$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft File: BNhIIeE7gDAzVMS-NDMdURHyvKY.mft (raw, json) Hash identifier: e8437Gv7iK30aLBTS7d+YbMXo8Ia7xWKPLx3F4ztxpk= Subject key identifier: ED:A3:ED:72:29:C6:76:CA:CC:E4:3E:F9:20:2D:5B:51:ED:97:98:E4 Authority key identifier: 04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 Certificate issuer: /CN=A91F0721/serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft Manifest number: E5 Signing time: Sun 05 May 2024 05:58:03 +0000 Manifest this update: Sun 05 May 2024 05:58:02 +0000 Manifest next update: Sun 12 May 2024 05:58:02 +0000 Files and hashes: 1: BNhIIeE7gDAzVMS-NDMdURHyvKY.crl (hash: un6/mOQtGknvm+FTbhD60IA0117TeRSspeMKQqlD2LI=) 2: 7659B89AADCC11ED84051211C4F9AE02.roa (hash: WyTsaKM9AgGR0mrkDwgxzr2KZxKdSvDUWhHRY9oRT+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 05:58:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0721/serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Validity Not Before: May 5 05:58:02 2024 GMT Not After : May 12 05:58:02 2024 GMT Subject: CN=66371fea-6565 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:bd:8f:64:81:8e:c5:27:cc:2e:82:3a:64:92: 19:2e:cc:8a:a9:65:a4:6b:9c:41:be:8b:77:50:7c: 59:37:d4:e2:21:dd:1f:a4:f2:9b:f8:7c:c3:48:ec: 9c:e7:d0:69:44:f8:33:53:0c:a7:e5:80:c1:fa:38: bc:1b:2c:be:4f:ab:5b:95:d9:77:a9:ab:e5:e1:34: 77:7f:99:96:d2:25:f5:79:a7:5e:b7:55:21:7c:23: 49:ce:db:4c:65:76:09:74:49:0c:02:c3:d7:99:12: 9f:f3:87:09:f2:bf:f4:e8:48:9c:e4:b5:a6:f9:84: 35:d7:54:93:5f:70:48:85:cb:b7:b0:80:1e:21:79: 23:64:c4:a0:4a:fc:15:6b:30:79:de:48:c8:b6:98: a4:72:41:f5:f3:ff:c4:95:d8:9a:37:9a:64:f3:65: 89:7c:e0:c7:83:f7:80:62:4a:d4:cf:38:bb:64:4d: 2b:c6:e9:42:ca:31:ef:77:12:b9:f2:98:56:6a:f9: 88:75:e2:89:17:dd:c7:61:30:83:e3:65:6f:56:a7: 77:88:04:c5:aa:ac:d3:44:df:d0:f6:4a:70:4a:f5: 2b:78:da:86:e7:cb:e9:c2:c9:2b:d3:e8:5e:56:23: 01:65:8f:ed:a9:68:d3:6e:86:1b:d9:dd:0c:30:6b: a6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:A3:ED:72:29:C6:76:CA:CC:E4:3E:F9:20:2D:5B:51:ED:97:98:E4 X509v3 Authority Key Identifier: keyid:04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:12:2f:5b:96:21:6d:fa:b0:20:47:40:62:6b:23:33:9e:f6: e4:de:e4:a0:e6:c8:32:20:a8:40:12:a6:6a:97:5f:6e:cc:c6: 07:35:2a:82:2f:16:bd:80:26:6b:a0:55:a0:a4:c9:78:f6:b2: 19:4c:3a:b7:83:0a:f1:ee:d8:8f:7f:f0:9f:7b:38:b0:1f:2f: 78:94:56:95:83:7f:c3:65:33:0e:57:e3:d6:5e:26:04:da:34: d2:37:a4:d8:c8:fe:97:5d:d1:de:cf:e0:07:05:a8:da:fa:de: f9:7b:ef:f2:55:07:d7:21:02:22:cd:30:59:bd:43:74:46:b2: 81:83:e4:20:e1:7f:e2:e4:6a:1b:fd:3d:64:ca:c9:d9:d3:28: c1:0b:78:74:db:a4:b0:53:0a:9e:63:86:76:49:bf:bb:d2:ff: ff:b5:29:73:bc:64:fe:ef:f6:b8:62:9c:fb:65:72:74:aa:74: bb:8d:8f:02:2a:ee:1e:79:c6:ca:53:f6:cb:0a:9b:71:86:44: 72:9f:81:48:f3:3e:87:48:73:58:bb:0c:77:65:ac:74:8e:21: f6:da:f7:85:45:a8:cf:7e:c6:06:d6:de:8a:5e:cd:16:f0:42: 6c:0d:31:c2:60:1b:7f:be:e7:ab:91:79:e3:21:c4:22:0b:86: db:6f:7c:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA3MjExMTAvBgNVBAUTKDA0RDg0ODIxRTEzQjgwMzAzMzU0QzRCRTM0MzMxRDUx MTFGMkJDQTYwHhcNMjQwNTA1MDU1ODAyWhcNMjQwNTEyMDU1ODAyWjAYMRYwFAYD VQQDEw02NjM3MWZlYS02NTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArb2PZIGOxSfMLoI6ZJIZLsyKqWWka5xBvot3UHxZN9TiId0fpPKb+HzDSOyc 59BpRPgzUwyn5YDB+ji8Gyy+T6tbldl3qavl4TR3f5mW0iX1eadet1UhfCNJzttM ZXYJdEkMAsPXmRKf84cJ8r/06Eic5LWm+YQ111STX3BIhcu3sIAeIXkjZMSgSvwV azB53kjItpikckH18//EldiaN5pk82WJfODHg/eAYkrUzzi7ZE0rxulCyjHvdxK5 8phWavmIdeKJF93HYTCD42VvVqd3iATFqqzTRN/Q9kpwSvUreNqG58vpwskr0+he ViMBZY/tqWjTboYb2d0MMGumeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO2j7XIp xnbKzOQ++SAtW1Htl5jkMB8GA1UdIwQYMBaAFATYSCHhO4AwM1TEvjQzHVER8rym MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDcyMS9DOTEyN0IzRUFE QzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dEQXpWTVMtTkRNZFVSSHl2 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JOaElJZUU3Z0RBelZNUy1ORE1kVVJIeXZLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDcyMS9DOTEyN0IzRUFEQzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dE QXpWTVMtTkRNZFVSSHl2S1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTEi9bliFt+rAgR0BiayMznvbk3uSg5sgyIKhAEqZql19uzMYHNSqC Lxa9gCZroFWgpMl49rIZTDq3gwrx7tiPf/CfeziwHy94lFaVg3/DZTMOV+PWXiYE 2jTSN6TYyP6XXdHez+AHBaja+t75e+/yVQfXIQIizTBZvUN0RrKBg+Qg4X/i5Gob /T1kysnZ0yjBC3h026SwUwqeY4Z2Sb+70v//tSlzvGT+7/a4Ypz7ZXJ0qnS7jY8C Ku4eecbKU/bLCptxhkRyn4FI8z6HSHNYuwx3Zax0jiH22veFRajPfsYG1t6KXs0W 8EJsDTHCYBt/vuerkXnjIcQiC4bbb3xy -----END CERTIFICATE-----Generated at Sun May 5 08:21:13 2024 by rpki-client on console-ams.rpki-client.org