$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft File: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft (raw, json) Hash identifier: aokRo5NQjTohzTcQUWWMlzduVdExq6LmFypqBEbo+E8= Subject key identifier: FB:F1:A0:54:FF:E3:9F:96:B1:0E:AA:54:A1:F9:99:C8:BB:A6:A5:60 Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0BA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft Manifest number: 1BEF Signing time: Sat 04 May 2024 18:06:54 +0000 Manifest this update: Sat 04 May 2024 18:06:53 +0000 Manifest next update: Sat 11 May 2024 18:06:53 +0000 Files and hashes: 1: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl (hash: 8SquyYRa/wL1O0d0XP4ePoXWpUMYR1bIWJVKYY90jfo=) 2: CE3C7EF66FEB11EB91967864C4F9AE02.roa (hash: U6hs1tU689l640hvbs2q+mZqpHKSlM40KRn+IYFszCA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:06:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2976 (0xba0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: May 4 18:06:53 2024 GMT Not After : May 11 18:06:53 2024 GMT Subject: CN=6636793e-8973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:32:2a:3e:f3:af:64:5e:92:de:3c:cd:67:bc: 89:ea:30:80:54:ce:a7:43:71:16:e7:99:0d:7f:2d: 9c:ef:08:56:a1:b9:61:f0:56:81:73:43:62:7b:5a: 1d:df:78:85:6b:22:d6:f3:e2:44:4b:b4:1e:2e:63: ae:fe:94:f2:eb:c5:82:ee:bb:fe:3d:4c:f2:b1:d9: 55:ab:a4:ac:5c:a1:a4:83:43:a6:e1:d1:75:49:15: a6:0f:80:ba:3e:f2:cf:fc:8e:de:83:8b:e3:4c:2a: dc:3f:22:7c:73:07:e7:59:93:4b:77:75:4f:19:25: 33:3d:25:4a:82:1a:29:67:e9:ff:57:fc:20:a7:15: 57:cd:9a:92:6f:b7:89:a7:61:70:85:66:57:9b:b5: 2c:d3:79:2d:70:b3:c0:82:b6:e4:31:ee:2e:f3:e1: 5f:ab:85:5a:0a:90:88:05:e1:7c:55:c0:ab:8b:50: f1:1b:8e:d1:92:48:93:24:d0:4f:b0:30:06:ab:90: 2f:09:9f:60:ee:89:b5:26:3a:47:55:c3:92:56:24: 62:97:2a:a6:a6:78:2c:ee:19:b3:4c:48:fc:97:46: 24:50:b6:ce:85:ee:11:4b:b4:99:7c:2f:29:cd:f4: 8f:27:d9:bc:92:c4:fc:59:b2:0b:54:ac:3d:a0:cf: 75:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:F1:A0:54:FF:E3:9F:96:B1:0E:AA:54:A1:F9:99:C8:BB:A6:A5:60 X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:37:30:5e:50:af:e7:fc:da:3b:1d:9d:c1:1f:71:9d:36:f9: 72:2f:f4:df:21:32:5e:b9:1f:40:63:4c:e1:2d:c0:d4:aa:19: 0d:dc:62:51:bd:22:a7:31:ce:2c:22:7c:32:cb:2c:28:f5:2c: ac:a2:77:e8:b7:3b:95:66:af:4c:43:b9:16:b8:25:ad:16:ed: 21:5c:1c:19:eb:e1:f6:c1:d8:fd:7b:d5:8b:3a:f7:c1:bf:78: df:d6:01:c2:f4:2a:88:08:ad:a6:1a:8c:30:0f:93:d7:a3:ee: f3:b6:0f:92:f1:9d:39:4c:89:50:6d:16:2f:31:cf:e6:27:83: ec:72:93:cf:4b:e5:c9:f4:05:31:fc:77:84:25:fa:0c:3a:05: e6:eb:52:c4:e9:7e:60:e8:8c:91:0a:d4:fe:3d:bd:2c:94:d5: 5d:76:d4:12:a2:e8:b0:ce:98:6e:5b:2c:60:1d:68:ac:06:20: 8a:81:69:8b:29:19:bc:29:ff:86:2e:41:c4:54:a4:e5:87:ab: 3a:b1:7d:e0:40:f1:b6:bf:db:ab:b4:9b:92:86:09:af:09:6b: 9b:8d:74:91:f2:fe:81:78:a6:47:0c:78:24:7b:c7:6d:71:cc: ba:83:8b:ae:cb:d6:d8:8a:7f:3a:01:bf:a4:5a:cd:dd:54:d7: 37:76:03:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjQwNTA0MTgwNjUzWhcNMjQwNTExMTgwNjUzWjAYMRYwFAYD VQQDEw02NjM2NzkzZS04OTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9zIqPvOvZF6S3jzNZ7yJ6jCAVM6nQ3EW55kNfy2c7whWoblh8FaBc0Nie1od 33iFayLW8+JES7QeLmOu/pTy68WC7rv+PUzysdlVq6SsXKGkg0Om4dF1SRWmD4C6 PvLP/I7eg4vjTCrcPyJ8cwfnWZNLd3VPGSUzPSVKghopZ+n/V/wgpxVXzZqSb7eJ p2FwhWZXm7Us03ktcLPAgrbkMe4u8+Ffq4VaCpCIBeF8VcCri1DxG47RkkiTJNBP sDAGq5AvCZ9g7om1JjpHVcOSViRilyqmpngs7hmzTEj8l0YkULbOhe4RS7SZfC8p zfSPJ9m8ksT8WbILVKw9oM91DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvxoFT/ 45+WsQ6qVKH5mci7pqVgMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlh NVVPRmNVam1NMUw5cUV3SG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACNzBeUK/n/No7HZ3BH3GdNvlyL/TfITJeuR9AY0zhLcDUqhkN3GJR vSKnMc4sInwyyywo9SysonfotzuVZq9MQ7kWuCWtFu0hXBwZ6+H2wdj9e9WLOvfB v3jf1gHC9CqICK2mGowwD5PXo+7ztg+S8Z05TIlQbRYvMc/mJ4PscpPPS+XJ9AUx /HeEJfoMOgXm61LE6X5g6IyRCtT+Pb0slNVddtQSouiwzphuWyxgHWisBiCKgWmL KRm8Kf+GLkHEVKTlh6s6sX3gQPG2v9urtJuShgmvCWubjXSR8v6BeKZHDHgke8dt ccy6g4uuy9bYin86Ab+kWs3dVNc3dgMD -----END CERTIFICATE-----Generated at Sat May 4 19:58:45 2024 by rpki-client on console-ams.rpki-client.org