$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.mft File: rbkheCH_vuCW4c7EcJijFFokbqA.mft (raw, json) Hash identifier: XifSFoQbWSMm+QRjW26AiRybcLFfRAsdo5eMXzwv3uA= Subject key identifier: A3:4F:18:78:1C:D6:01:C5:AB:29:42:5F:86:14:82:C1:F8:B6:8C:95 Authority key identifier: AD:B9:21:78:21:FF:BE:E0:96:E1:CE:C4:70:98:A3:14:5A:24:6E:A0 Certificate issuer: /CN=A91F6E63/serialNumber=ADB9217821FFBEE096E1CEC47098A3145A246EA0 Certificate serial: 04A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rbkheCH_vuCW4c7EcJijFFokbqA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.mft Manifest number: 049E Signing time: Fri 03 May 2024 01:40:57 +0000 Manifest this update: Fri 03 May 2024 01:40:56 +0000 Manifest next update: Fri 10 May 2024 01:40:56 +0000 Files and hashes: 1: rbkheCH_vuCW4c7EcJijFFokbqA.crl (hash: Ear752yVKO6QvB4ZYHfn+3gtEVTQQUTeB3E/rWrs+8Y=) 2: 0C0402DEE5CD11EBADAD0E66C4F9AE02.roa (hash: XEuedEjpaUrW6KORzdPscjx/hcfdAZFcXvkRztRme24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.crl rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rbkheCH_vuCW4c7EcJijFFokbqA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1186 (0x4a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6E63/serialNumber=ADB9217821FFBEE096E1CEC47098A3145A246EA0 Validity Not Before: May 3 01:40:56 2024 GMT Not After : May 10 01:40:56 2024 GMT Subject: CN=663440a8-aeae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4b:80:ca:7a:34:c5:38:c6:70:09:05:0d:65: 37:57:07:64:b0:e0:c3:bf:a8:01:29:3e:22:61:24: 4c:93:ed:dd:60:b2:54:29:e0:73:f2:29:39:ff:57: b1:7b:91:08:0e:f0:eb:7c:24:e8:92:c3:7a:11:93: 08:03:39:fd:14:d7:92:0c:fd:8b:67:a5:e6:5c:84: 07:fb:0f:27:8b:42:f4:6d:a1:90:30:94:01:c1:a7: 92:4d:36:29:1f:cd:b1:93:2d:01:a9:95:80:d8:11: 43:78:d4:a3:5e:eb:71:67:1b:88:8a:1b:1e:5b:b7: 20:21:f3:fb:f0:ab:84:c0:b8:ee:fb:d1:51:2a:b3: 29:ca:ae:c9:be:03:91:9c:b0:6c:cd:33:f6:4e:80: 44:89:38:b5:b8:fc:2e:2a:30:fa:a8:ab:86:da:e4: 20:77:ff:2e:4c:f0:68:7c:41:3b:32:80:24:a7:10: 66:84:a2:e6:1f:b6:ff:61:30:01:bb:69:db:97:d6: 25:ed:31:d5:ad:de:20:b9:ec:45:20:60:61:9c:7c: 72:91:ba:23:43:ed:8d:6e:7e:c8:6a:3b:cb:70:9e: fc:0e:fd:b6:d2:46:3a:9d:26:58:9d:ff:1d:2e:9f: 55:5c:14:cc:46:7b:05:e0:e4:74:0b:1a:1b:5d:b7: 54:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:4F:18:78:1C:D6:01:C5:AB:29:42:5F:86:14:82:C1:F8:B6:8C:95 X509v3 Authority Key Identifier: