$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft File: bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft (raw, json) Hash identifier: 3ChFpUxAMYq1w7XOFwynsPR6oxoQMGMAeymtHR4zRpc= Subject key identifier: 08:4C:D5:93:21:73:D4:11:46:91:4F:C3:1C:53:93:4B:B5:1C:16:60 Authority key identifier: 6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C Certificate issuer: /CN=A9148F80/serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Certificate serial: 05B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft Manifest number: 05B3 Signing time: Wed 01 May 2024 00:36:17 +0000 Manifest this update: Wed 01 May 2024 00:36:17 +0000 Manifest next update: Wed 08 May 2024 00:36:17 +0000 Files and hashes: 1: bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl (hash: bCpQs8No+qspHKpYde/wy1GQdtM5KtpUa54o9cnOTNM=) 2: 1C93BF747CD011EB9F876E78C4F9AE02.roa (hash: 1nhYzuuN3iiBPUuYvjPfED8ITVM34g4WPuGCXKX1a14=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1465 (0x5b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F80/serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Validity Not Before: May 1 00:36:17 2024 GMT Not After : May 8 00:36:17 2024 GMT Subject: CN=66318e81-85dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:31:83:38:c6:f4:05:50:b0:9f:f9:0b:4f:a1: 2f:7c:5d:88:7d:88:5f:1b:7d:e0:5e:85:18:91:21: df:36:58:63:86:32:19:7f:6c:7b:12:31:d0:16:d1: 59:9f:dc:b3:86:4a:23:03:06:d4:1a:2a:e6:fa:7a: ba:d2:0f:54:f4:02:13:0f:d8:b5:20:22:cd:e1:46: 45:92:4e:93:4f:8d:0f:1c:fd:4d:fd:6d:16:4f:35: 84:25:d1:90:67:de:2f:e6:2c:52:a6:1f:4d:52:b1: 38:86:11:67:ed:85:0a:ae:b4:16:60:e2:5a:f2:1f: c1:ce:06:cf:17:c9:96:5a:11:86:4f:dc:5e:7c:9e: 40:95:90:a1:1c:52:9c:f5:bc:81:4f:2c:15:a6:5a: 64:ac:99:3f:b7:c0:5b:bd:fb:c7:14:19:d2:a2:4e: b7:e1:4f:b6:9e:35:de:47:ed:c1:01:6d:f7:c9:19: 23:d2:a5:3a:df:d7:a2:0b:a4:8a:c9:68:2f:6d:8b: 25:66:9d:c3:d2:14:a5:34:c2:2d:fe:f6:8e:31:b8: ad:88:92:f5:da:a4:32:88:10:03:d6:54:e2:fe:7b: a3:72:9c:19:f0:2d:bd:53:3e:08:38:bd:1c:02:09: ce:db:1f:04:d7:bf:17:3c:0c:2e:e8:06:44:69:13: 94:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:4C:D5:93:21:73:D4:11:46:91:4F:C3:1C:53:93:4B:B5:1C:16:60 X509v3 Authority Key Identifier: keyid:6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:4b:77:19:12:9a:6c:ec:d6:54:86:40:d3:f6:68:91:6b:1a: a9:29:96:fe:5e:46:dd:28:b0:60:1d:42:58:12:1f:1e:49:9b: ed:c6:38:af:a5:4f:7c:f4:19:25:8b:62:92:07:b6:d5:6c:23: 73:cb:db:9a:ae:80:46:cc:36:ee:26:33:45:48:a3:0f:cc:4b: 3b:06:bd:37:cd:e9:a5:dd:ad:40:ca:fb:86:c5:4e:49:a3:5e: 3a:be:a6:46:13:b4:b6:03:10:ce:34:10:a3:c6:af:56:a0:82: b4:9d:0a:6c:6f:ab:36:37:8f:4c:36:ba:c1:aa:51:a3:2b:f6: ee:dc:67:90:f4:1a:cb:e7:7e:e9:8b:dc:9f:9c:c2:cc:b1:ea: ab:f1:cd:44:5c:e6:e1:8e:25:51:25:7e:17:b2:86:f6:31:ea: 04:29:c1:16:90:53:7e:a5:7f:37:43:16:8a:7d:a4:3f:15:6b: 6e:e9:f2:4f:30:48:b9:d3:18:3e:0d:0f:a6:ae:f0:93:de:8e: c9:10:65:d6:8f:2a:a6:83:fd:2a:37:3b:6e:73:36:3b:c1:35: a3:32:43:3f:e1:a5:46:30:bd:e3:5f:6d:27:04:35:93:8d:83: 72:c2:b3:fb:a0:8f:b2:bb:26:8a:61:8d:a8:38:29:02:e5:01: 26:ca:df:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGODAxMTAvBgNVBAUTKDZDQTJDRkE2ODhCREY5RTJENjU2MTYwODY3N0EzMEM5 MTUyNDNEMEMwHhcNMjQwNTAxMDAzNjE3WhcNMjQwNTA4MDAzNjE3WjAYMRYwFAYD VQQDEw02NjMxOGU4MS04NWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDGDOMb0BVCwn/kLT6EvfF2IfYhfG33gXoUYkSHfNlhjhjIZf2x7EjHQFtFZ n9yzhkojAwbUGirm+nq60g9U9AITD9i1ICLN4UZFkk6TT40PHP1N/W0WTzWEJdGQ Z94v5ixSph9NUrE4hhFn7YUKrrQWYOJa8h/BzgbPF8mWWhGGT9xefJ5AlZChHFKc 9byBTywVplpkrJk/t8BbvfvHFBnSok634U+2njXeR+3BAW33yRkj0qU639eiC6SK yWgvbYslZp3D0hSlNMIt/vaOMbitiJL12qQyiBAD1lTi/nujcpwZ8C29Uz4IOL0c AgnO2x8E178XPAwu6AZEaROUtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhM1ZMh c9QRRpFPwxxTk0u1HBZgMB8GA1UdIwQYMBaAFGyiz6aIvfni1lYWCGd6MMkVJD0M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY4MC8wNzFERUE0MDdD Q0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1lTFdWaFlJWjNvd3lSVWtQ UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLTFBwb2k5LWVMV1ZoWUlaM293eVJVa1BRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEY4MC8wNzFERUE0MDdDQ0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1l TFdWaFlJWjNvd3lSVWtQUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxS3cZEpps7NZUhkDT9miRaxqpKZb+XkbdKLBgHUJYEh8eSZvtxjiv pU989Bkli2KSB7bVbCNzy9uaroBGzDbuJjNFSKMPzEs7Br03zeml3a1AyvuGxU5J o146vqZGE7S2AxDONBCjxq9WoIK0nQpsb6s2N49MNrrBqlGjK/bu3GeQ9BrL537p i9yfnMLMseqr8c1EXObhjiVRJX4Xsob2MeoEKcEWkFN+pX83QxaKfaQ/FWtu6fJP MEi50xg+DQ+mrvCT3o7JEGXWjyqmg/0qNztuczY7wTWjMkM/4aVGML3jX20nBDWT jYNywrP7oI+yuyaKYY2oOCkC5QEmyt9P -----END CERTIFICATE-----Generated at Wed May 1 01:38:27 2024 by rpki-client on console-ams.rpki-client.org