$ rpki-client -vvf rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft File: Bzzm268iYrP6YRXW_6ezNCFe-g0.mft (raw, json) Hash identifier: N/i0CKjzEe2M10/LiUrrwAHdCmoA2wc5ru+yfxE/XM8= Subject key identifier: C9:A6:A5:64:E4:83:DD:12:D4:83:2A:58:63:36:E1:0A:AE:0C:D4:31 Authority key identifier: 07:3C:E6:DB:AF:22:62:B3:FA:61:15:D6:FF:A7:B3:34:21:5E:FA:0D Certificate issuer: /CN=A91859C2/serialNumber=073CE6DBAF2262B3FA6115D6FFA7B334215EFA0D Certificate serial: 055C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft Manifest number: 0558 Signing time: Sun 19 May 2024 00:49:44 +0000 Manifest this update: Sun 19 May 2024 00:49:44 +0000 Manifest next update: Sun 26 May 2024 00:49:44 +0000 Files and hashes: 1: Bzzm268iYrP6YRXW_6ezNCFe-g0.crl (hash: kT3cOmtU5CfyYJW615cEiP39NHqAaRlcmapiACE81Mw=) 2: A80223709F4411EB92132051C4F9AE02.roa (hash: s/fUirQhduJl9wnAhHh3ONw1QuvIAurXUVtBZUNnkC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.crl rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1372 (0x55c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91859C2/serialNumber=073CE6DBAF2262B3FA6115D6FFA7B334215EFA0D Validity Not Before: May 19 00:49:44 2024 GMT Not After : May 26 00:49:44 2024 GMT Subject: CN=66494ca8-ebb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:18:0b:95:30:76:c8:b7:b3:a0:d2:6e:cd:14: cb:df:b1:2d:4b:60:79:36:4a:b3:6b:5d:4e:ad:22: 3a:f5:11:8f:c1:5f:76:88:32:8e:dc:cd:2d:94:2a: 18:19:79:ab:a2:e1:50:b1:1b:ca:cb:f0:18:e3:97: 77:1c:cc:28:9e:74:a1:da:50:7f:8a:ba:9c:52:cf: 93:21:95:a7:ff:73:1c:0b:e4:80:e8:3c:fd:44:e9: ca:b0:6b:f8:57:e5:04:b1:41:d9:41:e5:7d:e6:37: 7c:af:f0:47:58:d4:8e:8a:56:0e:18:e5:af:05:50: 9a:d1:4a:5d:e8:bb:d4:87:ce:6f:2d:e0:92:a6:f5: b3:57:11:2a:f3:a7:f9:f0:e9:88:99:21:b5:54:cf: 1b:43:8c:23:de:15:e4:9c:eb:dd:87:1c:36:d3:8c: 9b:06:b2:d9:f8:23:e0:dd:e8:b4:a5:24:b0:78:fe: 67:cc:89:81:78:73:4e:1b:e6:87:4e:ee:75:88:bc: 64:ba:d2:e5:cb:b2:02:b0:3a:21:78:b4:a7:3c:f7: 1f:03:ba:e0:c4:d2:a1:53:ba:c4:c8:49:ba:c6:ad: 23:b3:ec:70:cb:46:b2:98:c1:78:9f:11:20:5e:84: 19:69:a6:f4:55:d0:f7:48:09:f6:9e:6d:3a:1d:4e: e3:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:A6:A5:64:E4:83:DD:12:D4:83:2A:58:63:36:E1:0A:AE:0C:D4:31 X509v3 Authority Key Identifier: keyid:07:3C:E6:DB:AF:22:62:B3:FA:61:15:D6:FF:A7:B3:34:21:5E:FA:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:2a:40:95:c1:24:d0:1f:60:89:35:9b:51:fd:79:97:a3:0e: 