$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft File: BZ5vA652dqnQ8J1fbL25CGGFWlc.mft (raw, json) Hash identifier: pISqwpXhh8UqLh1GvA9vZZ09XXZ0i/MpvcKL6NKrSBk= Subject key identifier: D2:05:57:CA:D2:58:F0:09:B4:16:8F:19:EA:D9:A8:94:39:D2:F8:A6 Authority key identifier: 05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 Certificate issuer: /CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Certificate serial: 065C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft Manifest number: 0645 Signing time: Sun 24 Nov 2024 21:28:19 +0000 Manifest this update: Sun 24 Nov 2024 21:28:18 +0000 Manifest next update: Sun 01 Dec 2024 21:28:18 +0000 Files and hashes: 1: BZ5vA652dqnQ8J1fbL25CGGFWlc.crl (hash: FB8rWA05emaAIvsq/Cs9iGj8Cxbxdw60RbAZiiA1IC4=) 2: 222AC686648411EFBDC41B60C4F9AE02.roa (hash: Lizsushgwn3QnrxTVjgXJQqZWyxEpHtrCKuZyOLUAK0=) 3: 7E0AB01C782C11EBB0B71971C4F9AE02.roa (hash: sCPCAo6oOyI04KFQDiQhCrcCuUDUQK3vYg13iEMSJ6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1628 (0x65c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Validity Not Before: Nov 24 21:28:18 2024 GMT Not After : Dec 1 21:28:18 2024 GMT Subject: CN=67439a72-1582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1f:37:45:d3:db:63:06:22:53:9e:11:29:1b: b1:d0:c1:e2:f2:5c:d2:19:91:a7:f2:9e:19:45:3f: 57:9b:f2:1b:46:d7:5e:6d:f5:04:85:99:96:35:f1: c4:fc:16:d0:41:01:fc:2e:90:ef:32:40:e8:4a:b9: f5:32:eb:ff:59:6f:33:b4:54:f8:6e:82:e3:18:d3: a3:68:ac:e6:05:cf:47:3e:47:97:23:51:f1:fa:bc: 12:1d:83:55:4c:ff:3f:fd:38:b4:7e:12:77:e8:28: a0:24:d4:a1:92:c9:ce:17:3e:87:e6:fc:ec:5d:06: dd:d6:0e:40:e7:e6:c8:76:03:47:78:33:b5:ea:4d: 5d:b2:19:d3:bd:a3:dc:70:ae:df:88:fd:ab:e2:86: 34:1a:2e:e3:fb:c3:2a:d8:9d:c6:eb:1c:af:9f:0a: 67:d4:5c:55:17:3c:ba:22:30:b9:b8:cc:a1:46:98: f8:9a:0d:da:dd:8b:4d:b5:f7:90:76:70:65:d3:56: 90:f3:ac:83:5a:62:ba:49:54:a1:ea:d1:55:1d:03: 0e:b0:c7:74:0c:62:9f:52:87:81:d9:1e:e3:f1:8d: 88:6a:84:a9:9c:3d:7a:72:26:b0:2f:25:ee:9d:f8: a4:3c:e8:da:d5:c6:86:81:1f:aa:e9:7d:f6:eb:b6: 9d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:05:57:CA:D2:58:F0:09:B4:16:8F:19:EA:D9:A8:94:39:D2:F8:A6 X509v3 Authority Key Identifier: keyid:05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:b8:5f:fb:16:32:c6:a4:84:72:47:6b:0e:dc:9a:a1:7c:bd: 62:44:83:1c:8d:6d:48:b5:01:f1:86:96:70:db:a7:96:5d:fa: 27:85:f1:c1:5a:c8:75:e5:1c:65:87:ed:82:47:7a:50:6d:f8: 9d:ec:94:50:b1:6a:45:5e:55:56:25:2f:0e:e5:70:66:97:10: ba:76:95:13:83:39:c8:39:bc:c1:a2:85:34:a9:3b:eb:91:e9: d9:dd:5f:08:9f:71:a5:fb:46:fc:6f:ea:c9:1b:63:6d:66:a7: 00:f4:44:3c:4c:2f:07:f1:ab:56:ee:58:05:68:aa:3c:b9:4a: ac:84:19:f8:af:f8:56:0a:ab:9d:e0:60:c7:d0:e0:33:af:8a: f2:2d:89:8a:66:e8:a9:66:8d:49:57:20:5b:38:6d:a1:d5:bd: b3:40:24:b4:95:9d:27:10:5d:52:7c:99:2f:16:b1:ea:0d:50: 8c:25:4f:a3:4a:7c:4b:bc:a0:71:02:79:7b:cb:5d:11:92:d7: c6:24:5b:e9:cc:9f:57:3d:03:3a:79:6a:14:ef:77:74:2e:32: d8:12:9a:57:aa:d0:a9:c0:ff:bc:47:10:4a:9a:84:2a:4f:4d: ba:9b:1f:8b:22:db:27:9b:d3:56:5c:4c:81:97:cb:66:a9:3b: 33:b5:83:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3NEIxMTAvBgNVBAUTKDA1OUU2RjAzQUU3Njc2QTlEMEYwOUQ1RjZDQkRCOTA4 NjE4NTVBNTcwHhcNMjQxMTI0MjEyODE4WhcNMjQxMjAxMjEyODE4WjAYMRYwFAYD VQQDEw02NzQzOWE3Mi0xNTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1B83RdPbYwYiU54RKRux0MHi8lzSGZGn8p4ZRT9Xm/IbRtdebfUEhZmWNfHE /BbQQQH8LpDvMkDoSrn1Muv/WW8ztFT4boLjGNOjaKzmBc9HPkeXI1Hx+rwSHYNV TP8//Ti0fhJ36CigJNShksnOFz6H5vzsXQbd1g5A5+bIdgNHeDO16k1dshnTvaPc cK7fiP2r4oY0Gi7j+8Mq2J3G6xyvnwpn1FxVFzy6IjC5uMyhRpj4mg3a3YtNtfeQ dnBl01aQ86yDWmK6SVSh6tFVHQMOsMd0DGKfUoeB2R7j8Y2IaoSpnD16ciawLyXu nfikPOja1caGgR+q6X3267adrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNIFV8rS WPAJtBaPGerZqJQ50vimMB8GA1UdIwQYMBaAFAWebwOudnap0PCdX2y9uQhhhVpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjc0Qi82MUEzMzg0QTc4 MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRxblE4SjFmYkwyNUNHR0ZX bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JaNXZBNjUyZHFuUThKMWZiTDI1Q0dHRldsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjc0Qi82MUEzMzg0QTc4MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRx blE4SjFmYkwyNUNHR0ZXbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjuF/7FjLGpIRyR2sO3JqhfL1iRIMcjW1ItQHxhpZw26eWXfonhfHB Wsh15Rxlh+2CR3pQbfid7JRQsWpFXlVWJS8O5XBmlxC6dpUTgznIObzBooU0qTvr kenZ3V8In3Gl+0b8b+rJG2NtZqcA9EQ8TC8H8atW7lgFaKo8uUqshBn4r/hWCqud 4GDH0OAzr4ryLYmKZuipZo1JVyBbOG2h1b2zQCS0lZ0nEF1SfJkvFrHqDVCMJU+j SnxLvKBxAnl7y10RktfGJFvpzJ9XPQM6eWoU73d0LjLYEppXqtCpwP+8RxBKmoQq T026mx+LItsnm9NWXEyBl8tmqTsztYNN -----END CERTIFICATE-----Generated at Sun Nov 24 23:08:00 2024 by rpki-client on console-ams.rpki-client.org