$ rpki-client -vvf rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft File: baLnsgc31v3aKTEYAyM4Tcf4AXI.mft (raw, json) Hash identifier: zcDwCKaDGH8GoUendNGoHCgx0jHeqXaFoW7vz0Qvm0A= Subject key identifier: F6:C4:60:DA:6B:11:78:12:AC:54:D2:89:9E:3D:D1:1C:8C:BE:85:D9 Authority key identifier: 6D:A2:E7:B2:07:37:D6:FD:DA:29:31:18:03:23:38:4D:C7:F8:01:72 Certificate issuer: /CN=A911D415/serialNumber=6DA2E7B20737D6FDDA2931180323384DC7F80172 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baLnsgc31v3aKTEYAyM4Tcf4AXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft Manifest number: 74 Signing time: Sun 19 May 2024 07:25:19 +0000 Manifest this update: Sun 19 May 2024 07:25:19 +0000 Manifest next update: Sun 26 May 2024 07:25:19 +0000 Files and hashes: 1: baLnsgc31v3aKTEYAyM4Tcf4AXI.crl (hash: Wj11TAetgEgAfMCsfHzzfcJ3RZS6JW7KvqKihjzBUHM=) 2: B2B7B96067BA11EE99370352C4F9AE02.roa (hash: AcpJuN1U3NiLfYsM4cOkk/XPKw+jAa7F52e5Au+Mf2k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.crl rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baLnsgc31v3aKTEYAyM4Tcf4AXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D415/serialNumber=6DA2E7B20737D6FDDA2931180323384DC7F80172 Validity Not Before: May 19 07:25:19 2024 GMT Not After : May 26 07:25:19 2024 GMT Subject: CN=6649a95f-66c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:94:8a:19:79:63:5a:1d:4a:21:10:2b:d5:91: a2:a5:7d:0b:66:ec:0a:fc:b4:4a:45:a1:03:bd:2d: 01:78:4b:39:04:ab:ae:fa:06:d3:43:d1:2b:0a:e1: f8:73:49:4b:24:11:6b:b0:c8:20:79:c1:db:f8:60: d0:e7:55:bb:93:d7:32:9d:f1:8f:f0:3c:cb:96:52: af:f3:40:a9:b4:29:77:ed:23:3e:b6:16:df:f0:78: 01:42:da:c7:a2:81:25:2e:9a:1f:75:18:42:b1:35: a9:85:fe:27:a3:dc:49:2c:ca:41:24:41:2f:db:18: 81:2c:87:93:cf:3c:da:5a:26:ad:8e:80:b7:3b:d0: 71:26:23:cf:01:ff:85:a8:de:e4:a6:89:44:f7:6e: 23:62:b3:70:7e:8e:ff:00:a5:79:d5:97:f1:fe:98: af:8c:32:5a:8a:12:cd:f4:92:2e:bb:1f:52:68:64: c9:9f:4a:49:ee:8f:c5:14:4d:b0:67:20:98:15:be: 3f:fe:c3:94:8e:2e:96:06:2f:5d:18:00:ab:b6:54: 19:ff:20:64:56:09:13:86:c3:5e:79:65:a8:40:d3: 1f:b7:ab:13:4d:6d:23:17:bd:91:98:07:98:18:3a: b8:03:66:79:8e:ff:c3:b3:f0:23:a4:52:b0:c1:17: 7a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:C4:60:DA:6B:11:78:12:AC:54:D2:89:9E:3D:D1:1C:8C:BE:85:D9 X509v3 Authority Key Identifier: keyid:6D:A2:E7:B2:07:37:D6:FD:DA:29:31:18:03:23:38:4D:C7:F8:01:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baLnsgc31v3aKTEYAyM4Tcf4AXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:58:22:9c:e1:f5:84:39:e6:32:45:cf:b5:62:ce:d1:5d:50: 