$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft File: -Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft (raw, json) Hash identifier: Tr4/Oeh9fnlYpHmpht8SiMreUPQEWka1qv2sZYpMN2g= Subject key identifier: E5:FB:79:86:1A:43:26:FF:48:43:BF:D7:ED:D9:19:8C:B5:22:E6:97 Authority key identifier: F8:18:FC:98:8E:C7:03:2C:3E:2C:6A:48:A5:54:98:AB:7C:D5:65:FD Certificate issuer: /CN=A91B0F3F/serialNumber=F818FC988EC7032C3E2C6A48A55498AB7CD565FD Certificate serial: 092A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft Manifest number: 0925 Signing time: Fri 26 Apr 2024 21:10:16 +0000 Manifest this update: Fri 26 Apr 2024 21:10:16 +0000 Manifest next update: Fri 03 May 2024 21:10:16 +0000 Files and hashes: 1: -Bj8mI7HAyw-LGpIpVSYq3zVZf0.crl (hash: Dwf/lm/JRm9NuiaKQxqkCoy2A8ZXOUAp7SxHZ1XiDuk=) 2: C886095278C311EAA3BED75BC4F9AE02.roa (hash: SVtmGwyhB32ZGIS16n8R5t7ovEdBgp8427iSC18Jg6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.crl rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:10:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2346 (0x92a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F3F/serialNumber=F818FC988EC7032C3E2C6A48A55498AB7CD565FD Validity Not Before: Apr 26 21:10:16 2024 GMT Not After : May 3 21:10:16 2024 GMT Subject: CN=662c1838-24a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:41:2b:6a:52:b6:16:09:29:ed:24:a3:93:30: 76:e8:e0:30:4d:b2:a0:a4:3d:18:1a:e4:11:cb:96: 77:4b:c5:e3:56:d4:f0:c7:ce:89:2f:83:87:c1:b6: 2f:ca:83:78:6f:f9:2d:ac:05:3d:3e:6e:34:45:61: 9a:04:42:c5:e5:c8:85:3f:5e:e9:67:da:ac:d7:23: 09:d8:de:db:4d:2a:82:74:c3:84:1f:ba:b8:a5:3f: 90:70:cf:e1:cb:d8:5d:5b:80:a2:c9:c9:be:c5:ce: d0:b6:ce:fb:74:62:36:96:94:76:d1:31:ea:1f:7a: d2:e6:ab:e3:65:41:f0:43:b1:f2:57:3e:ad:19:83: 9a:29:4d:2d:2d:61:53:3f:d6:b0:3f:48:34:b7:64: 49:f7:b1:a6:5a:ea:4a:9b:c2:a5:54:43:3a:00:a5: c5:27:e0:34:e7:df:2f:65:e8:9f:07:c4:51:90:7a: b2:d0:43:64:dc:f0:d7:40:c9:0e:a5:af:07:38:a7: 5e:70:c7:5a:8f:b1:54:5d:49:cf:1a:2c:9a:5a:86: f6:64:a6:45:09:78:12:e4:a8:cb:3f:9a:bc:48:9c: 31:c4:b6:4e:27:01:80:e4:2d:93:b2:27:d4:67:36: a7:8d:01:41:57:81:99:15:7a:de:bb:7a:c8:ad:6e: 72:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:FB:79:86:1A:43:26:FF:48:43:BF:D7:ED:D9:19:8C:B5:22:E6:97 X509v3 Authority Key Identifier: keyid:F8:18:FC:98:8E:C7:03:2C:3E:2C:6A:48:A5:54:98:AB:7C:D5:65:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:1a:ad:b5:15:43:f2:3b:22:71:80:25:80:cc:52:9e:ed:34: