$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft File: BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft (raw, json) Hash identifier: PLGWg/WIu/Ip+wYiDgcttYXWXI+7ZHdW+AAjb8+z7L0= Subject key identifier: C0:0D:9F:1F:E8:AA:B1:33:1A:87:5D:D2:0F:A4:E6:91:5B:29:68:CE Authority key identifier: 06:C6:27:D9:C3:12:C7:B4:7D:1C:3A:53:B4:47:55:A1:0A:68:48:7C Certificate issuer: /CN=A91E0CE8/serialNumber=06C627D9C312C7B47D1C3A53B44755A10A68487C Certificate serial: 15C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft Manifest number: 15AA Signing time: Tue 30 Apr 2024 17:26:00 +0000 Manifest this update: Tue 30 Apr 2024 17:25:59 +0000 Manifest next update: Tue 07 May 2024 17:25:59 +0000 Files and hashes: 1: BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl (hash: XGjPDOZlPb/Un2yLbk/cSZUTufGmTTNtw750Qms5L6Y=) 2: DA8B814E931011EDB92FFC5FC4F9AE02.roa (hash: gTxrLoXouX5xFa9fXnpDCItE5eIlxdUF6xZmbmgyf7Y=) 3: 20A2C900115711EB8E58CE15C4F9AE02.roa (hash: NsMEJco1Cbnm7CTmba+MzKbnVDI/T5E3H5+hP+qM9tw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 17:25:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5568 (0x15c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CE8/serialNumber=06C627D9C312C7B47D1C3A53B44755A10A68487C Validity Not Before: Apr 30 17:25:59 2024 GMT Not After : May 7 17:25:59 2024 GMT Subject: CN=663129a7-b042 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:d6:87:fd:d7:2d:9a:a2:cc:7c:e2:0d:c9:c2: b6:2e:45:6b:e6:45:31:6c:a0:c1:4b:ec:34:e9:61: a3:1b:ef:4d:f3:41:7a:b0:83:70:59:84:7a:8f:26: 95:68:b0:00:d7:3a:a9:0d:61:d4:07:75:87:cd:a0: eb:ef:95:34:84:c3:fd:c2:cc:53:45:76:a3:d9:0b: 5b:fe:a4:7c:04:03:5f:c3:6f:72:d4:07:b4:6f:2a: 26:24:c9:5d:8f:ca:ed:e5:e3:dc:77:c6:07:f2:d4: c0:7d:f1:39:94:47:fa:e6:1f:a0:96:1f:d0:59:f7: b8:f7:e1:d0:32:7c:bf:35:a7:1e:a0:04:47:c9:46: f8:bd:1b:b6:c7:c1:2d:63:0d:0f:e0:14:b1:3d:b2: bb:cd:65:2a:4b:95:ec:f1:ca:bf:51:94:66:ea:d3: 08:16:fe:50:66:2c:78:76:98:b0:c2:da:ed:07:24: ea:ef:14:f6:2f:37:1c:f2:38:e3:6a:35:5f:3d:52: b4:0c:5f:82:9d:54:56:0c:5e:55:2a:e8:cd:0c:7c: d2:b1:e2:a6:55:11:79:dc:d5:73:60:97:9b:8f:9f: c8:15:95:d1:43:f1:55:e9:92:5d:76:2c:bd:36:8a: a0:4f:c2:30:3d:df:17:e0:55:45:1f:16:61:f9:f0: c1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:0D:9F:1F:E8:AA:B1:33:1A:87:5D:D2:0F:A4:E6:91:5B:29:68:CE X509v3 Authority Key Identifier: