$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft File: 1bScAI9ih18VJth200lAoJsOnW0.mft (raw, json) Hash identifier: 45EG7oErRr3Fmy/iAXp8pkng6DvS/+vnxA/qIxn2F7c= Subject key identifier: B6:2A:EA:96:6B:FC:F7:60:99:24:6F:30:86:F5:F8:53:78:6E:B9:18 Authority key identifier: D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D Certificate issuer: /CN=A91FB434/serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Certificate serial: 1488 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft Manifest number: 1478 Signing time: Sat 18 May 2024 17:22:24 +0000 Manifest this update: Sat 18 May 2024 17:22:23 +0000 Manifest next update: Sat 25 May 2024 17:22:23 +0000 Files and hashes: 1: 1bScAI9ih18VJth200lAoJsOnW0.crl (hash: fbcS5dR4YRXjdoFdFBy8jN+8oeMXz31osU0X6gSOIQM=) 2: EC796D6C42D411E88EC29742C4F9AE02.roa (hash: QcJwZsxOOW/giRj6fCXssQq8Q4n5pmRBY6QBDBWh33U=) 3: EB843B92329A11EE89CD8544C4F9AE02.roa (hash: EeBj/QLwHftICai3WC2zKfjFVyoaxfjLPzo135go18g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5256 (0x1488) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB434/serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Validity Not Before: May 18 17:22:23 2024 GMT Not After : May 25 17:22:23 2024 GMT Subject: CN=6648e3d0-e58a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:c3:c1:b9:3f:54:0f:af:8b:c2:c6:3c:1a:b8: db:1a:72:9d:ba:40:3b:fe:7f:e1:54:8d:bd:c2:05: 62:21:1d:48:c1:b2:b4:b9:8c:4a:6d:8c:1e:5e:70: 2c:19:0c:be:f9:e4:55:30:eb:0b:d2:91:a3:7c:3b: bd:8a:ac:a1:68:12:65:b9:15:24:44:a6:52:86:93: 2d:05:8f:94:47:25:11:5e:6b:d0:da:d2:62:2b:c2: 9a:6a:6c:62:68:cc:d6:d6:a2:da:b0:63:2d:08:a4: 2c:b9:90:17:11:82:3f:f9:20:1f:1d:9c:12:90:14: ce:2e:e0:29:e0:8a:30:43:a2:51:6c:03:f9:ae:20: dd:2e:8b:c4:5a:a7:fa:4f:23:d9:dd:eb:ea:fc:8c: 57:68:98:48:f3:04:b1:90:f3:48:fd:1d:da:71:fa: 1f:f2:df:9a:61:84:89:ac:db:93:cb:66:09:0a:26: ef:33:32:ae:27:ba:97:fe:24:44:69:32:f2:f7:86: 1e:d7:a5:48:84:89:17:ab:16:50:a9:42:cf:7a:f7: 60:89:81:1e:fa:a6:87:78:0b:e8:71:d2:5e:bf:eb: 35:f9:4a:f9:4b:3d:40:1c:6e:3b:7d:76:ff:83:4f: be:1c:ff:7a:77:74:82:4d:06:28:71:33:d4:70:8f: 57:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:2A:EA:96:6B:FC:F7:60:99:24:6F:30:86:F5:F8:53:78:6E:B9:18 X509v3 Authority Key Identifier: keyid:D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:68:58:05:fc:73:cf:84:1e:82:3a:21:71:5a:25:f3:66:68: dc:c6:64:c9:20:05:d5:af:68:de:4c:b3:2e:12:e7:b1:d6:46: e8:d2:bb:87:3e:65:02:32:2e:22:f7:e8:c8:f1:dc:ff:02:a3: 47:12:8a:6b:ff:7f:6b:35:14:35:43:fc:79:f8:74:c9:1c:1e: 75:bb:1e:99:6c:21:f1:44:b3:87:12:39:d3:1a:06:98:f9:36: 3b:f5:0d:eb:e8:ac:96:5c:9d:cb:6c:04:8e:d3:9f:9b:20:5d: 75:d2:b6:38:3b:33:a7:d1:38:12:89:f9:94:1f:2f:67:01:c4: d8:28:66:e0:8e:93:40:cc:3c:5f:d4:97:f0:18:7f:c4:3b:2e: 92:25:dd:54:fc:69:f9:e0:28:da:d1:d3:df:b6:19:b5:e0:5d: 3c:b8:2d:b6:03:45:b8:59:24:71:a5:f9:f5:b6:7c:d0:f2:01: d3:2e:5f:2e:8f:02:c1:a7:5b:29:3a:5e:ab:6d:06:7d:f2:b6: 16:ab:3b:1e:07:34:e6:86:cb:8e:d8:bb:67:b8:3e:9a:e8:e6: 73:b9:a4:b1:bc:83:ab:a7:02:2a:f5:ba:a6:a0:bc:bb:98:34: 0d:95:92:f0:f8:a6:30:67:b9:6b:f2:e7:b1:c5:e5:4d:f6:c2: b0:85:5a:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI0MzQxMTAvBgNVBAUTKEQ1QjQ5QzAwOEY2Mjg3NUYxNTI2RDg3NkQzNDk0MEEw OUIwRTlENkQwHhcNMjQwNTE4MTcyMjIzWhcNMjQwNTI1MTcyMjIzWjAYMRYwFAYD VQQDEw02NjQ4ZTNkMC1lNThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA78PBuT9UD6+LwsY8GrjbGnKdukA7/n/hVI29wgViIR1IwbK0uYxKbYweXnAs GQy++eRVMOsL0pGjfDu9iqyhaBJluRUkRKZShpMtBY+URyURXmvQ2tJiK8Kaamxi aMzW1qLasGMtCKQsuZAXEYI/+SAfHZwSkBTOLuAp4IowQ6JRbAP5riDdLovEWqf6 TyPZ3evq/IxXaJhI8wSxkPNI/R3acfof8t+aYYSJrNuTy2YJCibvMzKuJ7qX/iRE aTLy94Ye16VIhIkXqxZQqULPevdgiYEe+qaHeAvocdJev+s1+Ur5Sz1AHG47fXb/ g0++HP96d3SCTQYocTPUcI9XLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLYq6pZr /PdgmSRvMIb1+FN4brkYMB8GA1UdIwQYMBaAFNW0nACPYodfFSbYdtNJQKCbDp1t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjQzNC9FMkM2MjY3NjQy RDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgxOFZKdGgyMDBsQW9Kc09u VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFiU2NBSTlpaDE4Vkp0aDIwMGxBb0pzT25XMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjQzNC9FMkM2MjY3NjQyRDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgx OFZKdGgyMDBsQW9Kc09uVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAaFgF/HPPhB6COiFxWiXzZmjcxmTJIAXVr2jeTLMuEuex1kbo0ruH PmUCMi4i9+jI8dz/AqNHEopr/39rNRQ1Q/x5+HTJHB51ux6ZbCHxRLOHEjnTGgaY +TY79Q3r6KyWXJ3LbASO05+bIF110rY4OzOn0TgSifmUHy9nAcTYKGbgjpNAzDxf 1JfwGH/EOy6SJd1U/Gn54Cja0dPfthm14F08uC22A0W4WSRxpfn1tnzQ8gHTLl8u jwLBp1spOl6rbQZ98rYWqzseBzTmhsuO2LtnuD6a6OZzuaSxvIOrpwIq9bqmoLy7 mDQNlZLw+KYwZ7lr8uexxeVN9sKwhVpf -----END CERTIFICATE-----Generated at Sat May 18 18:21:40 2024 by rpki-client on console-ams.rpki-client.org