$ rpki-client -vvf rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft File: bu53G7POfpjbOWDE2C90Kiz36Ek.mft (raw, json) Hash identifier: uqEiZEoQNk2GxARrgpgjouopzhY0s0ApwcRWQ/tdYtw= Subject key identifier: 81:80:E6:0C:CD:02:5E:94:48:DA:62:5E:6E:D4:48:92:6D:42:EA:C7 Authority key identifier: 6E:EE:77:1B:B3:CE:7E:98:DB:39:60:C4:D8:2F:74:2A:2C:F7:E8:49 Certificate issuer: /CN=A9118827/serialNumber=6EEE771BB3CE7E98DB3960C4D82F742A2CF7E849 Certificate serial: 0417 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft Manifest number: 0414 Signing time: Fri 03 May 2024 02:11:31 +0000 Manifest this update: Fri 03 May 2024 02:11:31 +0000 Manifest next update: Fri 10 May 2024 02:11:31 +0000 Files and hashes: 1: bu53G7POfpjbOWDE2C90Kiz36Ek.crl (hash: t3yY3+gQ+/AuhMlG1l25L24u5rJI20AFrFBjO/RZA0c=) 2: 95D9A9461BEC11EC97B39812C4F9AE02.roa (hash: jcgmKmM573N2nSMJ2UoVS4CfcaD8OBHAEUhIvktJp1E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.crl rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 02:11:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1047 (0x417) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118827/serialNumber=6EEE771BB3CE7E98DB3960C4D82F742A2CF7E849 Validity Not Before: May 3 02:11:31 2024 GMT Not After : May 10 02:11:31 2024 GMT Subject: CN=663447d3-6036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:01:6f:7e:2d:6c:9f:4b:91:bc:ab:2a:c0:ab: 6d:0c:14:2e:93:98:57:32:ab:b9:6a:e0:4c:18:e9: 31:9d:93:79:c5:74:38:9c:ab:a8:4c:2c:57:ce:4a: af:96:de:1d:aa:b8:50:09:82:40:3c:c4:9a:a0:84: c6:d7:21:cc:a3:45:78:06:d8:91:04:04:7b:42:06: 25:27:f8:f7:21:b2:60:5d:59:26:09:4c:4c:bc:9c: 52:a9:07:b3:73:29:d6:ad:2a:96:5e:d2:b0:2a:50: 2f:4f:8b:98:d1:1f:23:9f:78:e4:80:fd:69:0b:95: d3:d7:8a:c5:62:46:7e:d8:34:b8:87:6d:7c:39:e6: 22:ea:8f:bc:e1:2f:5b:08:fe:58:76:63:60:6d:3d: e3:dd:3d:ba:59:b9:1e:9c:64:29:70:9c:26:c0:c1: e0:78:d7:b6:fc:a2:ef:55:66:b8:8b:69:31:9b:ab: 0a:7f:e8:74:5c:92:c9:7b:b7:de:d0:21:69:8f:8b: ff:c6:a2:8b:18:7b:e5:bd:dd:04:0c:d4:ce:87:5e: d3:0c:a8:01:29:e8:dc:4e:ca:ec:df:ec:20:75:f3: 08:52:8f:76:14:1e:8a:82:9a:4b:83:28:14:af:41: d2:47:e3:e6:4a:70:4e:30:dd:1e:25:8e:dd:f0:b2: 31:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:80:E6:0C:CD:02:5E:94:48:DA:62:5E:6E:D4:48:92:6D:42:EA:C7 X509v3 Authority Key Identifier: keyid:6E:EE:77:1B:B3:CE:7E:98:DB:39:60:C4:D8:2F:74:2A:2C:F7:E8:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:fd:09:5d:6e:84:c3:b7:da:62:fa:71:be:f9:96:82:a0:aa: 