0c:02:cb:01:f5:d6:49:26:9c:19:c1:d0:2b:e5:7b:b1:5d:23: 8e:9b:14:36:1b:5f:b6:90:e3:bd:3d:10:f7:5d:90:79:47:9a: 77:67:5a:ec:21:d7:da:27:56:5d:33:43:1a:ac:87:29:22:8f: da:bd:1e:2b:97:33:9b:7e:1e:50:11:e4:2e:97:2c:58:04:ea: 2d:74:cb:75:48:ed:22:93:78:af:08:d1:7b:9d:e9:01:42:1a: 62:68:01:26:b7:bf:fa:0a:6e:6b:f7:48:71:e7:cf:f6:84:75: 53:39:eb:26:39:de:9b:e6:2e:c9:cf:b1:d9:40:da:ad:7f:6d: 8d:a1:ab:95:27:30:5e:ec:66:2c:20:d8:85:f4:fc:6d:34:44: f4:53:0a:b1:32:22:01:6e:69:df:76:d6:21:e3:b0:e9:fe:6c: c7:a9:56:05:f5:47:9d:6d:a2:09:96:8b:e0:de:82:d9:1c:9e: 0e:22:e1:7b:e9:3d:58:8b:e8:3a:a9:71:2f:fd:d8:0c:51:8e: c7:b4:d4:d6:8f:39:41:68:2a:36:22:c5:cf:4e:00:7a:92:d1: ab:3f:39:ec:0d:de:6e:92:10:9a:26:6a:30:40:69:ff:9d:16: 58:4e:9b:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU5QzIxMTAvBgNVBAUTKDA3M0NFNkRCQUYyMjYyQjNGQTYxMTVENkZGQTdCMzM0 MjE1RUZBMEQwHhcNMjQwNTE5MDA0OTQ0WhcNMjQwNTI2MDA0OTQ0WjAYMRYwFAYD VQQDEw02NjQ5NGNhOC1lYmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoxgLlTB2yLezoNJuzRTL37EtS2B5Nkqza11OrSI69RGPwV92iDKO3M0tlCoY GXmrouFQsRvKy/AY45d3HMwonnSh2lB/irqcUs+TIZWn/3McC+SA6Dz9ROnKsGv4 V+UEsUHZQeV95jd8r/BHWNSOilYOGOWvBVCa0Upd6LvUh85vLeCSpvWzVxEq86f5 8OmImSG1VM8bQ4wj3hXknOvdhxw204ybBrLZ+CPg3ei0pSSweP5nzImBeHNOG+aH Tu51iLxkutLly7ICsDoheLSnPPcfA7rgxNKhU7rEyEm6xq0js+xwy0aymMF4nxEg XoQZaab0VdD3SAn2nm06HU7jiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMmmpWTk g90S1IMqWGM24QquDNQxMB8GA1UdIwQYMBaAFAc85tuvImKz+mEV1v+nszQhXvoN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTlDMi9FN0MwMjIzRTlG NDIxMUVCOTIyRDM1NEZDNEY5QUUwMi9CenptMjY4aVlyUDZZUlhXXzZlek5DRmUt ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J6em0yNjhpWXJQNllSWFdfNmV6TkNGZS1nMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTlDMi9FN0MwMjIzRTlGNDIxMUVCOTIyRDM1NEZDNEY5QUUwMi9CenptMjY4aVly UDZZUlhXXzZlek5DRmUtZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQKkCVwSTQH2CJNZtR/XmXow4MAssB9dZJJpwZwdAr5XuxXSOOmxQ2 G1+2kOO9PRD3XZB5R5p3Z1rsIdfaJ1ZdM0MarIcpIo/avR4rlzObfh5QEeQulyxY BOotdMt1SO0ik3ivCNF7nekBQhpiaAEmt7/6Cm5r90hx58/2hHVTOesmOd6b5i7J z7HZQNqtf22NoauVJzBe7GYsINiF9PxtNET0UwqxMiIBbmnfdtYh47Dp/mzHqVYF 9UedbaIJlovg3oLZHJ4OIuF76T1Yi+g6qXEv/dgMUY7HtNTWjzlBaCo2IsXPTgB6 ktGrPznsDd5ukhCaJmowQGn/nRZYTpul -----END CERTIFICATE-----Generated at Sun May 19 01:47:14 2024 by rpki-client on console-ams.rpki-client.org