$ rpki-client -vvf rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft File: bjpCzSsjnaPmWO-5fq0VsObt2qE.mft (raw, json) Hash identifier: jPt5QDVeuQ2Bq6X0o9LSVVRB2LkzNnLhH5s/WovwDvk= Subject key identifier: 1B:2A:21:74:01:AC:6E:94:1A:42:CD:0D:55:50:35:F3:32:5E:07:DA Authority key identifier: 6E:3A:42:CD:2B:23:9D:A3:E6:58:EF:B9:7E:AD:15:B0:E6:ED:DA:A1 Certificate issuer: /CN=A914AA58/serialNumber=6E3A42CD2B239DA3E658EFB97EAD15B0E6EDDAA1 Certificate serial: 02B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjpCzSsjnaPmWO-5fq0VsObt2qE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft Manifest number: 02B3 Signing time: Sun 19 May 2024 03:31:55 +0000 Manifest this update: Sun 19 May 2024 03:31:54 +0000 Manifest next update: Sun 26 May 2024 03:31:54 +0000 Files and hashes: 1: bjpCzSsjnaPmWO-5fq0VsObt2qE.crl (hash: HnfrXd5SWB7QL2/n4UgxQ5LtGU8EYv1Pzb96zgXgbAo=) 2: CC2E531EAA7811ECB6791A3EC4F9AE02.roa (hash: nblh+5P2jzg1bMqRThBjnqcnLIQTwLiSBjLF6YnXjMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.crl rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjpCzSsjnaPmWO-5fq0VsObt2qE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 694 (0x2b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AA58/serialNumber=6E3A42CD2B239DA3E658EFB97EAD15B0E6EDDAA1 Validity Not Before: May 19 03:31:54 2024 GMT Not After : May 26 03:31:54 2024 GMT Subject: CN=664972aa-39e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9c:39:6a:34:bd:22:8a:cc:dd:82:3f:1d:8c: 69:50:3a:fd:ee:25:fe:ad:2f:09:b4:ce:61:39:26: f1:70:44:9b:d4:65:69:cf:d7:9b:a1:90:42:5c:36: fd:a0:cc:7e:60:9c:43:7e:e8:a5:0e:1c:a9:e4:25: c0:ce:cb:bc:dd:c6:1d:14:c2:37:3e:5a:ae:96:80: e6:4a:b1:42:00:6e:7f:6c:bb:5a:38:d6:57:40:d6: 07:ce:91:e7:c1:d6:2e:4b:f9:d0:b8:9f:38:5b:cd: 8b:a4:76:67:03:72:ea:d4:0d:e0:7c:5e:ad:94:f2: 5d:bc:db:ca:5b:bb:48:6e:f9:d8:13:a2:bc:f8:49: 60:21:d5:e5:df:9a:f7:a9:f9:ed:17:72:b4:9c:55: 4c:3e:5a:96:73:6e:1b:8a:45:ae:08:16:94:87:a8: 8e:a2:f6:33:f9:2c:1c:57:33:a0:cd:66:3a:b3:a9: 8f:41:56:eb:a0:d1:35:b9:57:6a:c2:46:69:7a:74: e9:5e:8a:d4:64:ce:7a:72:4a:e5:52:8d:70:f9:78: 5f:7c:8e:5d:e5:92:5f:1b:3a:46:6f:ed:67:61:49: f2:18:3c:8d:92:6d:c7:fa:ed:8c:c3:fe:cf:c7:a5: 02:7b:a9:e1:60:5a:ab:b3:f5:80:bf:4a:9a:37:28: 55:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:2A:21:74:01:AC:6E:94:1A:42:CD:0D:55:50:35:F3:32:5E:07:DA X509v3 Authority Key Identifier: