$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft File: fBlP7bilyMl2697IST3zw_CMyOI.mft (raw, json) Hash identifier: YbFjN1NgfMx1pT/KthxI+N7Cw9pLaLDORCWFiidpJek= Subject key identifier: A9:C2:E4:50:FB:2C:5A:9C:36:49:E2:18:6F:3C:B5:B7:56:23:8F:6E Authority key identifier: 7C:19:4F:ED:B8:A5:C8:C9:76:EB:DE:C8:49:3D:F3:C3:F0:8C:C8:E2 Certificate issuer: /CN=A91BE056/serialNumber=7C194FEDB8A5C8C976EBDEC8493DF3C3F08CC8E2 Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft Manifest number: 2B Signing time: Tue 21 May 2024 01:45:47 +0000 Manifest this update: Tue 21 May 2024 01:45:46 +0000 Manifest next update: Tue 28 May 2024 01:45:46 +0000 Files and hashes: 1: fBlP7bilyMl2697IST3zw_CMyOI.crl (hash: RHfQrbltWY1m+9hXuX7yYutvYB1dAzpCz0CqpNJdJsE=) 2: D6406BBCD7A311EE8B9C577CC4F9AE02.roa (hash: WIfVvZT+V2Z1akkMsXQjkEbJurR3SnLoQoZ+2ME8w24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.crl rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 01:45:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE056/serialNumber=7C194FEDB8A5C8C976EBDEC8493DF3C3F08CC8E2 Validity Not Before: May 21 01:45:46 2024 GMT Not After : May 28 01:45:46 2024 GMT Subject: CN=664bfccb-cdaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:49:a1:48:32:03:77:e3:55:91:71:19:99:a6: c5:0e:a6:39:23:1c:30:c7:3b:0e:3b:f3:fa:16:84: c0:43:ac:02:df:c6:94:46:4c:0c:f7:73:23:3d:25: c8:a7:c6:16:71:90:85:e2:67:ce:24:46:7c:4e:37: 45:9b:2d:a2:3b:e4:95:1e:c1:92:fc:3a:65:2a:d0: a2:ea:71:c4:1e:23:16:63:a0:94:e9:73:5b:cf:23: bb:f7:f7:9a:c5:1a:b0:c0:61:79:92:b5:35:c1:00: 89:cd:18:b4:89:4f:04:84:65:a9:55:db:18:32:09: b9:06:f6:c6:b1:5d:f2:79:07:c6:b7:da:43:9b:58: 7f:03:4c:a8:d3:b6:53:84:79:45:07:24:19:a2:2e: 93:8f:6b:e7:06:c7:48:b7:09:c8:7e:31:88:0f:27: 19:7e:17:5e:e4:2c:62:29:8d:2e:15:ae:5e:4c:53: 58:53:9c:f9:9f:50:67:92:73:58:1c:2c:3b:4a:d8: ab:56:15:8f:ca:bb:ed:5f:73:3e:9a:49:9f:34:89: c4:f9:e3:45:f8:e8:2d:a6:66:27:de:6d:b0:24:8f: da:6c:52:d2:cf:ef:00:af:39:1e:a2:e9:c9:78:97: 25:52:62:f7:1e:c5:48:d3:b7:85:3f:cc:b3:e6:5e: 5f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:C2:E4:50:FB:2C:5A:9C:36:49:E2:18:6F:3C:B5:B7:56:23:8F:6E X509v3 Authority Key Identifier: keyid:7C:19:4F:ED:B8:A5:C8:C9:76:EB:DE:C8:49:3D:F3:C3:F0:8C:C8:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:22:16:9f:52:67:16:6c:9f:77:12:c8:d3:5d:7e:d5:cc:e4: