$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft File: bKwrcgiF6COCTBln7fw2Psh0do0.mft (raw, json) Hash identifier: I58cPN1wg2P+Os4oiiGXa9EGxJbuykc12ATNc4VZVqQ= Subject key identifier: A7:9F:99:88:AA:9B:8C:A7:D6:9E:87:90:CD:CA:78:C8:4B:D4:1B:98 Authority key identifier: 6C:AC:2B:72:08:85:E8:23:82:4C:19:67:ED:FC:36:3E:C8:74:76:8D Certificate issuer: /CN=A91D5BA2/serialNumber=6CAC2B720885E823824C1967EDFC363EC874768D Certificate serial: 0382 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft Manifest number: 037E Signing time: Sat 27 Apr 2024 02:39:46 +0000 Manifest this update: Sat 27 Apr 2024 02:39:45 +0000 Manifest next update: Sat 04 May 2024 02:39:45 +0000 Files and hashes: 1: bKwrcgiF6COCTBln7fw2Psh0do0.crl (hash: KO6rjOvRQlOA4WJQeDTGAxgLNyJGiVvZn84sKQvB9M4=) 2: AA5ADA7C579511ECA9BDE14AC4F9AE02.roa (hash: cikoyhuqavK+MFZkdQ9w/OIVV8ZcalMBLZhc0JWWGjQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.crl rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 02:39:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 898 (0x382) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5BA2/serialNumber=6CAC2B720885E823824C1967EDFC363EC874768D Validity Not Before: Apr 27 02:39:45 2024 GMT Not After : May 4 02:39:45 2024 GMT Subject: CN=662c6571-8bc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b1:1d:98:f9:71:a7:3e:2a:7e:3b:a3:1f:71: 9f:28:72:a7:7a:63:cf:21:d2:69:12:49:8d:2e:d3: 02:f9:c3:7a:3f:14:b6:fa:a0:cf:81:e4:41:12:fc: 92:e2:eb:17:10:46:3c:23:cb:a1:72:f0:1a:bd:3f: 47:92:71:58:eb:6d:63:50:28:b2:81:14:6c:b7:21: 9f:a2:07:36:65:e1:41:a3:5f:6f:6e:51:49:bb:04: 31:12:8e:5b:74:4a:97:91:25:3c:78:1a:59:ea:b0: 1c:87:2a:d7:9f:1d:fa:83:51:02:d8:c7:37:98:97: e4:40:a1:ff:c8:cb:d9:29:5a:9d:d6:6b:dd:6b:8f: 92:85:6f:f5:c6:e1:4d:79:97:6e:05:8f:65:bc:71: 05:a2:d1:44:80:d2:23:c3:ff:30:6a:26:d7:49:60: 0f:7a:68:ee:c9:d7:0c:50:53:02:97:6b:e9:1a:74: 9a:11:34:c3:fd:6f:fc:f2:5b:a8:66:0c:36:97:28: 0b:4f:03:71:f2:f1:4b:2c:fc:cb:7c:2a:77:88:bf: ab:90:a8:60:41:e2:dd:a7:dc:b5:7e:ae:93:d4:ef: d4:c1:ba:f2:12:31:da:64:5b:0a:9b:50:d9:8b:df: 6b:81:30:d4:41:fe:74:fc:26:3c:d6:ce:6e:00:db: 18:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:9F:99:88:AA:9B:8C:A7:D6:9E:87:90:CD:CA:78:C8:4B:D4:1B:98 X509v3 Authority Key Identifier: keyid:6C:AC:2B:72:08:85:E8:23:82:4C:19:67:ED:FC:36:3E:C8:74:76:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:4e:93:5f:2f:e0:bf:80:2d:60:b5:48:8c:c5:81:a8:39:1b: 