$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft File: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft (raw, json) Hash identifier: gSfCuPPmxtW7tITSoh5Wb4XWUzOi9KuGYAGXdNNymes= Subject key identifier: E4:89:51:83:3C:33:02:32:AB:EC:56:79:A8:87:1E:B8:81:61:76:E6 Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0BA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft Manifest number: 1BFD Signing time: Sat 18 May 2024 17:57:53 +0000 Manifest this update: Sat 18 May 2024 17:57:53 +0000 Manifest next update: Sat 25 May 2024 17:57:53 +0000 Files and hashes: 1: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl (hash: iOPz6Jg2SqZ2QG2N/nwGU0IIn7pWEyhugWrJ4rs9zLk=) 2: CE3C7EF66FEB11EB91967864C4F9AE02.roa (hash: U6hs1tU689l640hvbs2q+mZqpHKSlM40KRn+IYFszCA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2983 (0xba7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: May 18 17:57:53 2024 GMT Not After : May 25 17:57:53 2024 GMT Subject: CN=6648ec21-cdfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3a:f1:d7:1c:39:53:1a:2d:90:01:a6:9f:42: a4:03:aa:88:97:af:e9:a3:16:9a:5f:bb:45:fc:c5: ab:ed:ce:f5:09:2b:4b:a4:cc:a2:14:d5:8a:52:8b: b6:48:f1:d2:15:e7:38:26:b0:04:85:78:17:ac:fb: 54:15:66:75:4b:5d:b9:d4:55:0d:61:24:b4:74:e3: 90:37:50:e6:bf:7d:8a:ce:79:4a:3d:f0:73:6a:8f: e3:c3:a8:59:f3:7b:65:c5:cb:ae:65:77:3d:9c:fa: b7:a6:ea:76:fb:28:33:df:c4:f6:ee:61:dd:3b:29: 2c:69:93:6a:67:3d:c4:a6:4f:c2:b6:4a:16:0e:42: a7:0d:8c:2c:d1:e8:88:1e:ad:0c:42:3c:ae:c5:64: 9b:9d:ee:60:27:26:f4:cf:25:44:fa:52:1e:1b:73: 1a:11:45:e1:a9:50:c4:59:27:1e:16:24:f3:0e:ab: d4:13:69:7e:10:c0:b6:91:07:95:49:55:de:ba:ea: 15:38:6b:ad:2d:4a:51:ad:c2:04:17:c2:34:29:87: 38:ca:6e:d7:7c:c3:54:e2:08:59:c4:b8:86:aa:6c: 51:e6:c4:fc:93:9e:04:df:1a:e9:dd:00:78:dc:64: 60:e7:28:78:55:3e:60:81:5b:8b:fe:38:c8:af:df: 79:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:89:51:83:3C:33:02:32:AB:EC:56:79:A8:87:1E:B8:81:61:76:E6 X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:6c:e6:dc:f2:91:19:8a:33:a2:03:25:05:f8:d8:fc:76:ee: 96:59:ef:2d:a4:5d:64:28:54:67:ba:1e:74:aa:ff:98:03:69: ac:1b:56:98:30:4e:14:4b:10:b1:0c:e1:4f:34:83:e4:e5:a0: 05:f9:1f:f8:0b:1c:55:0b:79:fa:7a:91:0e:5c:b3:a4:85:ae: d4:85:56:5a:87:18:b9:51:a9:0a:a4:a0:3e:d2:ca:35:98:6b: 59:5b:9f:b4:82:cb:f3:ed:59:28:02:c9:5d:e1:89:a3:e2:48: c1:d8:0a:51:5a:fc:b5:ec:70:84:de:73:5f:f0:b9:43:a7:b7: 50:e0:de:26:71:16:ce:dc:87:66:3c:e0:b7:c6:48:7f:19:a0: 8c:95:37:1b:2d:c7:ee:9c:e4:58:e5:e3:1a:b1:d2:52:16:eb: 03:1c:6d:de:68:e1:21:b8:b1:26:7b:72:c0:6d:1d:90:d1:54: 73:3e:80:69:39:36:fe:49:07:30:8b:df:3f:62:06:a5:f3:2d: cd:f0:c4:d9:47:f7:01:82:39:a4:a1:3d:6d:6e:78:18:21:24: d5:5c:53:21:17:46:34:7a:f3:9b:f8:ae:e2:23:be:5b:77:b4: 51:9e:c6:16:4a:ea:88:0c:d3:22:c4:92:df:18:07:fe:8e:2b: da:27:2b:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjQwNTE4MTc1NzUzWhcNMjQwNTI1MTc1NzUzWjAYMRYwFAYD VQQDEw02NjQ4ZWMyMS1jZGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jrx1xw5UxotkAGmn0KkA6qIl6/poxaaX7tF/MWr7c71CStLpMyiFNWKUou2 SPHSFec4JrAEhXgXrPtUFWZ1S1251FUNYSS0dOOQN1Dmv32KznlKPfBzao/jw6hZ 83tlxcuuZXc9nPq3pup2+ygz38T27mHdOyksaZNqZz3Epk/CtkoWDkKnDYws0eiI Hq0MQjyuxWSbne5gJyb0zyVE+lIeG3MaEUXhqVDEWSceFiTzDqvUE2l+EMC2kQeV SVXeuuoVOGutLUpRrcIEF8I0KYc4ym7XfMNU4ghZxLiGqmxR5sT8k54E3xrp3QB4 3GRg5yh4VT5ggVuL/jjIr9954wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOSJUYM8 MwIyq+xWeaiHHriBYXbmMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlh NVVPRmNVam1NMUw5cUV3SG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkbObc8pEZijOiAyUF+Nj8du6WWe8tpF1kKFRnuh50qv+YA2msG1aY ME4USxCxDOFPNIPk5aAF+R/4CxxVC3n6epEOXLOkha7UhVZahxi5UakKpKA+0so1 mGtZW5+0gsvz7VkoAsld4Ymj4kjB2ApRWvy17HCE3nNf8LlDp7dQ4N4mcRbO3Idm POC3xkh/GaCMlTcbLcfunORY5eMasdJSFusDHG3eaOEhuLEme3LAbR2Q0VRzPoBp OTb+SQcwi98/Ygal8y3N8MTZR/cBgjmkoT1tbngYISTVXFMhF0Y0evOb+K7iI75b d7RRnsYWSuqIDNMixJLfGAf+jivaJytZ -----END CERTIFICATE-----Generated at Sat May 18 19:15:26 2024 by rpki-client on console-ams.rpki-client.org