$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft File: bOLX0NlZgNdDytSEhphI26Elwps.mft (raw, json) Hash identifier: RkTspKeBFL9JLMNZSYPRPBOP30Dmvnl8GTp0CM/J6B4= Subject key identifier: 7B:07:E4:39:22:44:68:17:A5:50:03:97:E3:6C:99:16:D4:B6:20:C4 Authority key identifier: 6C:E2:D7:D0:D9:59:80:D7:43:CA:D4:84:86:98:48:DB:A1:25:C2:9B Certificate issuer: /CN=A9120E98/serialNumber=6CE2D7D0D95980D743CAD484869848DBA125C29B Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft Manifest number: 71 Signing time: Sun 19 May 2024 07:29:39 +0000 Manifest this update: Sun 19 May 2024 07:29:39 +0000 Manifest next update: Sun 26 May 2024 07:29:39 +0000 Files and hashes: 1: bOLX0NlZgNdDytSEhphI26Elwps.crl (hash: 9Y6rpTUYa3tI0lnkejGXaSwgKukIwEpYd7Y8VDrZPO8=) 2: 36F3B6A86E5411EEAA31F87AC4F9AE02.roa (hash: vc95pWIwY/O90dCzIDvkkXU3ok7B1feeaGtEaxmTRj8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.crl rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E98/serialNumber=6CE2D7D0D95980D743CAD484869848DBA125C29B Validity Not Before: May 19 07:29:39 2024 GMT Not After : May 26 07:29:39 2024 GMT Subject: CN=6649aa63-30a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:86:c8:4e:6b:75:0e:63:e3:6f:ba:9f:01:08: af:ca:60:cf:3a:e5:06:4f:7c:20:3b:aa:30:a2:c6: e3:59:66:86:08:59:dd:ff:ce:39:4f:4c:b6:dc:95: 48:b5:67:12:f7:7b:7d:64:50:65:83:98:de:09:47: 9d:ed:a7:43:42:bf:17:b4:08:51:2c:b9:d0:34:ce: 08:e1:c9:90:17:41:34:ea:a4:df:8f:53:2c:76:3c: 06:4c:cf:c9:b1:81:85:c0:6c:01:09:f5:ed:a2:b6: dd:e4:b3:82:f1:d7:24:52:e5:6a:69:15:5c:50:5c: 4f:73:15:9a:5e:e5:33:6f:68:c3:cd:d9:e7:08:77: fd:77:17:85:41:46:34:26:5b:e2:28:45:79:7f:78: 80:6c:92:62:b4:a9:d2:fa:26:0a:d9:e8:e6:82:d5: a3:59:99:5a:1b:bc:b0:56:dd:b6:8a:16:73:3d:1d: 76:05:79:4a:fe:3c:ee:e9:9f:26:1d:d5:0f:af:17: e7:43:52:8b:80:01:da:59:05:73:b7:6b:36:33:c6: dd:43:cc:aa:e0:ba:8c:64:67:16:8e:f8:fd:44:1c: 60:3e:22:2f:57:66:37:af:ef:8e:2d:fc:0b:31:db: ca:7e:38:db:93:b5:ce:6e:97:42:88:bc:d7:08:57: e1:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:07:E4:39:22:44:68:17:A5:50:03:97:E3:6C:99:16:D4:B6:20:C4 X509v3 Authority Key Identifier: keyid:6C:E2:D7:D0:D9:59:80:D7:43:CA:D4:84:86:98:48:DB:A1:25:C2:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:16:13:ad:1c:80:32:1f:87:02:c2:0a:0f:c6:f9:2a:17:a7: cf:9a:8e:d1:fd:91:17:9f:6e:3f:0c:74:d4:cb:d0:5c:0b:45: 