$ rpki-client -vvf rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft File: bZYGiLbecUGnIYmOngc-FneP7zU.mft (raw, json) Hash identifier: 8G9AKr57uEuVAq9HpJlLIUOW1r3lMo64xXoKAoUUfr8= Subject key identifier: 8F:FC:B9:30:BF:89:14:1F:01:FA:07:33:31:70:A6:2E:83:38:7D:75 Authority key identifier: 6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 Certificate issuer: /CN=A9197A8F/serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft Manifest number: 7D Signing time: Fri 17 May 2024 07:23:13 +0000 Manifest this update: Fri 17 May 2024 07:23:12 +0000 Manifest next update: Fri 24 May 2024 07:23:12 +0000 Files and hashes: 1: bZYGiLbecUGnIYmOngc-FneP7zU.crl (hash: Dr/a8MdbjTQLqS29MvCDu73oaeJnTrPXEgfa03l6Hww=) 2: A663285A59DE11EE85CFCB12C4F9AE02.roa (hash: mrCI6LJh7OXLK/YxqWyr5RsSDyzUYdmyvE3b/k2wgVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197A8F/serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Validity Not Before: May 17 07:23:12 2024 GMT Not After : May 24 07:23:12 2024 GMT Subject: CN=664705e0-c636 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bb:08:fb:f7:a3:50:97:9f:56:1e:6a:58:6d: 8a:93:73:f7:e0:d2:b0:96:ea:24:d7:ab:f6:20:1f: c0:c9:3b:f0:47:f5:6d:df:a0:fc:ef:ad:c2:9a:65: 29:dc:45:01:ee:e7:76:ff:3c:bb:df:34:95:3e:f4: 81:ac:f9:a7:13:08:0c:14:9b:08:82:70:91:f8:9a: 3d:b1:5d:d7:f4:98:7a:ab:12:a9:72:2a:3d:3f:58: 28:48:5b:95:26:76:eb:26:4b:d5:e2:f1:9f:52:64: 49:5c:66:cb:14:d6:58:b9:b6:ce:46:e2:9a:93:ee: f6:b9:6c:e7:e7:f4:ef:ca:cd:eb:07:8e:fd:50:7b: 3e:51:66:d0:77:c1:25:6e:24:12:cc:13:7e:4f:77: 8f:c5:a6:1b:a9:bf:c1:4e:ea:b4:aa:1c:a6:c2:42: d8:d5:e1:aa:b3:5f:b4:bb:9a:e8:e5:32:8a:5f:2c: ad:0b:39:0b:2c:26:e9:c9:e5:66:e9:98:a4:39:5a: 44:d8:ac:3c:d4:81:39:de:5e:d4:f4:2c:98:3b:72: 2c:34:20:89:85:d1:21:4f:a2:14:08:d5:b5:8f:18: bf:09:9e:c8:8e:69:bc:4e:83:9c:37:69:4c:85:0c: 97:53:71:56:e6:b1:8e:2d:45:3f:b9:c8:fd:df:2e: b6:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:FC:B9:30:BF:89:14:1F:01:FA:07:33:31:70:A6:2E:83:38:7D:75 X509v3 Authority Key Identifier: keyid:6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:14:d3:48:15:16:c5:7b:53:be:f3:b2:36:90:aa:a2:13:50: 24:35:1f:19:86:84:3b:d3:c4:84:31:eb:3a:ba:d8:17:fd:6a: 12:81:b6:95:f9:82:fc:2e:49:53:af:76:fa:a5:8f:dc:e1:56: 1e:b0:55:8e:1b:48:0d:c9:92:49:28:a0:a3:72:ca:86:d9:6e: 26:45:db:82:94:03:e7:ec:b3:11:e5:e9:47:84:f1:6f:c9:a3: 75:a4:1a:fb:63:0e:67:da:41:2d:e7:ae:74:ac:fc:2e:c7:1d: 0a:3c:bb:6a:02:4a:65:7c:3e:d0:b1:b3:f8:83:51:a9:48:c2: 30:0e:ee:9d:10:0d:72:10:57:36:d0:3e:ba:85:42:fc:bd:cd: c5:0c:cb:6b:06:aa:5f:c4:0f:88:21:4c:d1:a4:24:ea:2b:ff: a8:b6:8b:fb:18:ad:74:51:5e:c3:e0:ef:7d:a8:82:ac:52:98: 82:c6:44:13:7a:18:78:5b:69:ba:33:fb:44:eb:81:fd:1a:8f: 58:f8:f1:f9:67:f6:67:46:d0:1a:94:fb:70:5a:5d:97:dc:0d: 34:d1:83:f9:54:d6:df:0f:e1:8c:17:bc:7a:95:9a:39:ca:51: 15:1a:f1:5c:59:53:80:b5:04:e7:aa:f1:36:da:b6:4a:98:6e: 09:67:3f:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdBOEYxMTAvBgNVBAUTKDZEOTYwNjg4QjZERTcxNDFBNzIxODk4RTlFMDczRTE2 Nzc4RkVGMzUwHhcNMjQwNTE3MDcyMzEyWhcNMjQwNTI0MDcyMzEyWjAYMRYwFAYD VQQDEw02NjQ3MDVlMC1jNjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrsI+/ejUJefVh5qWG2Kk3P34NKwluok16v2IB/AyTvwR/Vt36D8763CmmUp 3EUB7ud2/zy73zSVPvSBrPmnEwgMFJsIgnCR+Jo9sV3X9Jh6qxKpcio9P1goSFuV JnbrJkvV4vGfUmRJXGbLFNZYubbORuKak+72uWzn5/Tvys3rB479UHs+UWbQd8El biQSzBN+T3ePxaYbqb/BTuq0qhymwkLY1eGqs1+0u5ro5TKKXyytCzkLLCbpyeVm 6ZikOVpE2Kw81IE53l7U9CyYO3IsNCCJhdEhT6IUCNW1jxi/CZ7Ijmm8ToOcN2lM hQyXU3FW5rGOLUU/ucj93y62CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/8uTC/ iRQfAfoHMzFwpi6DOH11MB8GA1UdIwQYMBaAFG2WBoi23nFBpyGJjp4HPhZ3j+81 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0E4Ri82M0FDRDVGNDU5 REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNVR25JWW1PbmdjLUZuZVA3 elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JaWUdpTGJlY1VHbklZbU9uZ2MtRm5lUDd6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0E4Ri82M0FDRDVGNDU5REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNV R25JWW1PbmdjLUZuZVA3elUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/FNNIFRbFe1O+87I2kKqiE1AkNR8ZhoQ708SEMes6utgX/WoSgbaV +YL8LklTr3b6pY/c4VYesFWOG0gNyZJJKKCjcsqG2W4mRduClAPn7LMR5elHhPFv yaN1pBr7Yw5n2kEt5650rPwuxx0KPLtqAkplfD7QsbP4g1GpSMIwDu6dEA1yEFc2 0D66hUL8vc3FDMtrBqpfxA+IIUzRpCTqK/+otov7GK10UV7D4O99qIKsUpiCxkQT ehh4W2m6M/tE64H9Go9Y+PH5Z/ZnRtAalPtwWl2X3A000YP5VNbfD+GMF7x6lZo5 ylEVGvFcWVOAtQTnqvE22rZKmG4JZz8m -----END CERTIFICATE-----Generated at Fri May 17 08:52:51 2024 by rpki-client on console-ams.rpki-client.org