$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft File: B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft (raw, json) Hash identifier: 18RnK0QqimNT0wzA0kQtanVbOAyoVf4n6UbDLFAE47o= Subject key identifier: 6B:B7:2B:85:A8:A0:8B:BD:56:8B:3A:06:77:D3:AD:7C:8E:73:1B:0A Authority key identifier: 07:60:CA:EF:5B:72:DF:E5:B0:4B:76:DA:DF:FA:B8:67:C3:0A:98:C7 Certificate issuer: /CN=A91DA5FD/serialNumber=0760CAEF5B72DFE5B04B76DADFFAB867C30A98C7 Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft Manifest number: 88 Signing time: Wed 29 May 2024 07:47:27 +0000 Manifest this update: Wed 29 May 2024 07:47:26 +0000 Manifest next update: Wed 05 Jun 2024 07:47:26 +0000 Files and hashes: 1: B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl (hash: bNFYbmXgFig5Y9oxoPnUnoVlxKf5JNuybLzz0ruYhAk=) 2: 76817340537011EEB43BD523C4F9AE02.roa (hash: fjAiqnZlzJ6N7JpVTeNJ3lQrGwwMm27mRWaT0nsMz+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 07:47:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA5FD/serialNumber=0760CAEF5B72DFE5B04B76DADFFAB867C30A98C7 Validity Not Before: May 29 07:47:26 2024 GMT Not After : Jun 5 07:47:26 2024 GMT Subject: CN=6656dd8e-437f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:86:36:37:b4:6d:02:48:65:40:a1:ce:72:6c: 5c:2d:0e:7a:46:c4:3c:aa:56:50:36:cc:0b:b5:f0: 0e:6b:12:e5:7e:97:50:50:80:fc:19:f7:88:97:7f: 71:4f:1f:20:7f:41:3f:13:df:7c:19:fd:d8:06:a7: 36:b9:2f:5a:37:2f:e0:fd:ae:8c:35:88:4d:88:f9: 63:e9:f1:f5:84:2d:22:c8:b7:21:f4:1e:0c:5b:21: 42:73:03:87:d6:cc:30:11:55:5e:de:96:0a:9b:26: 25:18:1b:73:d9:d8:50:0b:ed:a8:a9:d6:36:64:18: 57:37:5f:38:9b:c2:38:ad:f1:5a:ec:0b:f5:7f:9e: 53:31:e1:34:de:15:56:2d:3f:77:c3:f4:e2:02:d5: d7:c6:89:d2:87:1c:50:db:41:59:8c:b4:64:75:00: 37:5f:6d:c2:60:4f:e1:34:81:6b:54:60:2c:1a:54: bc:61:49:60:76:83:ed:f1:b2:0e:6c:2c:18:7b:f1: d2:fd:2d:63:b5:8a:04:2b:f4:8f:d3:5e:65:a7:b5: df:4d:fb:cf:d8:ff:65:df:70:82:e7:74:c1:a2:02: f4:fe:ba:cd:43:f5:fb:77:1d:07:b3:8c:3f:5b:72: 1a:98:aa:e8:f5:11:ff:5a:a8:00:e4:a6:48:7c:6f: c4:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:B7:2B:85:A8:A0:8B:BD:56:8B:3A:06:77:D3:AD:7C:8E:73:1B:0A X509v3 Authority Key Identifier: keyid:07:60:CA:EF:5B:72:DF:E5:B0:4B:76:DA:DF:FA:B8:67:C3:0A:98:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:32:e3:9f:ca:10:2b:b1:c5:d1:e3:34:00:79:e7:67:3b:e7: 