$ rpki-client -vvf rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.mft File: BD435E3ED6FEEC26F879A0542F609A272CC71307.mft (raw, json) Hash identifier: SnPceIv75EkT3PCe+HB8ENsakDx4kTFWFwwc7M7rwto= Subject key identifier: 04:6E:CD:1A:CC:29:DA:35:95:6B:1E:6A:86:19:E4:5C:12:60:7D:C5 Authority key identifier: BD:43:5E:3E:D6:FE:EC:26:F8:79:A0:54:2F:60:9A:27:2C:C7:13:07 Certificate issuer: /CN=A917447B0000/serialNumber=BD435E3ED6FEEC26F879A0542F609A272CC71307 Certificate serial: 0EAA13A5FAE07C724CB4554B84323D316DAB616D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vUNePtb-7Cb4eaBUL2CaJyzHEwc.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.mft Manifest number: 57 Signing time: Fri 22 Nov 2024 06:14:46 +0000 Manifest this update: Fri 22 Nov 2024 06:09:46 +0000 Manifest next update: Sat 23 Nov 2024 10:01:46 +0000 Files and hashes: 1: 3136302e3138372e3132342e302f32332d3234203d3e20313533333436.roa (hash: g2WPQKmcG8F9BNMuoo0qRMIr0xGyZZKzcqG6wAbcjO8=) 2: BD435E3ED6FEEC26F879A0542F609A272CC71307.crl (hash: 1wBDZ8gbKw3MEzXv+wORUzAY/KontsGdg8V+50sCCa8=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.crl rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vUNePtb-7Cb4eaBUL2CaJyzHEwc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 10:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:aa:13:a5:fa:e0:7c:72:4c:b4:55:4b:84:32:3d:31:6d:ab:61:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917447B0000/serialNumber=BD435E3ED6FEEC26F879A0542F609A272CC71307 Validity Not Before: Nov 22 06:09:46 2024 GMT Not After : Nov 23 10:01:46 2024 GMT Subject: CN=046ECD1ACC29DA35956B1E6A8619E45C12607DC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:cb:7d:fc:07:a5:d2:b0:29:29:fc:df:7e:91: 99:85:53:f8:b5:4f:a8:b0:ff:f6:6c:f9:d7:4a:e1: 3a:65:f9:47:79:64:9d:6a:94:76:50:86:0e:07:15: 9a:d4:6f:b6:b3:29:66:c8:e0:33:3c:76:39:9b:2e: 5c:78:5e:61:16:2f:18:63:9e:cb:1e:19:36:98:73: a5:f0:d0:12:cb:16:d4:52:69:f8:47:cf:71:86:f6: 2d:97:89:3e:ef:4a:16:c5:7e:c5:10:35:db:9c:f6: b3:48:c3:0d:b0:49:26:f5:8e:d3:64:b2:89:50:6c: 13:9f:54:87:41:22:30:4d:f8:ba:85:34:e6:b5:f9: 1d:7b:b8:cb:88:c8:2a:f1:03:10:a5:35:4b:b6:eb: 84:62:d9:3c:17:55:8a:33:c2:95:75:95:72:d2:47: 21:17:20:f5:23:cc:4a:22:ea:d5:91:ef:42:a8:bf: 6f:08:c2:a8:82:85:d9:1c:a7:ea:cd:dd:40:19:15: 71:41:03:1f:2b:d1:83:b0:63:bb:e9:53:04:a6:da: 17:ba:a7:a5:87:c6:24:cb:4a:4b:82:75:50:fa:00: 4e:15:2c:5e:87:fa:0c:7f:21:d7:06:8b:37:2f:45: 48:73:52:fb:15:0c:e4:32:a7:df:6f:4f:0d:25:aa: 88:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:6E:CD:1A:CC:29:DA:35:95:6B:1E:6A:86:19:E4:5C:12:60:7D:C5 X509v3 Authority Key Identifier: keyid:BD:43:5E:3E:D6:FE:EC:26:F8:79:A0:54:2F:60:9A:27:2C:C7:13:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vUNePtb-7Cb4eaBUL2CaJyzHEwc.