$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft File: bX2AV2xLO-av9DH40yM49x_fAd0.mft (raw, json) Hash identifier: 17u0SRDBkKTcnKQKRr20AKu0Ycq3qqQN+6U87i/aYkU= Subject key identifier: 18:7F:2E:53:93:68:80:AC:9F:83:B5:FB:AF:95:EB:E1:0B:45:15:3A Authority key identifier: 6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD Certificate issuer: /CN=A91FC1B8/serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Certificate serial: 0DD2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft Manifest number: 0DCC Signing time: Sat 18 May 2024 18:29:20 +0000 Manifest this update: Sat 18 May 2024 18:29:20 +0000 Manifest next update: Sat 25 May 2024 18:29:20 +0000 Files and hashes: 1: bX2AV2xLO-av9DH40yM49x_fAd0.crl (hash: tl0e0YclsRC1/Y7ElMmh0/CaNGPXjj87RuBq0EaXuYY=) 2: 4E150C0890FD11E98DB54881C4F9AE02.roa (hash: DXd0O/8ls5ANNeC6x8yGV0fTxj5dRHnm9itNt6T5fvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3538 (0xdd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1B8/serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Validity Not Before: May 18 18:29:20 2024 GMT Not After : May 25 18:29:20 2024 GMT Subject: CN=6648f380-a86c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:10:62:4d:cc:70:d8:d6:3f:fb:3b:ef:dd:c4: d6:2c:78:6d:82:27:5b:0e:2f:8a:73:cd:b7:db:ca: 6d:54:46:90:7b:b2:f5:41:3d:51:17:25:48:62:a6: cc:1b:db:75:ac:d0:98:98:e1:9d:e6:34:ed:dd:4e: df:a5:c0:80:cc:55:49:f8:2d:c2:f3:7a:1a:d6:c2: 09:2b:3e:0c:44:b0:04:9e:cf:69:30:82:f9:99:89: 5c:69:dc:9f:29:70:f7:b7:18:8c:af:aa:8a:5e:39: 74:c0:85:93:30:a9:c2:16:e2:16:9a:69:b8:a2:d9: 28:e4:0d:b0:41:c3:64:48:59:a1:c1:f5:e3:94:ea: 6a:3b:c8:b8:2e:68:40:20:7e:1e:c7:01:55:55:60: 33:60:31:78:fc:d9:10:e9:2a:7a:2c:fc:01:2f:10: 14:15:4e:d0:f0:dc:50:bb:af:df:7f:c4:04:41:48: cd:ad:d5:b8:44:00:77:35:4e:2a:56:26:03:6b:07: b3:f0:0f:9d:88:b7:7f:4c:54:1c:a3:07:0e:dc:d6: 4d:53:31:c5:53:57:c7:89:58:99:50:45:38:b1:44: f4:37:34:7c:4e:2a:7c:75:53:45:a3:81:4b:a3:e3: 4a:1b:d8:e9:20:d4:83:12:cc:11:a5:41:1b:cd:61: e0:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:7F:2E:53:93:68:80:AC:9F:83:B5:FB:AF:95:EB:E1:0B:45:15:3A X509v3 Authority Key Identifier: keyid:6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:0d:f2:c8:65:55:83:37:4f:2f:85:e1:62:13:c0:bd:75:6a: b8:00:61:22:fc:cb:d0:49:f9:a2:eb:06:26:cd:cf:c1:97:85: cd:e3:46:ec:a2:8a:85:ff:42:08:ff:6a:d7:45:59:d1:29:3f: 39:71:1b:fb:1c:49:e4:4c:76:5d:4d:66:70:53:af:ba:bb:71: e5:69:7f:5e:c0:00:69:1c:51:11:1f:8f:00:e0:13:8b:09:7c: 89:6c:45:34:fd:8e:8a:f2:81:5f:9b:7f:a3:95:82:bc:3b:63: da:f8:6b:6d:31:b7:43:e1:b5:1e:af:e8:ad:c6:9f:5d:3c:6b: bb:cc:9d:f6:f3:86:93:ee:9e:12:a1:f5:4e:96:c2:a9:b5:ea: c6:57:63:98:73:5b:98:1b:b9:c7:95:d9:d7:8b:3a:5f:ca:33: c6:7f:01:33:88:b1:a8:00:98:b3:d9:04:0f:b6:ff:40:dd:c6: 7d:81:90:ca:7f:df:79:22:50:a2:5c:e3:7e:fd:3b:40:9a:ff: 40:06:a2:ea:3d:3e:2f:bd:cf:cc:1c:c9:08:0b:73:63:ed:60: 81:91:95:8f:25:9f:f5:be:a5:d7:9e:3e:b7:34:68:69:8c:79: f5:2c:57:62:d3:7d:33:9e:a5:b0:6c:ca:f0:31:69:0d:fe:21: ac:11:70:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxQjgxMTAvBgNVBAUTKDZEN0Q4MDU3NkM0QjNCRTZBRkY0MzFGOEQzMjMzOEY3 MUZERjAxREQwHhcNMjQwNTE4MTgyOTIwWhcNMjQwNTI1MTgyOTIwWjAYMRYwFAYD VQQDEw02NjQ4ZjM4MC1hODZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRBiTcxw2NY/+zvv3cTWLHhtgidbDi+Kc82328ptVEaQe7L1QT1RFyVIYqbM G9t1rNCYmOGd5jTt3U7fpcCAzFVJ+C3C83oa1sIJKz4MRLAEns9pMIL5mYlcadyf KXD3txiMr6qKXjl0wIWTMKnCFuIWmmm4otko5A2wQcNkSFmhwfXjlOpqO8i4LmhA IH4exwFVVWAzYDF4/NkQ6Sp6LPwBLxAUFU7Q8NxQu6/ff8QEQUjNrdW4RAB3NU4q ViYDawez8A+diLd/TFQcowcO3NZNUzHFU1fHiViZUEU4sUT0NzR8Tip8dVNFo4FL o+NKG9jpINSDEswRpUEbzWHgowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBh/LlOT aICsn4O1+6+V6+ELRRU6MB8GA1UdIwQYMBaAFG19gFdsSzvmr/Qx+NMjOPcf3wHd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFCOC9GQkRFOTlGQTkw RkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8tYXY5REg0MHlNNDl4X2ZB ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYMkFWMnhMTy1hdjlESDQweU00OXhfZkFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFCOC9GQkRFOTlGQTkwRkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8t YXY5REg0MHlNNDl4X2ZBZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUDfLIZVWDN08vheFiE8C9dWq4AGEi/MvQSfmi6wYmzc/Bl4XN40bs ooqF/0II/2rXRVnRKT85cRv7HEnkTHZdTWZwU6+6u3HlaX9ewABpHFERH48A4BOL CXyJbEU0/Y6K8oFfm3+jlYK8O2Pa+GttMbdD4bUer+itxp9dPGu7zJ3284aT7p4S ofVOlsKpterGV2OYc1uYG7nHldnXizpfyjPGfwEziLGoAJiz2QQPtv9A3cZ9gZDK f995IlCiXON+/TtAmv9ABqLqPT4vvc/MHMkIC3Nj7WCBkZWPJZ/1vqXXnj63NGhp jHn1LFdi030znqWwbMrwMWkN/iGsEXCo -----END CERTIFICATE-----Generated at Sat May 18 19:21:05 2024 by rpki-client on console-fra.rpki-client.org