$ rpki-client -vvf rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft File: BL27YPamYNHS0BJzSQ_PCcw1m3M.mft (raw, json) Hash identifier: Z/DqkCtF5NzmDMSE+oExUjaDptOU3npWyc+y/lKs+n8= Subject key identifier: FC:81:D6:08:E3:31:D0:4C:D7:D7:85:72:04:F7:08:8F:6E:E7:81:2F Authority key identifier: 04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 Certificate issuer: /CN=A917C59F/serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Certificate serial: 07BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft Manifest number: 07B5 Signing time: Tue 30 Apr 2024 22:25:16 +0000 Manifest this update: Tue 30 Apr 2024 22:25:16 +0000 Manifest next update: Tue 07 May 2024 22:25:16 +0000 Files and hashes: 1: BL27YPamYNHS0BJzSQ_PCcw1m3M.crl (hash: KMg4ADzJJjmn3d9z6LqF6GaeffDrgZ9PrLdoj4yD680=) 2: 12482BA205A211ED81E44F6DC4F9AE02.roa (hash: bg+iRcITgD5dlX2l7PvKF4r5y7w7jgNKU6nvcAcFRI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 22:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1980 (0x7bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C59F/serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Validity Not Before: Apr 30 22:25:16 2024 GMT Not After : May 7 22:25:16 2024 GMT Subject: CN=66316fcc-c201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fa:d4:23:57:10:d0:e2:33:cc:04:42:3c:8f: 9d:e0:07:a3:c0:ed:ed:76:ec:4c:c3:d9:d0:f9:4f: eb:e3:70:f8:8c:73:7f:bb:d4:79:c9:7e:69:e0:c2: 78:d9:3c:03:ee:88:54:e9:2f:8d:09:51:c5:a6:d6: 97:b4:f1:e9:21:39:16:e9:c3:c9:ae:7b:cc:3d:81: d5:3e:67:f2:87:be:81:a9:20:91:95:ec:58:8e:68: cf:fb:7c:c6:53:58:1b:4b:e6:65:67:f4:de:2b:8c: 7e:45:12:ba:78:d2:4d:1a:61:7a:8e:b6:56:8d:86: 3b:6c:9e:b7:64:fd:f1:0b:22:cd:91:97:f0:68:c6: 44:ed:83:e7:0c:a7:84:64:70:ba:0d:3c:94:d6:55: 59:10:6d:06:4c:99:ff:4e:8d:e0:e7:df:1e:7d:07: 1a:c5:4d:4e:e0:c6:a8:71:d8:cc:83:92:87:9e:68: d2:a3:8e:74:ee:26:67:09:97:ad:f6:ba:80:48:69: c0:7f:57:0f:3c:5c:e1:c0:2f:e8:88:10:b2:37:00: 17:f4:79:29:ea:65:71:c8:96:2d:bd:f6:6d:c4:8e: 77:da:f9:0b:01:d2:a3:f2:d8:6d:41:97:94:62:87: 5c:bf:84:5c:dd:0d:4f:aa:69:01:09:e7:eb:30:82: c3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:81:D6:08:E3:31:D0:4C:D7:D7:85:72:04:F7:08:8F:6E:E7:81:2F X509v3 Authority Key Identifier: keyid:04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:3a:d4:0c:fb:e7:6b:10:67:ed:87:7b:e8:4c:68:24:03:b4: 3e:74:38:02:dc:f5:ab:db:20:01:54:f1:4e:ee:52:cd:20:40: b1:e3:e9:fc:14:8f:27:95:2b:d4:91:65:78:ed:a8:2d:45:fd: 45:51:2f:14:15:d3:28:91:17:bd:a7:f8:e4:b7:89:c6:84:3e: 7f:5f:2b:79:a8:35:65:3e:31:3a:96:b0:67:f1:70:22:8a:b4: f1:02:be:26:85:91:9c:36:9e:57:fb:10:b9:24:f7:a9:cd:f3: b4:4a:cb:89:ac:a5:ad:03:c8:7f:f6:f1:84:76:53:68:5e:9d: c3:3c:94:c3:11:bf:9c:8f:84:b2:f6:5f:ca:c2:3a:d6:30:c4: 50:a5:99:40:4a:37:5c:66:fa:f1:f7:0a:5f:ac:c1:85:22:e6: 8d:36:e3:a3:ea:e4:6d:2d:21:8a:29:df:05:4f:ee:af:ad:1b: a9:ee:0b:f1:a7:37:c5:93:7d:67:43:0c:05:ff:99:77:3f:42: 98:f1:84:c4:c4:e7:54:47:5a:81:10:90:47:09:72:af:70:d3: 8b:61:83:21:6a:e0:3c:b8:d3:81:1e:23:23:d9:63:9d:f9:78: 86:40:40:8e:be:ae:32:e1:52:ad:9c:6f:6c:42:9f:0e:50:49: 63:e0:e3:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1OUYxMTAvBgNVBAUTKDA0QkRCQjYwRjZBNjYwRDFEMkQwMTI3MzQ5MEZDRjA5 Q0MzNTlCNzMwHhcNMjQwNDMwMjIyNTE2WhcNMjQwNTA3MjIyNTE2WjAYMRYwFAYD VQQDEw02NjMxNmZjYy1jMjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvrUI1cQ0OIzzARCPI+d4AejwO3tduxMw9nQ+U/r43D4jHN/u9R5yX5p4MJ4 2TwD7ohU6S+NCVHFptaXtPHpITkW6cPJrnvMPYHVPmfyh76BqSCRlexYjmjP+3zG U1gbS+ZlZ/TeK4x+RRK6eNJNGmF6jrZWjYY7bJ63ZP3xCyLNkZfwaMZE7YPnDKeE ZHC6DTyU1lVZEG0GTJn/To3g598efQcaxU1O4MaocdjMg5KHnmjSo4507iZnCZet 9rqASGnAf1cPPFzhwC/oiBCyNwAX9Hkp6mVxyJYtvfZtxI532vkLAdKj8thtQZeU Yodcv4Rc3Q1PqmkBCefrMILDBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPyB1gjj MdBM19eFcgT3CI9u54EvMB8GA1UdIwQYMBaAFAS9u2D2pmDR0tASc0kPzwnMNZtz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzU5Ri80MjVFODkwMkMx NDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlOSFMwQkp6U1FfUENjdzFt M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JMMjdZUGFtWU5IUzBCSnpTUV9QQ2N3MW0zTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzU5Ri80MjVFODkwMkMxNDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlO SFMwQkp6U1FfUENjdzFtM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2OtQM++drEGfth3voTGgkA7Q+dDgC3PWr2yABVPFO7lLNIECx4+n8 FI8nlSvUkWV47agtRf1FUS8UFdMokRe9p/jkt4nGhD5/Xyt5qDVlPjE6lrBn8XAi irTxAr4mhZGcNp5X+xC5JPepzfO0SsuJrKWtA8h/9vGEdlNoXp3DPJTDEb+cj4Sy 9l/KwjrWMMRQpZlASjdcZvrx9wpfrMGFIuaNNuOj6uRtLSGKKd8FT+6vrRup7gvx pzfFk31nQwwF/5l3P0KY8YTExOdUR1qBEJBHCXKvcNOLYYMhauA8uNOBHiMj2WOd +XiGQECOvq4y4VKtnG9sQp8OUElj4OOh -----END CERTIFICATE-----Generated at Tue Apr 30 22:56:15 2024 by rpki-client on console-fra.rpki-client.org