$ rpki-client -vvf rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft File: BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft (raw, json) Hash identifier: cpymJywDHQOTe5uIdES2wvYBQcr36Rb/S/nrMH+Fw5c= Subject key identifier: 16:61:16:37:15:A3:A3:9A:E2:CA:32:0F:13:E2:78:21:72:F8:6C:93 Authority key identifier: 04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D Certificate issuer: /CN=A91238EC/serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Certificate serial: 167C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft Manifest number: 1662 Signing time: Sat 04 May 2024 17:17:01 +0000 Manifest this update: Sat 04 May 2024 17:17:00 +0000 Manifest next update: Sat 11 May 2024 17:17:00 +0000 Files and hashes: 1: BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl (hash: YyKevBikpFNpI1L1wEDV5t94x3S2ayDlPsr13WOK7f8=) 2: 2F9D268C76B211ECABA1A612C4F9AE02.roa (hash: G60xcvS2Pyu4NkNwFSM5MoKiZ33tU2Bz3RM2bfV5OH0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5756 (0x167c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238EC/serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Validity Not Before: May 4 17:17:00 2024 GMT Not After : May 11 17:17:00 2024 GMT Subject: CN=66366d8d-f045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:05:e3:d2:bd:34:d5:5f:94:b5:62:47:03:be: 8f:04:ed:21:d9:4c:d0:90:e8:88:ce:8d:f9:d4:e5: 80:b2:e4:8d:e2:6e:b0:14:d3:7d:07:66:00:27:43: cf:41:7e:bf:73:8a:1e:76:fc:24:05:d1:0a:5f:8c: dd:89:3e:2a:69:da:92:ee:08:ef:cd:86:68:d8:57: 6c:99:cd:c9:49:b7:15:58:10:9f:ac:a9:47:27:15: e6:81:33:92:63:f7:c4:88:ba:be:4e:b9:f6:c2:78: 39:3e:78:4f:ad:f3:06:83:40:df:f0:01:3e:37:cb: 5a:13:45:28:e9:fb:be:59:31:75:be:44:15:74:a3: f1:da:39:3e:99:3f:32:c7:90:95:2e:eb:01:f6:39: ca:76:1f:0c:57:8c:01:5f:79:1b:f6:6e:f7:3b:a7: 2e:a7:ad:73:75:fe:5c:b6:44:c1:c9:b4:d7:ae:52: 7c:43:7e:85:d5:64:cb:7d:c5:e0:c0:8e:fd:25:e6: 3e:2a:9d:73:dc:4b:67:dd:0d:4e:79:ca:d3:07:e4: 73:b6:c1:ff:8b:e9:5c:aa:82:35:29:95:01:25:d2: 88:67:a6:df:5d:57:d9:fa:df:e7:3f:f4:1f:f1:53: 0c:c2:c5:e7:8f:b2:5b:be:9d:70:df:b7:62:98:35: 07:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:61:16:37:15:A3:A3:9A:E2:CA:32:0F:13:E2:78:21:72:F8:6C:93 X509v3 Authority Key Identifier: keyid:04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:41:f5:a0:3d:ee:97:d1:1a:a0:31:f5:cf:e5:db:98:9e:bf: dd:60:a0:2c:97:25:a0:fe:90:51:ed:62:68:32:a4:87:f0:68: 0f:09:a2:04:5c:b0:a9:65:66:c5:58:32:aa:ad:c7:05:a5:37: 44:66:7d:84:78:e5:c0:db:2c:00:17:76:0d:7e:b3:9e:bb:9d: 3f:b1:ea:43:74:c1:43:c5:8d:3f:7c:46:1c:d8:e2:fd:0d:3d: ec:5d:0a:d6:c6:49:62:96:bf:36:89:57:df:93:0c:1b:5e:7a: eb:7a:7b:78:29:a1:22:cb:07:94:da:e5:a3:30:9d:cd:0b:e7: 94:2e:cc:be:5d:a6:4d:8d:68:60:11:6c:5d:d2:5b:84:56:9e: f5:da:41:57:e9:3b:99:46:27:26:fe:43:c5:3c:ba:e5:cd:85: 19:f3:2f:25:85:9c:41:4b:ed:99:0c:1b:a8:93:e5:a5:27:99: 44:1e:06:d9:16:1f:93:20:fc:eb:f6:9e:9d:11:4d:d8:7d:e4: 19:95:6b:00:4b:37:54:ab:67:32:bf:3d:f1:26:90:55:a8:36: 7b:9c:c2:4a:11:c9:88:68:ca:08:ea:1a:06:4f:51:31:eb:d9: a6:a6:d1:6c:74:31:26:9a:be:b3:bb:0b:63:4b:61:c9:6e:c7: b6:99:ee:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RUMxMTAvBgNVBAUTKDA0ODMyRkJFNzBDN0I4ODU5Q0ExQTBFM0UwNUEyOTZC QjA5QzVEM0QwHhcNMjQwNTA0MTcxNzAwWhcNMjQwNTExMTcxNzAwWjAYMRYwFAYD VQQDEw02NjM2NmQ4ZC1mMDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAXj0r001V+UtWJHA76PBO0h2UzQkOiIzo351OWAsuSN4m6wFNN9B2YAJ0PP QX6/c4oedvwkBdEKX4zdiT4qadqS7gjvzYZo2Fdsmc3JSbcVWBCfrKlHJxXmgTOS Y/fEiLq+Trn2wng5PnhPrfMGg0Df8AE+N8taE0Uo6fu+WTF1vkQVdKPx2jk+mT8y x5CVLusB9jnKdh8MV4wBX3kb9m73O6cup61zdf5ctkTBybTXrlJ8Q36F1WTLfcXg wI79JeY+Kp1z3Etn3Q1OecrTB+RztsH/i+lcqoI1KZUBJdKIZ6bfXVfZ+t/nP/Qf 8VMMwsXnj7Jbvp1w37dimDUHAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZhFjcV o6Oa4soyDxPieCFy+GyTMB8GA1UdIwQYMBaAFASDL75wx7iFnKGg4+BaKWuwnF09 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhFQy82MUQ0RjQ4QUUz RTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJV2NvYURqNEZvcGE3Q2NY VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJTXZ2bkRIdUlXY29hRGo0Rm9wYTdDY1hUMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhFQy82MUQ0RjQ4QUUzRTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJ V2NvYURqNEZvcGE3Q2NYVDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEQfWgPe6X0RqgMfXP5duYnr/dYKAslyWg/pBR7WJoMqSH8GgPCaIE XLCpZWbFWDKqrccFpTdEZn2EeOXA2ywAF3YNfrOeu50/sepDdMFDxY0/fEYc2OL9 DT3sXQrWxklilr82iVffkwwbXnrrent4KaEiyweU2uWjMJ3NC+eULsy+XaZNjWhg EWxd0luEVp712kFX6TuZRicm/kPFPLrlzYUZ8y8lhZxBS+2ZDBuok+WlJ5lEHgbZ Fh+TIPzr9p6dEU3YfeQZlWsASzdUq2cyvz3xJpBVqDZ7nMJKEcmIaMoI6hoGT1Ex 69mmptFsdDEmmr6zuwtjS2HJbse2me7l -----END CERTIFICATE-----Generated at Sat May 4 18:00:10 2024 by rpki-client on console-fra.rpki-client.org