$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft File: bwlMAO-I_YtwgT1trctUaHYyjNk.mft (raw, json) Hash identifier: vfJcfr5xfdDk4hJB2OOW7BO2B5upmnIGp2A5hOtw5Ao= Subject key identifier: D0:6C:8C:D3:A9:B2:11:7D:FE:46:4A:83:1C:30:D4:62:25:42:EC:1B Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 2110 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft Manifest number: 2D3C Signing time: Fri 22 Nov 2024 15:32:40 +0000 Manifest this update: Fri 22 Nov 2024 15:32:39 +0000 Manifest next update: Fri 29 Nov 2024 15:32:39 +0000 Files and hashes: 1: bwlMAO-I_YtwgT1trctUaHYyjNk.crl (hash: 00It9Byyu6ed2/KdynemyOlCnVlW6AmNY7TEmA0+ThM=) 2: 85D25098E00111E596BC7D1BC4F9AE02.roa (hash: yPmzp7svc596dZgkn+L/aOnXkjFlSGZqF6O1C/6dQm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8464 (0x2110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: Nov 22 15:32:39 2024 GMT Not After : Nov 29 15:32:39 2024 GMT Subject: CN=6740a417-36fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e8:fe:40:36:84:f7:c6:d4:ed:68:76:0f:08: 99:f9:ee:f8:cf:6b:7b:33:6f:26:cb:14:77:3e:4f: a9:81:ac:38:61:ed:76:cc:2e:4e:8e:7a:01:bd:19: c7:fc:07:01:7d:9f:de:5c:9f:97:e5:c9:d9:02:e6: 36:3d:f4:02:3c:1d:ee:89:d6:a9:f1:41:7a:d6:92: 73:88:e3:a5:26:9f:82:4c:e8:87:e8:5a:06:a5:50: bf:9e:9d:da:0b:76:27:96:d5:e4:66:31:1e:c4:18: 51:e0:35:69:c8:4d:9c:70:4a:96:14:2e:d9:22:e3: 98:1d:0d:11:97:76:b3:f6:f7:5d:38:e2:1d:f0:f3: f8:2e:9c:a3:45:69:65:4a:41:78:d0:bc:29:5c:ba: a6:a8:f8:ef:fd:05:cb:be:7b:74:30:e2:e8:17:dc: 83:75:1a:8c:f5:1f:c7:7f:a1:ab:a3:14:7f:55:64: 4e:61:e5:73:0f:69:82:0c:a9:33:9e:9b:24:5e:b3: f7:39:39:fe:96:cd:68:e3:e6:6e:a7:4c:ef:de:c5: d0:40:c0:d8:c2:61:ae:38:0a:97:7d:5d:fe:21:82: e4:93:e5:8e:fe:b0:1e:07:39:24:85:b1:cb:8f:5c: 46:d7:81:a4:1c:4d:a1:9e:e1:fe:16:b4:3c:f3:e9: 15:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:6C:8C:D3:A9:B2:11:7D:FE:46:4A:83:1C:30:D4:62:25:42:EC:1B X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:da:34:13:9e:7a:a5:02:b1:25:88:e4:cd:52:e9:d6:b5:5e: d5:ec:c4:ba:da:38:4c:b1:bc:32:2f:ea:60:8d:ab:65:82:3e: 84:71:87:62:74:8b:e9:d9:58:9b:da:67:dc:9d:4b:92:7b:f3: 60:f5:06:6b:58:9d:ce:f8:e3:5b:3e:8b:ed:6c:c1:ae:4e:fc: 39:dc:6a:9e:d5:9e:7d:46:1c:25:62:d5:93:98:98:3c:96:66: 8b:9e:8a:c6:4b:0c:05:fa:6d:6b:73:c2:8d:0a:02:b3:b4:51: ec:1d:98:39:a3:aa:eb:76:b9:0e:38:13:46:22:35:54:ae:84: 88:c9:0c:63:25:c2:ca:f9:f7:bf:8c:d4:06:93:3d:43:eb:07: 40:7b:f8:ce:48:d9:3e:1b:45:8f:6f:64:da:f9:c3:f2:0c:89: 43:55:2e:2a:c0:6b:0f:f3:3d:a7:0a:71:34:b6:c1:d4:e5:5d: a0:ab:54:dd:a5:e2:2e:bb:69:0e:03:c3:7a:45:7f:0d:85:22: 83:65:93:c4:6f:3b:11:82:40:49:68:80:73:1f:f5:89:32:3b: 7e:f1:af:38:de:02:7e:ee:0f:17:05:6d:85:96:65:18:f2:62: bc:1d:b3:cb:8b:1d:03:70:16:55:d5:07:df:59:84:93:72:b5: cd:de:57:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIRAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjQxMTIyMTUzMjM5WhcNMjQxMTI5MTUzMjM5WjAYMRYwFAYD VQQDEw02NzQwYTQxNy0zNmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uj+QDaE98bU7Wh2DwiZ+e74z2t7M28myxR3Pk+pgaw4Ye12zC5OjnoBvRnH /AcBfZ/eXJ+X5cnZAuY2PfQCPB3uidap8UF61pJziOOlJp+CTOiH6FoGpVC/np3a C3YnltXkZjEexBhR4DVpyE2ccEqWFC7ZIuOYHQ0Rl3az9vddOOId8PP4LpyjRWll SkF40LwpXLqmqPjv/QXLvnt0MOLoF9yDdRqM9R/Hf6GroxR/VWROYeVzD2mCDKkz npskXrP3OTn+ls1o4+Zup0zv3sXQQMDYwmGuOAqXfV3+IYLkk+WO/rAeBzkkhbHL j1xG14GkHE2hnuH+FrQ88+kV/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNBsjNOp shF9/kZKgxww1GIlQuwbMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUyNS9GNDM0NDExNjhBMkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9Z dHdnVDF0cmN0VWFIWXlqTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA22jQTnnqlArEliOTNUunWtV7V7MS62jhMsbwyL+pgjatlgj6EcYdi dIvp2Vib2mfcnUuSe/Ng9QZrWJ3O+ONbPovtbMGuTvw53Gqe1Z59RhwlYtWTmJg8 lmaLnorGSwwF+m1rc8KNCgKztFHsHZg5o6rrdrkOOBNGIjVUroSIyQxjJcLK+fe/ jNQGkz1D6wdAe/jOSNk+G0WPb2Ta+cPyDIlDVS4qwGsP8z2nCnE0tsHU5V2gq1Td peIuu2kOA8N6RX8NhSKDZZPEbzsRgkBJaIBzH/WJMjt+8a843gJ+7g8XBW2FlmUY 8mK8HbPLix0DcBZV1QffWYSTcrXN3leL -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:23 2024 by rpki-client on console-fra.rpki-client.org