$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft File: bIAwUr-WwqtKuqntJqOptGOWBaM.mft (raw, json) Hash identifier: c7jPXV1vWeF8HJZiJimkKijlHguIL8J+x8THumwpRxA= Subject key identifier: 37:28:8B:AD:E1:59:F3:95:B0:04:D9:E9:6C:78:F9:96:03:F9:6F:17 Authority key identifier: 6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 Certificate issuer: /CN=A91F89A2/serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft Manifest number: 97 Signing time: Sat 23 Nov 2024 04:26:38 +0000 Manifest this update: Sat 23 Nov 2024 04:26:37 +0000 Manifest next update: Sat 30 Nov 2024 04:26:37 +0000 Files and hashes: 1: bIAwUr-WwqtKuqntJqOptGOWBaM.crl (hash: oBC8MDxUeTEy9FQd2flod/PQDlHSNbGUylOFhrGGtfI=) 2: 0FBF57D2F16611EEB75BE640C4F9AE02.roa (hash: th+RZ3xcn9sdtuIwJJBmfy4OKtZmVHO5KksRG1wLXTE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89A2/serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Validity Not Before: Nov 23 04:26:37 2024 GMT Not After : Nov 30 04:26:37 2024 GMT Subject: CN=6741597e-4a3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:80:d0:63:fc:9f:d4:a3:38:5f:92:35:81:8e: fe:93:e8:9a:53:8d:3d:ab:a2:96:c9:7d:52:1c:16: 03:31:ac:d4:dc:c8:f9:b3:db:00:2f:c3:c1:2e:3a: 23:b1:0e:93:8f:b7:cc:23:23:5f:8d:ff:4e:e4:67: 73:46:c6:82:e6:29:f7:36:ad:92:b6:3b:d3:cc:7d: ad:5e:07:19:87:03:cd:f2:f2:b1:16:e7:3f:55:5f: bc:3c:5d:f7:9a:94:4d:59:5d:ab:84:bb:3b:cb:b8: 48:ab:8b:49:ee:ac:7f:b4:34:1a:a2:bf:ac:f3:af: 2f:47:11:e5:b2:af:0e:9f:2c:f4:3e:0f:83:79:8f: 1f:e6:8b:aa:c9:65:c1:12:a9:33:9b:21:ab:ac:a0: 2d:51:89:4f:6c:db:bb:30:77:c6:af:d1:53:e5:a9: 3e:45:92:f3:ff:2d:4f:37:29:76:10:64:29:05:1f: 65:7e:7a:fa:25:a9:f2:ae:05:86:11:5d:d7:90:ff: 8e:5f:c9:46:e3:d0:b1:3c:85:cf:79:89:5d:14:a6: 9a:0a:6d:37:67:3e:39:20:51:17:95:4f:e3:64:b7: 63:3f:09:af:79:dc:cd:91:5f:f7:25:2f:ec:61:e4: 19:9d:54:e5:cf:08:63:3b:88:34:dd:e2:09:ca:d4: ba:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:28:8B:AD:E1:59:F3:95:B0:04:D9:E9:6C:78:F9:96:03:F9:6F:17 X509v3 Authority Key Identifier: keyid:6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:7d:c1:d1:15:9a:a2:14:0f:3a:96:c0:c9:ef:0c:48:a7:2d: 42:58:31:d5:ee:81:48:9e:80:dc:36:3a:99:a2:ce:c1:0b:13: f3:e2:46:b0:39:09:fd:4d:be:b2:0a:4b:98:e2:2f:55:93:0f: f2:83:5f:a4:c1:17:57:24:59:9a:ba:db:63:8e:6a:a9:f6:33: 22:64:cf:dc:15:a7:f2:61:52:37:a3:d8:b0:de:4f:17:3f:21: 54:25:da:f7:b8:ee:ca:96:62:89:5c:20:12:c9:27:2c:5f:bf: bd:4b:1d:aa:d2:42:41:a7:a7:6e:3a:b6:7f:63:f5:73:cc:e8: d7:c9:66:77:2a:21:a5:b9:47:81:c6:e8:b7:4a:7f:0c:ce:0a: 94:91:0c:f6:af:2b:99:5c:ab:a4:99:b0:54:ac:46:28:92:70: da:e2:3d:ff:62:0a:1f:84:31:60:8c:3b:38:aa:b7:88:65:17: e0:8d:d4:69:fd:72:58:8f:95:06:40:07:87:33:fe:b4:7f:2b: b2:a7:91:3f:3d:e0:94:16:14:25:a6:5a:a2:30:f0:de:a9:91: 96:a4:b0:47:d3:02:ef:db:f9:67:8f:fe:1c:b0:01:d9:f0:6e: 2c:4c:38:0d:a7:46:10:28:82:19:dd:2a:79:4c:7f:2f:e3:7d: a3:70:e7:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QTIxMTAvBgNVBAUTKDZDODAzMDUyQkY5NkMyQUI0QUJBQTlFRDI2QTNBOUI0 NjM5NjA1QTMwHhcNMjQxMTIzMDQyNjM3WhcNMjQxMTMwMDQyNjM3WjAYMRYwFAYD VQQDEw02NzQxNTk3ZS00YTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmoDQY/yf1KM4X5I1gY7+k+iaU409q6KWyX1SHBYDMazU3Mj5s9sAL8PBLjoj sQ6Tj7fMIyNfjf9O5GdzRsaC5in3Nq2StjvTzH2tXgcZhwPN8vKxFuc/VV+8PF33 mpRNWV2rhLs7y7hIq4tJ7qx/tDQaor+s868vRxHlsq8Onyz0Pg+DeY8f5ouqyWXB EqkzmyGrrKAtUYlPbNu7MHfGr9FT5ak+RZLz/y1PNyl2EGQpBR9lfnr6JanyrgWG EV3XkP+OX8lG49CxPIXPeYldFKaaCm03Zz45IFEXlU/jZLdjPwmvedzNkV/3JS/s YeQZnVTlzwhjO4g03eIJytS6twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDcoi63h WfOVsATZ6Wx4+ZYD+W8XMB8GA1UdIwQYMBaAFGyAMFK/lsKrSrqp7SajqbRjlgWj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlBMi9CQ0JBRTBDRUM1 NDExMUVFQUJDMkMzODVDNEY5QUUwMi9iSUF3VXItV3dxdEt1cW50SnFPcHRHT1dC YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JJQXdVci1Xd3F0S3VxbnRKcU9wdEdPV0JhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlBMi9CQ0JBRTBDRUM1NDExMUVFQUJDMkMzODVDNEY5QUUwMi9iSUF3VXItV3dx dEt1cW50SnFPcHRHT1dCYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGfcHRFZqiFA86lsDJ7wxIpy1CWDHV7oFInoDcNjqZos7BCxPz4kaw OQn9Tb6yCkuY4i9Vkw/yg1+kwRdXJFmauttjjmqp9jMiZM/cFafyYVI3o9iw3k8X PyFUJdr3uO7KlmKJXCASyScsX7+9Sx2q0kJBp6duOrZ/Y/VzzOjXyWZ3KiGluUeB xui3Sn8MzgqUkQz2ryuZXKukmbBUrEYoknDa4j3/YgofhDFgjDs4qreIZRfgjdRp /XJYj5UGQAeHM/60fyuyp5E/PeCUFhQlplqiMPDeqZGWpLBH0wLv2/lnj/4csAHZ 8G4sTDgNp0YQKIIZ3Sp5TH8v432jcOco -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:31 2024 by rpki-client on console-fra.rpki-client.org