8:83:25:40:8E:65:6C:49:7E:E4 X509v3 Authority Key Identifier: keyid:04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:6e:86:da:08:f7:32:fd:90:49:90:1d:c7:a6:ab:95:ea:f6: 2e:d9:7f:44:86:9b:9d:12:5e:b6:71:46:7b:40:eb:c8:2d:04: 91:77:88:cd:c4:1f:db:80:a5:c2:78:e3:b1:5b:65:5c:f9:16: 23:72:1e:46:e9:1c:8f:59:b1:27:44:89:a9:f2:3f:14:6a:6c: 19:d8:9e:b0:f5:77:73:27:b8:9e:52:18:d7:a3:57:63:f8:b8: 5f:11:78:94:07:96:dd:55:66:bf:ce:d9:6e:f7:a3:1e:dc:0f: 04:2b:7e:7a:09:9f:8c:ec:d8:bb:3f:e9:fe:ff:b7:c9:e4:b6: e2:87:44:74:eb:1b:d6:d0:6c:64:61:60:6f:19:52:51:4d:d0: f7:76:53:de:8a:c1:88:1b:b1:10:26:5c:fe:eb:d4:5f:b3:91: 49:38:05:be:80:af:01:91:d3:91:5d:88:ad:b4:ba:8a:df:a1: d7:f1:7a:21:ba:06:58:dd:80:7c:4e:da:1b:5d:8b:b5:15:6c: b5:45:b4:c9:48:6e:78:d7:ee:8f:78:71:4a:eb:b0:5e:45:b2: 8b:c7:eb:30:dd:e6:af:59:60:47:29:78:a3:19:f2:f0:bc:cd: e7:0d:91:b8:59:97:d1:3e:28:d5:2f:f6:a8:3e:b2:bd:59:a6: b0:6a:09:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA3MjExMTAvBgNVBAUTKDA0RDg0ODIxRTEzQjgwMzAzMzU0QzRCRTM0MzMxRDUx MTFGMkJDQTYwHhcNMjQxMTIzMDIzMTM3WhcNMjQxMTMwMDIzMTM3WjAYMRYwFAYD VQQDEw02NzQxM2U4OS02ODVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8XIsGpoQP02tGZcZpNn/GxPdR1PZyOyEYEc1IQv7816Yk6p3Olo2RjOfYLV 133zcSh2guTCdO11Tcy6phR+K+M9SzzfNse+OV88svjRc/J4mb/vjTqcC8k6JI4P RyLqWYn0kfgDvokIh7YVdTCwK02sZ6TwDGb6Lr9ByrgNddqlxFnfYx00e3V8OtKS dygjwxqPjQ4iUYZ26U8iLL6sq08X8eBapdDHQcSUe6QUGB8zfln/sj8bKUa4w5SO SP7EUV3vOSK+RPrActHxKDqVYm7UC9xI9a4k0j0yOGlQzgxKY+yAJQjkQzyXf04Y momS6tj4cZovvObn1ibx3QkhSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGwt+v8e AZ+cOzTYgyVAjmVsSX7kMB8GA1UdIwQYMBaAFATYSCHhO4AwM1TEvjQzHVER8rym MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDcyMS9DOTEyN0IzRUFE QzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dEQXpWTVMtTkRNZFVSSHl2 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JOaElJZUU3Z0RBelZNUy1ORE1kVVJIeXZLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDcyMS9DOTEyN0IzRUFEQzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dE QXpWTVMtTkRNZFVSSHl2S1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDbobaCPcy/ZBJkB3HpquV6vYu2X9EhpudEl62cUZ7QOvILQSRd4jN xB/bgKXCeOOxW2Vc+RYjch5G6RyPWbEnRImp8j8UamwZ2J6w9XdzJ7ieUhjXo1dj +LhfEXiUB5bdVWa/ztlu96Me3A8EK356CZ+M7Ni7P+n+/7fJ5Lbih0R06xvW0Gxk YWBvGVJRTdD3dlPeisGIG7EQJlz+69Rfs5FJOAW+gK8BkdORXYittLqK36HX8Xoh ugZY3YB8TtobXYu1FWy1RbTJSG541+6PeHFK67BeRbKLx+sw3eavWWBHKXijGfLw vM3nDZG4WZfRPijVL/aoPrK9WaawagnC -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:58 2024 by rpki-client on console-ams.rpki-client.org