$ rpki-client -vvf rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft File: BL27YPamYNHS0BJzSQ_PCcw1m3M.mft (raw, json) Hash identifier: /gAG8X0wVLXPnP+y8GcMko4lXGnv2F5AHI2wCylDJdk= Subject key identifier: 8C:BF:7A:DB:8B:73:47:62:EB:F8:70:9E:50:35:76:91:CA:EE:50:FF Authority key identifier: 04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 Certificate issuer: /CN=A917C59F/serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Certificate serial: 07CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft Manifest number: 07C3 Signing time: Thu 30 May 2024 22:32:28 +0000 Manifest this update: Thu 30 May 2024 22:32:28 +0000 Manifest next update: Thu 06 Jun 2024 22:32:28 +0000 Files and hashes: 1: BL27YPamYNHS0BJzSQ_PCcw1m3M.crl (hash: NMGFQ17NHLR53Od8CkyLaJcexwmjqIXE/M5vwOc71fg=) 2: 12482BA205A211ED81E44F6DC4F9AE02.roa (hash: bg+iRcITgD5dlX2l7PvKF4r5y7w7jgNKU6nvcAcFRI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 22:17:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1994 (0x7ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C59F/serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Validity Not Before: May 30 22:32:28 2024 GMT Not After : Jun 6 22:32:28 2024 GMT Subject: CN=6658fe7c-0a48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:24:ac:02:2c:b9:ff:b1:92:86:96:cf:fd:c7: 03:20:5b:34:40:94:ac:90:74:bd:12:f6:87:8b:72: 31:f3:9c:e4:24:eb:39:ff:3a:9f:ba:f9:b4:33:ce: e7:96:8a:85:75:ad:4f:6e:0d:98:18:73:8e:5e:98: ef:8c:39:c2:55:34:3a:fa:37:d2:9c:08:5b:9b:5a: 32:d1:c4:52:4c:de:1a:fe:74:c8:13:c9:2a:ed:01: a6:16:ff:bd:11:5b:d9:d7:b9:f8:8d:e2:b3:b4:85: 93:78:e3:dc:8e:c9:9b:9b:d0:06:c5:8a:08:99:c6: a0:5d:18:5c:c4:df:8b:4d:0a:f8:fc:4a:4a:80:fb: 0c:38:4d:31:59:e1:4a:3f:96:8f:74:8b:a0:61:d3: bb:02:16:de:7f:c2:21:4e:97:fa:8e:5a:ba:23:69: b5:56:06:14:5a:cf:1c:32:78:64:0e:72:20:cb:81: 44:59:0c:ff:0c:f4:e3:b6:4e:12:74:c8:37:87:76: ba:c3:e4:95:26:a7:8a:00:ed:9c:ac:7f:d9:3c:32: 43:ca:f2:9e:b6:e4:f8:d8:77:22:2a:81:d6:55:ee: 3d:53:14:f2:aa:aa:54:4c:f3:fa:8d:98:cc:ed:14: fd:22:90:9e:5f:ad:8a:47:a1:9f:71:f3:42:e3:08: 23:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:BF:7A:DB:8B:73:47:62:EB:F8:70:9E:50:35:76:91:CA:EE:50:FF X509v3 Authority Key Identifier: keyid:04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:2f:bc:62:5f:ea:1e:71:d1:06:e2:fb:d0:d7:a0:ae:72:53: 98:ca:7c:47:d9:20:29:2b:b4:72:1d:d9:df:ae:e6:5a:94:d4: c8:ac:fa:1b:57:0e:9b:4e:59:47:29:79:4f:8d:01:c6:81:65: db:83:f4:56:f2:e1:91:1a:d1:21:cb:53:e2:b4:4f:0e:06:67: 67:cd:6d:d6:8f:9a:2f:6e:96:3d:fd:30:9d:32:e2:fa:db:5e: 24:ec:ee:cf:20:06:42:f8:29:4a:1b:e2:56:72:f0:90:c7:09: 05:95:f4:6e:b2:31:2f:72:04:a1:f3:24:79:58:70:58:cb:13: 82:49:ce:12:3a:d4:91:de:5f:50:c5:bd:91:8b:b3:f1:71:42: 1a:bf:1b:47:88:b6:ba:85:c9:ac:15:86:5e:ce:45:a7:d9:d0: d5:3b:45:65:31:25:3b:08:88:7f:a0:34:87:02:4c:00:08:61: f9:db:af:50:8d:b2:4a:7b:6a:0f:85:18:74:37:1a:04:b2:e4: 9a:99:20:7d:60:b5:28:ac:1b:31:1c:45:b9:5f:d2:34:04:ce: fc:ed:ca:3b:e6:48:56:bf:94:55:df:3d:9c:fa:88:3f:b3:4d: 74:92:83:0e:61:8c:39:e8:e3:cd:03:ac:27:46:4f:69:6d:01: 47:b6:10:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1OUYxMTAvBgNVBAUTKDA0QkRCQjYwRjZBNjYwRDFEMkQwMTI3MzQ5MEZDRjA5 Q0MzNTlCNzMwHhcNMjQwNTMwMjIzMjI4WhcNMjQwNjA2MjIzMjI4WjAYMRYwFAYD VQQDEw02NjU4ZmU3Yy0wYTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3iSsAiy5/7GShpbP/ccDIFs0QJSskHS9EvaHi3Ix85zkJOs5/zqfuvm0M87n loqFda1Pbg2YGHOOXpjvjDnCVTQ6+jfSnAhbm1oy0cRSTN4a/nTIE8kq7QGmFv+9 EVvZ17n4jeKztIWTeOPcjsmbm9AGxYoImcagXRhcxN+LTQr4/EpKgPsMOE0xWeFK P5aPdIugYdO7Ahbef8IhTpf6jlq6I2m1VgYUWs8cMnhkDnIgy4FEWQz/DPTjtk4S dMg3h3a6w+SVJqeKAO2crH/ZPDJDyvKetuT42HciKoHWVe49UxTyqqpUTPP6jZjM 7RT9IpCeX62KR6GfcfNC4wgj3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIy/etuL c0di6/hwnlA1dpHK7lD/MB8GA1UdIwQYMBaAFAS9u2D2pmDR0tASc0kPzwnMNZtz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzU5Ri80MjVFODkwMkMx NDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlOSFMwQkp6U1FfUENjdzFt M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JMMjdZUGFtWU5IUzBCSnpTUV9QQ2N3MW0zTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzU5Ri80MjVFODkwMkMxNDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlO SFMwQkp6U1FfUENjdzFtM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHL7xiX+oecdEG4vvQ16CuclOYynxH2SApK7RyHdnfruZalNTIrPob Vw6bTllHKXlPjQHGgWXbg/RW8uGRGtEhy1PitE8OBmdnzW3Wj5ovbpY9/TCdMuL6 214k7O7PIAZC+ClKG+JWcvCQxwkFlfRusjEvcgSh8yR5WHBYyxOCSc4SOtSR3l9Q xb2Ri7PxcUIavxtHiLa6hcmsFYZezkWn2dDVO0VlMSU7CIh/oDSHAkwACGH5269Q jbJKe2oPhRh0NxoEsuSamSB9YLUorBsxHEW5X9I0BM787co75khWv5RV3z2c+og/ s010koMOYYw56OPNA6wnRk9pbQFHthCu -----END CERTIFICATE-----Generated at Thu May 30 23:02:15 2024 by rpki-client on console-fra.rpki-client.org