$ rpki-client -vvf rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft File: BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft (raw, json) Hash identifier: mXPvxHyFeHRZjJ69vHSYgP9iElRs9yafepjWgYDmq7k= Subject key identifier: 86:30:3A:99:23:34:72:A5:67:AC:93:BB:B9:3B:3B:F5:29:53:52:14 Authority key identifier: 06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 Certificate issuer: /CN=A91F63DC/serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft Manifest number: 71 Signing time: Wed 15 May 2024 07:29:57 +0000 Manifest this update: Wed 15 May 2024 07:29:57 +0000 Manifest next update: Wed 22 May 2024 07:29:57 +0000 Files and hashes: 1: BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl (hash: q2eqoE6K4Otx/m9veQZJmWc111+1t/OWUH2yeKttIoE=) 2: 9FFF0E74665511EEB872BE4DC4F9AE02.roa (hash: xGNIPMjpSmhM+U9jHzs/U/HPwQuWXKcaUastOc6kvgk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:29:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F63DC/serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Validity Not Before: May 15 07:29:57 2024 GMT Not After : May 22 07:29:57 2024 GMT Subject: CN=66446475-4aa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d4:d5:9d:01:f7:90:8a:87:9f:e3:27:c4:73: aa:11:0e:a8:25:f4:3c:08:42:38:ec:e2:45:9d:c0: 07:7f:1e:87:fc:ac:e4:2d:b2:3b:3c:55:36:d6:b8: 8f:f1:c5:9b:72:0c:8e:72:b4:1b:a8:db:00:1e:c3: 87:ed:ea:fc:43:2a:ce:9f:ba:80:f4:14:c2:cc:36: ab:e7:09:9b:4e:71:95:11:c1:07:72:50:e1:8d:6a: a8:14:2f:df:20:68:30:a9:8d:2c:f8:7d:15:73:3c: 70:28:bf:62:0b:8c:33:b0:49:ca:ac:e6:ec:46:3e: 9a:67:dd:b6:9a:02:20:10:93:45:3e:5c:62:a1:06: 89:0d:72:6a:88:5e:ef:52:63:50:84:39:5d:73:19: 7f:be:14:7a:55:42:a5:cf:f4:91:08:1c:22:ea:6e: e6:fb:02:1f:7e:9b:44:55:37:94:cc:f0:4c:8c:8c: ea:7f:52:5b:ad:df:82:09:60:28:d2:16:79:e0:16: c7:dc:2a:ae:7b:cb:89:2e:9a:54:41:05:e0:5b:b6: ff:a2:a0:31:1e:8e:86:d2:85:57:85:39:77:1c:35: a8:44:b6:8f:82:2d:d7:62:f9:2f:48:70:4e:ff:7d: 61:3b:e3:9d:58:45:f9:9c:8f:be:1c:d9:72:19:48: 56:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:30:3A:99:23:34:72:A5:67:AC:93:BB:B9:3B:3B:F5:29:53:52:14 X509v3 Authority Key Identifier: keyid:06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:79:db:e2:be:47:f0:13:fd:b0:68:49:62:68:c3:54:a3:77: 8f:e0:ba:df:97:a1:5b:ac:cb:e3:52:b7:5d:99:8a:bb:af:b0: aa:c8:ce:c7:a6:2f:07:31:8b:10:9e:99:e3:18:15:73:e5:3a: 1a:a8:1e:d6:da:84:a7:9a:a6:cf:6d:64:6f:97:5b:c7:92:68: 4a:93:11:cc:52:ce:de:7a:19:6c:b7:79:b4:d8:bf:62:77:79: ab:4f:40:aa:58:2e:49:c8:18:ec:11:30:02:3e:82:69:a6:87: bc:56:2e:e2:8b:6c:4f:56:bb:5f:6e:9b:ad:f2:62:48:62:f8: 57:19:9e:90:65:4b:a2:21:4d:bd:8f:a9:9c:3a:31:9b:13:43: 9c:8b:86:ba:3e:f5:aa:3f:7e:b6:8c:85:7a:28:40:44:bb:94: 39:34:1d:3a:3d:61:5b:78:81:a6:95:a3:ef:90:bf:d2:99:5a: b3:fd:51:32:8c:f9:86:92:12:c0:a3:40:dd:a0:d1:1e:ac:63: 25:33:c1:ad:b2:b6:bb:c7:1b:f1:da:50:dd:bb:79:7b:a2:a2: 4f:5c:36:27:5f:12:a7:23:45:01:59:45:6b:65:74:f1:39:a8: f4:cf:c8:13:cf:75:4d:d8:ba:ca:42:c8:e0:b5:77:0a:71:69: f0:8f:64:ad -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NjNEQzExMC8GA1UEBRMoMDY2NjZBRUNENzhDMEE1RUQxMzc5MEE1RTlBQTQwQzM0 OTBGQkNGMTAeFw0yNDA1MTUwNzI5NTdaFw0yNDA1MjIwNzI5NTdaMBgxFjAUBgNV BAMTDTY2NDQ2NDc1LTRhYTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDb1NWdAfeQioef4yfEc6oRDqgl9DwIQjjs4kWdwAd/Hof8rOQtsjs8VTbWuI/x xZtyDI5ytBuo2wAew4ft6vxDKs6fuoD0FMLMNqvnCZtOcZURwQdyUOGNaqgUL98g aDCpjSz4fRVzPHAov2ILjDOwScqs5uxGPppn3baaAiAQk0U+XGKhBokNcmqIXu9S Y1CEOV1zGX++FHpVQqXP9JEIHCLqbub7Ah9+m0RVN5TM8EyMjOp/Ulut34IJYCjS FnngFsfcKq57y4kumlRBBeBbtv+ioDEejobShVeFOXccNahEto+CLddi+S9IcE7/ fWE7451YRfmcj74c2XIZSFZdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhjA6mSM0 cqVnrJO7uTs79SlTUhQwHwYDVR0jBBgwFoAUBmZq7NeMCl7RN5Cl6apAw0kPvPEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY2M0RDLzA0MzE1MkUyNjY1 MzExRUU5QzY4RUUyQkM0RjlBRTAyL0JtWnE3TmVNQ2w3Uk41Q2w2YXBBdzBrUHZQ RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQm1acTdOZU1DbDdSTjVDbDZhcEF3MGtQdlBFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY2 M0RDLzA0MzE1MkUyNjY1MzExRUU5QzY4RUUyQkM0RjlBRTAyL0JtWnE3TmVNQ2w3 Uk41Q2w2YXBBdzBrUHZQRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALd52+K+R/AT/bBoSWJow1Sjd4/gut+XoVusy+NSt12ZiruvsKrIzsem LwcxixCemeMYFXPlOhqoHtbahKeaps9tZG+XW8eSaEqTEcxSzt56GWy3ebTYv2J3 eatPQKpYLknIGOwRMAI+gmmmh7xWLuKLbE9Wu19um63yYkhi+FcZnpBlS6IhTb2P qZw6MZsTQ5yLhro+9ao/fraMhXooQES7lDk0HTo9YVt4gaaVo++Qv9KZWrP9UTKM +YaSEsCjQN2g0R6sYyUzwa2ytrvHG/HaUN27eXuiok9cNidfEqcjRQFZRWtldPE5 qPTPyBPPdU3YuspCyOC1dwpxafCPZK0= -----END CERTIFICATE-----Generated at Wed May 15 09:04:46 2024 by rpki-client on console-ams.rpki-client.org