$ rpki-client -vvf rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft File: BujrLhzBcw8rcm9PAAhEw0U_qlk.mft (raw, json) Hash identifier: wa307zUhs/BNaYdAmn7gL8R1hQ+pDhjGPiZ/s/YrGfg= Subject key identifier: 29:DC:F3:B0:8D:41:BA:EF:70:DD:DC:AF:BF:ED:26:03:E2:18:3D:65 Authority key identifier: 06:E8:EB:2E:1C:C1:73:0F:2B:72:6F:4F:00:08:44:C3:45:3F:AA:59 Certificate issuer: /CN=A9177B64/serialNumber=06E8EB2E1CC1730F2B726F4F000844C3453FAA59 Certificate serial: 09E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft Manifest number: 09D9 Signing time: Wed 24 Apr 2024 20:47:47 +0000 Manifest this update: Wed 24 Apr 2024 20:47:47 +0000 Manifest next update: Wed 01 May 2024 20:47:47 +0000 Files and hashes: 1: BujrLhzBcw8rcm9PAAhEw0U_qlk.crl (hash: cf0z4w9qXhNbY9uG5pXCJOgpuFUMsFY9KAWNTtYhhlA=) 2: D490B9E456BE11EAA979861EC4F9AE02.roa (hash: in2s5nblYb/tpke9vnRbwWoyZYgNOrnPyRgkXN/g1XA=) 3: D5248EE456BE11EAA979861EC4F9AE02.roa (hash: GEUerLfa8AbS7w95wtfzPXRDAwXXkP8/j2LX+qI6QYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.crl rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 20:47:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2535 (0x9e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177B64/serialNumber=06E8EB2E1CC1730F2B726F4F000844C3453FAA59 Validity Not Before: Apr 24 20:47:47 2024 GMT Not After : May 1 20:47:47 2024 GMT Subject: CN=66296ff3-71a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:39:60:91:98:0f:99:90:1a:01:76:01:68:28: c0:2f:03:38:e2:fb:1c:be:1e:6a:7d:90:13:48:04: b4:be:fa:93:8e:25:18:2a:c5:28:df:9f:b2:bb:e5: fb:d1:ac:e0:ef:64:b0:74:74:14:e3:34:7b:f0:1d: df:f8:5d:02:ff:cb:b8:fd:cc:5e:2e:68:76:99:14: 7d:a5:ba:4c:55:49:4d:f5:49:bd:8c:18:b4:56:e7: bd:00:cc:26:00:a9:af:11:bf:d6:0d:63:ce:7d:34: 86:ed:52:3c:99:32:98:e7:9d:72:06:7e:55:37:91: 56:49:ae:96:41:14:5b:23:80:3d:cd:92:3b:4f:56: e0:03:c3:f6:4d:d1:6c:8c:88:ed:05:bf:8c:e3:0a: c3:79:3d:8c:af:fa:d8:84:66:2a:c6:59:82:92:1e: f4:a4:7b:d0:66:25:a3:ea:13:24:6e:fb:40:69:28: be:4b:dc:5a:73:ed:34:1f:4e:15:c7:d1:e7:84:46: 55:ca:b8:70:58:3b:37:d1:8a:61:44:aa:97:4f:bd: 2c:c9:41:be:1b:15:d0:05:09:fc:65:2d:79:9a:23: f9:ab:2d:1f:50:fd:bb:5e:ef:f6:dc:32:50:b3:4a: 1c:23:e2:61:76:72:c6:17:d8:07:94:45:54:20:5a: 21:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:DC:F3:B0:8D:41:BA:EF:70:DD:DC:AF:BF:ED:26:03:E2:18:3D:65 X509v3 Authority Key Identifier: