$ rpki-client -vvf rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft File: bgopAGEwM5uDbSj3ABgC9xpaTkI.mft (raw, json) Hash identifier: FZuiCODzLHH7mZ9PDOmEFdJsnPJscYRYgQ49h5UIuH8= Subject key identifier: E0:F7:31:39:6F:77:CE:65:47:BE:C1:28:30:6B:16:47:8A:4D:4F:DE Authority key identifier: 6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42 Certificate issuer: /CN=A91166D1/serialNumber=6E0A29006130339B836D28F7001802F71A5A4E42 Certificate serial: 021E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft Manifest number: 021B Signing time: Sun 19 May 2024 04:05:01 +0000 Manifest this update: Sun 19 May 2024 04:05:00 +0000 Manifest next update: Sun 26 May 2024 04:05:00 +0000 Files and hashes: 1: bgopAGEwM5uDbSj3ABgC9xpaTkI.crl (hash: ZK4kNVHtBUxi2XcerNuqNULEXuz1QxORqjFvoUGln1M=) 2: 3C3A98A4E71C11EC9128DF0BC4F9AE02.roa (hash: mDMM1HWL4v8E6URAbVQH/swVIK5fppcG8TmZuHg6PMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.crl rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 542 (0x21e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91166D1/serialNumber=6E0A29006130339B836D28F7001802F71A5A4E42 Validity Not Before: May 19 04:05:00 2024 GMT Not After : May 26 04:05:00 2024 GMT Subject: CN=66497a6d-c41b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:67:c3:66:2c:50:a6:8b:5f:22:08:1e:b1:c1: 81:ee:c3:cb:bf:0c:4a:8d:1b:61:56:d1:a8:66:e2: 3f:3b:6e:73:40:cb:f6:f0:32:6d:1d:e8:1e:fb:00: 53:0a:2a:d2:67:48:d6:9c:b8:e3:b7:4c:18:0b:05: d6:6e:12:dd:86:c0:ca:b3:da:02:95:33:d3:de:30: 92:b8:4e:59:39:b3:bb:4c:09:86:4f:b0:72:4d:ac: 28:39:38:4b:3a:53:68:7e:78:37:69:f1:91:c9:c1: 97:01:39:35:eb:6f:af:e3:60:12:86:6b:f7:7c:17: f1:18:4d:c0:0d:3d:12:9b:b1:64:4f:15:8a:ab:16: 19:7a:b6:15:6d:ba:3e:d0:0b:77:ad:2d:79:af:f4: a2:71:bb:83:b9:54:8e:1d:4c:96:65:5c:00:f8:4b: 77:28:8c:65:b1:41:e9:48:ef:b4:f1:c5:b0:08:e8: d3:56:54:9c:4d:04:f7:88:42:bd:e3:13:fd:5a:21: c4:52:55:06:82:d1:db:a2:1a:53:2c:20:a2:8b:f9: 7d:d5:4e:45:df:1e:d7:89:ad:ea:af:08:47:7f:ca: 34:0e:ab:2c:1c:32:32:ef:59:0d:f8:17:7b:96:55: 0d:93:70:4d:fe:21:83:08:85:04:d1:64:e1:12:72: 06:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:F7:31:39:6F:77:CE:65:47:BE:C1:28:30:6B:16:47:8A:4D:4F:DE X509v3 Authority Key Identifier: keyid:6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:25:09:5a:03:50:c7:9e:d6:5c:74:0f:e3:47:d7:0e:9c:02: 