$ rpki-client -vvf rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/bBtjjqnXxs4CPLXlfjyuFqEbRQU.mft File: bBtjjqnXxs4CPLXlfjyuFqEbRQU.mft (raw, json) Hash identifier: 6Kvyjb6db4+TMD1Zy8ENC/iSg4TYZ48qiM6DJYISJic= Subject key identifier: BE:DC:E4:20:7E:4C:CF:7B:CF:E2:CD:9A:8A:AF:A1:10:BB:3E:BB:29 Authority key identifier: 6C:1B:63:8E:A9:D7:C6:CE:02:3C:B5:E5:7E:3C:AE:16:A1:1B:45:05 Certificate issuer: /CN=A91881D9/serialNumber=6C1B638EA9D7C6CE023CB5E57E3CAE16A11B4505 Certificate serial: 1751 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBtjjqnXxs4CPLXlfjyuFqEbRQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/bBtjjqnXxs4CPLXlfjyuFqEbRQU.mft Manifest number: 1749 Signing time: Sat 18 May 2024 17:02:27 +0000 Manifest this update: Sat 18 May 2024 17:02:26 +0000 Manifest next update: Sat 25 May 2024 17:02:26 +0000 Files and hashes: 1: bBtjjqnXxs4CPLXlfjyuFqEbRQU.crl (hash: nnAILO/yOkNpJclKnMt2juJpbSQgX/L7ACcjb77aDr0=) 2: 870C2B58B47811E788EC7E65C4F9AE02.roa (hash: aRH01IUvItkJMk65lvOFWwpfHYd0U/w3NKuSxLWLFjE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/bBtjjqnXxs4CPLXlfjyuFqEbRQU.crl rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/bBtjjqnXxs4CPLXlfjyuFqEbRQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBtjjqnXxs4CPLXlfjyuFqEbRQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5969 (0x1751) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91881D9/serialNumber=6C1B638EA9D7C6CE023CB5E57E3CAE16A11B4505 Validity Not Before: May 18 17:02:26 2024 GMT Not After : May 25 17:02:26 2024 GMT Subject: CN=6648df22-c775 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:be:07:f2:e3:3b:14:e1:59:bb:93:4d:16:48: a4:57:87:01:eb:62:6c:17:7e:e9:17:e9:e8:fb:2c: 2d:0c:55:cf:01:c4:a8:c1:1e:f4:b3:7c:00:67:35: 09:49:fb:42:52:dd:7d:d7:3a:9c:b8:e6:99:d7:9f: 37:76:d3:d1:32:bb:70:74:8a:47:6f:30:cf:1a:d5: 63:58:74:32:e1:0e:bb:6f:8b:2a:c1:a8:cd:11:31: b2:53:ad:96:64:67:9e:45:03:09:89:f8:ad:c3:4f: d1:28:8f:1c:5c:f2:7d:64:bc:46:8d:e2:97:c4:e3: c8:9a:08:f6:5f:da:8e:0e:68:44:14:16:a9:0e:55: cb:01:f2:fb:ba:7a:a3:13:ba:e5:5b:ae:76:e1:4a: d8:cf:63:a1:48:66:c0:31:22:10:e3:37:32:41:39: ed:0c:de:69:92:06:2f:8a:fe:99:6f:df:e0:af:5b: a7:82:83:c7:ea:72:2c:06:a8:2a:21:b0:c0:a3:9b: 0b:1f:65:f9:03:01:d9:ee:61:f6:67:74:ee:d1:32: 2f:ac:5c:81:12:db:a7:66:92:4f:96:74:8f:0c:65: 96:ac:cd:de:e1:aa:c7:63:63:82:57:28:26:e8:e0: fb:8b:d7:04:f7:36:28:a4:62:fb:4a:09:41:97:ae: a2:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:DC:E4:20:7E:4C:CF:7B:CF:E2:CD:9A:8A:AF:A1:10:BB:3E:BB:29 X509v3 Authority Key Identifier: