$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft File: BQ5HmwmNZLazhlsr5GiFdeotTVE.mft (raw, json) Hash identifier: a8qBnfqSHRlQOHEi+qbuTDSOFdSkoIPSbKy8h6j1v8M= Subject key identifier: 5C:82:64:91:9A:13:6E:99:6A:B9:63:4A:CC:75:47:69:F1:F8:99:D9 Authority key identifier: 05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 Certificate issuer: /CN=A91AB457/serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Certificate serial: 0B00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft Manifest number: 0B00 Signing time: Sat 18 May 2024 19:55:19 +0000 Manifest this update: Sat 18 May 2024 19:55:19 +0000 Manifest next update: Sat 25 May 2024 19:55:19 +0000 Files and hashes: 1: BQ5HmwmNZLazhlsr5GiFdeotTVE.crl (hash: 69N4HBjrLQM7XmjfOYgfgrQnfyla+sljRsvbrVjoH50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2816 (0xb00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB457/serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Validity Not Before: May 18 19:55:19 2024 GMT Not After : May 25 19:55:19 2024 GMT Subject: CN=664907a7-384e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:18:eb:2a:0b:d8:74:21:c5:0c:23:0e:86:c3: 4c:16:90:23:d4:d0:f4:95:cc:e7:22:db:04:ff:54: 6d:dc:a8:03:5a:35:8a:50:37:53:2b:9d:c6:97:c6: 4a:0c:95:db:fd:bc:be:a7:4d:bf:fa:31:64:72:f3: ee:cc:8c:90:8f:a5:66:5d:47:ee:b8:97:19:8a:02: 81:34:fc:1a:e4:5f:ce:da:fd:32:d1:58:25:63:ff: 26:5e:a0:bd:eb:d1:ec:04:58:2f:00:43:72:60:fe: ff:96:7d:85:18:9d:56:20:ff:bb:63:ab:aa:f7:4d: 31:bb:38:cf:78:e4:85:35:cb:a8:7a:89:55:40:35: 33:3f:54:50:ef:dd:e9:a3:4c:96:d4:14:b4:ee:6d: e0:62:53:28:03:0f:d7:23:01:10:57:aa:f1:7d:ab: c8:2b:5e:f1:02:60:57:ae:24:97:66:b2:ff:e2:3e: 75:ef:6c:07:be:d8:b2:75:14:40:94:59:e0:25:fe: 64:cd:49:9b:bd:e6:fe:bd:ed:57:cf:f3:da:96:4c: 6f:fb:d7:14:9c:46:da:37:7c:ee:b5:e3:84:f3:c9: 8d:56:6b:8f:4b:0e:31:07:46:f8:91:92:e6:5f:0c: 3f:37:71:57:ad:aa:78:bb:ce:50:60:ed:f1:97:07: fe:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:82:64:91:9A:13:6E:99:6A:B9:63:4A:CC:75:47:69:F1:F8:99:D9 X509v3 Authority Key Identifier: keyid:05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:fd:a0:11:6e:ae:05:9d:c9:18:57:14:c3:5b:db:7b:13:df: 5c:8c:d3:2e:14:5e:66:f5:99:86:1a:ed:a7:09:47:1d:31:8f: 57:fa:5f:a9:88:ea:23:db:36:5a:96:89:fd:b5:e3:f6:6e:e9: 01:80:c9:1e:6c:4e:cf:1c:08:71:59:b7:cb:8b:5d:b6:00:24: 12:11:d1:17:d5:92:17:7c:e0:e4:04:06:e6:bc:2b:fa:e0:9b: 18:01:21:71:89:07:ae:00:56:1e:d5:e3:94:ca:bd:26:ee:85: fb:da:73:dc:4d:aa:76:be:3e:ad:05:5f:a1:db:ef:51:5b:be: bb:fa:6c:79:a8:d1:bb:92:ad:31:16:f8:28:05:3e:8b:e8:fe: 25:56:8b:b5:ad:e2:0d:04:da:3d:2d:ae:6d:81:65:16:09:d2: 67:45:74:84:db:41:dc:38:63:5e:9b:f5:9f:5a:48:7e:dc:dd: 12:81:83:21:69:12:a1:f2:ef:fb:96:e0:cb:b1:0d:8c:05:a3: 39:d4:24:50:e5:12:89:7a:5e:50:fe:b2:8d:a6:47:58:4a:76: 17:ea:ef:84:12:62:f7:ff:4d:72:2d:27:61:23:63:94:b8:46: 1e:6f:a3:f9:44:f0:94:4e:b6:31:68:4d:df:5d:bc:a8:cf:9c: 54:c6:8a:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0NTcxMTAvBgNVBAUTKDA1MEU0NzlCMDk4RDY0QjZCMzg2NUIyQkU0Njg4NTc1 RUEyRDRENTEwHhcNMjQwNTE4MTk1NTE5WhcNMjQwNTI1MTk1NTE5WjAYMRYwFAYD VQQDEw02NjQ5MDdhNy0zODRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthjrKgvYdCHFDCMOhsNMFpAj1ND0lcznItsE/1Rt3KgDWjWKUDdTK53Gl8ZK DJXb/by+p02/+jFkcvPuzIyQj6VmXUfuuJcZigKBNPwa5F/O2v0y0VglY/8mXqC9 69HsBFgvAENyYP7/ln2FGJ1WIP+7Y6uq900xuzjPeOSFNcuoeolVQDUzP1RQ793p o0yW1BS07m3gYlMoAw/XIwEQV6rxfavIK17xAmBXriSXZrL/4j5172wHvtiydRRA lFngJf5kzUmbveb+ve1Xz/Palkxv+9cUnEbaN3zuteOE88mNVmuPSw4xB0b4kZLm Xww/N3FXrap4u85QYO3xlwf+SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFyCZJGa E26ZarljSsx1R2nx+JnZMB8GA1UdIwQYMBaAFAUOR5sJjWS2s4ZbK+RohXXqLU1R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjQ1Ny81QUY2NjEwMjFD OTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpMYXpobHNyNUdpRmRlb3RU VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRNUhtd21OWkxhemhsc3I1R2lGZGVvdFRWRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjQ1Ny81QUY2NjEwMjFDOTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpM YXpobHNyNUdpRmRlb3RUVkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCw/aARbq4FnckYVxTDW9t7E99cjNMuFF5m9ZmGGu2nCUcdMY9X+l+p iOoj2zZalon9teP2bukBgMkebE7PHAhxWbfLi122ACQSEdEX1ZIXfODkBAbmvCv6 4JsYASFxiQeuAFYe1eOUyr0m7oX72nPcTap2vj6tBV+h2+9RW767+mx5qNG7kq0x FvgoBT6L6P4lVou1reINBNo9La5tgWUWCdJnRXSE20HcOGNem/WfWkh+3N0SgYMh aRKh8u/7luDLsQ2MBaM51CRQ5RKJel5Q/rKNpkdYSnYX6u+EEmL3/01yLSdhI2OU uEYeb6P5RPCUTrYxaE3fXbyoz5xUxopK -----END CERTIFICATE-----Generated at Sat May 18 20:48:20 2024 by rpki-client on console-fra.rpki-client.org