$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.mft File: bPYEPvYahE8I4lOhk9XZRlSWJ50.mft (raw, json) Hash identifier: K4WY/uYlg8xiIxdWFYrVLG8i4wl1rJ6XWcXDIjt77/U= Subject key identifier: EE:DF:60:81:52:66:CE:A9:C4:A6:A9:7E:54:DD:2F:44:14:63:52:18 Authority key identifier: 6C:F6:04:3E:F6:1A:84:4F:08:E2:53:A1:93:D5:D9:46:54:96:27:9D Certificate issuer: /CN=A91F3D37/serialNumber=6CF6043EF61A844F08E253A193D5D9465496279D Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bPYEPvYahE8I4lOhk9XZRlSWJ50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.mft Manifest number: 012E Signing time: Sat 23 Nov 2024 02:49:50 +0000 Manifest this update: Sat 23 Nov 2024 02:49:50 +0000 Manifest next update: Sat 30 Nov 2024 02:49:50 +0000 Files and hashes: 1: bPYEPvYahE8I4lOhk9XZRlSWJ50.crl (hash: UiglSqFr4tlL7LOdKaZOfW2OWjrvQwfu6rIxDJXmeKU=) 2: 6F67CF8CDCF111ED9828F232C4F9AE02.roa (hash: UUhAaQeYrl7H0iCSeqj7JAOZrw6JcIfsjlzbvaWf61k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.crl rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bPYEPvYahE8I4lOhk9XZRlSWJ50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:49:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3D37/serialNumber=6CF6043EF61A844F08E253A193D5D9465496279D Validity Not Before: Nov 23 02:49:50 2024 GMT Not After : Nov 30 02:49:50 2024 GMT Subject: CN=674142ce-b173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:74:93:19:11:3c:b3:2c:e9:6f:d1:df:cb:29: 5f:57:f8:22:c8:28:65:0d:7a:5e:10:37:bd:32:41: 8b:aa:07:90:f0:5b:2b:8f:52:ed:8d:fc:de:0c:c3: f8:cf:a7:45:ae:54:70:99:09:18:7d:10:89:53:61: 8f:35:00:96:d1:1d:94:5e:83:5b:1a:40:db:ba:a6: 63:4f:a9:1b:07:a2:c4:d7:e7:7d:0d:7b:2e:f1:a8: 2c:e5:9f:d7:9f:93:14:f8:80:81:b8:8e:ef:1d:4a: a8:21:ad:56:c4:b0:c4:76:f4:bd:42:98:93:42:6d: 0c:f9:29:f5:37:e1:18:69:02:4b:07:68:8b:51:6e: 67:4e:03:f8:d5:ad:b8:29:89:7a:df:0b:65:83:7d: f7:43:8c:93:c2:b3:ad:1a:46:ff:59:64:0b:ee:5f: 5f:52:fb:ee:49:d9:2f:e5:90:0d:44:86:8b:d8:d4: 40:53:9a:ef:71:6b:dc:22:17:8f:07:56:a5:25:e7: b2:5a:c1:65:52:82:15:6a:34:21:b6:29:20:a0:8c: e9:b2:c2:10:aa:17:bc:2e:6e:a1:70:8d:25:b4:a8: 3a:90:25:40:3f:b1:82:0a:c1:bc:b4:ad:97:0b:f2: 48:ff:2a:9f:4f:53:7e:c0:a9:66:fd:d2:88:f4:9e: 4f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:DF:60:81:52:66:CE:A9:C4:A6:A9:7E:54:DD:2F:44:14:63:52:18 X509v3 Authority Key Identifier: