$ rpki-client -vvf rpki.apnic.net/member_repository/A917C2CC/CC19387678DA11E9901B7F4DC4F9AE02/-bj5HSkovqo1HMNFxHNpMv2GOfE.mft File: -bj5HSkovqo1HMNFxHNpMv2GOfE.mft (raw, json) Hash identifier: DUwZ1j5Ampv7K303OB+xwo2Y0XFpm0xN337w5pN6SRk= Subject key identifier: 90:12:8F:B8:BD:71:8E:9A:DB:5F:FF:88:51:1C:98:51:29:B3:F8:96 Authority key identifier: F9:B8:F9:1D:29:28:BE:AA:35:1C:C3:45:C4:73:69:32:FD:86:39:F1 Certificate issuer: /CN=A917C2CC/serialNumber=F9B8F91D2928BEAA351CC345C4736932FD8639F1 Certificate serial: 0E52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bj5HSkovqo1HMNFxHNpMv2GOfE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C2CC/CC19387678DA11E9901B7F4DC4F9AE02/-bj5HSkovqo1HMNFxHNpMv2GOfE.mft Manifest number: 0E4A Signing time: Sat 18 May 2024 18:25:21 +0000 Manifest this update: Sat 18 May 2024 18:25:21 +0000 Manifest next update: Sat 25 May 2024 18:25:21 +0000 Files and hashes: 1: -bj5HSkovqo1HMNFxHNpMv2GOfE.crl (hash: 0KUFSaoY0yqs3dLEX/WamLzCyAHZ/WKnL2jK4ISUNlI=) 2: 39275D0C232511EC925DF318C4F9AE02.roa (hash: 1iAd4OnLb+lk7xQNTXoUxM4c+gxYRUv4sDcbPEJrDHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C2CC/CC19387678DA11E9901B7F4DC4F9AE02/-bj5HSkovqo1HMNFxHNpMv2GOfE.crl rsync://rpki.apnic.net/member_repository/A917C2CC/CC19387678DA11E9901B7F4DC4F9AE02/-bj5HSkovqo1HMNFxHNpMv2GOfE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bj5HSkovqo1HMNFxHNpMv2GOfE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3666 (0xe52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C2CC/serialNumber=F9B8F91D2928BEAA351CC345C4736932FD8639F1 Validity Not Before: May 18 18:25:21 2024 GMT Not After : May 25 18:25:21 2024 GMT Subject: CN=6648f291-4ca5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f0:20:07:df:7e:7c:b8:cf:8a:72:6b:d2:b8: 78:53:0a:b9:a7:8d:bf:2e:7d:b7:45:fe:3e:c9:37: 3a:99:31:78:86:dc:dc:23:e9:3a:70:51:f2:5c:e2: ac:db:8a:3c:16:6f:22:86:21:98:da:14:7c:28:c7: 9d:ac:21:4e:3e:62:55:aa:7d:17:27:27:88:7a:7c: 73:70:eb:fd:6a:17:93:89:a3:89:b5:93:e6:2f:c3: 97:77:20:1a:8e:72:97:50:86:12:1a:fc:f6:f8:8f: be:f7:5c:7f:a6:45:ef:11:75:38:20:b2:c3:75:a6: 5e:a5:e0:24:4f:68:33:c4:ea:9b:0b:49:51:a9:f0: 39:fd:f6:fc:29:c4:47:c8:82:2c:13:c0:8d:2d:f7: f0:10:e2:20:e4:c6:61:58:94:55:4a:f6:97:0d:5b: 8b:a6:d6:17:63:44:22:8d:ff:3e:af:64:3c:d6:b7: bc:d9:4f:78:01:04:4d:39:5e:4a:c7:f9:61:51:eb: dd:8c:da:67:fb:e2:0d:d5:46:44:6a:95:d5:f2:3f: e7:00:47:a5:2a:17:b1:2f:45:82:28:9a:b4:9c:63: 72:16:78:86:67:d7:ad:87:42:ff:6a:4a:c5:ab:a6: cc:5a:67:57:c9:6e:9d:b7:fa:3c:22:4f:05:8f:0c: 56:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:12:8F:B8:BD:71:8E:9A:DB:5F:FF:88:51:1C:98:51:29:B3:F8:96 X509v3 Authority Key Identifier: keyid:F9:B8:F9:1D:29:28:BE:AA:35:1C:C3:45:C4:73:69:32:FD:86:39:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C2CC/CC19387678DA11E9901B7F4DC4F9AE02/-bj5HSkovqo1HMNFxHNpMv2GOfE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bj5HSkovqo1HMNFxHNpMv2GOfE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C2CC/CC19387678DA11E9901B7F4DC4F9AE02/-bj5HSkovqo1HMNFxHNpMv2GOfE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:3f:3b:62:7a:a8:61:ec:c8:66:95:b4:d0:7b:32:c8:49:45: 71:bc:8d:cb:a3:0c:38:63:1e:41:2b:f0:5e:66:ce:92:57:c0: 33:40:a5:eb:b0:52:38:22:a9:94:57:15:d5:b9:a1:01:57:f2: 47:97:14:2e:ea:97:cb:9a:48:95:7c:3d:48:f3:f1:b3:92:39: 20:c6:40:bb:88:d0:9a:57:2e:53:9c:7a:13:5f:c4:7a:dd:89: 60:01:02:ad:be:16:1d:99:ae:61:54:a2:62:8e:37:41:3c:04: 41:5f:d5:54:c1:4b:5f:ec:5e:e9:f3:a6:19:04:5d:6b:8c:c6: b2:ef:04:39:9c:67:ae:a9:55:5a:7b:a5:97:02:47:28:17:f4: 28:4e:a8:8c:04:f8:9c:77:e4:6e:47:d1:d4:6f:16:b8:e2:74: 6e:56:0f:f7:e1:c0:24:65:76:02:3b:e4:d3:4d:e6:e9:b7:19: a2:95:ac:64:e5:3e:13:17:92:3b:66:1c:ed:fa:93:25:b8:c6: 1a:09:97:a7:ce:cb:ce:c9:d9:55:e9:05:25:b2:88:ef:75:8b: a1:1e:c2:aa:31:60:c9:82:d1:bc:c1:cd:c7:ec:b8:05:8d:6a: 1a:4a:80:b5:eb:b7:0b:ea:5d:2b:33:c9:88:d9:f2:c5:ff:46: 61:33:01:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MyQ0MxMTAvBgNVBAUTKEY5QjhGOTFEMjkyOEJFQUEzNTFDQzM0NUM0NzM2OTMy RkQ4NjM5RjEwHhcNMjQwNTE4MTgyNTIxWhcNMjQwNTI1MTgyNTIxWjAYMRYwFAYD VQQDEw02NjQ4ZjI5MS00Y2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfAgB99+fLjPinJr0rh4Uwq5p42/Ln23Rf4+yTc6mTF4htzcI+k6cFHyXOKs 24o8Fm8ihiGY2hR8KMedrCFOPmJVqn0XJyeIenxzcOv9aheTiaOJtZPmL8OXdyAa jnKXUIYSGvz2+I++91x/pkXvEXU4ILLDdaZepeAkT2gzxOqbC0lRqfA5/fb8KcRH yIIsE8CNLffwEOIg5MZhWJRVSvaXDVuLptYXY0Qijf8+r2Q81re82U94AQRNOV5K x/lhUevdjNpn++IN1UZEapXV8j/nAEelKhexL0WCKJq0nGNyFniGZ9eth0L/akrF q6bMWmdXyW6dt/o8Ik8FjwxWhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJASj7i9 cY6a21//iFEcmFEps/iWMB8GA1UdIwQYMBaAFPm4+R0pKL6qNRzDRcRzaTL9hjnx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzJDQy9DQzE5Mzg3Njc4 REExMUU5OTAxQjdGNERDNEY5QUUwMi8tYmo1SFNrb3ZxbzFITU5GeEhOcE12MkdP ZkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1iajVIU2tvdnFvMUhNTkZ4SE5wTXYyR09mRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzJDQy9DQzE5Mzg3Njc4REExMUU5OTAxQjdGNERDNEY5QUUwMi8tYmo1SFNrb3Zx bzFITU5GeEhOcE12MkdPZkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4Pztieqhh7MhmlbTQezLISUVxvI3Loww4Yx5BK/BeZs6SV8AzQKXr sFI4IqmUVxXVuaEBV/JHlxQu6pfLmkiVfD1I8/GzkjkgxkC7iNCaVy5TnHoTX8R6 3YlgAQKtvhYdma5hVKJijjdBPARBX9VUwUtf7F7p86YZBF1rjMay7wQ5nGeuqVVa e6WXAkcoF/QoTqiMBPicd+RuR9HUbxa44nRuVg/34cAkZXYCO+TTTebptxmilaxk 5T4TF5I7Zhzt+pMluMYaCZenzsvOydlV6QUlsojvdYuhHsKqMWDJgtG8wc3H7LgF jWoaSoC167cL6l0rM8mI2fLF/0ZhMwEw -----END CERTIFICATE-----Generated at Sat May 18 19:15:25 2024 by rpki-client on console-ams.rpki-client.org