$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft File: Bc1Un1RUvTKyKPavyN424Ej2SA0.mft (raw, json) Hash identifier: F2jxewjRclLzTmSbtg8TYm+zT0e6utJKeXsOH3jmEBc= Subject key identifier: 20:9C:8B:AA:A0:63:C3:FB:1D:15:F2:F9:F0:80:65:00:A1:13:C5:B6 Authority key identifier: 05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D Certificate issuer: /CN=A91E8881/serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Certificate serial: 06E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft Manifest number: 06E2 Signing time: Fri 26 Apr 2024 22:47:19 +0000 Manifest this update: Fri 26 Apr 2024 22:47:18 +0000 Manifest next update: Fri 03 May 2024 22:47:18 +0000 Files and hashes: 1: Bc1Un1RUvTKyKPavyN424Ej2SA0.crl (hash: C9mwhwuf+sC2EV8zih9q379S8Sg67p/26bOT5BDjgSk=) 2: EAC9D46200F911EB8E61B84CC4F9AE02.roa (hash: lpCGZpsIHfq/TYYzXHLzianBw4q1hr7uSQVL0A/MYK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 22:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1768 (0x6e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8881/serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Validity Not Before: Apr 26 22:47:18 2024 GMT Not After : May 3 22:47:18 2024 GMT Subject: CN=662c2ef7-0788 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f9:7a:cb:18:e6:2f:a4:85:93:6a:e5:a9:75: 74:c3:a1:dc:ea:a6:c6:1f:8b:5b:a0:2a:ee:d6:89: 74:23:42:18:db:ef:38:46:2b:2b:b9:4e:9f:1c:65: 05:23:bd:be:48:68:03:d9:8a:af:72:b0:08:bf:0a: f8:20:4a:b1:df:69:bf:1d:2b:a0:a1:f8:d5:2a:40: a0:50:2d:56:50:7a:df:e9:91:ce:31:17:8e:2b:a3: 46:b8:85:94:69:25:97:a3:0e:4a:2e:07:47:c7:ac: 49:8f:14:cb:ce:bb:c9:78:c2:df:95:59:dd:a4:33: e0:7d:c3:c8:d7:ff:c4:4d:ce:f2:9f:ac:8d:70:8c: da:c4:3c:52:7e:64:07:c8:16:80:65:16:cd:92:6e: 5f:c6:8a:ac:27:10:9b:b1:01:70:7e:1d:31:8b:df: d5:ba:a2:f2:dd:8c:df:3a:89:fa:47:5c:18:5f:ed: e6:7c:05:2c:00:f9:68:4f:60:14:32:40:2b:db:97: 56:76:76:ce:ab:af:61:20:a1:18:41:d1:5f:a1:05: bc:75:04:a9:8a:4b:93:c1:e7:d0:6a:cb:e8:95:c8: 42:10:0b:2b:71:48:ef:87:f7:f9:49:16:6c:da:16: 1e:fe:a3:9c:c7:58:ef:53:73:9b:a1:fa:ae:36:7c: f5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:9C:8B:AA:A0:63:C3:FB:1D:15:F2:F9:F0:80:65:00:A1:13:C5:B6 X509v3 Authority Key Identifier: keyid:05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:bc:41:27:18:f8:bc:3c:b7:29:d6:66:01:5d:7f:11:0a:8a: db:21:ff:56:0f:c2:50:d0:aa:92:8f:4c:49:23:c2:db:7b:b0: eb:b0:98:70:c4:c7:f4:22:ef:47:f5:07:62:2e:42:5c:96:97: aa:3d:ed:09:de:94:31:24:36:4c:81:c3:69:33:5b:69:79:01: c8:9a:c0:8c:cd:58:5b:cb:1d:4b:c7:0f:8c:23:14:de:e3:a3: 2f:20:4e:cf:fd:af:cc:ec:f8:90:d1:13:63:87:67:00:61:65: 69:bf:79:ba:78:fc:2f:8d:2c:05:4a:e5:78:20:9e:9b:14:df: 11:79:09:81:37:9d:43:d0:73:bf:48:64:b3:a4:f0:12:0f:b7: 5e:12:55:85:90:d8:2d:12:16:f4:80:45:86:53:08:ce:5d:2b: 16:ee:ef:98:2e:f8:37:fe:58:9f:44:d3:d0:3c:f8:0b:6d:07: b4:33:2b:db:c3:e2:a8:59:b5:b1:b6:b7:2d:f2:d8:57:90:5c: 93:4d:6a:20:6e:0c:61:d6:17:9f:09:21:73:f5:9f:12:5f:64: ff:93:e1:ff:58:fe:a4:a0:1c:eb:5c:a7:b4:bc:52:0f:e4:08: 79:f8:8c:44:03:6f:6c:e0:2d:c8:97:af:2c:92:ec:03:c2:ac: 2f:06:69:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg4ODExMTAvBgNVBAUTKDA1Q0Q1NDlGNTQ1NEJEMzJCMjI4RjZBRkM4REUzNkUw NDhGNjQ4MEQwHhcNMjQwNDI2MjI0NzE4WhcNMjQwNTAzMjI0NzE4WjAYMRYwFAYD VQQDEw02NjJjMmVmNy0wNzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfl6yxjmL6SFk2rlqXV0w6Hc6qbGH4tboCru1ol0I0IY2+84RisruU6fHGUF I72+SGgD2YqvcrAIvwr4IEqx32m/HSugofjVKkCgUC1WUHrf6ZHOMReOK6NGuIWU aSWXow5KLgdHx6xJjxTLzrvJeMLflVndpDPgfcPI1//ETc7yn6yNcIzaxDxSfmQH yBaAZRbNkm5fxoqsJxCbsQFwfh0xi9/VuqLy3YzfOon6R1wYX+3mfAUsAPloT2AU MkAr25dWdnbOq69hIKEYQdFfoQW8dQSpikuTwefQasvolchCEAsrcUjvh/f5SRZs 2hYe/qOcx1jvU3ObofquNnz1gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCci6qg Y8P7HRXy+fCAZQChE8W2MB8GA1UdIwQYMBaAFAXNVJ9UVL0ysij2r8jeNuBI9kgN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODg4MS8wODlERTg0MDAw RjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZUS3lLUGF2eU40MjRFajJT QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JjMVVuMVJVdlRLeUtQYXZ5TjQyNEVqMlNBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODg4MS8wODlERTg0MDAwRjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZU S3lLUGF2eU40MjRFajJTQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjvEEnGPi8PLcp1mYBXX8RCorbIf9WD8JQ0KqSj0xJI8Lbe7DrsJhw xMf0Iu9H9QdiLkJclpeqPe0J3pQxJDZMgcNpM1tpeQHImsCMzVhbyx1Lxw+MIxTe 46MvIE7P/a/M7PiQ0RNjh2cAYWVpv3m6ePwvjSwFSuV4IJ6bFN8ReQmBN51D0HO/ SGSzpPASD7deElWFkNgtEhb0gEWGUwjOXSsW7u+YLvg3/lifRNPQPPgLbQe0Myvb w+KoWbWxtrct8thXkFyTTWogbgxh1hefCSFz9Z8SX2T/k+H/WP6koBzrXKe0vFIP 5Ah5+IxEA29s4C3Il68skuwDwqwvBml4 -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:50 2024 by rpki-client on console-ams.rpki-client.org