$ rpki-client -vvf rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft File: bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft (raw, json) Hash identifier: S1OZvS6wsIHpByfEiXQjk3+AWIffkIz7PT8QxBs3Lsk= Subject key identifier: BA:EB:46:7D:8E:AC:F8:81:AC:64:FF:18:47:49:30:5B:3A:3E:AA:EC Authority key identifier: 6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 Certificate issuer: /CN=A91240E6/serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Certificate serial: 2576 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft Manifest number: 2560 Signing time: Fri 26 Jul 2024 16:02:17 +0000 Manifest this update: Fri 26 Jul 2024 16:02:17 +0000 Manifest next update: Fri 02 Aug 2024 16:02:17 +0000 Files and hashes: 1: bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl (hash: 5T+BhZTXF2//jmVR2RknvdLMIhp4xf2M/4SyjNeneGc=) 2: 8A721F4EB10C11E5BB6B2A16C4F9AE02.roa (hash: zjFPN9IlvbUvgrK4TiEnI3P674oOFqbeO/VgwKwjEUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Aug 2024 15:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9590 (0x2576) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91240E6/serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Validity Not Before: Jul 26 16:02:17 2024 GMT Not After : Aug 2 16:02:17 2024 GMT Subject: CN=66a3c889-7dbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:08:ad:db:f3:9f:c2:88:32:64:11:c3:8c:5d: 1b:4c:d1:f9:b6:b1:04:08:23:b0:d5:01:4d:5f:d8: 8a:3c:a2:25:19:25:b6:eb:88:4c:2c:dd:81:7c:43: d7:1a:63:83:49:88:0f:9a:c0:ce:ee:6e:f6:0b:60: d7:50:a6:06:0a:d3:17:3f:08:23:ce:58:7f:c8:9b: da:e6:df:f3:5e:d3:35:8b:b9:be:8e:92:5c:cf:02: be:85:fa:74:59:c6:f6:29:8f:ce:4d:1d:8d:97:6b: d3:59:ea:14:73:15:89:77:0c:90:bd:ec:28:06:fc: 4a:a6:fd:be:d9:29:5c:92:d2:46:93:aa:e3:71:c5: 83:4e:1c:27:81:58:0d:7a:35:b5:82:ad:4c:87:43: ad:f6:1e:54:17:8f:af:bd:c0:09:80:9f:fd:0b:fb: 1c:44:ee:b1:9b:b5:aa:bd:44:42:39:5c:ec:25:5b: 12:e7:43:af:cc:21:3e:d5:c2:25:14:3b:8c:12:85: 9c:41:2b:88:5c:ea:20:e9:ae:a7:be:06:9d:ca:9d: cd:dc:e3:ac:1c:e9:18:14:68:79:76:70:cf:e4:50: 0f:c8:15:2a:4f:54:20:3d:76:c8:92:a5:fb:69:89: b1:86:4e:e5:c1:ba:27:9e:05:c6:40:95:87:8f:5f: 9a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:EB:46:7D:8E:AC:F8:81:AC:64:FF:18:47:49:30:5B:3A:3E:AA:EC X509v3 Authority Key Identifier: keyid:6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:00:0e:56:aa:79:82:7b:36:3a:36:b3:7d:28:6f:56:e1:b0: 2f:71:c8:52:2d:1c:ee:39:ca:f2:4c:30:62:bd:ae:af:51:34: 5d:31:f0:cd:1b:4f:9b:90:d5:51:fe:d5:38:ff:c0:13:45:c4: 78:32:85:ff:e6:e2:bc:87:6a:d6:d0:3f:2f:f4:d1:16:4e:9c: cb:4b:5b:0e:80:ac:96:2a:b6:b7:01:ab:1f:a0:25:18:16:e5: 2e:d7:ff:40:5b:32:34:06:75:a3:c5:de:5d:34:d4:82:f7:c7: bd:43:e4:45:ee:5f:35:83:57:51:9b:a8:63:23:65:01:4b:8e: 82:8d:77:f4:7a:06:08:96:58:29:99:88:1b:8b:46:62:c4:8b: d1:9e:ff:1d:aa:62:5a:98:56:5a:62:78:0b:59:52:c6:30:fc: 7b:4b:d5:67:b3:85:c3:6d:8d:85:07:76:65:19:31:76:a8:86: 55:f4:c3:dd:27:6b:a8:54:2a:e8:06:93:e5:dc:3f:63:a9:63: 04:90:ff:24:94:e4:6f:f6:4c:58:85:84:9f:bd:4d:ea:38:44: 26:80:c3:4b:bf:cf:d2:d6:62:31:bd:25:cd:d1:f8:b7:37:06: d7:7d:0f:37:cc:51:f3:90:38:2e:5d:ca:99:73:e0:b7:98:ac: 51:85:99:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQwRTYxMTAvBgNVBAUTKDZEQ0U1MkY5QTIyOENCRjZGMzBDRDU1RDQzMzg0RDEy Njg0ODdCNjUwHhcNMjQwNzI2MTYwMjE3WhcNMjQwODAyMTYwMjE3WjAYMRYwFAYD VQQDEw02NmEzYzg4OS03ZGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlgit2/OfwogyZBHDjF0bTNH5trEECCOw1QFNX9iKPKIlGSW264hMLN2BfEPX GmODSYgPmsDO7m72C2DXUKYGCtMXPwgjzlh/yJva5t/zXtM1i7m+jpJczwK+hfp0 Wcb2KY/OTR2Nl2vTWeoUcxWJdwyQvewoBvxKpv2+2SlcktJGk6rjccWDThwngVgN ejW1gq1Mh0Ot9h5UF4+vvcAJgJ/9C/scRO6xm7WqvURCOVzsJVsS50OvzCE+1cIl FDuMEoWcQSuIXOog6a6nvgadyp3N3OOsHOkYFGh5dnDP5FAPyBUqT1QgPXbIkqX7 aYmxhk7lwbonngXGQJWHj1+aIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrrRn2O rPiBrGT/GEdJMFs6PqrsMB8GA1UdIwQYMBaAFG3OUvmiKMv28wzVXUM4TRJoSHtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDBFNi82NjA3NDJDOEZE MjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lfYnpETlZkUXpoTkVtaEll MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjNVMtYUlveV9iekROVmRRemhORW1oSWUyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDBFNi82NjA3NDJDOEZEMjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lf YnpETlZkUXpoTkVtaEllMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtAA5WqnmCezY6NrN9KG9W4bAvcchSLRzuOcryTDBiva6vUTRdMfDN G0+bkNVR/tU4/8ATRcR4MoX/5uK8h2rW0D8v9NEWTpzLS1sOgKyWKra3AasfoCUY FuUu1/9AWzI0BnWjxd5dNNSC98e9Q+RF7l81g1dRm6hjI2UBS46CjXf0egYIllgp mYgbi0ZixIvRnv8dqmJamFZaYngLWVLGMPx7S9Vns4XDbY2FB3ZlGTF2qIZV9MPd J2uoVCroBpPl3D9jqWMEkP8klORv9kxYhYSfvU3qOEQmgMNLv8/S1mIxvSXN0fi3 NwbXfQ83zFHzkDguXcqZc+C3mKxRhZnC -----END CERTIFICATE-----Generated at Fri Jul 26 18:53:05 2024 by rpki-client on console-ams.rpki-client.org