$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft File: bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft (raw, json) Hash identifier: YZfY30VPZIBw/0uFpMqX8UF2YK/hRKxZ3wuW1awGMwo= Subject key identifier: 88:E5:09:2C:F1:CF:CF:5D:9C:D6:8C:31:42:CA:84:2F:01:D2:31:D5 Authority key identifier: 6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C Certificate issuer: /CN=A9148F80/serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Certificate serial: 05C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft Manifest number: 05BA Signing time: Fri 17 May 2024 00:22:11 +0000 Manifest this update: Fri 17 May 2024 00:22:10 +0000 Manifest next update: Fri 24 May 2024 00:22:10 +0000 Files and hashes: 1: bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl (hash: FEKpjRLch0jKy8kvSWA1lao/AFPi7E84OysDl6B2Fj0=) 2: 1C93BF747CD011EB9F876E78C4F9AE02.roa (hash: 1nhYzuuN3iiBPUuYvjPfED8ITVM34g4WPuGCXKX1a14=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1472 (0x5c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F80/serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Validity Not Before: May 17 00:22:10 2024 GMT Not After : May 24 00:22:10 2024 GMT Subject: CN=6646a333-c56e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f2:94:ee:f2:4a:dc:31:1c:1d:0d:4c:17:7d: e2:5a:bc:ff:dd:c5:68:9e:b3:50:a6:d2:81:12:43: 18:12:7c:53:de:c8:07:0f:aa:4f:ab:4f:6d:6e:2c: 45:e0:8f:8e:8f:ad:cf:21:b6:31:51:32:f2:0f:14: ff:3e:b6:71:2b:fd:cd:61:32:89:e0:b9:1b:be:bc: d5:07:5b:da:62:58:99:71:76:35:93:a3:2c:bf:6b: b2:a3:96:6a:b2:d5:ad:45:34:10:1a:d2:46:96:67: 9c:52:76:4e:c6:75:e3:63:74:ee:df:11:37:08:76: d9:71:47:b9:f8:17:73:87:0c:73:69:a4:ea:fe:e8: 4f:c4:98:2e:49:1b:a0:ed:00:87:89:8f:52:bf:2c: 44:09:98:4c:68:c6:3d:dd:8e:40:b6:98:12:07:a9: 2b:9d:68:e4:a8:05:9b:78:43:10:9d:4f:38:34:4d: 84:ab:2b:12:d8:14:4d:98:d6:e8:27:3f:0d:2c:2d: b6:df:31:c4:d0:86:a2:ee:f4:02:77:7a:d8:c3:4a: 2d:37:58:fb:15:31:d7:78:81:c0:31:54:82:78:24: 18:fd:b4:23:dc:4b:c4:e7:6c:c8:54:63:3e:cc:57: 02:36:61:9c:9a:71:b7:a1:e1:24:b3:00:bb:34:5c: 90:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:E5:09:2C:F1:CF:CF:5D:9C:D6:8C:31:42:CA:84:2F:01:D2:31:D5 X509v3 Authority Key Identifier: keyid:6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:42:85:2f:a2:8f:73:82:00:af:a2:3e:44:7c:77:88:9e:f7: 87:ef:96:6e:08:d6:b0:e9:a5:cb:99:72:6b:79:b8:64:bf:dc: 87:39:4f:90:f5:13:1f:58:b2:41:36:8d:df:5c:94:c5:01:ce: 9c:51:0d:a0:0d:1e:c3:ba:3f:ab:fb:10:28:c2:4d:37:21:f2: e7:18:15:60:87:19:5d:ec:80:ef:75:40:ed:0d:89:ef:88:bd: e6:c8:95:06:55:ae:87:e8:18:b7:ec:ef:1b:fa:1e:b0:75:e5: 32:d8:06:4a:77:f8:8c:1a:44:d5:d3:f1:ab:ac:fa:e3:fc:42: 85:89:bc:bc:79:2c:a7:37:55:97:4b:aa:5d:0d:93:04:12:28: 0a:54:05:30:df:15:59:2e:ca:5c:e2:07:e1:08:dc:b1:bb:26: b1:95:4a:e3:08:07:d9:21:40:fe:39:7d:f6:25:a5:88:ff:c9: f6:8b:37:fc:ec:31:43:08:a5:a4:df:19:3b:cd:f9:81:61:57: 85:68:1b:a0:2f:db:45:53:4d:d9:7a:2f:ce:95:f2:ed:2b:c8: cb:8a:cb:05:98:b2:20:0a:9a:15:72:28:d3:5c:a3:76:c9:e5: 64:c2:9f:66:cd:df:09:f8:88:a5:31:78:e4:f7:97:9c:e0:2a: 8c:4b:02:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGODAxMTAvBgNVBAUTKDZDQTJDRkE2ODhCREY5RTJENjU2MTYwODY3N0EzMEM5 MTUyNDNEMEMwHhcNMjQwNTE3MDAyMjEwWhcNMjQwNTI0MDAyMjEwWjAYMRYwFAYD VQQDEw02NjQ2YTMzMy1jNTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvKU7vJK3DEcHQ1MF33iWrz/3cVonrNQptKBEkMYEnxT3sgHD6pPq09tbixF 4I+Oj63PIbYxUTLyDxT/PrZxK/3NYTKJ4LkbvrzVB1vaYliZcXY1k6Msv2uyo5Zq stWtRTQQGtJGlmecUnZOxnXjY3Tu3xE3CHbZcUe5+BdzhwxzaaTq/uhPxJguSRug 7QCHiY9SvyxECZhMaMY93Y5AtpgSB6krnWjkqAWbeEMQnU84NE2EqysS2BRNmNbo Jz8NLC223zHE0Iai7vQCd3rYw0otN1j7FTHXeIHAMVSCeCQY/bQj3EvE52zIVGM+ zFcCNmGcmnG3oeEkswC7NFyQ5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIjlCSzx z89dnNaMMULKhC8B0jHVMB8GA1UdIwQYMBaAFGyiz6aIvfni1lYWCGd6MMkVJD0M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY4MC8wNzFERUE0MDdD Q0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1lTFdWaFlJWjNvd3lSVWtQ UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLTFBwb2k5LWVMV1ZoWUlaM293eVJVa1BRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEY4MC8wNzFERUE0MDdDQ0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1l TFdWaFlJWjNvd3lSVWtQUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuQoUvoo9zggCvoj5EfHeInveH75ZuCNaw6aXLmXJrebhkv9yHOU+Q 9RMfWLJBNo3fXJTFAc6cUQ2gDR7Duj+r+xAowk03IfLnGBVghxld7IDvdUDtDYnv iL3myJUGVa6H6Bi37O8b+h6wdeUy2AZKd/iMGkTV0/GrrPrj/EKFiby8eSynN1WX S6pdDZMEEigKVAUw3xVZLspc4gfhCNyxuyaxlUrjCAfZIUD+OX32JaWI/8n2izf8 7DFDCKWk3xk7zfmBYVeFaBugL9tFU03Zei/OlfLtK8jLissFmLIgCpoVcijTXKN2 yeVkwp9mzd8J+IilMXjk95ec4CqMSwLU -----END CERTIFICATE-----Generated at Fri May 17 01:02:49 2024 by rpki-client on console-ams.rpki-client.org