$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft File: bifP0YnuRkQx1LkBO8wHWKgCZOY.mft (raw, json) Hash identifier: 5FWRwr5x/Zcs/+7QFsO5XCoOx6lyrqf8xdyVj5neBQY= Subject key identifier: 0E:38:90:DA:2A:38:33:79:A3:FD:0C:9B:2F:E1:93:80:15:A9:7B:EB Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 Certificate issuer: /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Certificate serial: 17EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft Manifest number: 17DB Signing time: Thu 16 May 2024 17:07:07 +0000 Manifest this update: Thu 16 May 2024 17:07:06 +0000 Manifest next update: Thu 23 May 2024 17:07:06 +0000 Files and hashes: 1: bifP0YnuRkQx1LkBO8wHWKgCZOY.crl (hash: +39B64jQYsb3i95tDYJDnK22JQAfnPct1QLGJ8Ya5LQ=) 2: 9D849C0C98FE11E7A3A5F161C4F9AE02.roa (hash: htda9TiOIlXHheUEzpXiQijOUgH7nA3aLWyRMRsqm6o=) 3: 8C00D5BC94F111EAB30E7682C4F9AE02.roa (hash: K4zc/Pb7wF5tJt5cymiyC6HJ+mYOvXugDRtcMKB/cgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6126 (0x17ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Validity Not Before: May 16 17:07:06 2024 GMT Not After : May 23 17:07:06 2024 GMT Subject: CN=66463d3a-ec89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:df:21:b4:65:1d:d4:bb:0e:72:16:d5:2a:22: 5c:f9:f1:f3:8b:70:2c:a5:10:bb:f0:ed:4a:93:ce: 92:c2:7d:70:3b:38:fb:b2:41:c2:4b:d0:2e:b4:b8: 48:fb:d0:cd:b6:2c:ba:1a:99:6a:32:76:b3:36:90: b7:cf:b7:d3:a8:0b:fe:0c:50:7d:32:1a:e2:2f:a6: a0:13:f1:60:e3:82:08:04:a9:fe:43:f8:b9:70:48: a9:d2:44:f8:ea:8a:22:5e:39:12:35:e4:0f:70:c8: 92:43:da:30:df:c2:fd:bf:d2:3f:7d:ad:91:56:cc: ba:f7:ee:bb:2f:aa:ce:b8:08:bb:f1:55:9d:d5:eb: 80:a6:62:4f:cd:53:c4:16:84:e0:20:25:61:0d:a3: 4f:69:b8:15:c6:34:93:4f:1b:91:bc:8c:b0:e9:9f: 94:6e:07:be:8c:50:79:0a:ab:4c:4d:54:7b:23:ca: 83:de:83:cc:a2:cd:c8:b8:2c:18:8b:f6:cf:5b:e7: fb:05:a1:37:ff:e9:25:b3:00:1d:6a:3f:8b:bc:85: 9f:e8:15:99:ac:72:23:b6:54:07:53:92:7b:82:83: 2c:b5:1e:01:09:85:2e:7e:fc:8b:c3:a9:0a:53:fd: c6:e0:cc:3c:f6:16:51:b0:3e:77:1f:81:31:fb:66: 00:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:38:90:DA:2A:38:33:79:A3:FD:0C:9B:2F:E1:93:80:15:A9:7B:EB X509v3 Authority Key Identifier: keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:fb:97:19:eb:e8:c8:18:75:9e:79:89:72:4c:73:ca:5d:44: 3b:33:1d:ac:70:0b:54:e8:41:0e:2b:49:6d:84:a7:84:f9:cc: 75:8b:7c:4e:1d:05:df:72:0f:d0:a0:f1:e6:61:a1:80:e4:5c: af:30:a2:77:c0:f3:5d:36:54:a2:d5:0d:d1:dd:45:3a:50:f3: a2:d5:74:3f:36:c3:34:93:41:8b:13:e1:7f:9d:0f:0d:81:ef: a8:35:39:e2:59:be:56:33:60:7c:1b:80:0d:0c:53:a6:0b:ea: d2:65:e9:e1:7b:ac:87:33:c8:56:a9:0c:05:96:0a:34:94:3b: 40:e8:d1:cc:85:08:e6:1d:42:e5:b4:d0:bf:9c:33:f9:da:c3: 0a:3e:d9:d9:3c:91:90:25:ab:a6:28:71:48:14:29:50:81:0b: a3:1f:46:1d:61:05:86:74:86:be:64:cd:12:5d:b1:56:24:64: 9e:d2:41:53:81:df:73:34:43:75:f4:07:4e:81:f7:9e:ae:cd: f0:d6:9e:3d:60:86:cb:3d:7d:49:c0:4a:90:18:c4:ef:c8:3e: f5:0e:9f:e6:da:e0:a0:f6:6a:6a:fb:0c:bc:6a:9f:15:4d:b8: d7:4d:00:a1:dc:b8:ac:08:c2:c8:45:99:db:f1:e7:80:07:28: 0d:15:48:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF+4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEMTMxMTAvBgNVBAUTKDZFMjdDRkQxODlFRTQ2NDQzMUQ0QjkwMTNCQ0MwNzU4 QTgwMjY0RTYwHhcNMjQwNTE2MTcwNzA2WhcNMjQwNTIzMTcwNzA2WjAYMRYwFAYD VQQDEw02NjQ2M2QzYS1lYzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1d8htGUd1LsOchbVKiJc+fHzi3AspRC78O1Kk86Swn1wOzj7skHCS9AutLhI +9DNtiy6GplqMnazNpC3z7fTqAv+DFB9MhriL6agE/Fg44IIBKn+Q/i5cEip0kT4 6ooiXjkSNeQPcMiSQ9ow38L9v9I/fa2RVsy69+67L6rOuAi78VWd1euApmJPzVPE FoTgICVhDaNPabgVxjSTTxuRvIyw6Z+Ubge+jFB5CqtMTVR7I8qD3oPMos3IuCwY i/bPW+f7BaE3/+klswAdaj+LvIWf6BWZrHIjtlQHU5J7goMstR4BCYUufvyLw6kK U/3G4Mw89hZRsD53H4Ex+2YALwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA44kNoq ODN5o/0Mmy/hk4AVqXvrMB8GA1UdIwQYMBaAFG4nz9GJ7kZEMdS5ATvMB1ioAmTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0QxMy9BQTI1REYxQzk4 RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJrUXgxTGtCTzh3SFdLZ0Na T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JpZlAwWW51UmtReDFMa0JPOHdIV0tnQ1pPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0QxMy9BQTI1REYxQzk4RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJr UXgxTGtCTzh3SFdLZ0NaT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCo+5cZ6+jIGHWeeYlyTHPKXUQ7Mx2scAtU6EEOK0lthKeE+cx1i3xO HQXfcg/QoPHmYaGA5FyvMKJ3wPNdNlSi1Q3R3UU6UPOi1XQ/NsM0k0GLE+F/nQ8N ge+oNTniWb5WM2B8G4ANDFOmC+rSZenhe6yHM8hWqQwFlgo0lDtA6NHMhQjmHULl tNC/nDP52sMKPtnZPJGQJaumKHFIFClQgQujH0YdYQWGdIa+ZM0SXbFWJGSe0kFT gd9zNEN19AdOgfeers3w1p49YIbLPX1JwEqQGMTvyD71Dp/m2uCg9mpq+wy8ap8V TbjXTQCh3LisCMLIRZnb8eeABygNFUjd -----END CERTIFICATE-----Generated at Thu May 16 17:51:20 2024 by rpki-client on console-ams.rpki-client.org