keyid:06:E8:EB:2E:1C:C1:73:0F:2B:72:6F:4F:00:08:44:C3:45:3F:AA:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:e7:74:f6:32:3c:97:ea:67:80:be:7a:68:b3:dc:22:3d:7d: 98:c1:b8:b9:f6:8b:80:ee:2a:75:46:f6:ef:13:71:00:70:b8: 1f:ed:1e:11:c7:a1:df:fd:56:b4:04:36:07:31:db:d1:66:57: ea:5a:a0:8a:79:03:0b:c5:f1:7b:b9:4f:88:1b:b0:c6:79:fd: 04:46:20:e4:46:0a:64:51:37:7f:da:4f:77:83:2f:8f:ca:cc: de:27:c9:50:ac:e3:7a:a9:8f:0a:3c:7d:a3:30:f1:66:9f:88: 26:53:d4:1e:d3:8e:e6:f0:19:b3:d1:aa:84:eb:12:56:34:22: 4b:2f:59:92:a0:0e:c1:be:d6:d5:d0:50:26:08:b0:40:f6:20: bf:b7:e9:f5:fc:47:b0:f8:1b:f7:10:ef:d2:9b:e1:96:6f:f4: a1:4d:e7:87:cb:50:e3:ba:78:ad:2e:b3:8f:48:c6:a2:b5:a2: 6d:80:41:1e:92:40:ad:14:3e:64:f9:c9:03:ea:30:63:87:da: 54:b8:4d:fc:68:7d:ae:dc:2a:93:9c:cc:a4:12:31:30:38:f9: 87:58:51:5b:f8:d6:73:98:52:b3:49:67:3c:fe:91:09:e6:62: ad:cd:57:59:c0:d7:30:8f:da:de:12:d5:a3:2d:a4:b1:9e:c7: 82:a6:b8:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzdCNjQxMTAvBgNVBAUTKDA2RThFQjJFMUNDMTczMEYyQjcyNkY0RjAwMDg0NEMz NDUzRkFBNTkwHhcNMjQwNDI0MjA0NzQ3WhcNMjQwNTAxMjA0NzQ3WjAYMRYwFAYD VQQDEw02NjI5NmZmMy03MWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+DlgkZgPmZAaAXYBaCjALwM44vscvh5qfZATSAS0vvqTjiUYKsUo35+yu+X7 0azg72SwdHQU4zR78B3f+F0C/8u4/cxeLmh2mRR9pbpMVUlN9Um9jBi0Vue9AMwm AKmvEb/WDWPOfTSG7VI8mTKY551yBn5VN5FWSa6WQRRbI4A9zZI7T1bgA8P2TdFs jIjtBb+M4wrDeT2Mr/rYhGYqxlmCkh70pHvQZiWj6hMkbvtAaSi+S9xac+00H04V x9HnhEZVyrhwWDs30YphRKqXT70syUG+GxXQBQn8ZS15miP5qy0fUP27Xu/23DJQ s0ocI+JhdnLGF9gHlEVUIFohJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCnc87CN QbrvcN3cr7/tJgPiGD1lMB8GA1UdIwQYMBaAFAbo6y4cwXMPK3JvTwAIRMNFP6pZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3N0I2NC9BQkY5Nzk2ODU2 QkQxMUVBQTUwM0Q2MUNDNEY5QUUwMi9CdWpyTGh6QmN3OHJjbTlQQUFoRXcwVV9x bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J1anJMaHpCY3c4cmNtOVBBQWhFdzBVX3Fsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 N0I2NC9BQkY5Nzk2ODU2QkQxMUVBQTUwM0Q2MUNDNEY5QUUwMi9CdWpyTGh6QmN3 OHJjbTlQQUFoRXcwVV9xbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCI53T2MjyX6meAvnpos9wiPX2Ywbi59ouA7ip1RvbvE3EAcLgf7R4R x6Hf/Va0BDYHMdvRZlfqWqCKeQMLxfF7uU+IG7DGef0ERiDkRgpkUTd/2k93gy+P yszeJ8lQrON6qY8KPH2jMPFmn4gmU9Qe047m8Bmz0aqE6xJWNCJLL1mSoA7BvtbV 0FAmCLBA9iC/t+n1/Eew+Bv3EO/Sm+GWb/ShTeeHy1DjunitLrOPSMaitaJtgEEe kkCtFD5k+ckD6jBjh9pUuE38aH2u3CqTnMykEjEwOPmHWFFb+NZzmFKzSWc8/pEJ 5mKtzVdZwNcwj9reEtWjLaSxnseCpriC -----END CERTIFICATE-----Generated at Wed Apr 24 22:30:01 2024 by rpki-client on console-fra.rpki-client.org