$ rpki-client -vvf rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft File: bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft (raw, json) Hash identifier: nkiZAvvx1dUuwrBS3LlPPhXRNTx3vY6HNf1RlZ5o5YE= Subject key identifier: BD:66:2A:17:79:8A:C0:CA:31:1D:12:E2:26:5E:73:64:EB:8B:83:D4 Authority key identifier: 6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 Certificate issuer: /CN=A91A546E/serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Certificate serial: 083B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft Manifest number: 0810 Signing time: Tue 30 Apr 2024 22:16:25 +0000 Manifest this update: Tue 30 Apr 2024 22:16:24 +0000 Manifest next update: Tue 07 May 2024 22:16:24 +0000 Files and hashes: 1: bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl (hash: wmQn3g0tlAW7xznKRIeDsIDDJfrruVF/2l/u6XhLxFI=) 2: 46948AC87B8511EDB9E3E055C4F9AE02.roa (hash: ypZQBV+9EY4yetvyYDHXDbrcGsO7ZcQXKAjYkY4gbwo=) 3: CEA83BC8B55911EC9256FE19C4F9AE02.roa (hash: hQPvhUpeTrx9DNSv8Rwc826gKGrUqScdpfX6E65BZRA=) 4: 88252000B55C11ECA9565039C4F9AE02.roa (hash: HhWjwCFdQRRVcs2pmGUyTbg15QmPYboR4SfRLX6NELY=) 5: CCBF0CF6B55911EC9256FE19C4F9AE02.roa (hash: Lppy3MVgmk17lvFTYfSRPnIkBWdaJy5TtLwNcFiGXK8=) 6: CC3B5938B55911EC9256FE19C4F9AE02.roa (hash: gmUAzeH5pAjcRrN3DgnjT22RjVbAqThV/moORwvfz+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 22:16:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2107 (0x83b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A546E/serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Validity Not Before: Apr 30 22:16:24 2024 GMT Not After : May 7 22:16:24 2024 GMT Subject: CN=66316db8-91aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0b:fa:31:7b:a8:c5:97:83:ee:2c:e6:86:1a: 23:3f:f8:1d:0a:78:1e:7f:79:51:30:97:1c:24:cb: a2:c6:f6:5a:5a:e8:1b:62:d8:01:fd:4d:54:40:e5: 7f:59:58:06:8c:e4:05:6c:54:07:53:12:66:a6:8f: 49:9e:4e:62:60:6c:ca:2e:88:72:32:a8:8b:5f:7b: 56:db:0c:96:eb:91:0e:1f:b7:10:2a:2b:39:01:ea: 70:22:56:4c:d0:6a:0c:b3:60:14:a4:f9:dc:97:4a: f1:49:10:29:11:40:ee:b3:5a:e4:99:03:d4:02:c5: ba:92:b8:7b:96:ed:b4:6c:64:a8:c9:ff:ac:85:d4: c9:f2:10:8d:dd:4b:c4:17:f9:cc:bb:bb:de:f1:18: a9:c0:5a:ae:83:33:42:d3:72:d4:f7:0e:bd:dc:f8: 93:fd:01:cf:15:20:8f:ec:e5:f6:75:8d:2c:ca:96: c3:cb:68:71:4f:1e:15:d4:0d:5a:4f:a7:29:59:82: e3:59:1b:1f:a2:c7:39:9c:5c:56:48:06:86:eb:f1: b1:ab:cf:be:3b:e5:fa:f0:45:55:dd:e1:fd:35:36: b4:94:e6:49:cc:cf:78:cc:5b:33:c5:e1:73:34:44: 26:54:41:03:06:8e:5e:29:38:90:16:4a:50:c1:f3: ec:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:66:2A:17:79:8A:C0:CA:31:1D:12:E2:26:5E:73:64:EB:8B:83:D4 