$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6CAF/FD26DC22B6F411EEAC203810C4F9AE02/4BXzk-ejI8P08b_iblv-BA415VM.mft File: 4BXzk-ejI8P08b_iblv-BA415VM.mft (raw, json) Hash identifier: vEjKx53LkH/bdXNsOQDxyl7XvjBl9b8LjFHTE9MO1l4= Subject key identifier: 24:11:AA:D6:54:D6:73:9F:09:E3:56:E7:9E:C6:15:41:8C:BC:08:98 Authority key identifier: E0:15:F3:93:E7:A3:23:C3:F4:F1:BF:E2:6E:5B:FE:04:0E:35:E5:53 Certificate issuer: /CN=A91C6CAF/serialNumber=E015F393E7A323C3F4F1BFE26E5BFE040E35E553 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BXzk-ejI8P08b_iblv-BA415VM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6CAF/FD26DC22B6F411EEAC203810C4F9AE02/4BXzk-ejI8P08b_iblv-BA415VM.mft Manifest number: 3F Signing time: Wed 15 May 2024 08:19:53 +0000 Manifest this update: Wed 15 May 2024 08:19:53 +0000 Manifest next update: Wed 22 May 2024 08:19:53 +0000 Files and hashes: 1: 4BXzk-ejI8P08b_iblv-BA415VM.crl (hash: R04YohmpB3jk9hbkHmqeGgcmy//CSOMN6SDosrJV9wQ=) 2: C4C0B9160E4C11EF82F91F39C4F9AE02.roa (hash: NyvsbGaq1HKR+L0PRnbDheo2EQMUIsjiG+x1CykE4V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6CAF/FD26DC22B6F411EEAC203810C4F9AE02/4BXzk-ejI8P08b_iblv-BA415VM.crl rsync://rpki.apnic.net/member_repository/A91C6CAF/FD26DC22B6F411EEAC203810C4F9AE02/4BXzk-ejI8P08b_iblv-BA415VM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BXzk-ejI8P08b_iblv-BA415VM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:19:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6CAF/serialNumber=E015F393E7A323C3F4F1BFE26E5BFE040E35E553 Validity Not Before: May 15 08:19:53 2024 GMT Not After : May 22 08:19:53 2024 GMT Subject: CN=66447029-8d6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f7:f9:bc:44:59:8d:32:f3:b0:34:6d:c7:a7: ac:9c:20:c8:e3:7e:30:bb:a7:bd:92:41:44:7b:8f: 4d:6b:f0:57:cd:db:b5:a4:ae:a0:b0:00:89:ad:07: 5d:3c:24:35:da:98:2f:e1:ab:3a:a0:e5:fc:da:8c: 4f:15:dd:f2:8a:ee:14:1b:3d:c7:ce:91:0b:dd:59: 81:1c:ba:d4:e3:1d:77:34:8f:b3:65:f6:fa:54:11: 8c:ab:00:33:cb:80:68:73:92:75:cb:b9:20:e2:95: 9f:71:26:80:a0:90:c0:18:b2:a3:38:dd:b3:86:78: 45:a2:50:ce:c4:df:51:d5:1e:9b:ab:68:a7:f7:a5: 82:ca:db:97:b1:15:35:0d:b7:53:66:f1:f7:04:11: 22:85:c5:92:ec:e9:1a:40:be:70:59:72:94:ff:42: 6e:4d:94:b5:cf:aa:92:26:98:9b:a1:27:93:8b:65: 96:27:df:76:15:d1:50:2c:fb:33:e3:a5:51:ff:f1: 07:57:74:35:bb:5d:56:63:e4:1b:6f:95:8a:24:11: 0e:ff:fa:a3:79:08:98:f8:81:cc:6b:78:25:01:7c: 0b:b6:d4:49:b3:01:a6:67:9d:13:38:18:96:97:db: f2:bf:ba:9c:03:ec:71:b5:4c:00:f5:91:ac:cc:43: 8a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:11:AA:D6:54:D6:73:9F:09:E3:56:E7:9E:C6:15:41:8C:BC:08:98 X509v3 Authority Key Identifier: