$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft File: b8Lt8MURUqO-wRSaG9su2yk8nZU.mft (raw, json) Hash identifier: h0nZ5Gd2TF124uhI3xt6UezG4nQX8CEck++teuCDoJs= Subject key identifier: B8:F1:9D:6E:17:8D:A2:C2:8C:0C:05:5C:52:FE:6C:03:90:80:53:9C Authority key identifier: 6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 Certificate issuer: /CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Certificate serial: 0C9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft Manifest number: 0C75 Signing time: Sun 02 Jun 2024 19:10:01 +0000 Manifest this update: Sun 02 Jun 2024 19:10:00 +0000 Manifest next update: Sun 09 Jun 2024 19:10:00 +0000 Files and hashes: 1: b8Lt8MURUqO-wRSaG9su2yk8nZU.crl (hash: X1CxikrBn1TqnWfwmuepg0BcHBxMkNiOS1d3dPmJ7Lk=) 2: 11815E36135311EE94A8A114C4F9AE02.roa (hash: DQ13r92QYX16Mb/U6hPZ8guDdpni9HaQRtj9hjL00w4=) 3: 204459886A4211EDB5C5EC63C4F9AE02.roa (hash: Sq8uiyerrkKYOGJIifBc8UcljCMgS+tMTePx7O1v9zk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 19:09:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3226 (0xc9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Validity Not Before: Jun 2 19:10:00 2024 GMT Not After : Jun 9 19:10:00 2024 GMT Subject: CN=665cc388-139f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f7:ff:52:96:52:e1:b0:01:be:68:05:63:db: e7:18:c8:38:7b:77:82:bb:46:99:d6:58:30:db:09: 80:b9:57:7a:a1:a7:6b:14:44:83:54:de:9e:fc:89: bb:48:12:a9:aa:10:b4:5b:6e:1b:d6:a8:ac:be:36: 93:f1:53:36:77:76:68:82:4c:19:6f:72:b5:05:9e: 5e:c5:81:1b:52:10:15:dc:f9:2d:45:db:62:ed:8a: 61:d5:a3:72:22:ac:eb:1a:b4:44:51:b2:b8:a3:bd: 2b:6a:22:9c:a5:5e:78:33:e9:12:b2:db:05:5d:65: 08:2d:18:d6:92:1c:62:c6:bf:21:d9:7a:0b:57:d1: 15:96:fc:14:b5:0c:d5:34:9f:56:f4:e6:0b:89:42: 36:56:a5:be:d5:d7:bf:88:6a:46:60:f7:bd:4e:ed: 42:c4:00:cf:7f:41:87:54:68:09:f0:b4:c3:1e:1b: 94:c9:19:d1:6c:dd:87:8a:1f:03:11:c7:77:9e:66: 20:6d:5c:fe:e7:df:cb:ec:32:fa:23:72:33:c1:43: 7a:ad:90:76:43:93:9b:62:70:d3:b5:1f:89:8c:c6: d3:4d:c1:fa:93:b7:32:96:81:a1:32:37:b4:f5:17: d6:1b:2b:8d:8d:8a:13:1d:d9:f6:7b:f6:f0:8d:54: 5b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:F1:9D:6E:17:8D:A2:C2:8C:0C:05:5C:52:FE:6C:03:90:80:53:9C X509v3 Authority Key Identifier: keyid:6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:01:24:4d:f3:81:95:1d:42:a5:77:c3:16:49:f2:90:42:73: cd:39:9e:2b:8d:6b:f1:32:09:01:ac:97:91:1a:29:5e:1e:15: 55:66:e7:0a:5d:06:66:cb:40:61:32:48:ae:3a:f9:9a:d8:35: 0d:a2:8e:aa:44:a4:7a:1b:dd:6e:ee:86:c7:4b:a4:b6:fe:fb: 83:e9:b4:fa:cc:44:66:45:04:3a:f1:59:08:74:76:2a:3e:06: d0:97:9c:3f:0d:0d:ab:3a:18:03:e0:b3:13:c6:54:26:a0:43: 35:5a:23:72:8c:37:4c:c3:b2:fd:d1:d9:5d:af:ea:54:18:8f: b9:0d:dc:9e:b5:d1:07:86:cb:3d:5c:7a:b3:fd:2a:7a:d4:45: 8b:bb:d2:c4:f1:5c:c0:81:41:2d:38:69:67:23:ad:19:16:6f: a0:fc:3c:c0:67:cd:5d:95:1a:94:b9:ff:6c:b3:df:ca:81:58: 00:8e:45:c9:1a:72:e5:18:92:3b:f5:e3:ad:78:17:2e:28:90: c9:29:86:62:4e:86:5b:28:84:df:e9:ae:ff:c6:57:42:6c:f6: 7d:db:af:d2:2e:80:7a:a1:67:e2:5d:b1:0c:b2:bc:16:ae:32: 8f:bc:24:de:4d:91:83:f3:3d:3c:c1:9f:1e:d5:06:c7:d3:34: 75:a2:93:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEyOEIxMTAvBgNVBAUTKDZGQzJFREYwQzUxMTUyQTNCRUMxMTQ5QTFCREIyRURC MjkzQzlEOTUwHhcNMjQwNjAyMTkxMDAwWhcNMjQwNjA5MTkxMDAwWjAYMRYwFAYD VQQDEw02NjVjYzM4OC0xMzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvf/UpZS4bABvmgFY9vnGMg4e3eCu0aZ1lgw2wmAuVd6oadrFESDVN6e/Im7 SBKpqhC0W24b1qisvjaT8VM2d3ZogkwZb3K1BZ5exYEbUhAV3PktRdti7Yph1aNy IqzrGrREUbK4o70raiKcpV54M+kSstsFXWUILRjWkhxixr8h2XoLV9EVlvwUtQzV NJ9W9OYLiUI2VqW+1de/iGpGYPe9Tu1CxADPf0GHVGgJ8LTDHhuUyRnRbN2Hih8D Ecd3nmYgbVz+59/L7DL6I3IzwUN6rZB2Q5ObYnDTtR+JjMbTTcH6k7cyloGhMje0 9RfWGyuNjYoTHdn2e/bwjVRbeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLjxnW4X jaLCjAwFXFL+bAOQgFOcMB8GA1UdIwQYMBaAFG/C7fDFEVKjvsEUmhvbLtspPJ2V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTI4Qi8xRTAyNjRBQURC QzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVxTy13UlNhRzlzdTJ5azhu WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4THQ4TVVSVXFPLXdSU2FHOXN1MnlrOG5aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTI4Qi8xRTAyNjRBQURCQzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVx Ty13UlNhRzlzdTJ5azhuWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeASRN84GVHUKld8MWSfKQQnPNOZ4rjWvxMgkBrJeRGileHhVVZucK XQZmy0BhMkiuOvma2DUNoo6qRKR6G91u7obHS6S2/vuD6bT6zERmRQQ68VkIdHYq PgbQl5w/DQ2rOhgD4LMTxlQmoEM1WiNyjDdMw7L90dldr+pUGI+5DdyetdEHhss9 XHqz/Sp61EWLu9LE8VzAgUEtOGlnI60ZFm+g/DzAZ81dlRqUuf9ss9/KgVgAjkXJ GnLlGJI79eOteBcuKJDJKYZiToZbKITf6a7/xldCbPZ926/SLoB6oWfiXbEMsrwW rjKPvCTeTZGD8z08wZ8e1QbH0zR1opPY -----END CERTIFICATE-----Generated at Sun Jun 2 21:14:28 2024 by rpki-client on console-ams.rpki-client.org