9d:e8:d1:85:bb:23:b4:7b:fe:2d:84:21:33:76:25:9c:3a:05: 4d:52:e2:0c:3c:34:9e:06:86:e2:8a:55:86:c2:9b:1c:f0:05: c9:3a:4f:4f:3f:43:f8:ed:c6:15:92:79:9b:99:32:f0:68:31: 78:14:5c:76:6c:b3:94:f9:26:22:f0:a5:e2:f6:d1:b8:5c:2e: 54:92:5c:d8:35:ff:97:7a:71:e5:60:a1:76:f0:a9:85:63:bb: 10:0b:42:cf:25:ca:f5:0f:22:27:40:07:53:fa:eb:d1:a5:40: 1b:2b:49:42:41:dc:51:5f:e8:15:18:ab:dc:1f:74:7d:3e:2c: 45:be:0f:27:22:5c:a8:a3:b2:e8:a5:17:db:a5:38:18:6f:64: cc:d7:5b:4b:96:33:f0:16:42:5c:4a:09:71:e8:6d:27:19:ac: 2d:20:15:a4:be:e0:28:46:05:65:40:9b:67:be:1b:c0:1f:98: 92:a5:1e:ec:46:ec:ed:ac:11:d9:f4:88:64:99:72:fe:69:80: fc:37:dd:25:d1:d0:a1:e9:54:48:89:58:99:d6:4d:b4:83:b6: 6e:ad:32:ed:74:54:34:5c:ce:e2:29:8a:27:b1:b1:9d:70:54: d9:63:24:05 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RDQxNTExMC8GA1UEBRMoNkRBMkU3QjIwNzM3RDZGRERBMjkzMTE4MDMyMzM4NERD N0Y4MDE3MjAeFw0yNDA1MTkwNzI1MTlaFw0yNDA1MjYwNzI1MTlaMBgxFjAUBgNV BAMTDTY2NDlhOTVmLTY2YzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCulIoZeWNaHUohECvVkaKlfQtm7Ar8tEpFoQO9LQF4SzkEq676BtND0SsK4fhz SUskEWuwyCB5wdv4YNDnVbuT1zKd8Y/wPMuWUq/zQKm0KXftIz62Ft/weAFC2sei gSUumh91GEKxNamF/iej3EksykEkQS/bGIEsh5PPPNpaJq2OgLc70HEmI88B/4Wo 3uSmiUT3biNis3B+jv8ApXnVl/H+mK+MMlqKEs30ki67H1JoZMmfSknuj8UUTbBn IJgVvj/+w5SOLpYGL10YAKu2VBn/IGRWCROGw155ZahA0x+3qxNNbSMXvZGYB5gY OrgDZnmO/8Oz8COkUrDBF3r5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9sRg2msR eBKsVNKJnj3RHIy+hdkwHwYDVR0jBBgwFoAUbaLnsgc31v3aKTEYAyM4Tcf4AXIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFENDE1LzY0Qjc3NjJFNjdC QTExRUVBOTEyREUzN0M0RjlBRTAyL2JhTG5zZ2MzMXYzYUtURVlBeU00VGNmNEFY SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYmFMbnNnYzMxdjNhS1RFWUF5TTRUY2Y0QVhJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFE NDE1LzY0Qjc3NjJFNjdCQTExRUVBOTEyREUzN0M0RjlBRTAyL2JhTG5zZ2MzMXYz YUtURVlBeU00VGNmNEFYSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALpYIpzh9YQ55jJFz7ViztFdUJ3o0YW7I7R7/i2EITN2JZw6BU1S4gw8 NJ4GhuKKVYbCmxzwBck6T08/Q/jtxhWSeZuZMvBoMXgUXHZss5T5JiLwpeL20bhc LlSSXNg1/5d6ceVgoXbwqYVjuxALQs8lyvUPIidAB1P669GlQBsrSUJB3FFf6BUY q9wfdH0+LEW+DyciXKijsuilF9ulOBhvZMzXW0uWM/AWQlxKCXHobScZrC0gFaS+ 4ChGBWVAm2e+G8AfmJKlHuxG7O2sEdn0iGSZcv5pgPw33SXR0KHpVEiJWJnWTbSD tm6tMu10VDRczuIpiiexsZ1wVNljJAU= -----END CERTIFICATE-----Generated at Sun May 19 08:24:57 2024 by rpki-client on console-ams.rpki-client.org