$ rpki-client -vvf rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft File: bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft (raw, json) Hash identifier: U+EWyW34HDmPbhilCIEAp2FbRUWzRWweRhjR2RX/96k= Subject key identifier: EC:73:FA:10:72:75:A6:FA:C8:79:24:BD:E2:6B:A3:BA:AF:3B:AC:9F Authority key identifier: 6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 Certificate issuer: /CN=A917983D/serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft Manifest number: 01E7 Signing time: Wed 01 May 2024 04:34:10 +0000 Manifest this update: Wed 01 May 2024 04:34:09 +0000 Manifest next update: Wed 08 May 2024 04:34:09 +0000 Files and hashes: 1: bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl (hash: A1WSQDK+FnPfD3pH6fF9ZVcFXh+Rv8xhCv7gUm343lE=) 2: 1F59A248F69E11EC947BBC5EC4F9AE02.roa (hash: wteDAp88PU/OXsrCKeDE5pjIsifmHrURWAVujMlzkII=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917983D/serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Validity Not Before: May 1 04:34:09 2024 GMT Not After : May 8 04:34:09 2024 GMT Subject: CN=6631c642-c8d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ee:33:79:23:56:76:6e:89:bd:23:c8:5e:be: 5c:4e:b4:34:b5:9b:fc:2d:0a:ed:81:d1:af:e0:f9: 62:25:90:a4:05:98:45:56:40:7f:98:aa:3a:d0:7d: e6:6c:2e:a5:3a:fd:b2:25:44:8f:87:8e:36:43:53: 12:53:fe:e2:10:82:0d:b1:e4:b8:79:57:5e:13:53: 0e:7b:8b:18:de:ec:cf:b9:fe:4b:50:12:e1:1f:b1: 26:83:1c:d1:9d:27:3c:a9:99:75:0b:6b:17:03:32: 1b:1f:2a:14:7f:b0:4e:20:bf:4d:36:09:63:56:06: 75:83:3d:04:84:65:3c:9e:ab:99:89:af:5b:93:79: f6:dc:f0:b8:c8:15:aa:7c:29:0a:93:84:b6:dc:9f: b3:d4:db:76:3a:4f:81:7f:11:07:04:6b:64:c5:51: b2:36:bf:d2:03:87:1e:66:b8:3c:32:40:01:34:07: ed:5e:ea:7a:a2:3e:73:ee:81:33:46:bb:b6:c5:f4: 50:df:6d:95:16:c5:92:5a:a9:69:1d:7f:a8:4c:f4: fc:58:f2:27:24:85:cf:1f:77:3f:38:45:9d:ba:64: 6a:35:44:07:6c:7b:ef:ca:bc:2d:fa:81:53:f3:3c: 50:70:f0:45:ea:e4:8a:d0:65:ce:ee:fb:f7:a1:08: ec:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:73:FA:10:72:75:A6:FA:C8:79:24:BD:E2:6B:A3:BA:AF:3B:AC:9F X509v3 Authority Key Identifier: keyid:6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:68:e7:55:95:8f:82:9c:bf:66:75:97:f7:7e:66:ca:18:fa: 5f:6f:3a:50:a9:2c:d4:6e:75:e7:ff:68:59:46:2b:7b:3d:14: 01:4b:c6:c0:87:ee:56:3e:58:e1:10:16:65:66:69:aa:4e:aa: 78:ba:25:37:e6:d7:6d:bb:b8:7c:a3:96:bb:ec:53:80:1a:f2: 8a:1a:06:6a:9f:3c:9f:3b:a7:9b:51:37:d4:76:9e:07:87:39: d2:0b:4b:19:15:78:25:d1:e5:f4:5c:c8:16:5c:32:07:ac:ae: fa:a8:dc:f8:9d:94:59:1d:9e:a8:78:46:e5:e1:a9:be:a3:29: 1d:5a:76:ca:b3:67:98:6e:68:96:cd:b5:af:35:37:00:c8:91: 07:46:f8:cb:f4:c7:5b:dd:5c:14:43:f8:ef:bd:e7:69:44:9a: c3:6f:85:93:0a:64:33:1a:6a:43:d1:3d:cd:cf:5b:fd:d6:81: c1:f1:49:b0:46:60:65:4a:25:a1:40:41:bd:ef:f3:0b:ca:a1: b0:65:da:54:5a:42:3e:38:be:60:6b:14:9e:71:51:c0:99:a0: 0a:31:ac:9f:5d:16:bc:e0:e5:ad:cb:26:de:b5:e2:0e:3f:aa: 11:d7:28:e6:64:80:ce:db:e9:f9:68:d3:76:ec:36:49:6c:44: 8a:d6:3e:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk4M0QxMTAvBgNVBAUTKDZGMDAyNDZBODU4ODg0OEMzQTE3Mjc1MkYzMkFFNEVB MzBDNjgwQTQwHhcNMjQwNTAxMDQzNDA5WhcNMjQwNTA4MDQzNDA5WjAYMRYwFAYD VQQDEw02NjMxYzY0Mi1jOGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+4zeSNWdm6JvSPIXr5cTrQ0tZv8LQrtgdGv4PliJZCkBZhFVkB/mKo60H3m bC6lOv2yJUSPh442Q1MSU/7iEIINseS4eVdeE1MOe4sY3uzPuf5LUBLhH7EmgxzR nSc8qZl1C2sXAzIbHyoUf7BOIL9NNgljVgZ1gz0EhGU8nquZia9bk3n23PC4yBWq fCkKk4S23J+z1Nt2Ok+BfxEHBGtkxVGyNr/SA4ceZrg8MkABNAftXup6oj5z7oEz Rru2xfRQ322VFsWSWqlpHX+oTPT8WPInJIXPH3c/OEWdumRqNUQHbHvvyrwt+oFT 8zxQcPBF6uSK0GXO7vv3oQjsawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxz+hBy dab6yHkkveJro7qvO6yfMB8GA1UdIwQYMBaAFG8AJGqFiISMOhcnUvMq5OowxoCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTgzRC80MTYyRjQ0Q0Y2 OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJdzZGeWRTOHlyazZqREdn S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3QWthb1dJaEl3NkZ5ZFM4eXJrNmpER2dLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTgzRC80MTYyRjQ0Q0Y2OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJ dzZGeWRTOHlyazZqREdnS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6aOdVlY+CnL9mdZf3fmbKGPpfbzpQqSzUbnXn/2hZRit7PRQBS8bA h+5WPljhEBZlZmmqTqp4uiU35tdtu7h8o5a77FOAGvKKGgZqnzyfO6ebUTfUdp4H hznSC0sZFXgl0eX0XMgWXDIHrK76qNz4nZRZHZ6oeEbl4am+oykdWnbKs2eYbmiW zbWvNTcAyJEHRvjL9Mdb3VwUQ/jvvedpRJrDb4WTCmQzGmpD0T3Nz1v91oHB8Umw RmBlSiWhQEG97/MLyqGwZdpUWkI+OL5gaxSecVHAmaAKMayfXRa84OWtyybeteIO P6oR1yjmZIDO2+n5aNN27DZJbESK1j75 -----END CERTIFICATE-----Generated at Wed May 1 05:55:43 2024 by rpki-client on console-ams.rpki-client.org