keyid:AD:B9:21:78:21:FF:BE:E0:96:E1:CE:C4:70:98:A3:14:5A:24:6E:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rbkheCH_vuCW4c7EcJijFFokbqA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:50:06:9a:fe:8a:eb:6c:47:08:a7:a0:5e:3c:71:43:e1:55: eb:0f:84:d1:da:71:68:16:a6:a0:91:1d:5b:f2:36:06:4f:21: 29:68:04:c9:21:6e:bb:46:7e:ba:c4:f1:8d:5e:45:41:69:96: 55:36:17:05:54:ee:fc:54:c8:32:a7:d1:64:9e:19:a1:30:26: cc:24:24:4b:be:a2:6d:7b:80:40:b5:2e:7c:38:12:39:5b:31: 69:5f:8e:95:49:f1:8d:ef:38:22:25:5c:80:e0:93:73:f6:49: a9:c5:93:d9:d2:66:bb:f6:be:25:91:4e:88:80:84:10:46:41: e6:e1:27:77:c4:b5:db:3f:e1:bb:03:f9:b5:1b:a8:26:d9:83: 47:83:d2:bc:ed:d1:1f:27:11:a7:7a:43:a3:08:10:d8:b2:ac: 72:6e:8f:a1:cc:95:02:b7:c8:81:d8:c6:da:11:5d:f0:e0:87: fe:59:ec:c1:4f:29:7a:b1:55:50:93:5f:1e:72:15:04:62:4f: 89:b9:a7:e7:8c:f4:ab:3f:81:d3:0f:67:5f:4e:6c:69:e8:f9: 55:71:e6:93:03:d0:99:24:df:24:76:ce:5b:38:8b:3f:ca:16: 8f:1a:80:40:c4:87:50:cf:78:9c:ab:dc:43:76:77:2d:f5:c1: c7:93:d9:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZFNjMxMTAvBgNVBAUTKEFEQjkyMTc4MjFGRkJFRTA5NkUxQ0VDNDcwOThBMzE0 NUEyNDZFQTAwHhcNMjQwNTAzMDE0MDU2WhcNMjQwNTEwMDE0MDU2WjAYMRYwFAYD VQQDEw02NjM0NDBhOC1hZWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0EuAyno0xTjGcAkFDWU3VwdksODDv6gBKT4iYSRMk+3dYLJUKeBz8ik5/1ex e5EIDvDrfCToksN6EZMIAzn9FNeSDP2LZ6XmXIQH+w8ni0L0baGQMJQBwaeSTTYp H82xky0BqZWA2BFDeNSjXutxZxuIihseW7cgIfP78KuEwLju+9FRKrMpyq7JvgOR nLBszTP2ToBEiTi1uPwuKjD6qKuG2uQgd/8uTPBofEE7MoAkpxBmhKLmH7b/YTAB u2nbl9Yl7THVrd4guexFIGBhnHxykbojQ+2Nbn7IajvLcJ78Dv220kY6nSZYnf8d Lp9VXBTMRnsF4OR0CxobXbdUiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKNPGHgc 1gHFqylCX4YUgsH4toyVMB8GA1UdIwQYMBaAFK25IXgh/77gluHOxHCYoxRaJG6g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkU2My9ENjlDRDkyOEU0 QTQxMUVCOEJDNUM1NDZDNEY5QUUwMi9yYmtoZUNIX3Z1Q1c0YzdFY0ppakZGb2ti cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jia2hlQ0hfdnVDVzRjN0VjSmlqRkZva2JxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkU2My9ENjlDRDkyOEU0QTQxMUVCOEJDNUM1NDZDNEY5QUUwMi9yYmtoZUNIX3Z1 Q1c0YzdFY0ppakZGb2ticUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFUAaa/orrbEcIp6BePHFD4VXrD4TR2nFoFqagkR1b8jYGTyEpaATJ IW67Rn66xPGNXkVBaZZVNhcFVO78VMgyp9FknhmhMCbMJCRLvqJte4BAtS58OBI5 WzFpX46VSfGN7zgiJVyA4JNz9kmpxZPZ0ma79r4lkU6IgIQQRkHm4Sd3xLXbP+G7 A/m1G6gm2YNHg9K87dEfJxGnekOjCBDYsqxybo+hzJUCt8iB2MbaEV3w4If+WezB Tyl6sVVQk18echUEYk+JuafnjPSrP4HTD2dfTmxp6PlVceaTA9CZJN8kds5bOIs/ yhaPGoBAxIdQz3icq9xDdnct9cHHk9nX -----END CERTIFICATE-----Generated at Fri May 3 03:10:58 2024 by rpki-client on console-ams.rpki-client.org