$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft File: bLMNwI7ylzDp3wScVPOVgquFvpQ.mft (raw, json) Hash identifier: ZydmhEEcPYSWQNNpd6SKCOWyJQ5+rS2uzHFiLL6OPYc= Subject key identifier: A8:68:08:34:0F:D0:FC:9A:80:E3:C4:4D:6F:C3:B8:04:D3:EA:22:25 Authority key identifier: 6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 Certificate issuer: /CN=A91C40D1/serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Certificate serial: 11F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft Manifest number: 11E9 Signing time: Sat 04 May 2024 17:51:55 +0000 Manifest this update: Sat 04 May 2024 17:51:55 +0000 Manifest next update: Sat 11 May 2024 17:51:55 +0000 Files and hashes: 1: bLMNwI7ylzDp3wScVPOVgquFvpQ.crl (hash: xWVb0ZDLl3oDTIA9hNOzoK5UcllskOshPkilFk7MsoM=) 2: 18272628C30B11E8A6851824C4F9AE02.roa (hash: 9SmWWOaHymnZUSB2T6K0Qc9CExvFs7l1sZE6rcEX2Fg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4595 (0x11f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D1/serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Validity Not Before: May 4 17:51:55 2024 GMT Not After : May 11 17:51:55 2024 GMT Subject: CN=663675bb-d019 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8f:8b:de:7e:77:66:5a:b8:45:d8:5f:c4:28: 50:0f:ef:af:6c:2a:22:62:fc:20:be:2d:38:3e:ec: 5c:03:ad:52:ba:00:93:4d:b6:a1:c1:81:17:10:28: 94:c8:74:cc:28:3d:21:4d:bf:2e:0e:0b:cf:55:a4: 9e:4f:34:0e:c5:6c:5d:2a:60:72:34:89:6f:09:8a: 36:05:96:23:00:b6:f9:2e:8b:ac:54:00:4c:b5:70: 69:03:3b:3c:61:76:ee:07:b2:0a:b6:84:b3:8c:64: fb:08:31:f1:38:2c:72:b1:ca:d8:c8:d0:3b:f8:bc: ba:8a:f5:30:49:ba:26:51:b9:96:21:94:b4:9c:e4: 22:95:96:9d:e1:57:6d:da:2c:ad:d1:0f:25:35:71: b8:b2:cb:0a:ae:28:13:a5:66:ec:43:f4:a4:e8:80: 4b:46:a3:51:47:bf:3e:c1:8c:55:ec:f9:c0:38:3b: ab:43:12:4b:97:44:a1:0c:39:8c:ce:68:a7:5f:c5: e8:ff:f4:12:0b:07:5d:d2:3c:a0:8c:e7:f4:d6:53: 30:22:31:98:e3:c1:4a:59:a4:9f:07:d0:d3:3d:1c: 65:f0:7b:f5:49:7c:3f:a3:5b:99:8d:81:f3:89:df: 23:2a:7c:4e:f0:87:32:87:01:e8:48:61:d0:68:57: e0:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:68:08:34:0F:D0:FC:9A:80:E3:C4:4D:6F:C3:B8:04:D3:EA:22:25 X509v3 Authority Key Identifier: keyid:6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:be:a2:e4:24:ad:3b:a4:36:b0:bc:0f:9f:c5:be:b2:13:3c: 2f:0c:81:5b:4f:44:92:b4:2a:1d:28:f8:e4:a2:79:8c:38:4c: 43:6a:53:60:ef:86:18:65:8b:22:73:fd:87:d7:8c:2b:0e:cd: c2:d1:32:49:f3:65:78:6c:02:b1:7c:fe:05:31:29:60:41:47: 1d:4a:81:d3:c8:83:d1:6e:31:fa:d8:60:f4:e0:df:ad:fb:85: 83:ba:77:66:28:a3:3c:42:56:80:64:b9:b7:d6:20:fb:54:77: e6:bc:d0:b1:b1:7e:eb:13:45:d6:23:8f:a1:af:92:60:cd:08: 18:c7:fe:2b:0f:54:ea:5a:7c:00:0c:88:74:71:46:59:75:f0: 33:b2:74:0b:01:f5:63:73:82:4d:1c:a3:72:22:83:69:9f:fa: 55:f0:10:af:1c:ab:39:e4:d7:eb:9d:c5:0c:72:c7:e0:a4:13: f1:36:fa:e1:63:ec:66:98:e4:1c:f7:a3:1b:e3:29:6e:ae:52: c4:34:2a:c0:e5:8a:2c:6e:48:1e:b4:aa:77:70:6a:33:3d:31: 0f:c5:68:39:e1:4d:93:e1:ff:8b:0b:8f:35:cd:86:a4:cb:1d: 61:9f:42:6e:6e:6e:26:d5:bb:d2:74:93:c0:cc:32:ac:55:29: 41:5e:b4:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDExMTAvBgNVBAUTKDZDQjMwREMwOEVGMjk3MzBFOURGMDQ5QzU0RjM5NTgy QUI4NUJFOTQwHhcNMjQwNTA0MTc1MTU1WhcNMjQwNTExMTc1MTU1WjAYMRYwFAYD VQQDEw02NjM2NzViYi1kMDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2o+L3n53Zlq4RdhfxChQD++vbCoiYvwgvi04PuxcA61SugCTTbahwYEXECiU yHTMKD0hTb8uDgvPVaSeTzQOxWxdKmByNIlvCYo2BZYjALb5LousVABMtXBpAzs8 YXbuB7IKtoSzjGT7CDHxOCxyscrYyNA7+Ly6ivUwSbomUbmWIZS0nOQilZad4Vdt 2iyt0Q8lNXG4sssKrigTpWbsQ/Sk6IBLRqNRR78+wYxV7PnAODurQxJLl0ShDDmM zminX8Xo//QSCwdd0jygjOf01lMwIjGY48FKWaSfB9DTPRxl8Hv1SXw/o1uZjYHz id8jKnxO8IcyhwHoSGHQaFfgrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhoCDQP 0PyagOPETW/DuATT6iIlMB8GA1UdIwQYMBaAFGyzDcCO8pcw6d8EnFTzlYKrhb6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBEMS9DQzc4MzBCMEMz MDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6RHAzd1NjVlBPVmdxdUZ2 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JMTU53STd5bHpEcDN3U2NWUE9WZ3F1RnZwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBEMS9DQzc4MzBCMEMzMDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6 RHAzd1NjVlBPVmdxdUZ2cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlvqLkJK07pDawvA+fxb6yEzwvDIFbT0SStCodKPjkonmMOExDalNg 74YYZYsic/2H14wrDs3C0TJJ82V4bAKxfP4FMSlgQUcdSoHTyIPRbjH62GD04N+t +4WDundmKKM8QlaAZLm31iD7VHfmvNCxsX7rE0XWI4+hr5JgzQgYx/4rD1TqWnwA DIh0cUZZdfAzsnQLAfVjc4JNHKNyIoNpn/pV8BCvHKs55NfrncUMcsfgpBPxNvrh Y+xmmOQc96Mb4ylurlLENCrA5YosbkgetKp3cGozPTEPxWg54U2T4f+LC481zYak yx1hn0Jubm4m1bvSdJPAzDKsVSlBXrQ0 -----END CERTIFICATE-----Generated at Sat May 4 20:37:17 2024 by rpki-client on console-fra.rpki-client.org