keyid:6E:3A:42:CD:2B:23:9D:A3:E6:58:EF:B9:7E:AD:15:B0:E6:ED:DA:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjpCzSsjnaPmWO-5fq0VsObt2qE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:99:fc:c7:cc:23:0d:94:1b:a6:d0:f3:52:fa:97:8c:17:5a: 70:34:56:15:3d:a1:5a:5d:f6:b0:ec:e1:ca:95:e3:00:95:8f: 2a:d1:3e:3c:7f:a7:74:9d:a2:22:d2:46:8b:9c:a9:cc:61:d1: 3e:66:b4:06:b4:bb:a0:ea:74:65:a8:c1:cf:bc:6a:3f:5d:e4: d1:01:ce:fe:47:ce:7c:38:36:69:31:12:a8:c9:d3:cb:42:a8: 75:43:0a:47:47:cf:4e:e9:cb:01:f4:44:d1:95:c2:e9:59:d4: 19:cb:47:15:a6:79:9a:10:d5:8e:f4:b9:73:83:40:67:af:26: cc:0b:ab:ee:fb:78:ae:1d:a7:c0:d9:27:b2:ac:2a:66:d5:7a: 4b:0d:9d:eb:e5:56:32:a4:9d:52:b2:01:9d:f8:40:a6:2f:79: 00:30:c9:9f:e6:01:25:b4:c4:43:e3:6b:3e:18:b6:8b:9a:8f: b8:37:2d:d6:5e:e4:ff:c4:fb:a5:25:ed:fd:ab:1f:52:f4:1f: 74:e8:ac:38:5a:e1:3b:d8:96:d9:1c:78:3a:b1:f6:4e:02:cb: 66:3b:40:27:dc:93:26:e4:17:74:03:4d:85:af:56:16:33:51: ac:bd:97:33:61:c9:8d:0e:33:9c:25:c3:a8:95:6f:1a:4d:be: 3b:73:ea:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFBNTgxMTAvBgNVBAUTKDZFM0E0MkNEMkIyMzlEQTNFNjU4RUZCOTdFQUQxNUIw RTZFRERBQTEwHhcNMjQwNTE5MDMzMTU0WhcNMjQwNTI2MDMzMTU0WjAYMRYwFAYD VQQDEw02NjQ5NzJhYS0zOWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypw5ajS9IorM3YI/HYxpUDr97iX+rS8JtM5hOSbxcESb1GVpz9eboZBCXDb9 oMx+YJxDfuilDhyp5CXAzsu83cYdFMI3PlquloDmSrFCAG5/bLtaONZXQNYHzpHn wdYuS/nQuJ84W82LpHZnA3Lq1A3gfF6tlPJdvNvKW7tIbvnYE6K8+ElgIdXl35r3 qfntF3K0nFVMPlqWc24bikWuCBaUh6iOovYz+SwcVzOgzWY6s6mPQVbroNE1uVdq wkZpenTpXorUZM56ckrlUo1w+XhffI5d5ZJfGzpGb+1nYUnyGDyNkm3H+u2Mw/7P x6UCe6nhYFqrs/WAv0qaNyhVSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBsqIXQB rG6UGkLNDVVQNfMyXgfaMB8GA1UdIwQYMBaAFG46Qs0rI52j5ljvuX6tFbDm7dqh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUE1OC8wRkRDQTZGRUFB NzYxMUVDOEY3RDU2MzlDNEY5QUUwMi9ianBDelNzam5hUG1XTy01ZnEwVnNPYnQy cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JqcEN6U3NqbmFQbVdPLTVmcTBWc09idDJxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUE1OC8wRkRDQTZGRUFBNzYxMUVDOEY3RDU2MzlDNEY5QUUwMi9ianBDelNzam5h UG1XTy01ZnEwVnNPYnQycUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4mfzHzCMNlBum0PNS+peMF1pwNFYVPaFaXfaw7OHKleMAlY8q0T48 f6d0naIi0kaLnKnMYdE+ZrQGtLug6nRlqMHPvGo/XeTRAc7+R858ODZpMRKoydPL Qqh1QwpHR89O6csB9ETRlcLpWdQZy0cVpnmaENWO9Llzg0BnrybMC6vu+3iuHafA 2SeyrCpm1XpLDZ3r5VYypJ1SsgGd+ECmL3kAMMmf5gEltMRD42s+GLaLmo+4Ny3W XuT/xPulJe39qx9S9B906Kw4WuE72JbZHHg6sfZOAstmO0An3JMm5Bd0A02Fr1YW M1GsvZczYcmNDjOcJcOolW8aTb47c+o/ -----END CERTIFICATE-----Generated at Sun May 19 04:20:42 2024 by rpki-client on console-ams.rpki-client.org