$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft File: BdNlUA2kssABifPGyllQ4AdMfEo.mft (raw, json) Hash identifier: u5Pv3ZFzjS0B8E1dPVY0+OsTBRBU4tnP/zZKMiRarzk= Subject key identifier: D9:DD:49:C7:5E:66:31:5A:8E:70:B5:2B:E3:2D:E8:57:30:C6:8B:E0 Authority key identifier: 05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A Certificate issuer: /CN=A91C8EDF/serialNumber=05D365500DA4B2C00189F3C6CA5950E0074C7C4A Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft Manifest number: 011A Signing time: Fri 17 May 2024 05:35:10 +0000 Manifest this update: Fri 17 May 2024 05:35:10 +0000 Manifest next update: Fri 24 May 2024 05:35:10 +0000 Files and hashes: 1: BdNlUA2kssABifPGyllQ4AdMfEo.crl (hash: GS5L8UwKq7a6dlGiAjLXrSaC0grDhGfB+ChRGSotnhc=) 2: AD0CC70C122411EF8BEED51AC4F9AE02.roa (hash: sih6mQqPoKN1rm8wAr4RUW0iwS5gVukg8/r3VRi8nKM=) 3: 999FA66011C711EF80B27457C4F9AE02.roa (hash: EoETNpgvN9v8EH94Mbq7/LheJHevwldFfgY8FqaKxMc=) 4: A6524550C4E411EEAFF83C50C4F9AE02.roa (hash: zeOZPrdq1QYgQ7FqLmTlQVfbrQDcr8FRd1myKoEPr/Y=) 5: C44A1D987E0511EDBA2BAF7FC4F9AE02.roa (hash: QFxZjY9gepscppIE/Uca9rqzFdisePbNZRWKpDghEqA=) 6: 99D4FC3212DC11EFB2470B7FC4F9AE02.roa (hash: VWAke7VHpns9xFQDA7gYHfWXd2qEDLHOvc5MVgox5e0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EDF/serialNumber=05D365500DA4B2C00189F3C6CA5950E0074C7C4A Validity Not Before: May 17 05:35:10 2024 GMT Not After : May 24 05:35:10 2024 GMT Subject: CN=6646ec8e-a3c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ad:86:69:98:a8:19:b7:0a:c1:9a:89:fc:e9: 0f:0b:35:0a:4f:5e:34:da:2e:fb:7f:46:f8:4a:7e: 1b:32:38:fd:d6:0d:a8:ee:9f:58:22:64:14:e9:86: 45:67:b9:29:95:d1:55:6a:f2:e5:1f:27:1f:04:62: ed:34:39:64:4a:89:19:40:5b:96:38:f3:15:5a:a1: 0c:0c:61:01:f6:00:9f:6c:1e:3c:96:ef:d3:dc:e8: 43:e0:1c:56:11:d3:15:72:75:61:4c:9b:91:ed:af: 57:09:0e:83:72:30:c1:8a:bb:2b:d1:9f:6d:f4:55: ff:40:1f:58:c6:02:18:71:74:c7:43:24:9f:46:00: 69:16:40:93:6e:82:78:0a:e0:45:dd:1c:3d:d2:a1: 22:c3:6e:53:49:f8:86:95:9f:db:a1:76:5a:5b:0f: 68:27:a2:bf:24:7c:1d:06:07:09:bc:a0:3e:b9:b3: 46:b8:cb:44:c0:1e:0e:cd:9d:5b:bf:1f:22:87:5b: 79:ae:83:c0:b0:46:f7:65:68:59:7d:d5:9e:f4:f8: e8:14:e5:84:ac:ba:e4:34:f3:33:2e:3d:19:85:99: c6:99:a1:0f:b8:af:6e:85:13:fa:05:5d:b8:b1:4d: 79:bc:4b:fa:f9:96:97:ca:c6:0e:d2:4f:76:97:4f: 72:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:DD:49:C7:5E:66:31:5A:8E:70:B5:2B:E3:2D:E8:57:30:C6:8B:E0 X509v3 Authority Key Identifier: keyid:05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:93:29:34:4b:e1:59:df:3e:fc:25:fc:30:63:4e:f2:53:d6: 40:e9:39:51:ef:84:9c:2a:21:be:78:31:e0:74:cb:21:d7:18: b8:fc:9e:7d:e1:4c:68:32:62:41:ba:f8:01:4b:e3:ea:65:4e: 12:c0:e0:d8:0a:a7:2b:ce:69:7d:18:46:f1:6e:c2:f6:90:9c: 5d:ca:98:f4:e8:7a:3d:77:57:82:ee:dd:de:ef:39:6c:04:4a: a8:44:50:8b:a9:77:fd:78:00:63:96:33:d5:a2:fa:3d:04:06: 64:58:57:ec:25:66:aa:47:5e:24:c1:cb:82:16:8c:61:85:e0: 1c:67:53:6f:19:96:64:5b:4f:df:8b:9d:fe:bf:a7:17:73:a4: d8:e8:b9:9c:13:0b:cb:e2:aa:a9:cc:94:13:7c:87:57:84:35: 52:7f:a9:0f:5d:62:b8:31:c8:db:82:4d:db:69:94:c6:be:e7: 07:e3:82:67:ff:36:ff:4f:ea:2f:5d:38:02:60:5e:6d:7c:63: 2a:67:e3:12:22:d9:3b:dc:27:41:38:35:e6:c4:3d:7a:fb:9d: 60:50:13:0c:22:a3:a9:86:39:c9:c5:83:ef:62:71:74:f2:ad: d3:21:89:e7:73:f5:70:19:24:1b:cd:c9:92:03:0b:b3:f0:9c: 8f:d1:07:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFREYxMTAvBgNVBAUTKDA1RDM2NTUwMERBNEIyQzAwMTg5RjNDNkNBNTk1MEUw MDc0QzdDNEEwHhcNMjQwNTE3MDUzNTEwWhcNMjQwNTI0MDUzNTEwWjAYMRYwFAYD VQQDEw02NjQ2ZWM4ZS1hM2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuq2GaZioGbcKwZqJ/OkPCzUKT1402i77f0b4Sn4bMjj91g2o7p9YImQU6YZF Z7kpldFVavLlHycfBGLtNDlkSokZQFuWOPMVWqEMDGEB9gCfbB48lu/T3OhD4BxW EdMVcnVhTJuR7a9XCQ6DcjDBirsr0Z9t9FX/QB9YxgIYcXTHQySfRgBpFkCTboJ4 CuBF3Rw90qEiw25TSfiGlZ/boXZaWw9oJ6K/JHwdBgcJvKA+ubNGuMtEwB4OzZ1b vx8ih1t5roPAsEb3ZWhZfdWe9PjoFOWErLrkNPMzLj0ZhZnGmaEPuK9uhRP6BV24 sU15vEv6+ZaXysYO0k92l09y4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNndScde ZjFajnC1K+Mt6FcwxovgMB8GA1UdIwQYMBaAFAXTZVANpLLAAYnzxspZUOAHTHxK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVERi9FQTY3QTk4QzdD NTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9CZE5sVUEya3NzQUJpZlBHeWxsUTRBZE1m RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JkTmxVQTJrc3NBQmlmUEd5bGxRNEFkTWZFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEVERi9FQTY3QTk4QzdDNTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9CZE5sVUEya3Nz QUJpZlBHeWxsUTRBZE1mRW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtkyk0S+FZ3z78JfwwY07yU9ZA6TlR74ScKiG+eDHgdMsh1xi4/J59 4UxoMmJBuvgBS+PqZU4SwODYCqcrzml9GEbxbsL2kJxdypj06Ho9d1eC7t3e7zls BEqoRFCLqXf9eABjljPVovo9BAZkWFfsJWaqR14kwcuCFoxhheAcZ1NvGZZkW0/f i53+v6cXc6TY6LmcEwvL4qqpzJQTfIdXhDVSf6kPXWK4Mcjbgk3baZTGvucH44Jn /zb/T+ovXTgCYF5tfGMqZ+MSItk73CdBODXmxD16+51gUBMMIqOphjnJxYPvYnF0 8q3TIYnnc/VwGSQbzcmSAwuz8JyP0QeU -----END CERTIFICATE-----Generated at Fri May 17 06:18:10 2024 by rpki-client on console-fra.rpki-client.org