$ rpki-client -vvf rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.mft File: bAgKK6farJXU2TSIqQAVGuOlnfg.mft (raw, json) Hash identifier: ZOp0R8nAJLNqXu28iOpFjbi4mblMjjCu/9GFHcrEcqU= Subject key identifier: C4:25:A0:F7:60:95:50:92:15:40:2E:AF:1E:ED:80:6A:24:BA:5A:6A Authority key identifier: 6C:08:0A:2B:A7:DA:AC:95:D4:D9:34:88:A9:00:15:1A:E3:A5:9D:F8 Certificate issuer: /CN=A91B74E8/serialNumber=6C080A2BA7DAAC95D4D93488A900151AE3A59DF8 Certificate serial: 03EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bAgKK6farJXU2TSIqQAVGuOlnfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.mft Manifest number: 03D6 Signing time: Fri 31 May 2024 03:03:09 +0000 Manifest this update: Fri 31 May 2024 03:03:09 +0000 Manifest next update: Fri 07 Jun 2024 03:03:09 +0000 Files and hashes: 1: bAgKK6farJXU2TSIqQAVGuOlnfg.crl (hash: eZj7JDrnAfZB7b/qlZR93MrIlXC2Rnt4NULefgSuJRo=) 2: AE3FB66CC0A711EE97A2E984C4F9AE02.roa (hash: 8WuVLtXpW7cGua7WEy7sq6GUNZjMo1nKjeIaIqPgw3Q=) 3: AD5EE696C0A711EE97A2E984C4F9AE02.roa (hash: FcWJi7DlN7uMWlMUmB7LQJ+WXKlsCTtubCazxvuIgKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.crl rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bAgKK6farJXU2TSIqQAVGuOlnfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 03:03:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1003 (0x3eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B74E8/serialNumber=6C080A2BA7DAAC95D4D93488A900151AE3A59DF8 Validity Not Before: May 31 03:03:09 2024 GMT Not After : Jun 7 03:03:09 2024 GMT Subject: CN=66593ded-f415 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:53:e3:12:8d:c9:48:0e:0b:6e:46:3f:63:61: 2a:71:6a:a7:db:71:06:02:f1:a8:07:e7:c0:62:82: 08:b9:47:62:c3:5f:02:d0:c2:e3:75:fe:82:60:83: 99:c0:58:6f:a7:86:13:27:bc:9e:e9:36:83:c4:2c: d6:cf:2b:e9:68:d6:d6:cd:c3:82:95:ae:b2:09:6a: ca:03:9e:5d:d3:8a:7d:71:d7:53:69:9e:20:78:ca: 6e:73:a8:b1:5a:52:ec:ab:b5:42:64:24:42:21:a7: c6:b2:57:86:86:01:3f:50:c8:aa:c5:b5:2d:a4:1d: 8c:84:01:5b:01:9f:d3:a0:7d:4a:60:05:bf:76:58: 42:e1:a6:d2:5e:26:d6:57:b2:ec:db:cf:2e:c6:3f: 9e:14:d5:2d:ce:63:8a:ad:64:6a:ee:ff:e8:70:b8: fb:0f:94:11:9d:4a:ed:a7:4f:6e:3a:e6:6a:d4:37: 06:71:27:f0:6f:76:0a:32:1f:6b:b5:93:59:97:fd: de:30:dc:38:dc:56:91:c9:38:c2:cf:d2:c3:5f:6a: 86:66:61:7c:16:4e:7a:6d:ea:88:ca:64:52:10:6e: 16:80:67:c5:27:3e:b1:76:c4:5a:4b:2c:26:91:29: b4:64:6f:a3:d1:a0:f5:83:c3:99:9b:1d:c0:65:1a: c0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:25:A0:F7:60:95:50:92:15:40:2E:AF:1E:ED:80:6A:24:BA:5A:6A X509v3 Authority Key Identifier: