$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft File: 1bm7ozBeiMAA9WKTnROLpQYieyo.mft (raw, json) Hash identifier: aBhMV/yS7/esjYbr4HX6s2+EDBfDJIO4tK3A6VFhOHI= Subject key identifier: FD:D1:23:90:DE:43:4C:7E:AE:83:5C:3F:C0:53:0D:CC:54:BB:3D:94 Authority key identifier: D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A Certificate issuer: /CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Certificate serial: 0A44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft Manifest number: 0A3A Signing time: Sat 18 May 2024 20:32:19 +0000 Manifest this update: Sat 18 May 2024 20:32:19 +0000 Manifest next update: Sat 25 May 2024 20:32:19 +0000 Files and hashes: 1: 1bm7ozBeiMAA9WKTnROLpQYieyo.crl (hash: dRmXgr7fORxX/eMvclaH5PcJ3rdHVfMWxphBrKJ/TzQ=) 2: 0422C4EAB19E11EC86ADF246C4F9AE02.roa (hash: jvwMgY3Pl4Z5h1wjjreHgdLgcX+SH5NHc/xbxrSQFh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2628 (0xa44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Validity Not Before: May 18 20:32:19 2024 GMT Not After : May 25 20:32:19 2024 GMT Subject: CN=66491053-9189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:67:7c:9f:2e:41:a4:e2:fe:1e:b1:06:e3:1e: 8a:0c:39:d9:7e:ca:a3:cd:e4:c2:0b:2b:88:0a:aa: 76:aa:59:df:3f:c3:80:2f:cd:5f:ea:a5:9e:9c:f8: 99:bf:71:50:a7:60:5e:17:a3:c2:7f:e0:ed:68:c7: 59:38:35:f2:ab:d8:98:1a:6b:73:ee:d0:99:bb:f1: fb:06:1f:9e:56:33:f5:f0:8d:49:a1:65:b9:0a:37: af:b4:c0:b7:62:d8:19:5c:da:a5:c8:42:47:44:6d: 11:e3:e5:03:ab:ff:17:b0:fd:90:de:f8:f7:09:63: e4:66:40:6a:26:b6:4a:38:88:c1:ad:ad:cf:74:93: f3:ed:00:fb:28:dc:b3:f8:ca:58:9d:11:66:c1:ce: 22:43:c3:3c:51:54:8e:38:7a:9f:d1:7b:d8:8a:48: c5:f0:13:75:ca:47:68:fb:66:85:8f:01:8b:89:df: 6c:d4:11:87:62:a3:ab:83:9d:60:1d:60:b2:9e:9e: 9f:e4:dd:cd:3d:96:3f:b6:1e:e7:a2:dd:ff:95:98: 17:58:2e:81:ec:0e:2e:ae:b9:d6:07:9e:8b:eb:3b: 84:17:6c:85:95:b2:11:87:d8:b5:2e:c5:a2:e5:f6: df:ab:ea:4c:b4:9c:71:90:b0:bd:04:ac:b7:37:b5: de:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:D1:23:90:DE:43:4C:7E:AE:83:5C:3F:C0:53:0D:CC:54:BB:3D:94 X509v3 Authority Key Identifier: keyid:D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:cd:45:88:db:de:a7:82:bb:4c:d0:ab:12:6e:cb:44:51:ea: 17:d8:84:17:51:8d:a1:c7:1d:81:ea:1d:e9:18:e4:1b:71:a5: e3:52:65:4d:12:83:14:89:77:56:83:f0:6d:77:e2:ed:3b:8b: 21:4b:93:59:5c:9b:49:ff:bf:93:50:db:3f:65:76:a0:90:57: ce:29:38:e2:96:cb:63:23:6e:8b:98:db:b8:e4:98:0e:39:79: 97:98:bc:72:8d:4f:dd:1a:15:a9:cc:35:4a:f3:0d:56:ad:4c: 20:2d:3d:d0:9b:ee:51:a0:2f:ce:e8:bf:0f:3f:22:63:0e:58: cf:7c:9d:8c:41:13:30:f7:75:27:a9:92:0b:73:48:8b:a7:26: a9:16:dd:68:74:fe:d7:00:15:b7:65:36:c5:07:e8:8d:c4:c6: 9e:ee:60:b3:b9:cb:10:44:6a:92:a1:39:36:db:d8:32:ea:4c: 67:0a:0b:56:f7:50:98:ea:40:46:ce:21:76:42:9c:dd:74:4d: 9f:9f:ce:31:d0:34:89:25:8c:b4:3d:95:da:6e:4f:fa:31:92: 22:ae:70:67:97:14:d7:76:ca:b2:2c:f6:d3:81:23:ae:74:ce: fc:b9:d8:c6:19:cb:a9:4e:0d:d2:dc:f1:2c:88:c6:eb:88:76: f0:70:f9:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEQ1QjlCQkEzMzA1RTg4QzAwMEY1NjI5MzlEMTM4QkE1 MDYyMjdCMkEwHhcNMjQwNTE4MjAzMjE5WhcNMjQwNTI1MjAzMjE5WjAYMRYwFAYD VQQDEw02NjQ5MTA1My05MTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmWd8ny5BpOL+HrEG4x6KDDnZfsqjzeTCCyuICqp2qlnfP8OAL81f6qWenPiZ v3FQp2BeF6PCf+DtaMdZODXyq9iYGmtz7tCZu/H7Bh+eVjP18I1JoWW5CjevtMC3 YtgZXNqlyEJHRG0R4+UDq/8XsP2Q3vj3CWPkZkBqJrZKOIjBra3PdJPz7QD7KNyz +MpYnRFmwc4iQ8M8UVSOOHqf0XvYikjF8BN1ykdo+2aFjwGLid9s1BGHYqOrg51g HWCynp6f5N3NPZY/th7not3/lZgXWC6B7A4urrnWB56L6zuEF2yFlbIRh9i1LsWi 5fbfq+pMtJxxkLC9BKy3N7XezwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP3RI5De Q0x+roNcP8BTDcxUuz2UMB8GA1UdIwQYMBaAFNW5u6MwXojAAPVik50Ti6UGInsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlNQUE5V0tUblJPTHBRWWll eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFibTdvekJlaU1BQTlXS1RuUk9McFFZaWV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlN QUE5V0tUblJPTHBRWWlleW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHzUWI296ngrtM0KsSbstEUeoX2IQXUY2hxx2B6h3pGOQbcaXjUmVN EoMUiXdWg/Btd+LtO4shS5NZXJtJ/7+TUNs/ZXagkFfOKTjilstjI26LmNu45JgO OXmXmLxyjU/dGhWpzDVK8w1WrUwgLT3Qm+5RoC/O6L8PPyJjDljPfJ2MQRMw93Un qZILc0iLpyapFt1odP7XABW3ZTbFB+iNxMae7mCzucsQRGqSoTk229gy6kxnCgtW 91CY6kBGziF2QpzddE2fn84x0DSJJYy0PZXabk/6MZIirnBnlxTXdsqyLPbTgSOu dM78udjGGcupTg3S3PEsiMbriHbwcPkM -----END CERTIFICATE-----Generated at Sat May 18 21:24:23 2024 by rpki-client on console-fra.rpki-client.org