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:34:83:7d:62:41:2a:1f:9e:53:ad:f3:68:58:87:bd:66:5a: 47:93:a1:d8:3b:cb:e9:ad:6d:58:61:bf:1f:23:0f:43:05:0b: c5:74:6c:e7:2e:62:87:67:39:55:e8:de:50:2e:58:50:bb:d6: b0:42:7f:f2:51:48:eb:5c:3c:26:e2:33:f2:4f:1c:31:f3:7e: 14:e7:c5:dd:04:a2:a4:d0:1f:65:44:b7:97:24:e0:56:7c:52: 7a:10:9e:52:b4:f5:d5:a9:9e:b7:e0:f0:77:de:50:98:70:3c: d1:55:50:96:a8:ba:e5:09:ab:44:f5:6c:45:a4:e0:d5:12:bf: 01:22:7c:ef:1f:6a:73:a6:02:d5:2a:07:53:e5:69:7e:e8:e7: 1d:67:10:5d:59:ad:19:dd:2c:58:b6:e8:c3:e1:59:5a:89:c5: 19:47:a5:0f:d4:cc:28:49:18:d3:de:35:e8:6d:81:ee:ed:1c: 6a:e9:de:a8:cc:ad:cf:3b:9a:90:18:86:6f:3c:28:7a:6f:5d: 81:59:6b:d1:cd:5c:0d:6a:2d:9a:e5:ef:6f:a4:ae:fd:a8:70: d5:b9:ee:c6:3e:c2:7f:53:6f:77:ad:34:50:41:50:23:63:b5: d8:da:10:d2:9f:65:f0:16:04:89:28:bf:5a:76:88:98:cf:25: 7e:c6:f8:2b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDqoTpfrgfHJMtFVLhDI9MW2rYW0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNzQ0N0IwMDAwMTEwLwYDVQQFEyhCRDQzNUUzRUQ2 RkVFQzI2Rjg3OUEwNTQyRjYwOUEyNzJDQzcxMzA3MB4XDTI0MTEyMjA2MDk0NloX DTI0MTEyMzEwMDE0NlowMzExMC8GA1UEAxMoMDQ2RUNEMUFDQzI5REEzNTk1NkIx RTZBODYxOUU0NUMxMjYwN0RDNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKTLffwHpdKwKSn8336RmYVT+LVPqLD/9mz510rhOmX5R3lknWqUdlCGDgcV mtRvtrMpZsjgMzx2OZsuXHheYRYvGGOeyx4ZNphzpfDQEssW1FJp+EfPcYb2LZeJ Pu9KFsV+xRA125z2s0jDDbBJJvWO02SyiVBsE59Uh0EiME34uoU05rX5HXu4y4jI KvEDEKU1S7brhGLZPBdVijPClXWVctJHIRcg9SPMSiLq1ZHvQqi/bwjCqIKF2Ryn 6s3dQBkVcUEDHyvRg7Bju+lTBKbaF7qnpYfGJMtKS4J1UPoAThUsXof6DH8h1waL Ny9FSHNS+xUM5DKn329PDSWqiBsCAwEAAaOCAhswggIXMB0GA1UdDgQWBBQEbs0a zCnaNZVrHmqGGeRcEmB9xTAfBgNVHSMEGDAWgBS9Q14+1v7sJvh5oFQvYJonLMcT BzAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3QjAwMDAvMC9CRDQzNUUz RUQ2RkVFQzI2Rjg3OUEwNTQyRjYwOUEyNzJDQzcxMzA3LmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi92VU5lUHRiLTdD YjRlYUJVTDJDYUp5ekhFd2MuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3 QjAwMDAvMC9CRDQzNUUzRUQ2RkVFQzI2Rjg3OUEwNTQyRjYwOUEyNzJDQzcxMzA3 Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAUDSDfWJBKh+eU63zaFiHvWZaR5Oh2DvL6a1tWGG/HyMPQwUL xXRs5y5ih2c5VejeUC5YULvWsEJ/8lFI61w8JuIz8k8cMfN+FOfF3QSipNAfZUS3 lyTgVnxSehCeUrT11amet+Dwd95QmHA80VVQlqi65QmrRPVsRaTg1RK/ASJ87x9q c6YC1SoHU+VpfujnHWcQXVmtGd0sWLbow+FZWonFGUelD9TMKEkY09416G2B7u0c auneqMytzzuakBiGbzwoem9dgVlr0c1cDWotmuXvb6Su/ahw1bnuxj7Cf1Nvd600 UEFQI2O12NoQ0p9l8BYEiSi/WnaImM8lfsb4Kw== -----END CERTIFICATE-----Generated at Fri Nov 22 08:14:00 2024 by rpki-client on console-ams.rpki-client.org