$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft File: bIAwUr-WwqtKuqntJqOptGOWBaM.mft (raw, json) Hash identifier: wXfTOCCo8ihQ3ccSi2DyzIYWjhYpcJ613SCxS/HwNkw= Subject key identifier: 9D:CA:99:B7:67:F2:34:CF:2E:25:E1:F1:A6:BB:B9:37:77:96:75:E9 Authority key identifier: 6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 Certificate issuer: /CN=A91F89A2/serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft Manifest number: 36 Signing time: Wed 15 May 2024 08:29:21 +0000 Manifest this update: Wed 15 May 2024 08:29:20 +0000 Manifest next update: Wed 22 May 2024 08:29:20 +0000 Files and hashes: 1: bIAwUr-WwqtKuqntJqOptGOWBaM.crl (hash: didj3eLlV+fHjDoLbSe+LNy1CzR5xl/H9WhchiU2Q9c=) 2: 0FBF57D2F16611EEB75BE640C4F9AE02.roa (hash: th+RZ3xcn9sdtuIwJJBmfy4OKtZmVHO5KksRG1wLXTE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89A2/serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Validity Not Before: May 15 08:29:20 2024 GMT Not After : May 22 08:29:20 2024 GMT Subject: CN=66447261-77b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:28:54:68:8e:8d:89:ed:c8:55:d6:2d:ed:e2: f4:e3:5b:a2:87:2c:c7:a0:08:91:21:85:a6:fc:d5: 7e:74:58:a1:24:bd:22:26:38:7e:00:4b:b2:83:14: ad:63:8b:cc:a0:1a:75:ef:e7:a7:59:35:4c:14:5d: 54:92:29:71:ba:e8:61:16:e2:4e:e1:72:f5:13:12: 4d:f9:55:9c:9c:a8:02:c3:ed:72:ba:a5:69:05:12: 95:f5:98:02:a9:1d:16:c1:61:87:08:3d:8d:98:14: 55:76:db:93:25:fc:b9:e4:15:d9:7b:63:81:9e:fa: 1c:9f:f6:9e:cd:c0:5f:ed:ff:6e:8c:08:ca:37:76: 15:16:f6:17:3e:e9:08:8d:6f:8d:c2:a2:0a:09:b2: 8f:44:45:9c:0c:b5:43:a2:14:e6:35:60:f6:75:58: 05:dd:74:5f:78:25:72:2d:7c:d9:1e:9f:89:5a:c2: 9d:6b:5f:9e:5e:b7:4d:5f:c9:03:22:11:f0:3e:9b: 98:99:1b:5b:19:cc:89:a2:ac:13:17:c0:40:9e:11: c8:c4:86:d6:b3:91:dc:5a:08:c8:45:e1:16:9d:d3: 67:ca:e9:65:8f:10:b8:04:eb:0c:a5:5f:3d:2c:c6: 98:7a:49:9b:bc:da:53:0b:78:44:09:79:0b:2b:83: 53:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:CA:99:B7:67:F2:34:CF:2E:25:E1:F1:A6:BB:B9:37:77:96:75:E9 X509v3 Authority Key Identifier: keyid:6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:39:37:e9:22:d9:ce:2a:69:14:b7:80:f3:49:98:80:bd:d3: c5:5e:0d:fb:5b:3d:2f:80:f3:34:38:d5:5c:27:76:c8:0c:a1: 99:95:f9:25:ee:ab:f3:56:2d:4f:62:ea:0c:a7:7f:51:76:8e: fa:aa:22:1e:33:ff:82:7a:91:cd:a2:72:57:46:85:45:f0:d2: 5f:9c:39:4d:82:5a:7b:84:8f:3a:ef:38:19:20:37:21:e1:65: a6:40:28:5f:aa:b6:37:f0:8a:8d:ae:06:50:e4:ab:e7:76:17: 42:36:6f:c7:f5:f7:c9:65:b8:7e:57:3e:56:87:41:d1:30:0a: d2:74:45:f0:5f:af:6a:b9:80:e8:ce:d0:4f:57:78:1f:ad:8e: e0:2b:04:a3:11:df:9b:63:f3:06:ba:aa:52:20:c5:ee:d2:c6: fa:a5:7e:ff:d8:48:20:3b:d0:45:fa:6e:82:a1:9b:09:fa:ee: 78:da:8a:fe:d3:e4:65:16:31:aa:38:89:8f:63:34:63:77:e1: 30:90:8a:bb:79:77:67:e2:c1:b0:b6:99:00:e2:b1:a8:b6:ea: 41:0b:c4:e9:07:31:bb:6e:a6:b9:81:98:c5:cc:25:e8:12:59: 93:b6:7b:27:08:d8:37:d9:a3:c4:77:8e:29:92:95:fd:28:ab: df:e3:dc:5a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODlBMjExMC8GA1UEBRMoNkM4MDMwNTJCRjk2QzJBQjRBQkFBOUVEMjZBM0E5QjQ2 Mzk2MDVBMzAeFw0yNDA1MTUwODI5MjBaFw0yNDA1MjIwODI5MjBaMBgxFjAUBgNV BAMTDTY2NDQ3MjYxLTc3YjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTKFRojo2J7chV1i3t4vTjW6KHLMegCJEhhab81X50WKEkvSImOH4AS7KDFK1j i8ygGnXv56dZNUwUXVSSKXG66GEW4k7hcvUTEk35VZycqALD7XK6pWkFEpX1mAKp HRbBYYcIPY2YFFV225Ml/LnkFdl7Y4Ge+hyf9p7NwF/t/26MCMo3dhUW9hc+6QiN b43CogoJso9ERZwMtUOiFOY1YPZ1WAXddF94JXItfNken4lawp1rX55et01fyQMi EfA+m5iZG1sZzImirBMXwECeEcjEhtazkdxaCMhF4Rad02fK6WWPELgE6wylXz0s xph6SZu82lMLeEQJeQsrg1MbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUncqZt2fy NM8uJeHxpru5N3eWdekwHwYDVR0jBBgwFoAUbIAwUr+WwqtKuqntJqOptGOWBaMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4OUEyL0JDQkFFMENFQzU0 MTExRUVBQkMyQzM4NUM0RjlBRTAyL2JJQXdVci1Xd3F0S3VxbnRKcU9wdEdPV0Jh TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYklBd1VyLVd3cXRLdXFudEpxT3B0R09XQmFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 OUEyL0JDQkFFMENFQzU0MTExRUVBQkMyQzM4NUM0RjlBRTAyL2JJQXdVci1Xd3F0 S3VxbnRKcU9wdEdPV0JhTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJg5N+ki2c4qaRS3gPNJmIC908VeDftbPS+A8zQ41VwndsgMoZmV+SXu q/NWLU9i6gynf1F2jvqqIh4z/4J6kc2icldGhUXw0l+cOU2CWnuEjzrvOBkgNyHh ZaZAKF+qtjfwio2uBlDkq+d2F0I2b8f198lluH5XPlaHQdEwCtJ0RfBfr2q5gOjO 0E9XeB+tjuArBKMR35tj8wa6qlIgxe7Sxvqlfv/YSCA70EX6boKhmwn67njaiv7T 5GUWMao4iY9jNGN34TCQirt5d2fiwbC2mQDisai26kELxOkHMbtuprmBmMXMJegS WZO2eycI2DfZo8R3jimSlf0oq9/j3Fo= -----END CERTIFICATE-----Generated at Wed May 15 09:04:46 2024 by rpki-client on console-ams.rpki-client.org