keyid:E0:15:F3:93:E7:A3:23:C3:F4:F1:BF:E2:6E:5B:FE:04:0E:35:E5:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/FD26DC22B6F411EEAC203810C4F9AE02/4BXzk-ejI8P08b_iblv-BA415VM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BXzk-ejI8P08b_iblv-BA415VM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/FD26DC22B6F411EEAC203810C4F9AE02/4BXzk-ejI8P08b_iblv-BA415VM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:20:47:a5:ce:f1:c0:c9:d6:da:95:14:60:c1:55:0a:77:0d: 3f:73:4d:19:6a:27:f5:ce:23:33:a8:ca:13:16:8a:57:46:b9: 5f:5b:b1:2b:78:b1:ba:a5:e1:28:1a:bf:8a:a8:f4:9d:78:04: 29:31:fb:92:1a:88:21:7f:63:88:6e:4d:6a:ad:48:62:02:0f: 5c:94:66:b2:a6:3b:e3:b2:47:02:28:16:b1:6e:33:fa:ef:31: 0a:45:67:8e:50:b6:bd:2e:c3:c9:11:b0:95:3d:fb:57:b6:c4: 5f:21:75:43:02:1b:c8:c5:83:8a:28:87:be:23:f7:0c:7d:75: 39:f7:23:fb:59:f1:bc:c9:ce:3d:fb:45:e4:11:88:5a:02:55: 53:fe:f1:10:57:6f:c2:81:11:4a:60:ef:a4:7f:84:de:46:8d: a0:cf:c3:3b:2d:84:05:8f:7c:34:55:89:c3:ac:62:98:c7:16: 00:5d:0b:fa:7a:ab:5f:e9:e6:c8:bd:0f:ca:14:fc:fa:81:fb: 2e:59:0a:ab:0c:4b:f9:20:fd:0a:fa:5b:8b:68:41:85:11:7f: f2:bc:a2:fa:4e:e0:ab:ba:da:dd:77:24:f9:50:fa:f5:fc:a3: 96:fc:65:ea:d6:6d:b1:85:23:71:6f:bb:63:4d:b6:6d:7e:e2: 84:23:9e:59 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NkNBRjExMC8GA1UEBRMoRTAxNUYzOTNFN0EzMjNDM0Y0RjFCRkUyNkU1QkZFMDQw RTM1RTU1MzAeFw0yNDA1MTUwODE5NTNaFw0yNDA1MjIwODE5NTNaMBgxFjAUBgNV BAMTDTY2NDQ3MDI5LThkNmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDc9/m8RFmNMvOwNG3Hp6ycIMjjfjC7p72SQUR7j01r8FfN27WkrqCwAImtB108 JDXamC/hqzqg5fzajE8V3fKK7hQbPcfOkQvdWYEcutTjHXc0j7Nl9vpUEYyrADPL gGhzknXLuSDilZ9xJoCgkMAYsqM43bOGeEWiUM7E31HVHpuraKf3pYLK25exFTUN t1Nm8fcEESKFxZLs6RpAvnBZcpT/Qm5NlLXPqpImmJuhJ5OLZZYn33YV0VAs+zPj pVH/8QdXdDW7XVZj5BtvlYokEQ7/+qN5CJj4gcxreCUBfAu21EmzAaZnnRM4GJaX 2/K/upwD7HG1TAD1kazMQ4phAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJBGq1lTW c58J41bnnsYVQYy8CJgwHwYDVR0jBBgwFoAU4BXzk+ejI8P08b/iblv+BA415VMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2Q0FGL0ZEMjZEQzIyQjZG NDExRUVBQzIwMzgxMEM0RjlBRTAyLzRCWHprLWVqSThQMDhiX2libHYtQkE0MTVW TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNEJYemstZWpJOFAwOGJfaWJsdi1CQTQxNVZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 Q0FGL0ZEMjZEQzIyQjZGNDExRUVBQzIwMzgxMEM0RjlBRTAyLzRCWHprLWVqSThQ MDhiX2libHYtQkE0MTVWTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACUgR6XO8cDJ1tqVFGDBVQp3DT9zTRlqJ/XOIzOoyhMWildGuV9bsSt4 sbql4Sgav4qo9J14BCkx+5IaiCF/Y4huTWqtSGICD1yUZrKmO+OyRwIoFrFuM/rv MQpFZ45Qtr0uw8kRsJU9+1e2xF8hdUMCG8jFg4ooh74j9wx9dTn3I/tZ8bzJzj37 ReQRiFoCVVP+8RBXb8KBEUpg76R/hN5GjaDPwzsthAWPfDRVicOsYpjHFgBdC/p6 q1/p5si9D8oU/PqB+y5ZCqsMS/kg/Qr6W4toQYURf/K8ovpO4Ku62t13JPlQ+vX8 o5b8ZerWbbGFI3Fvu2NNtm1+4oQjnlk= -----END CERTIFICATE-----Generated at Wed May 15 09:04:44 2024 by rpki-client on console-ams.rpki-client.org