keyid:06:C6:27:D9:C3:12:C7:B4:7D:1C:3A:53:B4:47:55:A1:0A:68:48:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:04:a2:65:57:7e:68:c2:a6:47:2e:95:10:37:f8:5b:76:b9: b4:80:d7:03:40:3e:3c:eb:20:cd:f0:c4:04:18:fe:f8:65:d6: c8:19:19:da:67:8a:98:f3:1c:c6:55:e7:58:36:29:e9:d0:fb: bb:f5:35:d2:46:31:0c:2d:ff:79:ad:b5:47:af:80:90:50:11: 71:f5:c4:4f:a5:5e:51:a6:18:08:66:16:18:5c:b3:7a:57:44: 30:03:3a:5f:ca:ad:11:93:b7:bb:98:81:85:8a:1a:67:6b:b0: 6b:06:ce:29:7d:06:24:b1:73:4f:e1:c8:7b:3c:ee:58:8a:03: 51:36:03:be:82:70:86:bc:a8:d9:a1:0b:64:88:0b:0f:65:34: 83:22:69:ca:0c:10:22:ba:e1:93:b0:7c:de:5e:46:83:bb:01: d3:ce:ad:1c:14:dc:81:77:7a:45:b0:b3:92:78:a0:5a:a8:18: b6:57:83:37:7c:13:16:24:7b:d5:84:ad:a2:d3:6d:92:ca:b8: 01:45:4a:ec:38:99:f1:19:74:31:44:54:b5:2d:46:e1:f0:54: 49:1d:0c:2b:bb:82:5c:48:42:b6:75:29:ab:e0:d6:42:7c:69: 14:97:ea:c6:96:1e:3a:76:f2:14:00:d1:ac:d7:3e:13:65:8a: 61:08:91:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDRTgxMTAvBgNVBAUTKDA2QzYyN0Q5QzMxMkM3QjQ3RDFDM0E1M0I0NDc1NUEx MEE2ODQ4N0MwHhcNMjQwNDMwMTcyNTU5WhcNMjQwNTA3MTcyNTU5WjAYMRYwFAYD VQQDEw02NjMxMjlhNy1iMDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAldaH/dctmqLMfOINycK2LkVr5kUxbKDBS+w06WGjG+9N80F6sINwWYR6jyaV aLAA1zqpDWHUB3WHzaDr75U0hMP9wsxTRXaj2Qtb/qR8BANfw29y1Ae0byomJMld j8rt5ePcd8YH8tTAffE5lEf65h+glh/QWfe49+HQMny/NaceoARHyUb4vRu2x8Et Yw0P4BSxPbK7zWUqS5Xs8cq/UZRm6tMIFv5QZix4dpiwwtrtByTq7xT2Lzcc8jjj ajVfPVK0DF+CnVRWDF5VKujNDHzSseKmVRF53NVzYJebj5/IFZXRQ/FV6ZJddiy9 NoqgT8IwPd8X4FVFHxZh+fDBawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMANnx/o qrEzGodd0g+k5pFbKWjOMB8GA1UdIwQYMBaAFAbGJ9nDEse0fRw6U7RHVaEKaEh8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENFOC85MDBEMjY0NjA2 NkExMUU4QjlCQUY2ODJDNEY5QUUwMi9Cc1luMmNNU3g3UjlIRHBUdEVkVm9RcG9T SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JzWW4yY01TeDdSOUhEcFR0RWRWb1Fwb1NIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENFOC85MDBEMjY0NjA2NkExMUU4QjlCQUY2ODJDNEY5QUUwMi9Cc1luMmNNU3g3 UjlIRHBUdEVkVm9RcG9TSHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtBKJlV35owqZHLpUQN/hbdrm0gNcDQD486yDN8MQEGP74ZdbIGRna Z4qY8xzGVedYNinp0Pu79TXSRjEMLf95rbVHr4CQUBFx9cRPpV5RphgIZhYYXLN6 V0QwAzpfyq0Rk7e7mIGFihpna7BrBs4pfQYksXNP4ch7PO5YigNRNgO+gnCGvKjZ oQtkiAsPZTSDImnKDBAiuuGTsHzeXkaDuwHTzq0cFNyBd3pFsLOSeKBaqBi2V4M3 fBMWJHvVhK2i022SyrgBRUrsOJnxGXQxRFS1LUbh8FRJHQwru4JcSEK2dSmr4NZC fGkUl+rGlh46dvIUANGs1z4TZYphCJEa -----END CERTIFICATE-----Generated at Tue Apr 30 18:57:41 2024 by rpki-client on console-fra.rpki-client.org