50:0f:41:df:b7:5a:02:ce:5c:a7:b4:07:0b:60:2b:04:17:06: 0b:e8:9c:ba:60:48:e5:4e:c5:0a:61:60:d3:d7:95:4c:9b:4a: ff:ed:1b:d6:f6:57:34:ab:97:ce:1b:fb:cd:9f:36:96:b2:c5: 52:1f:4a:bc:12:d8:b3:2d:34:be:7f:e3:31:f5:68:3c:62:6c: 11:ae:5f:67:7d:f3:19:6f:90:1f:9f:4a:66:93:d8:fb:f6:ee: d1:14:2d:bb:2a:f7:1a:90:2c:26:b4:ca:2b:cc:18:aa:0f:fa: 69:d0:c2:a5:f1:fc:b5:0b:c1:5f:2f:4e:e7:95:82:7c:00:fc: 71:94:ac:aa:1c:53:4b:fe:2a:8d:31:5e:21:e4:d8:03:59:55: d5:43:92:2f:8f:13:ee:ee:39:f5:94:de:69:c8:56:33:5f:68: f8:3c:66:b2:87:c1:d5:ec:13:b1:2e:1c:d8:b9:e8:ab:77:60: 01:c7:43:36:05:4f:76:c4:1f:36:57:80:aa:d7:5c:7e:af:9b: fc:46:b3:5b:86:34:1b:92:66:b4:20:3a:fa:8b:52:0d:3a:4f: 7a:e4:f3:c8:ca:6d:46:79:23:f9:98:0a:a5:27:a5:44:a4:f7: 07:69:3d:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVCQTIxMTAvBgNVBAUTKDZDQUMyQjcyMDg4NUU4MjM4MjRDMTk2N0VERkMzNjNF Qzg3NDc2OEQwHhcNMjQwNDI3MDIzOTQ1WhcNMjQwNTA0MDIzOTQ1WjAYMRYwFAYD VQQDEw02NjJjNjU3MS04YmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rEdmPlxpz4qfjujH3GfKHKnemPPIdJpEkmNLtMC+cN6PxS2+qDPgeRBEvyS 4usXEEY8I8uhcvAavT9HknFY621jUCiygRRstyGfogc2ZeFBo19vblFJuwQxEo5b dEqXkSU8eBpZ6rAchyrXnx36g1EC2Mc3mJfkQKH/yMvZKVqd1mvda4+ShW/1xuFN eZduBY9lvHEFotFEgNIjw/8waibXSWAPemjuydcMUFMCl2vpGnSaETTD/W/88luo Zgw2lygLTwNx8vFLLPzLfCp3iL+rkKhgQeLdp9y1fq6T1O/UwbryEjHaZFsKm1DZ i99rgTDUQf50/CY81s5uANsYxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKefmYiq m4yn1p6HkM3KeMhL1BuYMB8GA1UdIwQYMBaAFGysK3IIhegjgkwZZ+38Nj7IdHaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUJBMi8xNEZFQzJFQzU3 OTMxMUVDQkEyRkIwNDhDNEY5QUUwMi9iS3dyY2dpRjZDT0NUQmxuN2Z3MlBzaDBk bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLd3JjZ2lGNkNPQ1RCbG43ZncyUHNoMGRvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUJBMi8xNEZFQzJFQzU3OTMxMUVDQkEyRkIwNDhDNEY5QUUwMi9iS3dyY2dpRjZD T0NUQmxuN2Z3MlBzaDBkbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhTpNfL+C/gC1gtUiMxYGoORtQD0Hft1oCzlyntAcLYCsEFwYL6Jy6 YEjlTsUKYWDT15VMm0r/7RvW9lc0q5fOG/vNnzaWssVSH0q8EtizLTS+f+Mx9Wg8 YmwRrl9nffMZb5Afn0pmk9j79u7RFC27KvcakCwmtMorzBiqD/pp0MKl8fy1C8Ff L07nlYJ8APxxlKyqHFNL/iqNMV4h5NgDWVXVQ5IvjxPu7jn1lN5pyFYzX2j4PGay h8HV7BOxLhzYueird2ABx0M2BU92xB82V4Cq11x+r5v8RrNbhjQbkma0IDr6i1IN Ok965PPIym1GeSP5mAqlJ6VEpPcHaT1O -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:34 2024 by rpki-client on console-ams.rpki-client.org