$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.mft File: bPYEPvYahE8I4lOhk9XZRlSWJ50.mft (raw, json) Hash identifier: LYpdH3V3nA1pc4W+fXbRyFP6uxhpjCRh/i4hbjTHGas= Subject key identifier: A2:BC:BB:41:39:87:07:61:89:5D:39:C1:9A:81:B4:EE:C9:E4:36:64 Authority key identifier: 6C:F6:04:3E:F6:1A:84:4F:08:E2:53:A1:93:D5:D9:46:54:96:27:9D Certificate issuer: /CN=A91F3D37/serialNumber=6CF6043EF61A844F08E253A193D5D9465496279D Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bPYEPvYahE8I4lOhk9XZRlSWJ50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.mft Manifest number: C5 Signing time: Fri 03 May 2024 06:22:54 +0000 Manifest this update: Fri 03 May 2024 06:22:53 +0000 Manifest next update: Fri 10 May 2024 06:22:53 +0000 Files and hashes: 1: bPYEPvYahE8I4lOhk9XZRlSWJ50.crl (hash: R3OaHDjme4c5otYSZQ68SNu+zL1QZv1yH4Dkg8i6JNM=) 2: 6F67CF8CDCF111ED9828F232C4F9AE02.roa (hash: t308APOJrn10MPw3DSxFkEvQxuY9WYVLshqW46DmSB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.crl rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bPYEPvYahE8I4lOhk9XZRlSWJ50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 06:22:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3D37/serialNumber=6CF6043EF61A844F08E253A193D5D9465496279D Validity Not Before: May 3 06:22:53 2024 GMT Not After : May 10 06:22:53 2024 GMT Subject: CN=663482bd-a4c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d7:e6:44:31:8b:37:6a:f4:c4:db:ce:b6:28: 10:b3:bb:90:42:cb:ed:92:d6:b6:42:50:a3:2b:43: fc:40:dc:34:a1:28:9c:1e:46:bf:7c:0c:3c:48:9c: 00:cf:a8:25:45:7e:ae:9b:33:d5:8c:c2:74:2d:32: 40:6b:1d:c4:71:0e:a5:9d:cf:b8:e8:31:a4:f8:ac: 34:de:ac:db:cc:b2:95:1f:4a:b6:e7:a8:74:59:a8: 6a:11:a7:09:0d:17:3a:8b:ad:67:1e:a3:a1:cb:73: 38:9a:27:af:e2:e5:5d:0f:65:9b:70:e8:93:2a:ef: 72:c2:30:b2:8e:29:1c:ba:ad:43:cc:31:1a:29:0d: 7d:cb:45:4b:fd:9d:db:f9:a7:1b:32:f6:e2:14:50: 53:11:3b:67:24:72:5e:e4:1a:4a:05:99:63:67:4f: f8:f2:58:8c:69:c4:e0:d4:e9:51:8a:09:01:c9:5a: 89:89:ae:f5:f5:3f:7f:da:b6:04:99:cf:ff:24:8b: bd:ab:95:c6:e9:02:0b:0a:00:f0:1e:73:2c:e9:34: 35:ae:76:09:4e:f7:b0:02:ef:a8:0e:62:13:58:40: 2f:e9:94:65:c9:af:d4:4c:90:fd:1e:9d:5d:6e:c7: b8:8c:a7:87:22:16:16:37:10:9a:88:03:a0:52:ea: 4b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:BC:BB:41:39:87:07:61:89:5D:39:C1:9A:81:B4:EE:C9:E4:36:64 X509v3 Authority Key Identifier: keyid:6C:F6:04:3E:F6:1A:84:4F:08:E2:53:A1:93:D5:D9:46:54:96:27:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bPYEPvYahE8I4lOhk9XZRlSWJ50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:bb:6a:6f:f6:22:f4:f9:5c:d7:d0:e5:5f:e8:2e:af:1c:58: 