$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft File: bxP1UQCfJIptmHQ2AE6FeVFWkns.mft (raw, json) Hash identifier: rUwfQz5LciRnSObRfRIfShjL8PIvR3PWNrfy/NVM/sw= Subject key identifier: 27:CF:18:09:3E:3E:5C:F3:DC:B0:8D:E0:9A:DD:BB:A9:01:D9:87:AF Authority key identifier: 6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B Certificate issuer: /CN=A91CAFC4/serialNumber=6F13F551009F248A6D987436004E85795156927B Certificate serial: 0836 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft Manifest number: 0824 Signing time: Thu 02 May 2024 21:58:16 +0000 Manifest this update: Thu 02 May 2024 21:58:15 +0000 Manifest next update: Thu 09 May 2024 21:58:15 +0000 Files and hashes: 1: bxP1UQCfJIptmHQ2AE6FeVFWkns.crl (hash: kBbq0lpaX7K4tBmpaGBsVQFIthgrcDj6Lb9S+566mTE=) 2: D2039A56AABC11EEA0370F2CC4F9AE02.roa (hash: VBL/pWjSZruqbOnj4eXPfqiKP7kfMTk1OKEQBDDqoHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2102 (0x836) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAFC4/serialNumber=6F13F551009F248A6D987436004E85795156927B Validity Not Before: May 2 21:58:15 2024 GMT Not After : May 9 21:58:15 2024 GMT Subject: CN=66340c77-d915 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b9:70:17:ba:b6:79:e2:92:ef:1b:82:24:b2: 34:04:a8:c1:c2:55:14:8a:65:63:12:09:ad:26:39: 35:23:73:58:4b:7c:50:84:7f:73:bd:27:21:d9:2c: 85:61:9b:90:20:09:c5:30:f5:04:fc:2f:2b:4b:2f: 3f:3e:7a:c2:fd:19:dd:40:6a:83:99:cd:ac:56:4b: 2c:20:b9:1b:c4:d8:20:98:ba:b2:f4:97:21:33:87: dd:66:13:b2:4a:06:e4:f0:3d:c7:f4:7b:64:3d:9f: 4e:85:ec:b3:04:0b:48:27:0d:dc:88:ab:76:27:d9: 99:e9:37:0b:15:43:03:2a:3c:b0:52:e5:f2:4d:99: a7:a7:e9:79:01:18:5b:23:06:58:10:69:db:34:66: 65:10:cc:e9:a9:7f:1c:61:d8:08:7d:b2:7a:63:33: 88:2c:be:b5:56:05:3f:cd:1f:de:4b:b6:93:83:e2: d8:2f:f9:c9:6c:e7:bb:de:93:eb:e4:d0:77:bb:9c: 4b:5f:58:94:f2:80:b2:db:a0:f5:65:75:4a:a6:48: ee:2c:50:a5:a2:06:60:ef:6f:9f:57:f3:18:c4:65: 88:bc:53:3d:31:4e:02:8a:85:50:a2:ea:0c:e8:4d: 70:ad:58:ae:14:34:9a:0f:ca:83:10:5a:94:b0:1e: 4c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:CF:18:09:3E:3E:5C:F3:DC:B0:8D:E0:9A:DD:BB:A9:01:D9:87:AF X509v3 Authority Key Identifier: keyid:6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:f0:f7:55:21:4b:9c:07:e7:59:b5:f4:99:89:06:dd:ec:74: 5f:cd:46:b6:37:40:3a:27:98:92:5f:16:38:88:53:58:8e:a4: b3:14:a6:c9:3c:64:f1:1e:04:82:47:a4:d4:e2:49:fe:e3:99: 41:a8:f1:8c:19:d4:25:54:58:9e:54:c7:17:64:03:19:2d:b8: c1:76:97:b2:49:a7:95:e8:c8:39:a9:38:f0:c1:49:e5:67:85: c1:fe:3f:c2:c6:f9:e1:c7:82:fc:8a:03:2c:4a:4e:14:9f:46: 9f:c6:29:79:4b:8d:18:03:c4:a3:07:ce:52:69:0a:31:5a:2b: f1:b2:65:25:60:bc:77:7a:ec:19:33:95:88:c9:cf:b9:c6:02: 13:62:a1:d9:c1:2b:ae:08:eb:cb:2e:4a:9e:82:39:38:b5:76: 7f:fa:56:cf:d2:18:fb:27:30:ba:46:14:d5:12:e5:aa:dd:06: 99:f1:62:db:88:51:47:0c:86:50:70:7a:cd:5b:98:00:66:ee: 7c:85:2e:db:b1:50:31:09:a3:3a:5d:1e:56:10:c9:12:2c:da: 41:f6:85:7f:10:68:f0:1d:f1:b4:6e:5e:52:16:ec:d4:f1:8e: 97:5d:e5:09:aa:60:c5:ea:8f:36:76:99:5e:66:57:c4:4e:57: 87:8e:68:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FGQzQxMTAvBgNVBAUTKDZGMTNGNTUxMDA5RjI0OEE2RDk4NzQzNjAwNEU4NTc5 NTE1NjkyN0IwHhcNMjQwNTAyMjE1ODE1WhcNMjQwNTA5MjE1ODE1WjAYMRYwFAYD VQQDEw02NjM0MGM3Ny1kOTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAublwF7q2eeKS7xuCJLI0BKjBwlUUimVjEgmtJjk1I3NYS3xQhH9zvSch2SyF YZuQIAnFMPUE/C8rSy8/PnrC/RndQGqDmc2sVkssILkbxNggmLqy9JchM4fdZhOy Sgbk8D3H9HtkPZ9OheyzBAtIJw3ciKt2J9mZ6TcLFUMDKjywUuXyTZmnp+l5ARhb IwZYEGnbNGZlEMzpqX8cYdgIfbJ6YzOILL61VgU/zR/eS7aTg+LYL/nJbOe73pPr 5NB3u5xLX1iU8oCy26D1ZXVKpkjuLFClogZg72+fV/MYxGWIvFM9MU4CioVQouoM 6E1wrViuFDSaD8qDEFqUsB5MtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCfPGAk+ Plzz3LCN4Jrdu6kB2YevMB8GA1UdIwQYMBaAFG8T9VEAnySKbZh0NgBOhXlRVpJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUZDNC9CQzYwNjJEQ0FG OEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJcHRtSFEyQUU2RmVWRldr bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J4UDFVUUNmSklwdG1IUTJBRTZGZVZGV2tucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUZDNC9CQzYwNjJEQ0FGOEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJ cHRtSFEyQUU2RmVWRldrbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBc8PdVIUucB+dZtfSZiQbd7HRfzUa2N0A6J5iSXxY4iFNYjqSzFKbJ PGTxHgSCR6TU4kn+45lBqPGMGdQlVFieVMcXZAMZLbjBdpeySaeV6Mg5qTjwwUnl Z4XB/j/Cxvnhx4L8igMsSk4Un0afxil5S40YA8SjB85SaQoxWivxsmUlYLx3euwZ M5WIyc+5xgITYqHZwSuuCOvLLkqegjk4tXZ/+lbP0hj7JzC6RhTVEuWq3QaZ8WLb iFFHDIZQcHrNW5gAZu58hS7bsVAxCaM6XR5WEMkSLNpB9oV/EGjwHfG0bl5SFuzU 8Y6XXeUJqmDF6o82dpleZlfETleHjmj7 -----END CERTIFICATE-----Generated at Thu May 2 22:28:57 2024 by rpki-client on console-ams.rpki-client.org