$ rpki-client -vvf rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft File: bycituUTNGUloqmUZBtOJ_BNU1Y.mft (raw, json) Hash identifier: 2gSLOivAeYdXKfv15Pm+SLI4ZQayeuVwougn6nh99bQ= Subject key identifier: A2:22:94:B6:AA:C8:40:5C:C8:99:3A:26:34:5A:B9:C0:8E:1C:4C:B8 Authority key identifier: 6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 Certificate issuer: /CN=A91870B9/serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Certificate serial: 01C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft Manifest number: 01C0 Signing time: Tue 07 May 2024 04:26:21 +0000 Manifest this update: Tue 07 May 2024 04:26:21 +0000 Manifest next update: Tue 14 May 2024 04:26:21 +0000 Files and hashes: 1: bycituUTNGUloqmUZBtOJ_BNU1Y.crl (hash: mzLn8jXNzziXCqeIl6BulGYGI18dvpuQ8FZJMoufwg0=) 2: A48AD700072111ED91EABE39C4F9AE02.roa (hash: aqFZJx4rXsT54LXpJYvMQtbHtzHMI+h4I4FNOhC2jns=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 04:26:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91870B9/serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Validity Not Before: May 7 04:26:21 2024 GMT Not After : May 14 04:26:21 2024 GMT Subject: CN=6639ad6d-d69f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:05:50:c6:92:b0:6a:0a:8b:f3:34:46:36:34: e0:fe:e0:58:be:4c:f4:20:08:20:cc:d6:70:52:13: 34:f8:bf:2e:5a:86:73:e2:ae:c0:85:e7:92:7b:bf: ff:2c:0f:6f:46:4f:c7:8b:fe:39:94:84:fe:21:2c: 03:49:eb:7e:03:8e:47:16:4b:4a:a9:90:16:0b:31: 45:99:d6:11:47:aa:54:49:7f:65:8b:3e:63:45:3a: 7c:95:77:04:a1:f0:5a:93:b6:a4:63:01:90:2b:d0: b3:41:49:ff:6d:d7:f0:1b:6e:dc:0f:85:d9:c4:80: 66:d1:9d:23:6b:4f:d0:e0:9f:c9:f0:83:38:33:93: c1:08:50:48:a4:2e:51:59:f7:ff:1e:24:a2:52:30: 5d:9e:73:ea:a5:4c:61:52:4b:60:e8:cd:2d:b0:f2: fe:af:ad:36:1b:f7:61:ed:bf:14:59:a7:b0:16:65: 3d:f4:3d:2e:11:2d:fe:25:2f:79:ce:a8:e4:b1:62: 89:14:27:02:59:6b:27:4e:9c:f2:e5:96:65:41:47: f4:7f:8f:5d:62:ee:d8:18:2f:47:09:6e:cc:0a:df: 40:84:b7:58:93:d5:c5:a7:c2:75:b4:3f:ac:ee:fc: 8d:d1:b9:74:58:41:a2:0f:b6:5a:e6:b4:2f:f2:98: 29:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:22:94:B6:AA:C8:40:5C:C8:99:3A:26:34:5A:B9:C0:8E:1C:4C:B8 X509v3 Authority Key Identifier: keyid:6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:98:81:3b:b2:a9:c9:9c:0c:64:d1:04:9e:23:99:ba:30:3d: cb:d1:2a:21:8e:91:a5:34:86:ae:ad:75:6c:b1:2f:2d:16:5e: dc:ca:18:b0:aa:82:cd:78:9f:8c:ce:ea:3e:1e:c3:2e:5a:15: 83:14:75:dd:58:1c:d5:b3:3b:d0:ce:09:6a:22:6e:c7:fc:1d: fc:e7:26:03:36:29:60:52:a6:76:2a:1c:f1:c0:0e:c5:ce:c2: 24:1f:c6:54:2e:a0:43:ec:75:20:26:9b:7b:c0:1b:03:c1:c8: 28:3b:2f:bf:85:21:df:fa:49:bd:88:1c:7d:da:a9:d7:88:72: 78:5f:21:9b:61:4c:91:d3:58:46:66:95:43:65:21:2b:8c:fa: 6b:66:8a:e0:9f:a3:07:60:02:c7:b8:be:f6:b8:47:7d:51:b9: 2b:1d:ce:5f:7a:7a:b9:5a:c6:a1:b8:76:1f:f6:8f:ae:e0:7f: 75:90:65:a1:bf:b6:76:8b:82:48:7f:9e:c8:18:34:74:d9:20: 40:21:26:a0:f2:9c:c0:9c:be:cb:c0:e0:35:60:b2:2e:61:43: 5e:4d:ca:92:d0:c1:0b:87:ce:62:65:09:08:49:a2:74:75:51: ad:c3:23:f9:bb:0b:fd:e5:73:f3:54:dd:b2:d6:38:4b:71:e8: 0f:35:c5:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcwQjkxMTAvBgNVBAUTKDZGMjcyMkI2RTUxMzM0NjUyNUEyQTk5NDY0MUI0RTI3 RjA0RDUzNTYwHhcNMjQwNTA3MDQyNjIxWhcNMjQwNTE0MDQyNjIxWjAYMRYwFAYD VQQDEw02NjM5YWQ2ZC1kNjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwVQxpKwagqL8zRGNjTg/uBYvkz0IAggzNZwUhM0+L8uWoZz4q7AheeSe7// LA9vRk/Hi/45lIT+ISwDSet+A45HFktKqZAWCzFFmdYRR6pUSX9liz5jRTp8lXcE ofBak7akYwGQK9CzQUn/bdfwG27cD4XZxIBm0Z0ja0/Q4J/J8IM4M5PBCFBIpC5R Wff/HiSiUjBdnnPqpUxhUktg6M0tsPL+r602G/dh7b8UWaewFmU99D0uES3+JS95 zqjksWKJFCcCWWsnTpzy5ZZlQUf0f49dYu7YGC9HCW7MCt9AhLdYk9XFp8J1tD+s 7vyN0bl0WEGiD7Za5rQv8pgpmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKIilLaq yEBcyJk6JjRaucCOHEy4MB8GA1UdIwQYMBaAFG8nIrblEzRlJaKplGQbTifwTVNW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzBCOS83QzhDODkwRTA3 MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5HVWxvcW1VWkJ0T0pfQk5V MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5Y2l0dVVUTkdVbG9xbVVaQnRPSl9CTlUxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzBCOS83QzhDODkwRTA3MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5H VWxvcW1VWkJ0T0pfQk5VMVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARmIE7sqnJnAxk0QSeI5m6MD3L0SohjpGlNIaurXVssS8tFl7cyhiw qoLNeJ+Mzuo+HsMuWhWDFHXdWBzVszvQzglqIm7H/B385yYDNilgUqZ2KhzxwA7F zsIkH8ZULqBD7HUgJpt7wBsDwcgoOy+/hSHf+km9iBx92qnXiHJ4XyGbYUyR01hG ZpVDZSErjPprZorgn6MHYALHuL72uEd9UbkrHc5fenq5WsahuHYf9o+u4H91kGWh v7Z2i4JIf57IGDR02SBAISag8pzAnL7LwOA1YLIuYUNeTcqS0MELh85iZQkISaJ0 dVGtwyP5uwv95XPzVN2y1jhLcegPNcVy -----END CERTIFICATE-----Generated at Tue May 7 05:39:53 2024 by rpki-client on console-fra.rpki-client.org