$ rpki-client -vvf rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft File: bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft (raw, json) Hash identifier: JAfxJH2uCyn6oGhHo6ZspHrt7Bd5xivURs+Y4A9x3yU= Subject key identifier: AF:77:D8:B9:05:54:52:CB:5C:61:16:FE:A1:CD:1D:36:6A:61:A6:9D Authority key identifier: 6C:9B:96:87:D0:5E:2B:5B:E5:36:10:9A:6A:F9:BF:FA:19:98:73:D4 Certificate issuer: /CN=A91C95AA/serialNumber=6C9B9687D05E2B5BE536109A6AF9BFFA199873D4 Certificate serial: 017D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft Manifest number: 0179 Signing time: Fri 03 May 2024 05:18:05 +0000 Manifest this update: Fri 03 May 2024 05:18:04 +0000 Manifest next update: Fri 10 May 2024 05:18:04 +0000 Files and hashes: 1: bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl (hash: BbAlVcKi61db7NNfCKIfKFhPUSEtH4t6fy+wf85otnI=) 2: FB1F8158242A11ED9547B486C4F9AE02.roa (hash: fvux1k7GikvVMbvsyR+ZqxhQBbFbbVFEy4QXKcI06RM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 04:52:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C95AA/serialNumber=6C9B9687D05E2B5BE536109A6AF9BFFA199873D4 Validity Not Before: May 3 05:18:04 2024 GMT Not After : May 10 05:18:04 2024 GMT Subject: CN=6634738c-8258 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b8:d5:bd:50:f4:c0:53:9b:8d:31:75:e1:a0: 4d:a3:02:34:99:4d:24:76:ff:e4:b6:3b:4f:09:f9: e1:d9:e6:cd:53:eb:54:16:0f:13:c7:da:98:5b:ec: 11:80:cb:98:6b:3e:99:b3:03:20:69:57:56:4a:88: f7:99:e7:77:a4:a6:d0:0e:f4:48:ff:7c:97:db:9f: 95:65:13:58:f0:9c:87:4a:38:82:b0:ca:f4:e9:4c: ab:97:1c:3f:94:5c:5b:06:86:29:96:12:7d:33:13: 63:5d:e1:15:e4:d0:e5:dd:56:c0:78:ee:61:bb:f0: a6:47:3f:93:fe:ed:a6:ee:ee:3c:1e:26:3a:f2:da: a3:cb:73:b3:6c:98:2e:2c:df:92:82:bf:85:c8:96: 56:58:1d:80:53:d4:27:38:c3:af:ec:bf:8b:f6:fe: 39:bf:95:eb:b2:d8:df:9f:05:2b:59:82:20:80:63: c1:f1:c0:9b:5c:c7:7a:1e:37:62:94:75:9f:df:eb: 1e:ef:7c:e6:f7:fd:db:54:b2:8f:db:09:c0:7d:ca: ff:ee:6e:fb:51:92:8a:c9:59:34:a2:15:de:e4:58: f4:94:ea:6b:16:57:2d:7e:50:cc:1d:4c:1a:19:66: d4:2f:05:e9:a2:5b:cc:c8:45:30:28:ef:68:a0:78: f2:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:77:D8:B9:05:54:52:CB:5C:61:16:FE:A1:CD:1D:36:6A:61:A6:9D X509v3 Authority Key Identifier: keyid:6C:9B:96:87:D0:5E:2B:5B:E5:36:10:9A:6A:F9:BF:FA:19:98:73:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:91:ef:54:43:d8:99:f0:88:8c:bd:45:6a:5f:1e:e0:b7:4a: 