$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft File: iBzVaxmrfMJiYzdmnqtzClWnLLY.mft (raw, json) Hash identifier: jtq7ocrO7jJs/0tImP073WvEekuPZjOKBkZUNsEV9H0= Subject key identifier: 35:9A:E5:F1:31:11:43:72:35:45:6D:14:CE:10:2D:E8:19:B8:A2:88 Authority key identifier: 88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 Certificate issuer: /CN=A91ED9F9/serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft Manifest number: 3A Signing time: Fri 31 May 2024 09:13:17 +0000 Manifest this update: Fri 31 May 2024 09:13:17 +0000 Manifest next update: Fri 07 Jun 2024 09:13:17 +0000 Files and hashes: 1: iBzVaxmrfMJiYzdmnqtzClWnLLY.crl (hash: XTzdK6kvJxkD7c2hip3Ropv5WsFIO/LrJCbyBuUKhWY=) 2: FD45DD80C95411EEAF356F5BC4F9AE02.roa (hash: gYpJagU18gGICx19YL3Dg0Dl6FywJhnJI47VXBuygto=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED9F9/serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Validity Not Before: May 31 09:13:17 2024 GMT Not After : Jun 7 09:13:17 2024 GMT Subject: CN=665994ad-367f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:cf:73:99:7e:37:41:f2:b3:4f:c9:18:03:19: b8:5e:d2:47:26:89:93:38:58:25:a1:6d:8a:1b:e1: 04:77:f1:0f:8a:e0:29:f0:fa:c4:32:68:20:75:89: 8a:09:24:6d:f3:70:b1:96:b1:9f:bf:6e:7e:a6:4a: 70:88:c9:b0:f7:85:a1:4f:f9:c9:6f:88:a2:de:78: 59:17:7d:1c:4a:50:21:d1:5e:f7:8e:3a:af:d2:a1: 8c:a6:fb:bc:6c:53:b9:ce:ba:9e:bd:b1:37:60:44: ad:01:20:f3:90:86:b5:29:e2:3d:fe:16:19:9b:08: 95:fb:13:4b:fb:7b:e8:e6:5a:df:1d:4f:b4:4b:c8: f0:76:ba:90:20:e9:35:a5:de:7d:18:70:22:58:33: 4d:67:a3:98:16:5d:af:a2:d5:09:68:b9:15:73:af: 12:5e:02:13:5b:ba:17:fc:ce:a7:26:fa:79:fb:d4: a9:61:d2:23:fc:f7:44:34:93:75:d6:25:51:dc:dc: c8:59:d0:84:40:10:09:97:ed:60:69:80:d4:26:31: 8b:dd:39:14:c7:5a:58:90:80:23:39:ee:01:84:4f: 65:30:23:94:c7:3b:35:bc:14:87:da:84:63:40:91: cd:c6:42:a2:2f:da:43:8b:e3:22:60:c6:cc:ab:0b: ea:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:9A:E5:F1:31:11:43:72:35:45:6D:14:CE:10:2D:E8:19:B8:A2:88 X509v3 Authority Key Identifier: keyid:88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:b3:01:5c:6c:8e:65:db:d7:b6:19:91:28:da:b1:8d:02:33: 4a:b8:00:0b:63:6c:c7:77:90:a5:d7:7a:2d:01:a0:9c:05:03: d4:cc:f6:37:5a:90:0f:8b:da:a7:42:86:b8:ee:58:3b:ec:b5: a7:2d:13:9d:3d:65:f4:fa:ef:a4:69:d2:41:a1:3f:64:0c:02: 20:42:39:aa:b6:0b:fe:c3:d1:f4:63:b3:44:00:01:f3:fe:83: 55:7a:e9:63:62:ee:0f:2c:95:34:93:fb:4f:af:c7:cd:82:3c: 45:0c:c2:7a:1a:04:7c:cb:3d:88:3d:20:44:5a:66:5f:52:b1: 32:65:01:88:49:dd:2f:1c:1a:66:f7:b4:8b:80:9e:97:87:ff: 81:e1:af:88:cd:6c:e3:af:87:b1:f0:92:8f:1f:2c:72:87:6c: a6:82:f3:ab:34:68:fa:1d:ec:de:30:e6:4f:fe:f5:33:9f:3d: 43:f0:bb:3e:8a:6d:69:a3:93:62:6e:28:97:58:96:33:0b:9c: 43:74:7b:c0:85:87:16:03:18:68:6a:b6:94:cc:37:29:0d:71: fe:ab:3a:14:27:7e:09:c3:94:ab:d0:82:81:f4:da:66:f5:35: da:0c:5f:88:1b:d9:f1:82:74:1c:fa:11:7d:db:c9:68:6e:62: c2:60:95:fc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RDlGOTExMC8GA1UEBRMoODgxQ0Q1NkIxOUFCN0NDMjYyNjMzNzY2OUVBQjczMEE1 NUE3MkNCNjAeFw0yNDA1MzEwOTEzMTdaFw0yNDA2MDcwOTEzMTdaMBgxFjAUBgNV BAMTDTY2NTk5NGFkLTM2N2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfz3OZfjdB8rNPyRgDGbhe0kcmiZM4WCWhbYob4QR38Q+K4Cnw+sQyaCB1iYoJ JG3zcLGWsZ+/bn6mSnCIybD3haFP+clviKLeeFkXfRxKUCHRXveOOq/SoYym+7xs U7nOup69sTdgRK0BIPOQhrUp4j3+FhmbCJX7E0v7e+jmWt8dT7RLyPB2upAg6TWl 3n0YcCJYM01no5gWXa+i1QlouRVzrxJeAhNbuhf8zqcm+nn71Klh0iP890Q0k3XW JVHc3MhZ0IRAEAmX7WBpgNQmMYvdORTHWliQgCM57gGET2UwI5THOzW8FIfahGNA kc3GQqIv2kOL4yJgxsyrC+orAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNZrl8TER Q3I1RW0UzhAt6Bm4oogwHwYDVR0jBBgwFoAUiBzVaxmrfMJiYzdmnqtzClWnLLYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVEOUY5LzVGMzc5REIwQzk1 MjExRUVCN0FEREQ0RUM0RjlBRTAyL2lCelZheG1yZk1KaVl6ZG1ucXR6Q2xXbkxM WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaUJ6VmF4bXJmTUppWXpkbW5xdHpDbFduTExZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVE OUY5LzVGMzc5REIwQzk1MjExRUVCN0FEREQ0RUM0RjlBRTAyL2lCelZheG1yZk1K aVl6ZG1ucXR6Q2xXbkxMWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFWzAVxsjmXb17YZkSjasY0CM0q4AAtjbMd3kKXXei0BoJwFA9TM9jda kA+L2qdChrjuWDvstactE509ZfT676Rp0kGhP2QMAiBCOaq2C/7D0fRjs0QAAfP+ g1V66WNi7g8slTST+0+vx82CPEUMwnoaBHzLPYg9IERaZl9SsTJlAYhJ3S8cGmb3 tIuAnpeH/4Hhr4jNbOOvh7Hwko8fLHKHbKaC86s0aPod7N4w5k/+9TOfPUPwuz6K bWmjk2JuKJdYljMLnEN0e8CFhxYDGGhqtpTMNykNcf6rOhQnfgnDlKvQgoH02mb1 NdoMX4gb2fGCdBz6EX3byWhuYsJglfw= -----END CERTIFICATE-----Generated at Fri May 31 10:02:46 2024 by rpki-client on console-ams.rpki-client.org