X509v3 Authority Key Identifier: keyid:6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:af:91:6d:7e:12:a2:f2:34:13:a4:5b:fa:43:bb:98:b5:53: ea:ad:04:a8:fd:4b:ef:e6:52:4c:80:1f:e6:21:5f:7b:1c:6e: 20:4e:fe:91:c0:2a:d7:53:4a:43:e9:5d:3c:9c:c0:89:57:2a: 5b:da:14:7e:f6:27:53:2e:6e:08:f8:cd:52:d0:b5:c9:be:9b: 42:60:83:d1:be:8c:bb:32:3a:ce:9f:59:d8:44:4a:6c:45:0f: 1f:54:68:28:21:9a:e2:ad:8b:32:f8:4c:4e:57:8a:98:f3:37: cd:00:3f:b1:fd:9e:db:ba:35:84:47:3b:63:96:18:d7:64:03: 14:06:1b:0e:c9:0a:3a:b9:5f:7e:e3:ce:af:1f:0e:6f:50:fd: 44:99:ed:94:62:fd:af:b5:a7:1f:b1:1a:fa:fb:16:79:41:d9: 67:67:48:dd:1e:a7:8b:7f:c5:b3:eb:5f:ba:0f:07:d7:06:f2: 2a:4d:d2:2f:6e:b2:16:3d:48:b6:16:72:a8:d1:2f:18:f4:17: 56:b8:b2:e1:a0:c5:d9:95:ee:d8:6b:58:c3:c9:53:f9:9b:f8: 9a:3d:7c:45:2b:57:70:ba:c1:d7:e0:8c:a9:56:35:41:5e:6c: d6:df:a5:c7:d8:c8:56:82:9f:ec:4a:56:b9:ad:3e:a6:64:e1: 61:92:5c:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU0NkUxMTAvBgNVBAUTKDZDNUE1ODlGOTI0Q0U5QkVEMUZEODlGNUFGRjYzMEM5 Mjc1NzQ0MjAwHhcNMjQwNDMwMjIxNjI0WhcNMjQwNTA3MjIxNjI0WjAYMRYwFAYD VQQDEw02NjMxNmRiOC05MWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQv6MXuoxZeD7izmhhojP/gdCngef3lRMJccJMuixvZaWugbYtgB/U1UQOV/ WVgGjOQFbFQHUxJmpo9Jnk5iYGzKLohyMqiLX3tW2wyW65EOH7cQKis5AepwIlZM 0GoMs2AUpPncl0rxSRApEUDus1rkmQPUAsW6krh7lu20bGSoyf+shdTJ8hCN3UvE F/nMu7ve8RipwFqugzNC03LU9w693PiT/QHPFSCP7OX2dY0sypbDy2hxTx4V1A1a T6cpWYLjWRsfosc5nFxWSAaG6/Gxq8++O+X68EVV3eH9NTa0lOZJzM94zFszxeFz NEQmVEEDBo5eKTiQFkpQwfPsnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL1mKhd5 isDKMR0S4iZec2Tri4PUMB8GA1UdIwQYMBaAFGxaWJ+STOm+0f2J9a/2MMknV0Qg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTQ2RS8wQ0Q0MURBOEI3 NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZiN1JfWW4xcl9Zd3lTZFhS Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JGcFluNUpNNmI3Ul9ZbjFyX1l3eVNkWFJDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTQ2RS8wQ0Q0MURBOEI3NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZi N1JfWW4xcl9Zd3lTZFhSQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGr5FtfhKi8jQTpFv6Q7uYtVPqrQSo/Uvv5lJMgB/mIV97HG4gTv6R wCrXU0pD6V08nMCJVypb2hR+9idTLm4I+M1S0LXJvptCYIPRvoy7MjrOn1nYREps RQ8fVGgoIZrirYsy+ExOV4qY8zfNAD+x/Z7bujWERztjlhjXZAMUBhsOyQo6uV9+ 486vHw5vUP1Eme2UYv2vtacfsRr6+xZ5QdlnZ0jdHqeLf8Wz61+6DwfXBvIqTdIv brIWPUi2FnKo0S8Y9BdWuLLhoMXZle7Ya1jDyVP5m/iaPXxFK1dwusHX4IypVjVB XmzW36XH2MhWgp/sSla5rT6mZOFhklzC -----END CERTIFICATE-----Generated at Tue Apr 30 23:05:08 2024 by rpki-client on console-ams.rpki-client.org