17:db:54:6a:bb:01:0c:72:6f:cd:07:65:fd:31:d8:e7:94:6a: cd:b3:f2:82:19:fc:e5:53:25:31:55:f6:f4:3e:92:cb:f4:04: 5c:95:4f:bc:e9:6a:f7:7d:69:1b:fd:6b:a7:9a:70:90:bc:34: 7b:06:4a:05:35:ea:58:7a:4f:89:60:44:ce:50:e8:d7:1a:44: 90:51:13:a9:42:48:23:35:1a:62:0a:ae:08:9c:db:3d:4e:95: 24:e9:96:b9:a6:fa:fc:97:16:15:69:37:a3:f8:63:37:81:30: 23:0b:28:63:ce:8e:e2:b5:96:dd:30:cf:50:39:7b:6d:de:04: 3f:99:51:6e:47:ff:41:df:7a:ca:6c:d5:78:ea:2a:45:d4:c5: d3:3e:1b:bc:b0:c4:0c:3b:83:ce:f3:7c:14:0f:7c:a6:9f:9a: 83:92:37:00:d1:b5:16:42:45:11:73:51:0f:e0:0f:a7:37:a2: f5:bb:4e:a7:50:26:04:d0:cf:b0:a0:41:04:b3:96:13:3b:31: d6:c2:30:ff:89:b1:69:a4:5b:ee:53:2d:41:91:c2:e4:de:46: 54:e6:b1:fe:9d:fd:3a:df:0c:1b:50:98:93:6c:9a:d8:9d:f6: 2c:a8:0c:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1QUExMTAvBgNVBAUTKDZDOUI5Njg3RDA1RTJCNUJFNTM2MTA5QTZBRjlCRkZB MTk5ODczRDQwHhcNMjQwNTAzMDUxODA0WhcNMjQwNTEwMDUxODA0WjAYMRYwFAYD VQQDEw02NjM0NzM4Yy04MjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1LjVvVD0wFObjTF14aBNowI0mU0kdv/ktjtPCfnh2ebNU+tUFg8Tx9qYW+wR gMuYaz6ZswMgaVdWSoj3med3pKbQDvRI/3yX25+VZRNY8JyHSjiCsMr06Uyrlxw/ lFxbBoYplhJ9MxNjXeEV5NDl3VbAeO5hu/CmRz+T/u2m7u48HiY68tqjy3OzbJgu LN+Sgr+FyJZWWB2AU9QnOMOv7L+L9v45v5XrstjfnwUrWYIggGPB8cCbXMd6Hjdi lHWf3+se73zm9/3bVLKP2wnAfcr/7m77UZKKyVk0ohXe5Fj0lOprFlctflDMHUwa GWbULwXpolvMyEUwKO9ooHjygwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK932LkF VFLLXGEW/qHNHTZqYaadMB8GA1UdIwQYMBaAFGyblofQXitb5TYQmmr5v/oZmHPU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTVBQS8xNTZCRDg5RTI0 MjcxMUVEQjNFQTM0ODBDNEY5QUUwMi9iSnVXaDlCZUsxdmxOaENhYXZtXy1obVlj OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2JKdVdoOUJlSzF2bE5oQ2Fhdm1fLWhtWWM5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTVBQS8xNTZCRDg5RTI0MjcxMUVEQjNFQTM0ODBDNEY5QUUwMi9iSnVXaDlCZUsx dmxOaENhYXZtXy1obVljOVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbke9UQ9iZ8IiMvUVqXx7gt0oX21RquwEMcm/NB2X9MdjnlGrNs/KC GfzlUyUxVfb0PpLL9ARclU+86Wr3fWkb/WunmnCQvDR7BkoFNepYek+JYETOUOjX GkSQUROpQkgjNRpiCq4InNs9TpUk6Za5pvr8lxYVaTej+GM3gTAjCyhjzo7itZbd MM9QOXtt3gQ/mVFuR/9B33rKbNV46ipF1MXTPhu8sMQMO4PO83wUD3ymn5qDkjcA 0bUWQkURc1EP4A+nN6L1u06nUCYE0M+woEEEs5YTOzHWwjD/ibFppFvuUy1BkcLk 3kZU5rH+nf063wwbUJiTbJrYnfYsqAx7 -----END CERTIFICATE-----Generated at Fri May 3 06:29:23 2024 by rpki-client on console-fra.rpki-client.org