7b:79:21:90:45:62:c6:9d:72:ff:0d:e4:e5:82:a1:7b:b4:31: 07:fb:a0:d4:77:4c:32:b2:df:96:d5:da:65:81:13:c7:5a:ff: 77:14:73:70:fb:1f:61:82:51:2b:4d:34:60:21:24:e5:f6:49: c0:49:7d:01:5e:ab:94:3f:77:31:43:2d:b7:89:5c:c7:fc:2f: 72:ce:64:7e:29:52:0a:7c:e7:1a:db:e8:09:ad:3e:5b:43:d7: e4:0a:ce:a9:3f:c8:bb:c6:77:0f:97:93:10:5e:0e:52:e5:d3: 63:dc:a9:4e:9d:17:cc:f4:d7:a8:76:03:16:cf:9a:24:b4:1a: ee:ee:45:f2:13:bc:f0:14:d3:f0:bb:bf:b9:37:ad:b5:fc:bc: e1:ca:70:90:df:f4:64:66:33:19:63:61:a4:14:6b:a4:1e:d5: 80:0a:20:df:22:a7:2c:c5:3a:5b:24:cb:f6:8f:93:cd:7e:6d: 29:16:7c:d2:1d:c2:92:da:e8:ec:b9:11:95:f7:95:4a:7d:9a: eb:5c:d5:68:db:5d:b4:8e:f1:98:77:d2:d9:6f:bc:d6:2f:2d: 46:5b:4d:ee:01:38:bd:ca:d2:2a:da:01:f2:95:b9:c1:6f:7e: 28:55:f3:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY2RDExMTAvBgNVBAUTKDZFMEEyOTAwNjEzMDMzOUI4MzZEMjhGNzAwMTgwMkY3 MUE1QTRFNDIwHhcNMjQwNTE5MDQwNTAwWhcNMjQwNTI2MDQwNTAwWjAYMRYwFAYD VQQDEw02NjQ5N2E2ZC1jNDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2fDZixQpotfIggescGB7sPLvwxKjRthVtGoZuI/O25zQMv28DJtHege+wBT CirSZ0jWnLjjt0wYCwXWbhLdhsDKs9oClTPT3jCSuE5ZObO7TAmGT7ByTawoOThL OlNofng3afGRycGXATk162+v42AShmv3fBfxGE3ADT0Sm7FkTxWKqxYZerYVbbo+ 0At3rS15r/SicbuDuVSOHUyWZVwA+Et3KIxlsUHpSO+08cWwCOjTVlScTQT3iEK9 4xP9WiHEUlUGgtHbohpTLCCii/l91U5F3x7Xia3qrwhHf8o0DqssHDIy71kN+Bd7 llUNk3BN/iGDCIUE0WThEnIGSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOD3MTlv d85lR77BKDBrFkeKTU/eMB8GA1UdIwQYMBaAFG4KKQBhMDObg20o9wAYAvcaWk5C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjZEMS9BQkRBNTE0MkU3 MTUxMUVDQjgyQ0IwNkVDNEY5QUUwMi9iZ29wQUdFd001dURiU2ozQUJnQzl4cGFU a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Jnb3BBR0V3TTV1RGJTajNBQmdDOXhwYVRrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjZEMS9BQkRBNTE0MkU3MTUxMUVDQjgyQ0IwNkVDNEY5QUUwMi9iZ29wQUdFd001 dURiU2ozQUJnQzl4cGFUa0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4JQlaA1DHntZcdA/jR9cOnAJ7eSGQRWLGnXL/DeTlgqF7tDEH+6DU d0wyst+W1dplgRPHWv93FHNw+x9hglErTTRgISTl9knASX0BXquUP3cxQy23iVzH /C9yzmR+KVIKfOca2+gJrT5bQ9fkCs6pP8i7xncPl5MQXg5S5dNj3KlOnRfM9Neo dgMWz5oktBru7kXyE7zwFNPwu7+5N621/LzhynCQ3/RkZjMZY2GkFGukHtWACiDf IqcsxTpbJMv2j5PNfm0pFnzSHcKS2ujsuRGV95VKfZrrXNVo2120jvGYd9LZb7zW Ly1GW03uATi9ytIq2gHylbnBb34oVfOM -----END CERTIFICATE-----Generated at Sun May 19 04:56:54 2024 by rpki-client on console-fra.rpki-client.org