$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft File: bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft (raw, json) Hash identifier: XGIedt382IqXirCbBuSgfqRBci/fKLUD8s0HHXEKab8= Subject key identifier: A5:08:94:3E:C9:48:53:3C:43:F2:5D:B3:83:6D:70:A8:0B:58:ED:09 Authority key identifier: 6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 Certificate issuer: /CN=A9167C9C/serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Certificate serial: 04B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft Manifest number: 04B0 Signing time: Sat 27 Apr 2024 01:28:10 +0000 Manifest this update: Sat 27 Apr 2024 01:28:09 +0000 Manifest next update: Sat 04 May 2024 01:28:09 +0000 Files and hashes: 1: bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl (hash: XsoWureVKhVGx6KjtYFm5x7K7jJ+jCcu1XjZakRl6J4=) 2: BF811486DC1E11EBB2C72F52C4F9AE02.roa (hash: OACI79rBVssRCBpX1bDdgZPrArU/T53pKaQFasxd1KU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 01:28:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1203 (0x4b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C9C/serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Validity Not Before: Apr 27 01:28:09 2024 GMT Not After : May 4 01:28:09 2024 GMT Subject: CN=662c54aa-e892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ec:aa:62:a3:20:1a:43:2c:9e:a6:fa:8d:88: 27:d4:1d:f4:c4:e2:7f:37:30:6c:06:d4:ab:a7:30: 28:c7:af:7e:f0:94:1a:b1:91:20:68:b6:f9:f1:ff: 72:f8:1d:5c:ef:76:40:92:a6:10:2a:05:75:6b:7e: 5b:9f:71:d0:f2:c2:eb:0b:fe:36:19:f9:bb:23:7f: 8c:f4:ec:ed:82:d2:13:b2:76:83:db:d0:c3:fe:85: f1:5e:6d:d2:fa:06:7f:b4:02:b9:18:70:d8:5d:0b: 34:a1:83:17:9c:1c:e3:ca:8d:f1:8b:b5:11:f5:99: 75:1a:4d:7c:b0:3b:b4:eb:06:ae:0a:75:85:85:17: 99:7f:b2:ec:70:e5:5c:8a:de:a6:f9:c8:c8:ef:f9: e7:4b:9d:e7:22:1a:bf:38:6e:fe:29:c9:65:76:06: f9:df:e3:0d:de:b1:91:15:50:44:ba:9d:4f:07:8d: 8a:28:9c:ab:1d:10:17:ef:42:37:04:fd:c6:6e:4e: 6b:be:68:d8:ad:4c:f5:61:b4:18:c3:24:20:30:4a: e6:12:60:4d:3e:b9:a4:18:99:f1:c4:7e:d7:fe:b3: 02:f6:ee:b7:b6:ef:af:d7:41:36:05:6f:5e:29:35: 47:43:71:c9:55:4f:5e:0f:8f:cf:5d:7f:ad:d2:7d: f6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:08:94:3E:C9:48:53:3C:43:F2:5D:B3:83:6D:70:A8:0B:58:ED:09 X509v3 Authority Key Identifier: keyid:6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:17:a4:ce:f8:b3:86:c2:42:1e:0f:0f:31:7f:9f:33:eb:82: 58:f6:04:ce:76:ba:93:35:27:15:8b:b2:60:ac:02:63:88:73: 95:53:cf:0b:a7:aa:cd:11:c7:55:58:6f:c1:e8:13:4f:45:cb: 84:e8:c6:32:bd:22:fa:2d:a9:f2:25:11:20:16:8b:87:6a:29: 96:b1:a7:37:e7:8a:b2:54:d0:c5:ad:3d:26:03:fc:db:eb:09: e9:93:6c:47:93:a9:ca:d7:01:12:f0:1d:81:e5:34:d2:57:f8: 62:f5:b3:a4:21:4f:65:6e:18:9a:1f:56:96:39:e6:32:9e:b6: 5e:c9:ca:64:04:41:bf:62:1f:bb:8c:65:58:f0:9b:68:8b:83: 3c:e0:91:37:72:c6:73:72:c9:ef:3b:f4:35:c2:cd:5e:cc:38: 00:3c:90:72:d0:b9:73:d2:c3:2c:a4:da:de:7e:10:6d:10:53: 67:89:e3:db:ba:4f:e9:9f:4c:ef:c3:e0:a9:7d:bd:9b:66:2b: c3:81:eb:fc:5a:d8:dc:93:dd:b0:1c:85:48:cc:a4:9b:49:ac: b2:f6:42:3f:de:51:e8:a6:93:ff:2e:95:ce:b0:d9:d1:45:31: 5f:c7:2d:c5:96:20:e3:67:6a:23:50:3b:c9:cd:09:28:00:d5: b9:23:33:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDOUMxMTAvBgNVBAUTKDZEREVDNkExNzEyOTIzMEVFRUZFNTA4QUYxMTk2MkZC NEMwRjZGQzIwHhcNMjQwNDI3MDEyODA5WhcNMjQwNTA0MDEyODA5WjAYMRYwFAYD VQQDEw02NjJjNTRhYS1lODkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuyqYqMgGkMsnqb6jYgn1B30xOJ/NzBsBtSrpzAox69+8JQasZEgaLb58f9y +B1c73ZAkqYQKgV1a35bn3HQ8sLrC/42Gfm7I3+M9OztgtITsnaD29DD/oXxXm3S +gZ/tAK5GHDYXQs0oYMXnBzjyo3xi7UR9Zl1Gk18sDu06wauCnWFhReZf7LscOVc it6m+cjI7/nnS53nIhq/OG7+Kclldgb53+MN3rGRFVBEup1PB42KKJyrHRAX70I3 BP3Gbk5rvmjYrUz1YbQYwyQgMErmEmBNPrmkGJnxxH7X/rMC9u63tu+v10E2BW9e KTVHQ3HJVU9eD4/PXX+t0n32mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKUIlD7J SFM8Q/Jds4NtcKgLWO0JMB8GA1UdIwQYMBaAFG3exqFxKSMO7v5QivEZYvtMD2/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0M5Qy85QjZDNDI4MERD MUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3N3VfbENLOFJsaS0wd1Bi OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JkN0dvWEVwSXc3dV9sQ0s4UmxpLTB3UGI4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0M5Qy85QjZDNDI4MERDMUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3 N3VfbENLOFJsaS0wd1BiOEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHF6TO+LOGwkIeDw8xf58z64JY9gTOdrqTNScVi7JgrAJjiHOVU88L p6rNEcdVWG/B6BNPRcuE6MYyvSL6LanyJREgFouHaimWsac354qyVNDFrT0mA/zb 6wnpk2xHk6nK1wES8B2B5TTSV/hi9bOkIU9lbhiaH1aWOeYynrZeycpkBEG/Yh+7 jGVY8Jtoi4M84JE3csZzcsnvO/Q1ws1ezDgAPJBy0Llz0sMspNrefhBtEFNniePb uk/pn0zvw+Cpfb2bZivDgev8Wtjck92wHIVIzKSbSayy9kI/3lHoppP/LpXOsNnR RTFfxy3FliDjZ2ojUDvJzQkoANW5IzN/ -----END CERTIFICATE-----Generated at Sun Apr 28 15:50:50 2024 by rpki-client on console-fra.rpki-client.org