$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft File: iBzVaxmrfMJiYzdmnqtzClWnLLY.mft (raw, json) Hash identifier: thIEDtuM04jpaLaRssmO8hvUp7CCCvO+n7LoXnnqGds= Subject key identifier: C5:7D:6B:78:5F:ED:1C:5A:5A:DA:0D:A8:D6:99:29:BC:11:55:4B:E3 Authority key identifier: 88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 Certificate issuer: /CN=A91ED9F9/serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft Manifest number: 35 Signing time: Tue 21 May 2024 08:15:56 +0000 Manifest this update: Tue 21 May 2024 08:15:55 +0000 Manifest next update: Tue 28 May 2024 08:15:55 +0000 Files and hashes: 1: iBzVaxmrfMJiYzdmnqtzClWnLLY.crl (hash: oZAFVO2KfHkAh/xRLJlgE7ricBGMx+sYoOHBKtMz26k=) 2: FD45DD80C95411EEAF356F5BC4F9AE02.roa (hash: gYpJagU18gGICx19YL3Dg0Dl6FywJhnJI47VXBuygto=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED9F9/serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Validity Not Before: May 21 08:15:55 2024 GMT Not After : May 28 08:15:55 2024 GMT Subject: CN=664c583c-cfb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:96:02:19:43:fa:95:76:0b:93:5f:ce:c0:f6: 69:af:c8:d5:28:c8:d5:1d:e1:62:4d:64:3e:66:49: b1:41:fb:06:a6:bb:b4:cf:42:02:76:28:4d:33:6d: c3:6f:95:43:0f:27:a1:aa:47:9d:59:f4:5f:27:e1: d9:aa:5b:58:8b:10:f5:de:0c:3b:65:9c:e5:eb:ad: 6d:91:d3:3a:59:ab:df:7e:b8:90:55:1d:f2:34:90: 74:2b:c6:5e:f0:9b:61:36:d4:4f:c7:03:8f:6f:c9: 42:00:ab:b4:27:fb:84:21:a7:92:e1:91:94:7e:52: 18:e4:f7:3b:14:28:2b:72:d3:ad:7a:47:de:e0:1a: 41:3f:f7:f6:b9:1b:4e:9f:b1:4f:d9:20:09:5d:34: 19:90:38:4e:09:cf:a7:8a:21:1f:17:8d:ec:35:f4: fa:40:40:d8:78:c2:49:9f:54:7a:a9:b7:aa:a9:17: fa:49:b3:36:09:01:d1:05:b1:54:08:ef:d6:bf:da: d4:05:cd:83:e6:0f:53:82:ce:d4:c4:4e:06:1d:24: ae:ed:d3:7f:a8:40:3a:44:5c:7c:5e:30:3f:92:34: 46:cd:cd:bf:9d:ae:07:7e:01:5d:97:72:54:3c:05: 36:1d:2b:2b:dc:3d:7d:51:6d:52:85:f0:20:3b:b3: bb:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:7D:6B:78:5F:ED:1C:5A:5A:DA:0D:A8:D6:99:29:BC:11:55:4B:E3 X509v3 Authority Key Identifier: keyid:88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:3e:f6:8e:72:b3:39:94:eb:b5:3c:57:bc:b7:39:66:17:77: 8b:78:77:01:58:f8:b2:c0:36:6a:67:84:db:25:96:3c:0e:d0: 64:65:15:b7:7e:9f:5f:0b:ef:63:b4:a8:f9:ba:bd:20:13:8e: 2f:a6:11:35:c7:e2:9e:ff:34:98:77:bf:52:f2:d7:bc:3c:af: ef:70:04:36:83:e5:4b:e9:b5:f3:40:46:c5:3c:30:13:6d:34: 9a:30:b0:64:e8:9c:b4:b8:99:d6:d8:48:c2:5d:7e:4e:40:7c: 17:88:2f:60:0b:c3:19:48:7a:7e:f3:7f:79:81:17:34:c4:aa: 71:fd:1c:8d:37:4a:aa:fc:bf:3c:ab:9b:1f:79:54:d5:5e:e7: 1b:d6:cd:0c:0a:e8:0c:eb:ad:6f:1a:5c:ab:e1:d4:21:84:d9: 34:43:5a:6b:69:d3:5f:53:a3:56:15:53:fe:02:57:f7:b9:17: 65:0f:13:a6:ee:ab:a8:a5:49:5a:cc:b3:76:8d:f3:7e:67:7b: 26:bf:d6:e2:8b:3c:de:6f:86:71:e1:59:72:7f:22:ca:db:bc: bd:bd:fa:37:5a:d1:84:4b:39:bb:d6:87:fb:0c:a0:8f:06:ba: eb:54:25:1a:06:a0:1d:ed:9c:cb:eb:0d:1c:99:35:6f:66:1f: b0:a0:cd:b5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RDlGOTExMC8GA1UEBRMoODgxQ0Q1NkIxOUFCN0NDMjYyNjMzNzY2OUVBQjczMEE1 NUE3MkNCNjAeFw0yNDA1MjEwODE1NTVaFw0yNDA1MjgwODE1NTVaMBgxFjAUBgNV BAMTDTY2NGM1ODNjLWNmYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFlgIZQ/qVdguTX87A9mmvyNUoyNUd4WJNZD5mSbFB+wamu7TPQgJ2KE0zbcNv lUMPJ6GqR51Z9F8n4dmqW1iLEPXeDDtlnOXrrW2R0zpZq99+uJBVHfI0kHQrxl7w m2E21E/HA49vyUIAq7Qn+4Qhp5LhkZR+Uhjk9zsUKCty0616R97gGkE/9/a5G06f sU/ZIAldNBmQOE4Jz6eKIR8Xjew19PpAQNh4wkmfVHqpt6qpF/pJszYJAdEFsVQI 79a/2tQFzYPmD1OCztTETgYdJK7t03+oQDpEXHxeMD+SNEbNzb+drgd+AV2XclQ8 BTYdKyvcPX1RbVKF8CA7s7vhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxX1reF/t HFpa2g2o1pkpvBFVS+MwHwYDVR0jBBgwFoAUiBzVaxmrfMJiYzdmnqtzClWnLLYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVEOUY5LzVGMzc5REIwQzk1 MjExRUVCN0FEREQ0RUM0RjlBRTAyL2lCelZheG1yZk1KaVl6ZG1ucXR6Q2xXbkxM WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaUJ6VmF4bXJmTUppWXpkbW5xdHpDbFduTExZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVE OUY5LzVGMzc5REIwQzk1MjExRUVCN0FEREQ0RUM0RjlBRTAyL2lCelZheG1yZk1K aVl6ZG1ucXR6Q2xXbkxMWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKE+9o5yszmU67U8V7y3OWYXd4t4dwFY+LLANmpnhNslljwO0GRlFbd+ n18L72O0qPm6vSATji+mETXH4p7/NJh3v1Ly17w8r+9wBDaD5UvptfNARsU8MBNt NJowsGTonLS4mdbYSMJdfk5AfBeIL2ALwxlIen7zf3mBFzTEqnH9HI03Sqr8vzyr mx95VNVe5xvWzQwK6AzrrW8aXKvh1CGE2TRDWmtp019To1YVU/4CV/e5F2UPE6bu q6ilSVrMs3aN835neya/1uKLPN5vhnHhWXJ/IsrbvL29+jda0YRLObvWh/sMoI8G uutUJRoGoB3tnMvrDRyZNW9mH7CgzbU= -----END CERTIFICATE-----Generated at Tue May 21 10:37:10 2024 by rpki-client on console-fra.rpki-client.org