$ rpki-client -vvf rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft File: bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft (raw, json) Hash identifier: tEpW0IaZBzrNHT2ni/GtTfkC4XxbMqsEG8vivEjSbwo= Subject key identifier: 7F:E6:AB:4F:3C:E0:FD:8E:1C:12:2F:AC:47:A2:D3:E0:6A:40:4F:50 Authority key identifier: 6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 Certificate issuer: /CN=A91240E6/serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Certificate serial: 2544 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft Manifest number: 252E Signing time: Thu 18 Apr 2024 16:02:44 +0000 Manifest this update: Thu 18 Apr 2024 16:02:43 +0000 Manifest next update: Thu 25 Apr 2024 16:02:43 +0000 Files and hashes: 1: bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl (hash: XgsZvdn0X0Alm0APEcFrIvaL73xuGLr+fSYpeICYKlc=) 2: 8A721F4EB10C11E5BB6B2A16C4F9AE02.roa (hash: zjFPN9IlvbUvgrK4TiEnI3P674oOFqbeO/VgwKwjEUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 16:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9540 (0x2544) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91240E6/serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Validity Not Before: Apr 18 16:02:43 2024 GMT Not After : Apr 25 16:02:43 2024 GMT Subject: CN=66214424-9521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6f:ca:c9:40:ad:17:ac:22:ab:fc:26:92:bd: 64:f4:74:8a:98:cd:39:41:a1:10:c7:80:bc:07:a7: fc:40:36:8b:3e:6b:75:40:8e:88:fa:0a:e9:e1:00: bf:85:b1:5d:90:40:c6:e3:d2:76:2a:a9:e1:34:f9: 49:cf:53:ba:89:8c:a3:33:1c:5d:00:70:b5:63:11: 26:c8:4f:5b:1a:6b:5c:90:57:2c:9b:84:b0:40:17: 98:b6:32:ca:5e:c0:72:ea:99:f2:52:1e:dc:5c:58: 12:5f:c8:0c:80:df:37:1e:ff:42:f5:f1:e6:fe:75: 4a:87:1f:3b:65:26:b1:97:76:da:ae:71:04:ca:d2: 0d:ef:f7:92:a1:b7:46:db:d9:f1:b5:1e:3f:59:b1: 65:27:e1:2a:22:7b:0f:11:1e:66:25:fc:bc:77:f9: b3:92:34:a3:8d:f8:0f:17:10:4d:7a:4a:5b:6a:3a: b6:8a:b7:0d:a5:f4:23:9a:a8:19:f8:28:74:43:23: dc:f3:22:58:af:97:5d:a8:cc:ad:0f:88:6b:d1:81: 45:66:30:69:42:59:fb:df:8b:8d:80:ba:95:02:b3: 14:99:31:a5:99:43:3c:f3:cc:86:31:ff:ea:2d:59: cb:a3:bf:d1:20:15:1d:91:9b:00:ce:e2:5a:8c:a3: 30:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:E6:AB:4F:3C:E0:FD:8E:1C:12:2F:AC:47:A2:D3:E0:6A:40:4F:50 X509v3 Authority Key Identifier: keyid:6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:c4:ff:0a:b2:c4:da:67:bc:34:bd:3a:8e:35:99:c1:20:23: 70:a1:f1:94:9d:bb:c1:68:ae:85:7e:d1:8a:42:0f:b7:dd:5e: b6:47:81:f0:95:eb:e6:59:23:cc:89:b9:33:51:9c:56:98:72: d8:b4:43:84:8e:79:67:48:78:59:41:81:0a:46:26:c9:6e:d8: ea:d3:4d:33:f9:07:47:62:aa:db:95:40:de:c0:17:74:63:8d: 9d:80:5f:75:3e:16:d7:39:56:79:1c:cc:b8:b9:30:36:ae:9f: fe:aa:c1:35:a4:f2:c3:65:89:5b:69:5e:f7:cd:f0:27:80:6e: 98:e4:5e:b7:9f:18:a7:8b:19:d9:9a:b7:ad:79:0f:63:fa:f5: c8:74:e9:b1:4b:b0:c3:dc:ad:2f:ed:9a:3a:2a:65:b0:0c:1e: 34:b2:ed:a8:bd:21:c3:aa:da:c5:f7:34:54:2a:e3:21:1f:c0: 77:5e:71:3b:b4:11:8b:e3:75:c3:83:9a:30:76:07:6d:70:5a: 51:80:40:70:32:3b:b0:be:d4:8e:5d:05:18:57:aa:4b:25:a9: ac:c7:53:d2:bf:80:3f:1e:37:1b:27:31:8a:27:08:ea:77:c1: ed:3f:ff:76:c2:5b:87:86:c8:6e:f8:f3:c6:b3:ee:6a:5f:fb: ef:31:b3:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQwRTYxMTAvBgNVBAUTKDZEQ0U1MkY5QTIyOENCRjZGMzBDRDU1RDQzMzg0RDEy Njg0ODdCNjUwHhcNMjQwNDE4MTYwMjQzWhcNMjQwNDI1MTYwMjQzWjAYMRYwFAYD VQQDEw02NjIxNDQyNC05NTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuW/KyUCtF6wiq/wmkr1k9HSKmM05QaEQx4C8B6f8QDaLPmt1QI6I+grp4QC/ hbFdkEDG49J2KqnhNPlJz1O6iYyjMxxdAHC1YxEmyE9bGmtckFcsm4SwQBeYtjLK XsBy6pnyUh7cXFgSX8gMgN83Hv9C9fHm/nVKhx87ZSaxl3barnEEytIN7/eSobdG 29nxtR4/WbFlJ+EqInsPER5mJfy8d/mzkjSjjfgPFxBNekpbajq2ircNpfQjmqgZ +Ch0QyPc8yJYr5ddqMytD4hr0YFFZjBpQln734uNgLqVArMUmTGlmUM888yGMf/q LVnLo7/RIBUdkZsAzuJajKMwKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/mq088 4P2OHBIvrEei0+BqQE9QMB8GA1UdIwQYMBaAFG3OUvmiKMv28wzVXUM4TRJoSHtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDBFNi82NjA3NDJDOEZE MjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lfYnpETlZkUXpoTkVtaEll MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjNVMtYUlveV9iekROVmRRemhORW1oSWUyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDBFNi82NjA3NDJDOEZEMjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lf YnpETlZkUXpoTkVtaEllMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDxP8KssTaZ7w0vTqONZnBICNwofGUnbvBaK6FftGKQg+33V62R4Hw levmWSPMibkzUZxWmHLYtEOEjnlnSHhZQYEKRibJbtjq000z+QdHYqrblUDewBd0 Y42dgF91PhbXOVZ5HMy4uTA2rp/+qsE1pPLDZYlbaV73zfAngG6Y5F63nxinixnZ mreteQ9j+vXIdOmxS7DD3K0v7Zo6KmWwDB40su2ovSHDqtrF9zRUKuMhH8B3XnE7 tBGL43XDg5owdgdtcFpRgEBwMjuwvtSOXQUYV6pLJamsx1PSv4A/HjcbJzGKJwjq d8HtP/92wluHhshu+PPGs+5qX/vvMbPJ -----END CERTIFICATE-----Generated at Thu Apr 18 17:43:39 2024 by rpki-client on console-ams.rpki-client.org