44:0f:78:d8:33:76:22:11:fc:fe:2e:17:76:64:e1:4d:1d:fa: 10:fe:48:ca:cb:52:fa:03:8e:8b:6d:b4:48:90:17:29:19:17: 01:e4:a6:ac:a3:43:aa:0d:c5:fd:db:2b:44:d3:05:a3:4e:bb: 39:a5:e4:3a:6f:09:40:78:f9:45:a9:ce:52:8d:c2:81:d3:9f: e6:de:dd:3a:4b:ae:05:e3:88:22:c8:ce:f0:a8:1d:45:6b:9f: e6:18:1b:88:fc:67:fd:99:13:bc:88:43:41:a6:c7:7f:cf:93: c4:d0:ad:f6:de:99:67:bb:d5:a3:7d:ac:99:fc:c9:a1:fd:34: b5:cf:14:d4:4f:ce:64:bd:a0:75:f9:cf:e6:97:c8:4b:e1:93: ce:d0:3a:c3:c7:26:50:32:0f:5c:72:06:55:b5:f4:23:82:94: 5c:92:71:7b:42:fb:07:40:85:3c:fc:f4:d8:01:59:9a:e3:30: f5:7e:9f:95:ac:13:01:8a:e5:74:6b:96:47:b8:5c:2e:5f:a0: e5:f1:06:b1:1c:34:25:04:f5:96:e3:a2:46:f1:da:97:16:3c: cf:1e:34:a5:b6:78:1f:b2:5d:a6:75:bc:38:65:af:62:13:6f: dd:5e:02:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNEMzcxMTAvBgNVBAUTKDZDRjYwNDNFRjYxQTg0NEYwOEUyNTNBMTkzRDVEOTQ2 NTQ5NjI3OUQwHhcNMjQwNTAzMDYyMjUzWhcNMjQwNTEwMDYyMjUzWjAYMRYwFAYD VQQDEw02NjM0ODJiZC1hNGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNfmRDGLN2r0xNvOtigQs7uQQsvtkta2QlCjK0P8QNw0oSicHka/fAw8SJwA z6glRX6umzPVjMJ0LTJAax3EcQ6lnc+46DGk+Kw03qzbzLKVH0q256h0WahqEacJ DRc6i61nHqOhy3M4miev4uVdD2WbcOiTKu9ywjCyjikcuq1DzDEaKQ19y0VL/Z3b +acbMvbiFFBTETtnJHJe5BpKBZljZ0/48liMacTg1OlRigkByVqJia719T9/2rYE mc//JIu9q5XG6QILCgDwHnMs6TQ1rnYJTvewAu+oDmITWEAv6ZRlya/UTJD9Hp1d bse4jKeHIhYWNxCaiAOgUupLUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKK8u0E5 hwdhiV05wZqBtO7J5DZkMB8GA1UdIwQYMBaAFGz2BD72GoRPCOJToZPV2UZUlied MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0QzNy81RUU5NzgyQURD RUUxMUVEOEMzOEQwMzFDNEY5QUUwMi9iUFlFUHZZYWhFOEk0bE9oazlYWlJsU1dK NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JQWUVQdllhaEU4STRsT2hrOVhaUmxTV0o1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0QzNy81RUU5NzgyQURDRUUxMUVEOEMzOEQwMzFDNEY5QUUwMi9iUFlFUHZZYWhF OEk0bE9oazlYWlJsU1dKNTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAu2pv9iL0+VzX0OVf6C6vHFhED3jYM3YiEfz+Lhd2ZOFNHfoQ/kjK y1L6A46LbbRIkBcpGRcB5Kaso0OqDcX92ytE0wWjTrs5peQ6bwlAePlFqc5SjcKB 05/m3t06S64F44giyM7wqB1Fa5/mGBuI/Gf9mRO8iENBpsd/z5PE0K323plnu9Wj fayZ/Mmh/TS1zxTUT85kvaB1+c/ml8hL4ZPO0DrDxyZQMg9ccgZVtfQjgpRcknF7 QvsHQIU8/PTYAVma4zD1fp+VrBMBiuV0a5ZHuFwuX6Dl8QaxHDQlBPWW46JG8dqX FjzPHjSltngfsl2mdbw4Za9iE2/dXgJX -----END CERTIFICATE-----Generated at Fri May 3 08:21:41 2024 by rpki-client on console-ams.rpki-client.org