bc:5f:b4:81:3b:e8:45:10:23:02:28:32:c3:e0:1b:c7:71:b7: f6:2f:ca:b8:c1:0b:2a:4d:d7:45:45:0b:3c:03:5e:cc:0d:60: d0:3a:80:b0:ce:8e:6b:6b:e8:4f:cf:cf:dd:c8:f1:f0:12:2b: c0:ff:52:bd:4a:78:e5:90:63:b2:9c:2c:c4:fb:98:95:41:70: fa:37:b3:57:2c:72:18:e9:1f:4d:31:a6:12:8e:79:a8:a8:97: 5d:11:df:e4:69:9c:ee:b6:da:a8:0c:94:a1:43:1f:45:7b:9a: 68:3e:dd:fc:9b:a8:c6:01:ef:a5:14:48:63:e0:1b:d1:1e:ce: 47:12:e7:06:93:43:c1:7c:8c:22:66:cc:0a:1b:b9:b9:7f:f4: 99:f0:7d:50:0b:97:47:09:a7:aa:65:22:09:d4:8e:6a:e6:2c: 8f:3f:79:70:f4:f5:d1:ec:7a:1f:de:ad:7e:2f:39:f2:10:d1: d4:af:78:7a:6f:84:16:70:08:ab:24:cb:b8:dc:29:a1:26:bd: c4:72:5e:33:8b:fb:a7:9b:ea:4e:96:61:eb:e0:25:c6:8f:af: 00:a2:d9:9f:73:01:33:84:33:5b:2b:2b:60:f0:ae:29:34:78: 68:d7:b6:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBGM0YxMTAvBgNVBAUTKEY4MThGQzk4OEVDNzAzMkMzRTJDNkE0OEE1NTQ5OEFC N0NENTY1RkQwHhcNMjQwNDI2MjExMDE2WhcNMjQwNTAzMjExMDE2WjAYMRYwFAYD VQQDEw02NjJjMTgzOC0yNGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkEralK2Fgkp7SSjkzB26OAwTbKgpD0YGuQRy5Z3S8XjVtTwx86JL4OHwbYv yoN4b/ktrAU9Pm40RWGaBELF5ciFP17pZ9qs1yMJ2N7bTSqCdMOEH7q4pT+QcM/h y9hdW4Ciycm+xc7Qts77dGI2lpR20THqH3rS5qvjZUHwQ7HyVz6tGYOaKU0tLWFT P9awP0g0t2RJ97GmWupKm8KlVEM6AKXFJ+A0598vZeifB8RRkHqy0ENk3PDXQMkO pa8HOKdecMdaj7FUXUnPGiyaWob2ZKZFCXgS5KjLP5q8SJwxxLZOJwGA5C2TsifU ZzanjQFBV4GZFXreu3rIrW5ytQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOX7eYYa Qyb/SEO/1+3ZGYy1IuaXMB8GA1UdIwQYMBaAFPgY/JiOxwMsPixqSKVUmKt81WX9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEYzRi8wOTM3M0FENjc4 QzIxMUVBQkQ3NzIzNTlDNEY5QUUwMi8tQmo4bUk3SEF5dy1MR3BJcFZTWXEzelZa ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1CajhtSTdIQXl3LUxHcElwVlNZcTN6VlpmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MEYzRi8wOTM3M0FENjc4QzIxMUVBQkQ3NzIzNTlDNEY5QUUwMi8tQmo4bUk3SEF5 dy1MR3BJcFZTWXEzelZaZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALGq21FUPyOyJxgCWAzFKe7TS8X7SBO+hFECMCKDLD4BvHcbf2L8q4 wQsqTddFRQs8A17MDWDQOoCwzo5ra+hPz8/dyPHwEivA/1K9SnjlkGOynCzE+5iV QXD6N7NXLHIY6R9NMaYSjnmoqJddEd/kaZzuttqoDJShQx9Fe5poPt38m6jGAe+l FEhj4BvRHs5HEucGk0PBfIwiZswKG7m5f/SZ8H1QC5dHCaeqZSIJ1I5q5iyPP3lw 9PXR7Hof3q1+LznyENHUr3h6b4QWcAirJMu43CmhJr3Ecl4zi/unm+pOlmHr4CXG j68AotmfcwEzhDNbKytg8K4pNHho17a3 -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:15 2024 by rpki-client on console-ams.rpki-client.org