$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft File: bwlMAO-I_YtwgT1trctUaHYyjNk.mft (raw, json) Hash identifier: ZBStZ5xmLS9pu4srEBAk5QQiQlQPWVRXWWuuh8uDFoA= Subject key identifier: C0:FF:37:A5:C4:AE:E3:B1:CC:AC:C6:4E:22:7D:D6:C5:23:82:B3:DD Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 20AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft Manifest number: 2CD8 Signing time: Tue 14 May 2024 15:48:37 +0000 Manifest this update: Tue 14 May 2024 15:48:37 +0000 Manifest next update: Tue 21 May 2024 15:48:37 +0000 Files and hashes: 1: bwlMAO-I_YtwgT1trctUaHYyjNk.crl (hash: gu8Igg3RadeWvgjZbauSE14yeJ6+6i5T2vAX4cycZQs=) 2: 85D25098E00111E596BC7D1BC4F9AE02.roa (hash: Vr232pRpa36clyG9MJfQ3Kt0Q3MCF1mWYWlUSKtDj8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 15:48:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8363 (0x20ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: May 14 15:48:37 2024 GMT Not After : May 21 15:48:37 2024 GMT Subject: CN=664387d5-5756 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:84:60:34:ca:5b:c6:68:d3:98:bb:6b:8a:ff: d1:ac:b9:23:60:e2:3d:fe:52:c1:74:27:34:f0:8c: e5:68:04:e5:c2:38:3c:05:e5:e9:40:c7:34:35:34: d4:41:f8:f0:e9:09:e2:60:e3:e3:24:b4:b3:a2:96: 72:af:a6:60:2d:e8:22:68:0c:b3:2d:c5:11:31:32: 81:f6:18:07:d4:d6:b5:67:a5:9e:9d:8b:23:9c:24: d7:1c:5e:9f:ae:5d:aa:5a:3a:d7:cf:b3:7d:0e:a3: 75:ab:99:1c:f7:84:d4:15:bd:74:89:49:8e:3a:89: 27:5d:2e:42:ec:e7:34:b9:1b:26:31:11:d1:0d:3d: bc:d2:54:25:3f:8d:18:7d:22:7e:73:f3:cf:e3:4b: 25:dd:4c:b8:67:30:4b:02:60:e4:11:55:c3:55:8f: 8f:fc:be:cd:c0:f2:f1:94:d6:8b:a6:f3:dd:04:a9: 31:d8:e0:9c:c4:39:e0:c2:1d:03:75:fc:f0:52:79: f5:6e:80:c6:ae:a9:a2:04:ee:71:cb:bf:f8:02:cf: 1d:47:67:f3:f0:f3:1f:ab:b3:78:08:09:7b:00:55: 74:89:13:64:3e:0f:d7:02:3c:ca:1b:ae:3d:54:ae: 3e:7f:f1:59:01:1b:fa:26:ec:dd:a9:df:ed:e5:08: 17:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:FF:37:A5:C4:AE:E3:B1:CC:AC:C6:4E:22:7D:D6:C5:23:82:B3:DD X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:50:03:0f:e0:0a:2a:6e:68:c2:04:c3:14:3e:e3:aa:c2:c8: 48:bf:bf:cd:3a:14:08:04:ce:19:a6:da:02:c4:5d:4e:d2:48: 6c:f4:92:59:eb:a9:a9:ec:e3:1f:88:18:92:68:86:bc:09:16: f7:2e:8e:f5:b9:ec:50:09:ad:ea:29:e7:9a:55:30:01:f0:4e: 99:c3:94:d4:d1:c6:00:5f:d2:b3:4b:68:90:10:7a:76:96:88: 9f:aa:56:2b:79:dd:b8:67:9e:3f:83:7d:7f:2e:ef:36:bd:e8: 4f:31:45:e9:da:c0:40:0d:9e:23:dd:e6:74:c5:46:7e:06:b0: fe:d1:37:66:72:a7:8d:c8:1c:d0:88:66:3d:38:14:78:f5:5a: b8:63:65:86:79:d4:c0:9a:6e:cd:2b:56:41:54:aa:5b:fd:80: bd:9b:7b:18:bd:49:89:73:9c:22:4a:94:f2:27:f4:b4:e6:fe: 0b:4e:73:01:bd:f4:08:f3:50:ad:d4:ae:0d:08:f6:66:0e:a9: 49:d8:54:6a:d8:68:2c:59:75:4c:74:98:6e:a1:e6:36:78:e0: ac:df:f8:d7:ad:2c:25:80:b6:0b:e5:12:a5:99:58:f8:bc:44: 53:51:12:0c:0b:d1:8c:47:a7:7c:e8:fe:43:7b:e3:cf:ee:91: e2:5b:f5:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjQwNTE0MTU0ODM3WhcNMjQwNTIxMTU0ODM3WjAYMRYwFAYD VQQDEw02NjQzODdkNS01NzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzIRgNMpbxmjTmLtriv/RrLkjYOI9/lLBdCc08IzlaATlwjg8BeXpQMc0NTTU Qfjw6QniYOPjJLSzopZyr6ZgLegiaAyzLcURMTKB9hgH1Na1Z6WenYsjnCTXHF6f rl2qWjrXz7N9DqN1q5kc94TUFb10iUmOOoknXS5C7Oc0uRsmMRHRDT280lQlP40Y fSJ+c/PP40sl3Uy4ZzBLAmDkEVXDVY+P/L7NwPLxlNaLpvPdBKkx2OCcxDngwh0D dfzwUnn1boDGrqmiBO5xy7/4As8dR2fz8PMfq7N4CAl7AFV0iRNkPg/XAjzKG649 VK4+f/FZARv6Juzdqd/t5QgXGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMD/N6XE ruOxzKzGTiJ91sUjgrPdMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUyNS9GNDM0NDExNjhBMkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9Z dHdnVDF0cmN0VWFIWXlqTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeUAMP4AoqbmjCBMMUPuOqwshIv7/NOhQIBM4ZptoCxF1O0khs9JJZ 66mp7OMfiBiSaIa8CRb3Lo71uexQCa3qKeeaVTAB8E6Zw5TU0cYAX9KzS2iQEHp2 loifqlYred24Z54/g31/Lu82vehPMUXp2sBADZ4j3eZ0xUZ+BrD+0TdmcqeNyBzQ iGY9OBR49Vq4Y2WGedTAmm7NK1ZBVKpb/YC9m3sYvUmJc5wiSpTyJ/S05v4LTnMB vfQI81Ct1K4NCPZmDqlJ2FRq2GgsWXVMdJhuoeY2eOCs3/jXrSwlgLYL5RKlmVj4 vERTURIMC9GMR6d86P5De+PP7pHiW/UU -----END CERTIFICATE-----Generated at Tue May 14 17:00:55 2024 by rpki-client on console-fra.rpki-client.org