25:26:8d:4c:1b:c8:5a:d5:62:42:1d:ef:ce:af:54:8f:5b:8e: 9f:16:a8:a7:5d:5c:43:2f:c9:8f:d2:28:fb:1c:72:95:31:ce: 53:f1:a9:7f:7b:03:0a:a8:14:dc:4b:6f:ee:41:41:15:60:52: 53:af:31:d3:03:59:6e:95:3e:b1:d7:8d:1c:a2:95:28:8a:da: bb:2a:86:88:b7:37:d4:79:85:5f:25:04:77:21:4a:5d:f5:58: 58:8b:bf:ac:99:35:f8:36:d7:8a:4d:d9:53:52:ab:40:4e:65: 48:4e:87:4a:03:ea:a2:74:97:24:a8:c1:10:ab:c9:24:e7:72: 67:f3:ea:56:57:d4:5d:42:3a:b4:30:75:62:b7:10:d4:b6:d4: 82:34:10:42:69:90:f1:6b:d2:92:5d:c8:3f:e0:33:2c:d7:19: 71:d6:f3:66:91:2d:05:9d:44:a4:b3:ce:40:ce:a1:9d:54:ae: c5:21:af:41:63:bc:7d:94:7e:ba:93:61:32:cf:96:ca:75:fa: de:69:3c:db:60:62:a4:dc:f4:74:97:20:fc:97:f1:55:82:43: 72:eb:5c:3c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MEU5ODExMC8GA1UEBRMoNkNFMkQ3RDBEOTU5ODBENzQzQ0FENDg0ODY5ODQ4REJB MTI1QzI5QjAeFw0yNDA1MTkwNzI5MzlaFw0yNDA1MjYwNzI5MzlaMBgxFjAUBgNV BAMTDTY2NDlhYTYzLTMwYTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOhshOa3UOY+Nvup8BCK/KYM865QZPfCA7qjCixuNZZoYIWd3/zjlPTLbclUi1 ZxL3e31kUGWDmN4JR53tp0NCvxe0CFEsudA0zgjhyZAXQTTqpN+PUyx2PAZMz8mx gYXAbAEJ9e2itt3ks4Lx1yRS5WppFVxQXE9zFZpe5TNvaMPN2ecId/13F4VBRjQm W+IoRXl/eIBskmK0qdL6JgrZ6OaC1aNZmVobvLBW3baKFnM9HXYFeUr+PO7pnyYd 1Q+vF+dDUouAAdpZBXO3azYzxt1DzKrguoxkZxaO+P1EHGA+Ii9XZjev744t/Asx 28p+ONuTtc5ul0KIvNcIV+GZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUewfkOSJE aBelUAOX42yZFtS2IMQwHwYDVR0jBBgwFoAUbOLX0NlZgNdDytSEhphI26Elwpsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIwRTk4Lzc0RkQ1RTgyNkU1 MzExRUU5QjkxN0U3OUM0RjlBRTAyL2JPTFgwTmxaZ05kRHl0U0VocGhJMjZFbHdw cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYk9MWDBObFpnTmREeXRTRWhwaEkyNkVsd3BzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIw RTk4Lzc0RkQ1RTgyNkU1MzExRUU5QjkxN0U3OUM0RjlBRTAyL2JPTFgwTmxaZ05k RHl0U0VocGhJMjZFbHdwcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEAWE60cgDIfhwLCCg/G+SoXp8+ajtH9kRefbj8MdNTL0FwLRSUmjUwb yFrVYkId786vVI9bjp8WqKddXEMvyY/SKPsccpUxzlPxqX97AwqoFNxLb+5BQRVg UlOvMdMDWW6VPrHXjRyilSiK2rsqhoi3N9R5hV8lBHchSl31WFiLv6yZNfg214pN 2VNSq0BOZUhOh0oD6qJ0lySowRCrySTncmfz6lZX1F1COrQwdWK3ENS21II0EEJp kPFr0pJdyD/gMyzXGXHW82aRLQWdRKSzzkDOoZ1UrsUhr0FjvH2UfrqTYTLPlsp1 +t5pPNtgYqTc9HSXIPyX8VWCQ3LrXDw= -----END CERTIFICATE-----Generated at Sun May 19 08:24:57 2024 by rpki-client on console-ams.rpki-client.org