keyid:6C:1B:63:8E:A9:D7:C6:CE:02:3C:B5:E5:7E:3C:AE:16:A1:1B:45:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/bBtjjqnXxs4CPLXlfjyuFqEbRQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBtjjqnXxs4CPLXlfjyuFqEbRQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/bBtjjqnXxs4CPLXlfjyuFqEbRQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:18:24:fc:02:e8:13:8a:55:68:4a:20:7a:ad:40:3b:57:78: 09:2d:d3:97:42:10:d6:15:2a:8f:e2:f0:04:60:2a:86:6c:a1: ca:7e:df:46:e2:23:2c:0c:d6:44:71:71:cf:e4:e5:98:01:df: 14:0f:51:c6:66:e1:16:be:06:f9:e6:4c:8a:e5:90:ae:13:f6: 4e:35:70:22:e3:d6:95:43:eb:e5:51:2c:63:f7:97:a5:c8:e6: 8f:61:d4:4c:1c:33:bd:0e:56:2d:f2:71:03:bf:26:84:75:ca: b0:a7:3f:22:bf:2c:b2:76:ed:d6:68:87:89:66:e6:4c:9e:ca: 99:4a:ff:fc:11:5a:da:73:3b:c9:4e:a0:ef:38:82:c5:32:5d: b1:28:ef:4f:50:ac:57:ed:90:f3:b8:cf:cf:7b:ae:5b:ce:86: e2:a7:24:d0:e0:3e:76:e7:2d:6b:45:21:9a:24:6e:65:e6:55: 7c:56:71:42:3f:45:79:e5:b5:01:56:eb:25:d5:7a:eb:c7:c7: 3e:3d:02:b9:9e:5f:27:ac:d2:35:66:af:a3:ef:37:f1:9c:21: 34:e2:d0:83:0e:64:cf:d6:6e:7e:9d:35:6d:b5:e8:24:8f:74: 46:16:d4:f7:44:60:5f:3a:c1:44:a3:06:03:c3:18:b2:6e:b9: a4:bd:83:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODgxRDkxMTAvBgNVBAUTKDZDMUI2MzhFQTlEN0M2Q0UwMjNDQjVFNTdFM0NBRTE2 QTExQjQ1MDUwHhcNMjQwNTE4MTcwMjI2WhcNMjQwNTI1MTcwMjI2WjAYMRYwFAYD VQQDEw02NjQ4ZGYyMi1jNzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsr4H8uM7FOFZu5NNFkikV4cB62JsF37pF+no+ywtDFXPAcSowR70s3wAZzUJ SftCUt191zqcuOaZ1583dtPRMrtwdIpHbzDPGtVjWHQy4Q67b4sqwajNETGyU62W ZGeeRQMJifitw0/RKI8cXPJ9ZLxGjeKXxOPImgj2X9qODmhEFBapDlXLAfL7unqj E7rlW6524UrYz2OhSGbAMSIQ4zcyQTntDN5pkgYviv6Zb9/gr1ungoPH6nIsBqgq IbDAo5sLH2X5AwHZ7mH2Z3Tu0TIvrFyBEtunZpJPlnSPDGWWrM3e4arHY2OCVygm 6OD7i9cE9zYopGL7SglBl66i4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL7c5CB+ TM97z+LNmoqvoRC7PrspMB8GA1UdIwQYMBaAFGwbY46p18bOAjy15X48rhahG0UF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODFEOS9EODlCQjMwRUI0 NzcxMUU3QUQ1NEI2NjRDNEY5QUUwMi9iQnRqanFuWHhzNENQTFhsZmp5dUZxRWJS UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCdGpqcW5YeHM0Q1BMWGxmanl1RnFFYlJRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODFEOS9EODlCQjMwRUI0NzcxMUU3QUQ1NEI2NjRDNEY5QUUwMi9iQnRqanFuWHhz NENQTFhsZmp5dUZxRWJSUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUGCT8AugTilVoSiB6rUA7V3gJLdOXQhDWFSqP4vAEYCqGbKHKft9G 4iMsDNZEcXHP5OWYAd8UD1HGZuEWvgb55kyK5ZCuE/ZONXAi49aVQ+vlUSxj95el yOaPYdRMHDO9DlYt8nEDvyaEdcqwpz8ivyyydu3WaIeJZuZMnsqZSv/8EVraczvJ TqDvOILFMl2xKO9PUKxX7ZDzuM/Pe65bzobipyTQ4D525y1rRSGaJG5l5lV8VnFC P0V55bUBVusl1Xrrx8c+PQK5nl8nrNI1Zq+j7zfxnCE04tCDDmTP1m5+nTVttegk j3RGFtT3RGBfOsFEowYDwxiybrmkvYP/ -----END CERTIFICATE-----Generated at Sat May 18 17:37:33 2024 by rpki-client on console-fra.rpki-client.org