$ rpki-client -vvf rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft File: BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft (raw, json) Hash identifier: OeSIk208HRHq2m6tW5ZXpFfnv1cCkQJVzkLiQFb/vnA= Subject key identifier: 57:BE:58:6D:38:7F:B8:B4:DA:EC:D0:49:FC:F7:76:4A:C5:AB:73:75 Authority key identifier: 06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 Certificate issuer: /CN=A91F63DC/serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft Manifest number: D4 Signing time: Sat 23 Nov 2024 03:43:52 +0000 Manifest this update: Sat 23 Nov 2024 03:43:51 +0000 Manifest next update: Sat 30 Nov 2024 03:43:51 +0000 Files and hashes: 1: BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl (hash: LBE9JWAf89QRRt/LzTrx84OEGEeXxT9TvwIdwfBLjvM=) 2: 9FFF0E74665511EEB872BE4DC4F9AE02.roa (hash: HsI9s/avf/WsE7yy/2Fnz0a9pkM1ZrwF3kHF8jU1yp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F63DC/serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Validity Not Before: Nov 23 03:43:51 2024 GMT Not After : Nov 30 03:43:51 2024 GMT Subject: CN=67414f78-6b86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8e:df:3c:0d:84:1b:eb:2e:19:40:1a:08:ac: 99:20:8b:73:e7:fa:dd:7c:69:21:90:cd:58:ec:95: 58:ed:d1:4c:26:fc:7b:00:66:0e:72:18:bc:69:32: 98:ac:ee:08:94:86:5a:b4:2c:7a:a5:eb:a2:63:1b: 7b:fd:3a:7d:a6:fd:88:38:14:85:03:96:7d:07:7e: d9:ae:18:cd:3c:0f:ed:d7:2f:ad:3b:af:0e:7a:62: a5:f8:7d:0b:cc:eb:46:f9:fb:e3:3c:a7:e6:3d:9b: a5:98:93:e5:a4:41:56:99:fc:3e:27:ef:ed:b1:d2: ff:2d:33:5d:74:03:b6:b2:51:44:db:45:6c:da:68: 85:4f:d5:93:be:db:59:3f:c1:7e:5f:ca:67:39:8f: 9a:87:5f:1e:de:6b:01:47:fa:3b:09:21:dd:31:06: 11:33:80:fe:52:03:f2:80:2a:f6:2d:3d:22:32:9b: 57:07:c3:1e:a7:0b:46:05:2e:69:b5:cc:07:7d:66: 9d:d0:c2:d8:f4:c9:a3:cb:35:1f:4f:9c:6d:85:e3: e7:1d:d3:7e:a4:7a:d7:49:f2:6c:4c:63:c8:62:39: d5:f5:34:c8:87:f4:ea:c0:b4:d9:12:17:3f:4d:51: 70:34:0e:8a:6c:73:b9:fe:41:e2:1c:68:4a:3b:54: 2a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:BE:58:6D:38:7F:B8:B4:DA:EC:D0:49:FC:F7:76:4A:C5:AB:73:75 X509v3 Authority Key Identifier: keyid:06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:4a:35:7e:6d:10:61:e6:47:48:b6:80:d7:fc:58:63:c5:6a: a5:d9:0d:b1:bd:d1:f8:f1:4e:37:d0:17:33:1c:8c:6b:73:9f: 1c:87:b3:ce:0b:33:84:02:1c:92:0a:2d:d9:86:b7:5b:e7:19: 7e:d7:f1:3a:db:72:8a:0c:c5:84:48:e2:76:99:78:0f:a7:49: 52:89:2d:5f:f6:96:d8:2d:54:dc:e6:30:e1:42:e7:26:01:b9: 1f:c7:fb:c6:c8:ae:9b:4b:e6:c2:a5:47:fb:8b:8c:74:56:ec: 53:32:0a:91:9c:d7:ec:f4:19:74:d8:10:4e:05:1f:e4:8e:f3: ae:d0:93:e4:7f:16:6a:69:87:30:77:79:f3:20:4e:1d:b3:d3: ee:0d:45:41:9b:7a:14:74:05:54:ca:40:16:d3:8b:b4:6b:2c: af:02:98:b8:af:cf:32:de:73:70:26:31:ab:6d:38:f8:9e:b1: 4b:cb:18:6d:67:35:b7:ff:ff:e4:39:25:e0:c1:6b:7c:9d:5f: 16:0d:73:48:56:c6:98:44:61:72:26:29:86:5b:28:f8:23:90: d3:90:b2:99:4a:73:d5:73:79:ed:b1:31:6c:e9:09:9f:a6:f3: c3:7d:fb:37:5b:c9:52:9b:e6:97:8a:c6:ee:02:5d:83:69:58: f7:e9:9d:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYzREMxMTAvBgNVBAUTKDA2NjY2QUVDRDc4QzBBNUVEMTM3OTBBNUU5QUE0MEMz NDkwRkJDRjEwHhcNMjQxMTIzMDM0MzUxWhcNMjQxMTMwMDM0MzUxWjAYMRYwFAYD VQQDEw02NzQxNGY3OC02Yjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvY7fPA2EG+suGUAaCKyZIItz5/rdfGkhkM1Y7JVY7dFMJvx7AGYOchi8aTKY rO4IlIZatCx6peuiYxt7/Tp9pv2IOBSFA5Z9B37ZrhjNPA/t1y+tO68OemKl+H0L zOtG+fvjPKfmPZulmJPlpEFWmfw+J+/tsdL/LTNddAO2slFE20Vs2miFT9WTvttZ P8F+X8pnOY+ah18e3msBR/o7CSHdMQYRM4D+UgPygCr2LT0iMptXB8MepwtGBS5p tcwHfWad0MLY9MmjyzUfT5xthePnHdN+pHrXSfJsTGPIYjnV9TTIh/TqwLTZEhc/ TVFwNA6KbHO5/kHiHGhKO1QqwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFe+WG04 f7i02uzQSfz3dkrFq3N1MB8GA1UdIwQYMBaAFAZmauzXjApe0TeQpemqQMNJD7zx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjNEQy8wNDMxNTJFMjY2 NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNsN1JONUNsNmFwQXcwa1B2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JtWnE3TmVNQ2w3Uk41Q2w2YXBBdzBrUHZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjNEQy8wNDMxNTJFMjY2NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNs N1JONUNsNmFwQXcwa1B2UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXSjV+bRBh5kdItoDX/FhjxWql2Q2xvdH48U430BczHIxrc58ch7PO CzOEAhySCi3Zhrdb5xl+1/E623KKDMWESOJ2mXgPp0lSiS1f9pbYLVTc5jDhQucm Abkfx/vGyK6bS+bCpUf7i4x0VuxTMgqRnNfs9Bl02BBOBR/kjvOu0JPkfxZqaYcw d3nzIE4ds9PuDUVBm3oUdAVUykAW04u0ayyvApi4r88y3nNwJjGrbTj4nrFLyxht ZzW3///kOSXgwWt8nV8WDXNIVsaYRGFyJimGWyj4I5DTkLKZSnPVc3ntsTFs6Qmf pvPDffs3W8lSm+aXisbuAl2DaVj36Z33 -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:26 2024 by rpki-client on console-ams.rpki-client.org