$ rpki-client -vvf rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft File: BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft (raw, json) Hash identifier: 3y/ld/y8+/tHrA3qht21RWMV3uJIJAbPhRBHE6Xg5lY= Subject key identifier: F4:10:AC:58:5A:A8:90:08:A2:BB:74:93:EF:93:08:2D:E3:31:C4:0F Authority key identifier: 04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7 Certificate issuer: /CN=A91D425A/serialNumber=048AA98F3EC54A9060E5BC30059D5C4220D7C2F7 Certificate serial: 0A51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft Manifest number: 0A4B Signing time: Sat 18 May 2024 20:24:10 +0000 Manifest this update: Sat 18 May 2024 20:24:10 +0000 Manifest next update: Sat 25 May 2024 20:24:10 +0000 Files and hashes: 1: BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl (hash: 5FogwHLTL1aYtvucL+WEwr12xpM2mxawiobwTgRTUJs=) 2: 494B4070419C11EAAE836772C4F9AE02.roa (hash: Tlot9sCT0dKzDi+iGMaa7IKkM12iDzM+MG45fS4fB3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2641 (0xa51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D425A/serialNumber=048AA98F3EC54A9060E5BC30059D5C4220D7C2F7 Validity Not Before: May 18 20:24:10 2024 GMT Not After : May 25 20:24:10 2024 GMT Subject: CN=66490e6a-385f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:c9:c5:92:65:52:8c:dd:92:e6:33:17:cb:45: 5d:6a:f5:e1:84:39:70:31:24:ae:9a:a5:ff:fa:7b: 25:22:9c:f7:fa:8f:a2:f2:f2:8c:71:6a:b5:a5:d9: b3:c8:87:c2:40:30:cf:df:fd:b4:b5:46:41:ce:c2: cc:99:66:2b:51:b0:06:c4:5a:9e:1a:55:01:b1:3f: eb:6a:9e:49:95:66:28:75:d7:b7:1a:07:b9:4b:72: 6e:e8:2c:37:c9:5b:ed:db:13:7b:57:ce:f9:15:be: d6:15:c3:da:7f:2c:21:9f:af:b7:77:ad:52:ce:ef: df:bb:bf:24:f7:b5:ae:e3:3f:fe:97:58:ae:45:39: 2b:07:d8:45:95:1a:06:34:f7:36:d6:5a:d5:d3:5c: 28:fb:7b:79:9b:ad:91:8a:80:b9:05:33:fe:df:b1: 56:33:42:c2:d6:15:3f:b4:93:90:55:db:68:92:3a: 41:ae:b6:47:5e:1e:70:b6:07:f2:0f:1c:3d:80:32: dd:39:81:67:3a:97:11:3d:b7:48:76:9e:68:cb:f7: 59:ea:f5:b7:52:b7:b6:e9:0f:6e:83:c3:7b:72:cc: 9c:bf:f9:6c:f3:4e:32:c9:00:33:3f:ad:aa:43:01: c3:14:5c:d5:66:dd:1d:86:d3:29:69:d0:d8:e7:a5: d7:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:10:AC:58:5A:A8:90:08:A2:BB:74:93:EF:93:08:2D:E3:31:C4:0F X509v3 Authority Key Identifier: keyid:04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:59:0b:8f:03:0b:04:27:a7:b1:47:5b:0a:40:e4:18:ad:46: 82:68:9c:22:6e:d8:c7:a4:eb:22:9f:86:a5:10:df:5c:90:10: c9:8b:d2:91:0f:8c:5c:35:89:c0:59:a9:c4:b9:25:a4:e9:82: eb:38:19:42:05:db:1b:32:1d:8e:c3:2b:d3:5b:9b:6f:90:a7: 34:24:32:6b:77:6a:9e:b5:3d:3a:72:cf:50:bf:81:28:d7:0e: 25:20:58:b3:59:44:3e:1b:e7:42:a8:04:c3:a5:a1:39:22:12: 55:40:a8:f7:8e:e5:4f:ff:53:42:71:c1:4a:e6:71:2d:0d:23: e5:9a:3c:0f:13:34:2d:d9:01:60:15:a5:79:f3:23:29:90:fb: e9:3d:b1:0a:26:77:09:d8:9a:d2:bd:8c:10:31:5f:31:c8:80: 93:c3:1a:43:46:e7:7c:35:d8:33:3c:98:32:33:21:2c:70:9b: eb:b8:2e:d7:16:3a:9b:39:64:62:73:9c:49:51:39:f2:40:bc: 5f:51:f8:b9:00:73:fa:09:60:59:6f:1a:ee:40:d1:e3:7e:68: 51:d7:41:f8:db:5b:c8:63:98:23:b4:7d:b0:40:2d:1a:e8:58: c9:db:20:4c:7e:d0:1d:c5:34:81:c9:da:14:fb:5d:b4:e8:83: 4c:fa:31:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQyNUExMTAvBgNVBAUTKDA0OEFBOThGM0VDNTRBOTA2MEU1QkMzMDA1OUQ1QzQy MjBEN0MyRjcwHhcNMjQwNTE4MjAyNDEwWhcNMjQwNTI1MjAyNDEwWjAYMRYwFAYD VQQDEw02NjQ5MGU2YS0zODVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9snFkmVSjN2S5jMXy0VdavXhhDlwMSSumqX/+nslIpz3+o+i8vKMcWq1pdmz yIfCQDDP3/20tUZBzsLMmWYrUbAGxFqeGlUBsT/rap5JlWYodde3Gge5S3Ju6Cw3 yVvt2xN7V875Fb7WFcPafywhn6+3d61Szu/fu78k97Wu4z/+l1iuRTkrB9hFlRoG NPc21lrV01wo+3t5m62RioC5BTP+37FWM0LC1hU/tJOQVdtokjpBrrZHXh5wtgfy Dxw9gDLdOYFnOpcRPbdIdp5oy/dZ6vW3Ure26Q9ug8N7csycv/ls804yyQAzP62q QwHDFFzVZt0dhtMpadDY56XXBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQQrFha qJAIort0k++TCC3jMcQPMB8GA1UdIwQYMBaAFASKqY8+xUqQYOW8MAWdXEIg18L3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDI1QS8wMjRDMjRGODQx NkMxMUVBODNDM0VGNUFDNEY5QUUwMi9CSXFwano3RlNwQmc1Ynd3QloxY1FpRFh3 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJcXBqejdGU3BCZzVid3dCWjFjUWlEWHd2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDI1QS8wMjRDMjRGODQxNkMxMUVBODNDM0VGNUFDNEY5QUUwMi9CSXFwano3RlNw Qmc1Ynd3QloxY1FpRFh3dmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJWQuPAwsEJ6exR1sKQOQYrUaCaJwibtjHpOsin4alEN9ckBDJi9KR D4xcNYnAWanEuSWk6YLrOBlCBdsbMh2OwyvTW5tvkKc0JDJrd2qetT06cs9Qv4Eo 1w4lIFizWUQ+G+dCqATDpaE5IhJVQKj3juVP/1NCccFK5nEtDSPlmjwPEzQt2QFg FaV58yMpkPvpPbEKJncJ2JrSvYwQMV8xyICTwxpDRud8NdgzPJgyMyEscJvruC7X FjqbOWRic5xJUTnyQLxfUfi5AHP6CWBZbxruQNHjfmhR10H421vIY5gjtH2wQC0a 6FjJ2yBMftAdxTSBydoU+1206INM+jEs -----END CERTIFICATE-----Generated at Sat May 18 20:48:21 2024 by rpki-client on console-fra.rpki-client.org