9b:46:40:53:93:50:7e:dc:27:b8:63:6e:8f:1e:db:f7:63:c8: a1:8d:91:94:56:29:71:db:d4:f9:e4:4b:ef:be:4f:8d:74:cb: 6c:28:72:60:8f:14:17:2c:7a:0b:f4:e6:5a:b9:63:c6:00:f2: e9:c5:4b:f0:3e:65:6d:4c:d4:34:71:d8:49:33:1d:1c:e7:d6: 6e:82:75:93:24:86:c6:9d:89:79:bb:9a:01:83:11:ab:bb:cf: 1e:9a:90:42:24:63:55:74:c3:a4:c7:e3:9e:0a:cd:44:b9:30: 95:ba:d0:ac:53:f6:92:90:50:d6:4f:6f:97:69:b2:d3:fc:24: 8b:b8:ff:f1:84:ed:c0:58:42:32:92:ad:04:33:d5:d5:95:d2: f8:53:53:1e:b7:0d:f4:04:47:2e:55:64:4b:b1:de:6a:72:5e: 3e:d8:fe:45:56:d6:54:f5:f1:c8:e0:3d:7f:d0:37:c5:2c:1f: d2:d6:d0:5f:80:7e:35:ac:aa:96:ab:25:5f:9b:34:1f:fd:a8: e9:3b:13:0d:d6:b6:62:cd:99:55:c3:d1:7d:89:12:e0:ea:92: a4:2b:b7:0b:aa:3a:e4:dc:52:ff:a4:18:b2:2e:33:75:1a:49: 4f:cd:ad:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg4MjcxMTAvBgNVBAUTKDZFRUU3NzFCQjNDRTdFOThEQjM5NjBDNEQ4MkY3NDJB MkNGN0U4NDkwHhcNMjQwNTAzMDIxMTMxWhcNMjQwNTEwMDIxMTMxWjAYMRYwFAYD VQQDEw02NjM0NDdkMy02MDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQFvfi1sn0uRvKsqwKttDBQuk5hXMqu5auBMGOkxnZN5xXQ4nKuoTCxXzkqv lt4dqrhQCYJAPMSaoITG1yHMo0V4BtiRBAR7QgYlJ/j3IbJgXVkmCUxMvJxSqQez cynWrSqWXtKwKlAvT4uY0R8jn3jkgP1pC5XT14rFYkZ+2DS4h218OeYi6o+84S9b CP5YdmNgbT3j3T26WbkenGQpcJwmwMHgeNe2/KLvVWa4i2kxm6sKf+h0XJLJe7fe 0CFpj4v/xqKLGHvlvd0EDNTOh17TDKgBKejcTsrs3+wgdfMIUo92FB6KgppLgygU r0HSR+PmSnBOMN0eJY7d8LIxDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIGA5gzN Al6USNpiXm7USJJtQurHMB8GA1UdIwQYMBaAFG7udxuzzn6Y2zlgxNgvdCos9+hJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODgyNy8zQzdDQjQ1MDFC RTgxMUVDQkJBNjVCNTBDNEY5QUUwMi9idTUzRzdQT2ZwamJPV0RFMkM5MEtpejM2 RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J1NTNHN1BPZnBqYk9XREUyQzkwS2l6MzZFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODgyNy8zQzdDQjQ1MDFCRTgxMUVDQkJBNjVCNTBDNEY5QUUwMi9idTUzRzdQT2Zw amJPV0RFMkM5MEtpejM2RWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA//QldboTDt9pi+nG++ZaCoKqbRkBTk1B+3Ce4Y26PHtv3Y8ihjZGU Vilx29T55Evvvk+NdMtsKHJgjxQXLHoL9OZauWPGAPLpxUvwPmVtTNQ0cdhJMx0c 59ZugnWTJIbGnYl5u5oBgxGru88empBCJGNVdMOkx+OeCs1EuTCVutCsU/aSkFDW T2+XabLT/CSLuP/xhO3AWEIykq0EM9XVldL4U1Metw30BEcuVWRLsd5qcl4+2P5F VtZU9fHI4D1/0DfFLB/S1tBfgH41rKqWqyVfmzQf/ajpOxMN1rZizZlVw9F9iRLg 6pKkK7cLqjrk3FL/pBiyLjN1GklPza31 -----END CERTIFICATE-----Generated at Fri May 3 04:45:07 2024 by rpki-client on console-fra.rpki-client.org