be:96:4f:21:bc:06:05:df:ff:a1:a1:fd:fa:f3:02:14:30:52: 17:4e:39:86:dd:b4:0c:72:1c:86:7a:6e:c3:a3:07:16:92:0b: c1:66:f3:64:54:92:3a:58:df:7d:57:3c:86:1c:6b:6e:53:e3: f2:a8:e0:d1:65:6d:ec:fb:4e:d8:4a:e7:60:d2:d0:ba:79:77: ca:29:b4:f7:0e:52:69:c6:97:a0:86:34:df:6a:ec:c4:d5:f0: d5:01:17:9b:ef:f5:47:01:44:4b:28:85:ca:a1:75:3b:12:cd: 67:43:2c:da:43:ee:0c:30:91:12:df:13:41:50:8f:f3:f8:48: f1:ac:3a:f4:ad:f4:8b:30:ca:fe:ef:08:74:5e:35:27:b1:5f: f7:49:b5:f9:20:eb:b2:42:61:bc:f4:c2:c9:f0:94:5e:6f:3b: 83:84:31:5d:9b:86:3b:53:24:ee:67:f6:3c:09:ab:84:7d:c7: 6e:44:b8:2c:1b:86:9f:1b:a5:38:1d:ec:6c:4d:13:aa:37:ea: 89:22:54:ca:3d:6e:9b:65:61:f3:13:14:41:2f:ba:1d:d8:8a: e0:b7:fd:31:bd:0b:29:70:35:fd:83:4e:a0:09:7c:0d:56:35: c1:49:3e:14 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RTA1NjExMC8GA1UEBRMoN0MxOTRGRURCOEE1QzhDOTc2RUJERUM4NDkzREYzQzNG MDhDQzhFMjAeFw0yNDA1MjEwMTQ1NDZaFw0yNDA1MjgwMTQ1NDZaMBgxFjAUBgNV BAMTDTY2NGJmY2NiLWNkYWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWSaFIMgN341WRcRmZpsUOpjkjHDDHOw478/oWhMBDrALfxpRGTAz3cyM9Jcin xhZxkIXiZ84kRnxON0WbLaI75JUewZL8OmUq0KLqccQeIxZjoJTpc1vPI7v395rF GrDAYXmStTXBAInNGLSJTwSEZalV2xgyCbkG9saxXfJ5B8a32kObWH8DTKjTtlOE eUUHJBmiLpOPa+cGx0i3Cch+MYgPJxl+F17kLGIpjS4Vrl5MU1hTnPmfUGeSc1gc LDtK2KtWFY/Ku+1fcz6aSZ80icT540X46C2mZifebbAkj9psUtLP7wCvOR6i6cl4 lyVSYvcexUjTt4U/zLPmXl/fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqcLkUPss Wpw2SeIYbzy1t1Yjj24wHwYDVR0jBBgwFoAUfBlP7bilyMl2697IST3zw/CMyOIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFMDU2LzAwM0UxMTU4RDc4 QjExRUVBMkVCRDcxMkM0RjlBRTAyL2ZCbFA3YmlseU1sMjY5N0lTVDN6d19DTXlP SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZkJsUDdiaWx5TWwyNjk3SVNUM3p3X0NNeU9JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJF MDU2LzAwM0UxMTU4RDc4QjExRUVBMkVCRDcxMkM0RjlBRTAyL2ZCbFA3YmlseU1s MjY5N0lTVDN6d19DTXlPSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI0iFp9SZxZsn3cSyNNdftXM5L6WTyG8BgXf/6Gh/frzAhQwUhdOOYbd tAxyHIZ6bsOjBxaSC8Fm82RUkjpY331XPIYca25T4/Ko4NFlbez7TthK52DS0Lp5 d8optPcOUmnGl6CGNN9q7MTV8NUBF5vv9UcBREsohcqhdTsSzWdDLNpD7gwwkRLf E0FQj/P4SPGsOvSt9Iswyv7vCHReNSexX/dJtfkg67JCYbz0wsnwlF5vO4OEMV2b hjtTJO5n9jwJq4R9x25EuCwbhp8bpTgd7GxNE6o36okiVMo9bptlYfMTFEEvuh3Y iuC3/TG9CylwNf2DTqAJfA1WNcFJPhQ= -----END CERTIFICATE-----Generated at Tue May 21 03:39:39 2024 by rpki-client on console-ams.rpki-client.org