$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft File: b2FOWP6Tat901zb1OS3tX9FrdYc.mft (raw, json) Hash identifier: t721c+2k+0Tgy2nKTruvcLqpCJg0ZM25s0ZeKCpDi7k= Subject key identifier: D0:EB:7F:F0:56:27:CD:16:C7:0F:FC:B7:FB:16:7E:C7:AA:B9:6B:95 Authority key identifier: 6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 Certificate issuer: /CN=A91A9B3C/serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Certificate serial: 058E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft Manifest number: 058A Signing time: Sat 27 Apr 2024 00:27:14 +0000 Manifest this update: Sat 27 Apr 2024 00:27:13 +0000 Manifest next update: Sat 04 May 2024 00:27:13 +0000 Files and hashes: 1: b2FOWP6Tat901zb1OS3tX9FrdYc.crl (hash: DfVg8fSbvgJQXjfzYIrQ+ZV+iYwmVmx0300O8D6BWmM=) 2: 00D8BE5286FC11EB8A95642DC4F9AE02.roa (hash: 4KhK9kqJTGDPAJOYCa4lEtI9t9APEbxN6UmdidYEYgk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 00:27:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1422 (0x58e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3C/serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Validity Not Before: Apr 27 00:27:13 2024 GMT Not After : May 4 00:27:13 2024 GMT Subject: CN=662c4661-84aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a3:72:b8:bb:cb:06:e3:7d:94:ae:1e:49:7d: 9b:ec:5d:2f:a5:e7:72:fb:20:9f:ba:a8:a7:4b:43: 89:2c:42:5a:5b:d4:b9:cd:fe:db:4a:f2:7f:87:7c: 7c:3c:e6:42:55:1a:89:3c:2f:b6:65:da:a5:4b:f0: 0f:e1:5f:1e:79:ad:4a:ef:a9:b7:06:10:c4:25:01: c8:1c:38:ab:38:f8:4e:c6:c0:77:e4:22:90:65:c6: 38:e5:2a:35:e8:dc:af:6c:3c:b5:80:01:a8:14:5a: 90:7b:7a:92:cf:00:6d:34:37:2c:4e:8d:ef:c5:03: 7b:3f:be:82:7c:c2:07:f6:ea:c2:2e:04:9d:9d:8a: f7:56:65:12:89:65:0f:01:b7:52:0d:10:2a:3a:d2: 49:d2:cb:6d:44:55:7e:d4:92:5b:ee:71:da:d6:80: e7:bb:aa:4c:f6:9c:34:20:62:46:e7:c3:05:a5:0e: 91:c1:88:4d:41:b1:38:f7:d6:e7:95:29:33:e7:75: 1b:44:99:48:9b:6f:49:98:8a:8a:9f:18:38:4f:34: 02:5f:cd:a3:45:84:ac:33:00:c5:be:f6:a6:17:c6: 8a:39:bd:8b:45:84:12:49:f9:b0:46:a4:3c:ce:ef: 8a:6b:19:6e:27:05:c5:01:dd:06:a5:0c:17:a3:c7: 61:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:EB:7F:F0:56:27:CD:16:C7:0F:FC:B7:FB:16:7E:C7:AA:B9:6B:95 X509v3 Authority Key Identifier: keyid:6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:13:6d:a5:f6:a1:2a:2e:4e:6e:ab:b8:ac:35:1f:ff:12:d3: 96:e7:af:29:69:7d:54:80:68:3d:99:bb:e4:d2:92:ae:cf:28: b7:aa:ec:35:1a:2b:d0:1b:75:4b:30:15:79:ed:86:3a:9f:84: 46:95:04:5d:07:df:90:57:f6:c1:b4:7d:85:39:2d:fe:94:55: 7e:fd:0d:f2:c2:e3:7c:1d:e5:37:00:6b:e3:53:87:b6:53:88: 52:f9:a6:a9:e7:40:b7:c4:1f:6a:20:cb:41:f8:ca:1b:ab:a1: 5d:bd:81:89:5a:b2:2f:8e:e3:2d:d6:db:de:31:37:f6:10:8a: 3c:a2:c0:5b:88:3b:e3:52:38:b1:18:cd:68:fd:45:2c:38:a3: cb:e9:5d:5a:39:0f:8f:59:63:14:62:a9:63:b0:a5:d9:3b:05: ec:b2:01:cc:ba:88:7a:b7:bf:9a:89:a3:b0:fd:67:bf:a9:ef: e4:f5:b0:b3:f0:e5:b7:4e:20:bf:4b:05:e4:78:fe:7e:26:07: d2:00:65:95:07:80:3d:d3:76:8f:b1:6d:83:63:cb:01:37:87: 8a:3b:d7:02:77:29:ff:c2:b8:66:02:b2:7d:5f:d4:07:20:9e: bd:d6:f8:a2:d5:a4:3a:f2:e1:13:2f:a7:68:fe:c4:f3:31:dc: 2e:a3:3d:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0MxMTAvBgNVBAUTKDZGNjE0RTU4RkU5MzZBREY3NEQ3MzZGNTM5MkRFRDVG RDE2Qjc1ODcwHhcNMjQwNDI3MDAyNzEzWhcNMjQwNTA0MDAyNzEzWjAYMRYwFAYD VQQDEw02NjJjNDY2MS04NGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKNyuLvLBuN9lK4eSX2b7F0vpedy+yCfuqinS0OJLEJaW9S5zf7bSvJ/h3x8 POZCVRqJPC+2ZdqlS/AP4V8eea1K76m3BhDEJQHIHDirOPhOxsB35CKQZcY45So1 6NyvbDy1gAGoFFqQe3qSzwBtNDcsTo3vxQN7P76CfMIH9urCLgSdnYr3VmUSiWUP AbdSDRAqOtJJ0sttRFV+1JJb7nHa1oDnu6pM9pw0IGJG58MFpQ6RwYhNQbE499bn lSkz53UbRJlIm29JmIqKnxg4TzQCX82jRYSsMwDFvvamF8aKOb2LRYQSSfmwRqQ8 zu+KaxluJwXFAd0GpQwXo8dhgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNDrf/BW J80Wxw/8t/sWfsequWuVMB8GA1UdIwQYMBaAFG9hTlj+k2rfdNc29Tkt7V/Ra3WH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzQy8zRjMzNjJEQTg2 RkExMUVCQjNDN0JCMjlDNEY5QUUwMi9iMkZPV1A2VGF0OTAxemIxT1MzdFg5RnJk WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyRk9XUDZUYXQ5MDF6YjFPUzN0WDlGcmRZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIzQy8zRjMzNjJEQTg2RkExMUVCQjNDN0JCMjlDNEY5QUUwMi9iMkZPV1A2VGF0 OTAxemIxT1MzdFg5RnJkWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFE22l9qEqLk5uq7isNR//EtOW568paX1UgGg9mbvk0pKuzyi3quw1 GivQG3VLMBV57YY6n4RGlQRdB9+QV/bBtH2FOS3+lFV+/Q3ywuN8HeU3AGvjU4e2 U4hS+aap50C3xB9qIMtB+Mobq6FdvYGJWrIvjuMt1tveMTf2EIo8osBbiDvjUjix GM1o/UUsOKPL6V1aOQ+PWWMUYqljsKXZOwXssgHMuoh6t7+aiaOw/We/qe/k9bCz 8OW3TiC/SwXkeP5+JgfSAGWVB4A903aPsW2DY8sBN4eKO9cCdyn/wrhmArJ9X9QH IJ691vii1aQ68uETL6do/sTzMdwuoz3Q -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:11 2024 by rpki-client on console-ams.rpki-client.org