$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft File: bzPCWtM2F4RBLEKweYYz0Dslvso.mft (raw, json) Hash identifier: FuBQBmaJnoGdotLQI+6oRbmK+/P13CrYoWCj//CBgmg= Subject key identifier: F6:65:61:CD:A8:FD:BA:57:91:CB:06:71:5D:72:44:9C:49:0E:2D:42 Authority key identifier: 6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA Certificate issuer: /CN=A91AB027/serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Certificate serial: 0E68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft Manifest number: 0E61 Signing time: Sat 04 May 2024 18:34:25 +0000 Manifest this update: Sat 04 May 2024 18:34:25 +0000 Manifest next update: Sat 11 May 2024 18:34:25 +0000 Files and hashes: 1: bzPCWtM2F4RBLEKweYYz0Dslvso.crl (hash: OUSgbRPpewLDjple5IaFIEi1tXIKsAemLwrBo/4t8nI=) 2: 62C1F5587ACD11E9AC0A867BC4F9AE02.roa (hash: iRSQETHESAyDDM5qn0eV59S3RDONowxlQlDgLk0Ew4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:34:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3688 (0xe68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB027/serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Validity Not Before: May 4 18:34:25 2024 GMT Not After : May 11 18:34:25 2024 GMT Subject: CN=66367fb1-83ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:98:ce:db:fd:0e:9d:15:f9:ea:da:f3:f7:95: a0:51:db:e3:ef:6b:d7:1e:70:48:59:9d:e8:31:b4: 52:3a:97:c6:84:7f:fe:f0:90:27:d4:81:1a:a3:62: b0:44:ec:47:47:b8:f3:3c:4f:a3:cf:cf:70:9e:75: 5b:df:34:6d:e6:5b:9f:9a:14:80:0e:aa:5a:b4:b7: 80:0e:87:6c:92:27:28:91:9b:07:e0:78:dd:28:1e: 9d:4f:1f:49:6c:3e:cf:42:85:78:1e:0c:e6:cf:db: 8e:1f:d7:0c:8b:1b:cf:6b:86:70:65:43:7a:c8:ea: 0b:b5:f5:b7:b7:af:77:7e:3d:4b:10:f3:ad:80:70: 80:d3:53:3f:67:b9:ad:10:77:8e:18:a2:fa:a8:e3: 48:67:b7:7d:b6:0b:5c:15:6d:75:48:02:89:49:af: 60:4c:cb:0e:07:42:19:d3:15:bd:3e:ef:62:3b:49: b6:1c:63:13:05:45:9f:2e:2e:7c:03:e0:1f:04:e9: 9f:40:61:4a:10:fc:9b:15:57:88:c6:63:91:32:9a: 72:4f:29:94:17:d8:db:ac:db:0a:6e:e1:bb:24:31: 70:92:a5:13:1e:3f:18:c9:74:cb:81:f6:b6:f5:25: d7:b2:a4:4c:29:ce:a2:c7:46:ca:9c:52:ba:45:af: 40:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:65:61:CD:A8:FD:BA:57:91:CB:06:71:5D:72:44:9C:49:0E:2D:42 X509v3 Authority Key Identifier: keyid:6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:ca:20:87:d8:bc:be:f3:ba:11:09:36:24:79:e4:62:11:74: df:c1:6b:26:ad:67:c0:50:b8:7d:21:7b:90:8f:e7:da:52:5a: 62:1c:05:19:48:63:73:f8:d5:0d:82:04:98:e2:f4:f6:31:46: 6e:fb:ce:0e:50:3a:f3:df:6c:7e:18:78:fa:15:37:a7:6e:85: 60:71:e1:ae:03:93:47:65:8e:09:29:5e:f2:ae:77:1e:60:98: 74:72:7d:7f:7e:08:2d:13:c3:8c:57:87:30:8c:54:6d:8e:8a: b1:dc:42:a7:40:f6:2a:48:78:f1:55:a4:35:63:d1:91:78:e6: 85:e4:a8:a5:be:d6:eb:e1:7c:8b:e1:12:af:9c:f2:28:83:53: 41:a7:a4:8c:d5:94:97:ea:77:09:de:e5:ef:15:65:13:48:50: 7d:d4:81:cf:7c:6e:48:fa:dd:1c:ac:89:fb:2a:3e:80:29:99: e4:72:68:75:78:50:b1:a0:17:5f:d2:b4:48:c9:7c:0e:b7:f5: b7:90:34:99:89:06:9f:a9:7a:20:50:ac:6a:72:34:9f:2f:62: 9c:5d:6f:3a:c2:11:69:ad:91:23:3d:62:6e:fd:3c:20:24:ae: 7f:f2:0c:99:6b:d9:c4:f6:3a:79:52:e7:3f:1d:63:2c:eb:87: 92:0f:e8:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwMjcxMTAvBgNVBAUTKDZGMzNDMjVBRDMzNjE3ODQ0MTJDNDJCMDc5ODYzM0Qw M0IyNUJFQ0EwHhcNMjQwNTA0MTgzNDI1WhcNMjQwNTExMTgzNDI1WjAYMRYwFAYD VQQDEw02NjM2N2ZiMS04M2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZjO2/0OnRX56trz95WgUdvj72vXHnBIWZ3oMbRSOpfGhH/+8JAn1IEao2Kw ROxHR7jzPE+jz89wnnVb3zRt5lufmhSADqpatLeADodskicokZsH4HjdKB6dTx9J bD7PQoV4Hgzmz9uOH9cMixvPa4ZwZUN6yOoLtfW3t693fj1LEPOtgHCA01M/Z7mt EHeOGKL6qONIZ7d9tgtcFW11SAKJSa9gTMsOB0IZ0xW9Pu9iO0m2HGMTBUWfLi58 A+AfBOmfQGFKEPybFVeIxmORMppyTymUF9jbrNsKbuG7JDFwkqUTHj8YyXTLgfa2 9SXXsqRMKc6ix0bKnFK6Ra9AkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZlYc2o /bpXkcsGcV1yRJxJDi1CMB8GA1UdIwQYMBaAFG8zwlrTNheEQSxCsHmGM9A7Jb7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjAyNy82OEY3NTkxMDcz NDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0UkJMRUt3ZVlZejBEc2x2 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J6UENXdE0yRjRSQkxFS3dlWVl6MERzbHZzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjAyNy82OEY3NTkxMDczNDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0 UkJMRUt3ZVlZejBEc2x2c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbyiCH2Ly+87oRCTYkeeRiEXTfwWsmrWfAULh9IXuQj+faUlpiHAUZ SGNz+NUNggSY4vT2MUZu+84OUDrz32x+GHj6FTenboVgceGuA5NHZY4JKV7yrnce YJh0cn1/fggtE8OMV4cwjFRtjoqx3EKnQPYqSHjxVaQ1Y9GReOaF5Kilvtbr4XyL 4RKvnPIog1NBp6SM1ZSX6ncJ3uXvFWUTSFB91IHPfG5I+t0crIn7Kj6AKZnkcmh1 eFCxoBdf0rRIyXwOt/W3kDSZiQafqXogUKxqcjSfL2KcXW86whFprZEjPWJu/Twg JK5/8gyZa9nE9jp5Uuc/HWMs64eSD+hv -----END CERTIFICATE-----Generated at Sat May 4 19:58:42 2024 by rpki-client on console-ams.rpki-client.org