$ rpki-client -vvf rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.mft File: bYD-tReA9_EG5hkNw-LufOdO77s.mft (raw, json) Hash identifier: MF2KojEUeGmqfVAzxdZ7Kix4ArsxsVzNSIgI60ZUkbs= Subject key identifier: 75:8C:0A:38:88:A0:E6:BB:28:02:99:87:FC:71:93:A8:86:A0:90:C2 Authority key identifier: 6D:80:FE:B5:17:80:F7:F1:06:E6:19:0D:C3:E2:EE:7C:E7:4E:EF:BB Certificate issuer: /CN=A917624C/serialNumber=6D80FEB51780F7F106E6190DC3E2EE7CE74EEFBB Certificate serial: 0252 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bYD-tReA9_EG5hkNw-LufOdO77s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.mft Manifest number: 0250 Signing time: Sun 19 May 2024 03:53:59 +0000 Manifest this update: Sun 19 May 2024 03:53:58 +0000 Manifest next update: Sun 26 May 2024 03:53:58 +0000 Files and hashes: 1: bYD-tReA9_EG5hkNw-LufOdO77s.crl (hash: 534k3m/xTgXTCdha3PsiiTIDa3nw3LChxqpE3g/SUDc=) 2: 52801AD8D07111ECAF21A75DC4F9AE02.roa (hash: V+ZB7OEBUnp2wKpTfjn4WZ0DkFpQVWQr6ywmEvQA6/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.crl rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bYD-tReA9_EG5hkNw-LufOdO77s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 594 (0x252) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917624C/serialNumber=6D80FEB51780F7F106E6190DC3E2EE7CE74EEFBB Validity Not Before: May 19 03:53:58 2024 GMT Not After : May 26 03:53:58 2024 GMT Subject: CN=664977d6-364e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:03:37:da:d9:3f:66:d5:75:b4:6d:57:c2:11: bf:62:47:37:4f:bc:44:d8:63:0a:1a:60:0b:f4:d7: 7f:59:67:58:05:7a:b4:b4:ba:fd:4b:9b:cb:95:cb: f1:4e:da:d1:71:97:c1:27:1a:5e:b1:80:f8:5a:d6: 78:05:73:30:b6:56:62:58:4a:8d:6c:44:aa:24:e9: e4:c6:b3:bb:70:8b:1b:2a:a6:4f:bd:3a:c5:1d:a0: d9:64:1c:af:f8:43:f0:28:c6:05:8a:a7:fd:2c:8a: 08:0e:31:c6:16:55:bd:15:34:82:ba:1c:37:ae:d0: 78:01:fb:a2:a8:4e:c1:18:5b:a8:fd:af:01:02:e3: a8:e6:04:67:37:23:a1:0f:77:50:70:4e:21:09:65: eb:cf:c4:d7:27:db:91:e2:25:a1:73:cd:4a:b4:31: ca:70:81:45:95:8c:f6:7b:81:ce:7f:63:d4:16:8a: 9f:99:49:2b:b4:f4:00:42:3f:72:c5:49:30:ac:8f: 79:c2:77:e0:30:f9:8a:39:11:cd:ab:6d:45:97:3d: 9a:d5:90:52:96:b0:cc:c1:39:33:a3:fe:2f:60:b8: ed:18:77:93:8d:27:e9:13:e9:f6:47:8f:e3:ec:cf: 60:63:19:5f:ea:d9:54:cc:97:aa:6f:8b:86:a7:69: c0:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:8C:0A:38:88:A0:E6:BB:28:02:99:87:FC:71:93:A8:86:A0:90:C2 X509v3 Authority Key Identifier: keyid:6D:80:FE:B5:17:80:F7:F1:06:E6:19:0D:C3:E2:EE:7C:E7:4E:EF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bYD-tReA9_EG5hkNw-LufOdO77s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:bb:f0:53:23:cb:37:0e:0a:d9:97:25:93:b4:b6:6a:55:17: cf:47:4a:3b:4e:13:40:87:ae:fd:59:57:14:76:34:ec:d1:f5: 82:2c:3a:39:b2:46:da:93:86:7e:0b:e4:7d:d7:c0:28:03:6e: 6e:6b:82:75:10:b3:03:76:bb:eb:b3:2c:47:ad:2a:d9:4d:0f: ae:e7:e1:d0:88:11:12:1a:0f:14:3e:0c:73:91:b0:81:6f:4c: 1e:4d:a9:d0:aa:5b:01:a1:10:fa:c3:24:49:f6:6c:9a:17:76: 81:2e:26:6b:b6:40:25:a5:04:6b:aa:0f:ba:40:69:93:9f:4c: da:6e:64:5c:03:a6:de:cb:45:a7:d0:6a:c1:77:48:2f:a9:f9: ba:26:0a:da:26:9d:f9:24:3f:51:1b:13:1a:1a:d7:ec:f8:1a: 60:d9:93:33:d9:e4:7b:27:f8:64:09:5d:d6:3d:fc:ee:23:c7: d6:96:ac:75:8f:cb:90:8c:9f:95:17:73:2f:24:b1:af:c2:f5: 96:4c:8e:24:f7:48:81:9f:4e:34:b5:31:23:d7:a9:30:7e:4d: 6b:c7:9e:5b:72:30:72:84:27:15:0f:b9:ce:9f:5a:91:95:87: 37:1b:db:b5:77:8f:2b:e0:32:dd:9e:a5:4e:03:d5:10:3f:d4: 9b:ea:9b:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYyNEMxMTAvBgNVBAUTKDZEODBGRUI1MTc4MEY3RjEwNkU2MTkwREMzRTJFRTdD RTc0RUVGQkIwHhcNMjQwNTE5MDM1MzU4WhcNMjQwNTI2MDM1MzU4WjAYMRYwFAYD VQQDEw02NjQ5NzdkNi0zNjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQM32tk/ZtV1tG1XwhG/Ykc3T7xE2GMKGmAL9Nd/WWdYBXq0tLr9S5vLlcvx TtrRcZfBJxpesYD4WtZ4BXMwtlZiWEqNbESqJOnkxrO7cIsbKqZPvTrFHaDZZByv +EPwKMYFiqf9LIoIDjHGFlW9FTSCuhw3rtB4AfuiqE7BGFuo/a8BAuOo5gRnNyOh D3dQcE4hCWXrz8TXJ9uR4iWhc81KtDHKcIFFlYz2e4HOf2PUFoqfmUkrtPQAQj9y xUkwrI95wnfgMPmKORHNq21Flz2a1ZBSlrDMwTkzo/4vYLjtGHeTjSfpE+n2R4/j 7M9gYxlf6tlUzJeqb4uGp2nAkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWMCjiI oOa7KAKZh/xxk6iGoJDCMB8GA1UdIwQYMBaAFG2A/rUXgPfxBuYZDcPi7nznTu+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjI0Qy9CQjUwRDlEMEQw NkMxMUVDQjJBQUFBMzdDNEY5QUUwMi9iWUQtdFJlQTlfRUc1aGtOdy1MdWZPZE83 N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JZRC10UmVBOV9FRzVoa053LUx1Zk9kTzc3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjI0Qy9CQjUwRDlEMEQwNkMxMUVDQjJBQUFBMzdDNEY5QUUwMi9iWUQtdFJlQTlf RUc1aGtOdy1MdWZPZE83N3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQu/BTI8s3DgrZlyWTtLZqVRfPR0o7ThNAh679WVcUdjTs0fWCLDo5 skbak4Z+C+R918AoA25ua4J1ELMDdrvrsyxHrSrZTQ+u5+HQiBESGg8UPgxzkbCB b0weTanQqlsBoRD6wyRJ9myaF3aBLiZrtkAlpQRrqg+6QGmTn0zabmRcA6bey0Wn 0GrBd0gvqfm6JgraJp35JD9RGxMaGtfs+Bpg2ZMz2eR7J/hkCV3WPfzuI8fWlqx1 j8uQjJ+VF3MvJLGvwvWWTI4k90iBn040tTEj16kwfk1rx55bcjByhCcVD7nOn1qR lYc3G9u1d48r4DLdnqVOA9UQP9Sb6psf -----END CERTIFICATE-----Generated at Sun May 19 05:08:04 2024 by rpki-client on console-ams.rpki-client.org