$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft File: bwlMAO-I_YtwgT1trctUaHYyjNk.mft (raw, json) Hash identifier: RYb7febVWccfk4uRIGKYpKBWnBKljbE/KqfQLBWARyU= Subject key identifier: 40:F1:6F:4D:B2:A2:A9:41:39:03:CA:54:D5:9A:27:A1:79:FF:4E:21 Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 20B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft Manifest number: 2CE0 Signing time: Thu 30 May 2024 15:54:59 +0000 Manifest this update: Thu 30 May 2024 15:54:59 +0000 Manifest next update: Thu 06 Jun 2024 15:54:59 +0000 Files and hashes: 1: bwlMAO-I_YtwgT1trctUaHYyjNk.crl (hash: yMf/dK3gy+o5YhdE0VgCli0kda+uD3vlMtMTsD/jbcE=) 2: 85D25098E00111E596BC7D1BC4F9AE02.roa (hash: Vr232pRpa36clyG9MJfQ3Kt0Q3MCF1mWYWlUSKtDj8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 15:54:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8371 (0x20b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: May 30 15:54:59 2024 GMT Not After : Jun 6 15:54:59 2024 GMT Subject: CN=6658a153-e8f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:c1:98:22:b3:f8:31:99:ed:29:ba:c7:b8:a4: 61:7f:17:8f:d4:4c:0a:11:53:37:f6:e0:d9:89:74: 2c:ce:32:e3:40:92:c1:d9:87:4d:9c:77:b4:cc:c6: 50:6d:55:1e:25:56:59:a2:10:0c:0a:62:97:d5:91: d1:46:9c:96:d3:da:97:6c:a6:3d:a7:f5:e4:87:f9: 03:1c:8c:e3:dd:a4:8f:ac:d2:3a:3d:81:1d:f5:ca: 45:10:e7:7b:c2:80:2a:a3:c4:5d:dd:fb:11:20:76: d3:39:5d:6e:22:fa:23:92:3b:02:dc:be:9e:fe:e9: 07:02:c5:c1:56:3d:da:29:24:1f:a2:37:02:03:6a: f7:65:08:80:c6:b5:c5:93:2a:19:70:8c:6f:81:88: 75:2e:cd:05:be:b2:28:11:f9:6b:5e:dc:a0:7f:5d: 1c:96:57:08:39:58:7c:9e:73:c6:73:29:34:5e:ae: a0:1c:6f:7f:bc:75:54:1f:5f:5e:cb:63:53:da:2b: 88:c2:de:85:48:9d:60:82:fb:09:ce:b7:c6:77:fd: 90:2f:c3:79:f7:0c:a5:11:6d:63:27:79:e1:83:b5: c1:82:24:8d:74:e4:dc:46:13:8d:1a:99:7d:c3:ff: f2:9a:3c:39:73:a0:db:6e:45:56:52:30:03:35:c0: 6c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:F1:6F:4D:B2:A2:A9:41:39:03:CA:54:D5:9A:27:A1:79:FF:4E:21 X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:0f:9d:01:39:37:90:83:f9:9c:75:13:45:dc:b2:6b:46:12: a1:10:68:c8:85:b3:69:68:22:7a:fc:12:be:91:09:24:5a:e6: b5:48:8c:26:b0:68:b6:69:4e:af:3d:7e:65:24:49:c2:34:4a: e4:7d:7e:af:46:d0:25:4b:84:4b:fa:f8:44:f5:8e:14:64:c9: e1:13:4e:99:d5:23:7e:9b:3c:a7:c7:ea:22:d8:25:3f:d7:7d: bc:84:b3:ee:12:ad:b3:dd:84:44:f6:d3:3f:d9:7b:43:2d:a2: b5:46:cf:b9:ee:d2:ca:38:20:7d:64:be:18:1d:8d:b0:f6:9e: 66:49:16:70:18:48:20:fa:01:ec:85:e1:5e:54:f0:88:e8:c8: b1:f9:6d:16:7f:fb:4c:c8:66:76:11:9f:d3:7a:2d:93:43:de: 87:c2:e7:99:3f:2b:2b:f8:37:aa:ed:bc:22:36:a0:ff:a2:73: 8c:8d:88:1f:e2:e5:e4:5a:ed:db:d4:d3:aa:20:63:8f:0f:e1: 37:9d:e2:1f:14:dd:8e:32:0d:1b:12:31:20:a1:00:5a:6a:da: 66:fb:79:86:35:32:ba:0d:da:02:d5:86:23:7b:07:36:f5:e8: 04:d2:b3:8b:bb:d8:f6:ef:66:f9:6d:58:00:a0:18:57:19:23: f0:e1:3d:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICILMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjQwNTMwMTU1NDU5WhcNMjQwNjA2MTU1NDU5WjAYMRYwFAYD VQQDEw02NjU4YTE1My1lOGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5MGYIrP4MZntKbrHuKRhfxeP1EwKEVM39uDZiXQszjLjQJLB2YdNnHe0zMZQ bVUeJVZZohAMCmKX1ZHRRpyW09qXbKY9p/Xkh/kDHIzj3aSPrNI6PYEd9cpFEOd7 woAqo8Rd3fsRIHbTOV1uIvojkjsC3L6e/ukHAsXBVj3aKSQfojcCA2r3ZQiAxrXF kyoZcIxvgYh1Ls0FvrIoEflrXtygf10cllcIOVh8nnPGcyk0Xq6gHG9/vHVUH19e y2NT2iuIwt6FSJ1ggvsJzrfGd/2QL8N59wylEW1jJ3nhg7XBgiSNdOTcRhONGpl9 w//ymjw5c6DbbkVWUjADNcBsRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEDxb02y oqlBOQPKVNWaJ6F5/04hMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUyNS9GNDM0NDExNjhBMkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9Z dHdnVDF0cmN0VWFIWXlqTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcD50BOTeQg/mcdRNF3LJrRhKhEGjIhbNpaCJ6/BK+kQkkWua1SIwm sGi2aU6vPX5lJEnCNErkfX6vRtAlS4RL+vhE9Y4UZMnhE06Z1SN+mzynx+oi2CU/ 1328hLPuEq2z3YRE9tM/2XtDLaK1Rs+57tLKOCB9ZL4YHY2w9p5mSRZwGEgg+gHs heFeVPCI6Mix+W0Wf/tMyGZ2EZ/Tei2TQ96HwueZPysr+Deq7bwiNqD/onOMjYgf 4uXkWu3b1NOqIGOPD+E3neIfFN2OMg0bEjEgoQBaatpm+3mGNTK6DdoC1YYjewc2 9egE0rOLu9j272b5bVgAoBhXGSPw4T1T -----END CERTIFICATE-----Generated at Thu May 30 18:33:38 2024 by rpki-client on console-fra.rpki-client.org