keyid:6C:08:0A:2B:A7:DA:AC:95:D4:D9:34:88:A9:00:15:1A:E3:A5:9D:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bAgKK6farJXU2TSIqQAVGuOlnfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:a4:7d:1e:4e:e7:d4:33:18:ed:c4:02:98:c4:ca:ea:68:38: 15:1c:51:fc:81:8e:e3:e9:4d:81:a3:4a:8d:c5:10:75:62:15: be:64:cf:19:e0:64:12:24:66:b7:5f:cf:a2:b5:ad:4e:cd:22: c5:8b:b4:3b:22:47:e0:27:2d:b1:af:56:f0:d0:34:dc:60:8c: 03:f7:e7:ce:21:6b:e8:46:ea:7a:5e:93:47:8d:4f:67:fc:e8: cc:31:6c:13:98:ba:ff:95:0f:39:41:f2:19:75:cb:61:e9:63: 72:7d:d9:d8:ad:64:34:42:74:47:57:6c:4c:07:41:bf:74:26: 5f:f3:22:77:18:5c:ee:4a:8b:ac:5b:25:b0:da:06:ff:c7:e0: 70:aa:a4:08:a8:13:7e:bf:82:03:26:a8:55:7f:50:e3:79:37: 00:8c:12:f9:d2:4b:1b:30:f5:9c:80:79:7d:e9:c7:91:b5:56: 85:0b:90:e2:e6:82:c6:56:71:8f:e7:ac:dd:08:4f:01:a6:66: 7c:0b:5f:99:23:c6:2b:6f:78:7e:2b:9e:fd:ca:5b:1e:1c:1e: cd:74:4e:85:35:83:c5:f6:5c:2c:b1:e1:ed:b8:97:f9:4e:5b: e6:fd:ca:46:85:96:84:a1:d9:e3:2d:11:28:9d:6a:ab:31:85: 77:9b:bc:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc0RTgxMTAvBgNVBAUTKDZDMDgwQTJCQTdEQUFDOTVENEQ5MzQ4OEE5MDAxNTFB RTNBNTlERjgwHhcNMjQwNTMxMDMwMzA5WhcNMjQwNjA3MDMwMzA5WjAYMRYwFAYD VQQDEw02NjU5M2RlZC1mNDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslPjEo3JSA4LbkY/Y2EqcWqn23EGAvGoB+fAYoIIuUdiw18C0MLjdf6CYIOZ wFhvp4YTJ7ye6TaDxCzWzyvpaNbWzcOCla6yCWrKA55d04p9cddTaZ4geMpuc6ix WlLsq7VCZCRCIafGsleGhgE/UMiqxbUtpB2MhAFbAZ/ToH1KYAW/dlhC4abSXibW V7Ls288uxj+eFNUtzmOKrWRq7v/ocLj7D5QRnUrtp09uOuZq1DcGcSfwb3YKMh9r tZNZl/3eMNw43FaRyTjCz9LDX2qGZmF8Fk56beqIymRSEG4WgGfFJz6xdsRaSywm kSm0ZG+j0aD1g8OZmx3AZRrAjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQloPdg lVCSFUAurx7tgGokulpqMB8GA1UdIwQYMBaAFGwICiun2qyV1Nk0iKkAFRrjpZ34 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzRFOC80N0Y2MjAxMjQz RUExMUVDODRBQjYzNDdDNEY5QUUwMi9iQWdLSzZmYXJKWFUyVFNJcVFBVkd1T2xu ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JBZ0tLNmZhckpYVTJUU0lxUUFWR3VPbG5mZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzRFOC80N0Y2MjAxMjQzRUExMUVDODRBQjYzNDdDNEY5QUUwMi9iQWdLSzZmYXJK WFUyVFNJcVFBVkd1T2xuZmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzpH0eTufUMxjtxAKYxMrqaDgVHFH8gY7j6U2Bo0qNxRB1YhW+ZM8Z 4GQSJGa3X8+ita1OzSLFi7Q7IkfgJy2xr1bw0DTcYIwD9+fOIWvoRup6XpNHjU9n /OjMMWwTmLr/lQ85QfIZdcth6WNyfdnYrWQ0QnRHV2xMB0G/dCZf8yJ3GFzuSous WyWw2gb/x+BwqqQIqBN+v4IDJqhVf1DjeTcAjBL50ksbMPWcgHl96ceRtVaFC5Di 5oLGVnGP56zdCE8BpmZ8C1+ZI8Yrb3h+K579ylseHB7NdE6FNYPF9lwsseHtuJf5 Tlvm/cpGhZaEodnjLREonWqrMYV3m7yI -----END CERTIFICATE-----Generated at Fri May 31 06:49:23 2024 by rpki-client on console-ams.rpki-client.org