keyid:6C:F6:04:3E:F6:1A:84:4F:08:E2:53:A1:93:D5:D9:46:54:96:27:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bPYEPvYahE8I4lOhk9XZRlSWJ50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:fd:de:d5:17:93:67:01:bb:18:9e:e5:45:89:e0:40:9c:d2: 0d:8d:03:fc:02:d6:94:97:2f:52:a1:59:e5:f8:7a:90:7a:b8: 08:17:1b:4f:cb:39:c1:e8:0e:66:c1:5a:7e:92:50:ce:2a:ac: 4d:d8:42:98:cd:f0:a6:3f:09:8f:35:fb:15:ec:73:10:4f:46: e6:d7:cf:48:8d:05:63:0e:55:77:35:e3:e9:66:82:97:15:87: b3:95:70:27:0b:5b:90:46:a0:18:5a:14:9d:dd:a5:c6:8e:69: 8c:aa:d5:3a:96:09:92:55:3c:33:44:3d:ac:10:71:0f:a3:fd: 4f:0d:c1:cf:4a:29:67:8a:fc:e3:2f:d9:a9:5c:20:b7:b2:06: 81:53:29:8e:6f:a1:c3:91:25:86:11:68:b4:c9:cb:02:70:21: 0c:f4:eb:b7:28:4b:9f:d0:ef:b7:4e:c4:38:b8:e7:55:0e:bc: e2:f2:34:ba:37:ea:82:18:23:1a:69:ec:ad:31:f4:86:ae:97: 61:6e:a1:ad:35:46:ac:58:8f:7c:97:7f:e6:d4:db:68:56:13: cb:00:ff:73:54:3d:c0:03:67:48:d5:28:d7:e2:6c:79:9e:72: 3d:87:22:52:ee:a7:64:ef:11:54:7b:0f:35:85:85:50:d7:ba: bf:ef:86:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNEMzcxMTAvBgNVBAUTKDZDRjYwNDNFRjYxQTg0NEYwOEUyNTNBMTkzRDVEOTQ2 NTQ5NjI3OUQwHhcNMjQxMTIzMDI0OTUwWhcNMjQxMTMwMDI0OTUwWjAYMRYwFAYD VQQDEw02NzQxNDJjZS1iMTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4nSTGRE8syzpb9HfyylfV/giyChlDXpeEDe9MkGLqgeQ8Fsrj1LtjfzeDMP4 z6dFrlRwmQkYfRCJU2GPNQCW0R2UXoNbGkDbuqZjT6kbB6LE1+d9DXsu8ags5Z/X n5MU+ICBuI7vHUqoIa1WxLDEdvS9QpiTQm0M+Sn1N+EYaQJLB2iLUW5nTgP41a24 KYl63wtlg333Q4yTwrOtGkb/WWQL7l9fUvvuSdkv5ZANRIaL2NRAU5rvcWvcIheP B1alJeeyWsFlUoIVajQhtikgoIzpssIQqhe8Lm6hcI0ltKg6kCVAP7GCCsG8tK2X C/JI/yqfT1N+wKlm/dKI9J5P6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7fYIFS Zs6pxKapflTdL0QUY1IYMB8GA1UdIwQYMBaAFGz2BD72GoRPCOJToZPV2UZUlied MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0QzNy81RUU5NzgyQURD RUUxMUVEOEMzOEQwMzFDNEY5QUUwMi9iUFlFUHZZYWhFOEk0bE9oazlYWlJsU1dK NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JQWUVQdllhaEU4STRsT2hrOVhaUmxTV0o1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0QzNy81RUU5NzgyQURDRUUxMUVEOEMzOEQwMzFDNEY5QUUwMi9iUFlFUHZZYWhF OEk0bE9oazlYWlJsU1dKNTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf/d7VF5NnAbsYnuVFieBAnNINjQP8AtaUly9SoVnl+HqQergIFxtP yznB6A5mwVp+klDOKqxN2EKYzfCmPwmPNfsV7HMQT0bm189IjQVjDlV3NePpZoKX FYezlXAnC1uQRqAYWhSd3aXGjmmMqtU6lgmSVTwzRD2sEHEPo/1PDcHPSilnivzj L9mpXCC3sgaBUymOb6HDkSWGEWi0ycsCcCEM9Ou3KEuf0O+3TsQ4uOdVDrzi8jS6 N+qCGCMaaeytMfSGrpdhbqGtNUasWI98l3/m1NtoVhPLAP9zVD3AA2dI1SjX4mx5 nnI9hyJS7qdk7xFUew81hYVQ17q/74ax -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:59 2024 by rpki-client on console-ams.rpki-client.org