1e:5f:7e:85:86:28:d4:a1:5e:f9:91:94:b7:c5:2e:1e:8c:41: bc:6b:a3:de:df:0f:ee:39:39:12:e1:ce:d7:de:a1:7b:e6:22: d5:6a:25:98:6b:a4:6c:48:3c:ed:f5:da:6b:35:93:ff:ca:b3: 0c:3d:74:e2:93:d4:38:f6:fd:01:20:ba:19:67:07:b0:a7:42: db:5a:95:05:05:b9:72:af:c2:db:8f:9d:b9:d5:d1:96:b9:b8: 51:22:b9:c0:06:2e:ad:9b:4f:7a:61:31:6d:f8:3b:88:5e:7d: a2:d2:46:36:2a:c6:f4:fe:5f:7d:7b:1b:7d:cc:59:02:d2:7b: 37:d8:ff:c4:ca:2d:22:39:6b:6d:ec:0f:95:a0:7c:16:6a:97: 89:9d:90:bc:21:5a:19:3e:67:f8:c0:4f:01:ff:12:08:ed:a1: aa:1f:ac:bb:2c:09:00:92:de:36:14:79:2f:07:e8:48:2c:d1: 40:7e:1c:3b:68:99:46:58:26:e2:bb:6a:d7:7e:8e:08:c8:94: b1:ec:13:1f:fd:64:16:64:e3:4f:e5:26:24:76:e5:ac:78:19: 7c:55:ed:c3:f6:f2:ef:7c:11:3f:ec:d0:20:66:3c:8f:0e:f9: 5c:7e:21:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1RkQxMTAvBgNVBAUTKDA3NjBDQUVGNUI3MkRGRTVCMDRCNzZEQURGRkFCODY3 QzMwQTk4QzcwHhcNMjQwNTI5MDc0NzI2WhcNMjQwNjA1MDc0NzI2WjAYMRYwFAYD VQQDEw02NjU2ZGQ4ZS00MzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYY2N7RtAkhlQKHOcmxcLQ56RsQ8qlZQNswLtfAOaxLlfpdQUID8GfeIl39x Tx8gf0E/E998Gf3YBqc2uS9aNy/g/a6MNYhNiPlj6fH1hC0iyLch9B4MWyFCcwOH 1swwEVVe3pYKmyYlGBtz2dhQC+2oqdY2ZBhXN184m8I4rfFa7Av1f55TMeE03hVW LT93w/TiAtXXxonShxxQ20FZjLRkdQA3X23CYE/hNIFrVGAsGlS8YUlgdoPt8bIO bCwYe/HS/S1jtYoEK/SP015lp7XfTfvP2P9l33CC53TBogL0/rrNQ/X7dx0Hs4w/ W3IamKro9RH/WqgA5KZIfG/EmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGu3K4Wo oIu9Vos6BnfTrXyOcxsKMB8GA1UdIwQYMBaAFAdgyu9bct/lsEt22t/6uGfDCpjH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTVGRC84QkRBRkVGNDUy ODYxMUVFODlCMDBEODdDNEY5QUUwMi9CMkRLNzF0eTMtV3dTM2JhM19xNFo4TUtt TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0IyREs3MXR5My1Xd1MzYmEzX3E0WjhNS21NYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTVGRC84QkRBRkVGNDUyODYxMUVFODlCMDBEODdDNEY5QUUwMi9CMkRLNzF0eTMt V3dTM2JhM19xNFo4TUttTWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8MuOfyhArscXR4zQAeednO+ceX36FhijUoV75kZS3xS4ejEG8a6Pe 3w/uOTkS4c7X3qF75iLVaiWYa6RsSDzt9dprNZP/yrMMPXTik9Q49v0BILoZZwew p0LbWpUFBblyr8Lbj5251dGWubhRIrnABi6tm096YTFt+DuIXn2i0kY2Ksb0/l99 ext9zFkC0ns32P/Eyi0iOWtt7A+VoHwWapeJnZC8IVoZPmf4wE8B/xII7aGqH6y7 LAkAkt42FHkvB+hILNFAfhw7aJlGWCbiu2rXfo4IyJSx7BMf/WQWZONP5SYkduWs eBl8Ve3D9vLvfBE/7NAgZjyPDvlcfiF7 -----END CERTIFICATE-----Generated at Wed May 29 10:44:02 2024 by rpki-client on console-ams.rpki-client.org