$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft File: BQ5HmwmNZLazhlsr5GiFdeotTVE.mft (raw, json) Hash identifier: bmdmmz6ASmDeuTkGNk8bGRJ5cvVYCc/TXTIo5aDRd/0= Subject key identifier: 20:A7:7D:C5:1A:50:A6:81:35:CE:B0:D5:32:CC:55:F9:7E:0E:22:BA Authority key identifier: 05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 Certificate issuer: /CN=A91AB457/serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Certificate serial: 0AF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft Manifest number: 0AF9 Signing time: Thu 02 May 2024 20:02:21 +0000 Manifest this update: Thu 02 May 2024 20:02:21 +0000 Manifest next update: Thu 09 May 2024 20:02:21 +0000 Files and hashes: 1: BQ5HmwmNZLazhlsr5GiFdeotTVE.crl (hash: Z/iJup3vwi/foO94BstTXxeOQapwKa6mfuMxFCUSZHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 20:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2809 (0xaf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB457/serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Validity Not Before: May 2 20:02:21 2024 GMT Not After : May 9 20:02:21 2024 GMT Subject: CN=6633f14d-253c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:39:b3:3a:25:56:ae:77:41:c6:f6:6b:b8:d9: 09:46:96:4c:c1:93:1c:c3:34:ed:fa:fa:de:d8:2c: 05:76:46:23:da:33:91:0f:f8:11:1a:ac:3d:df:bd: 33:d3:8f:dd:b0:0f:c1:ee:72:86:73:af:10:cb:c1: 38:c0:df:bd:bc:0e:0a:15:c5:a6:a0:66:01:d3:79: bc:a0:7e:96:5f:5a:7c:d8:67:9e:67:0e:8f:d8:a5: 3d:8c:4d:d0:2a:79:22:12:da:5c:fe:83:bd:7d:1a: d6:5b:fc:ef:b0:81:19:65:9c:18:30:92:dd:f9:1c: 68:21:54:22:8f:b0:d2:fa:6f:67:03:07:de:51:2d: f4:8a:09:af:2f:63:58:ea:de:d9:b9:64:f2:dd:98: 00:45:dc:54:19:c2:75:90:9b:ab:aa:79:cd:28:86: 48:1f:35:1b:91:25:38:04:98:4c:73:ed:c3:db:f9: 61:e2:fd:aa:fe:4c:1f:4b:39:08:26:06:62:2e:42: 66:cb:c3:64:d0:cd:26:5c:2c:f7:ec:ea:e5:68:d4: 5f:8f:09:d3:31:1d:58:b2:d6:4f:97:fc:f0:37:1a: cf:d5:1a:7e:54:e1:cc:fb:aa:23:d6:48:d6:42:d8: 6a:f5:28:f6:0a:11:df:b1:a7:bc:a2:92:a8:80:42: f4:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:A7:7D:C5:1A:50:A6:81:35:CE:B0:D5:32:CC:55:F9:7E:0E:22:BA X509v3 Authority Key Identifier: keyid:05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:d7:fc:74:e2:1f:db:ed:41:cb:e0:45:ec:fb:e7:fb:4b:01: 6a:c7:db:b1:8c:f7:ec:24:06:39:d8:6b:85:7b:f6:e8:98:16: d8:c0:01:9a:06:6e:77:0b:45:e3:7d:19:1f:94:e1:52:cf:2b: 17:12:df:94:87:49:b0:9e:66:4e:e5:7f:54:f0:8d:aa:5a:9d: 25:a9:6c:52:c9:00:92:a9:96:25:10:12:f3:16:12:10:cd:ce: 5f:60:ee:63:c2:57:dd:a2:31:f2:a0:40:76:73:56:0e:e8:fb: e5:12:92:51:ac:c7:e9:85:fd:33:22:dc:89:15:7c:6c:4a:c9: 0d:c9:e5:12:3d:c3:c5:b2:c3:6d:1f:fc:8b:e5:fe:39:92:3f: 40:83:f9:19:dc:6a:79:79:7a:c9:83:95:63:37:57:f5:c0:23: 1c:5b:7e:63:67:4e:80:66:83:55:7d:80:f7:19:06:bb:f6:74: 27:e7:91:bd:ed:bd:f7:c6:85:6f:7c:88:35:b9:a3:32:2e:8c: a1:01:41:52:fb:55:c5:bb:f1:04:8e:bd:67:12:50:68:40:db: 0e:7a:96:46:d9:ad:78:f7:b7:8b:44:e2:c7:a2:a2:29:f6:cd: 58:c3:be:6b:1c:a8:c4:c9:71:81:73:da:c6:ac:1e:95:6d:2f: 9c:ab:c9:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0NTcxMTAvBgNVBAUTKDA1MEU0NzlCMDk4RDY0QjZCMzg2NUIyQkU0Njg4NTc1 RUEyRDRENTEwHhcNMjQwNTAyMjAwMjIxWhcNMjQwNTA5MjAwMjIxWjAYMRYwFAYD VQQDEw02NjMzZjE0ZC0yNTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1TmzOiVWrndBxvZruNkJRpZMwZMcwzTt+vre2CwFdkYj2jORD/gRGqw9370z 04/dsA/B7nKGc68Qy8E4wN+9vA4KFcWmoGYB03m8oH6WX1p82GeeZw6P2KU9jE3Q KnkiEtpc/oO9fRrWW/zvsIEZZZwYMJLd+RxoIVQij7DS+m9nAwfeUS30igmvL2NY 6t7ZuWTy3ZgARdxUGcJ1kJurqnnNKIZIHzUbkSU4BJhMc+3D2/lh4v2q/kwfSzkI JgZiLkJmy8Nk0M0mXCz37OrlaNRfjwnTMR1YstZPl/zwNxrP1Rp+VOHM+6oj1kjW Qthq9Sj2ChHfsae8opKogEL08QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCnfcUa UKaBNc6w1TLMVfl+DiK6MB8GA1UdIwQYMBaAFAUOR5sJjWS2s4ZbK+RohXXqLU1R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjQ1Ny81QUY2NjEwMjFD OTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpMYXpobHNyNUdpRmRlb3RU VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRNUhtd21OWkxhemhsc3I1R2lGZGVvdFRWRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjQ1Ny81QUY2NjEwMjFDOTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpM YXpobHNyNUdpRmRlb3RUVkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+1/x04h/b7UHL4EXs++f7SwFqx9uxjPfsJAY52GuFe/bomBbYwAGa Bm53C0XjfRkflOFSzysXEt+Uh0mwnmZO5X9U8I2qWp0lqWxSyQCSqZYlEBLzFhIQ zc5fYO5jwlfdojHyoEB2c1YO6PvlEpJRrMfphf0zItyJFXxsSskNyeUSPcPFssNt H/yL5f45kj9Ag/kZ3Gp5eXrJg5VjN1f1wCMcW35jZ06AZoNVfYD3GQa79nQn55G9 7b33xoVvfIg1uaMyLoyhAUFS+1XFu/EEjr1nElBoQNsOepZG2a1497eLROLHoqIp 9s1Yw75rHKjEyXGBc9rGrB6VbS+cq8m8 -----END CERTIFICATE-----Generated at Thu May 2 22:28:56 2024 by rpki-client on console-ams.rpki-client.org