$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft File: BZ5vA652dqnQ8J1fbL25CGGFWlc.mft (raw, json) Hash identifier: 3evbyeYLmfvHI7JIpBobJJuArlMcPoOevROFRoUhF4g= Subject key identifier: 36:D3:04:80:45:CF:82:C5:7D:CF:D0:62:C4:FD:F4:38:03:A8:EB:ED Authority key identifier: 05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 Certificate issuer: /CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Certificate serial: 05EC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft Manifest number: 05D8 Signing time: Tue 30 Apr 2024 23:52:25 +0000 Manifest this update: Tue 30 Apr 2024 23:52:25 +0000 Manifest next update: Tue 07 May 2024 23:52:25 +0000 Files and hashes: 1: BZ5vA652dqnQ8J1fbL25CGGFWlc.crl (hash: cdnNdbMDrmBT1+Tphdq/mM8nQH+e9QeWpM7H8SJivwo=) 2: 7E0AB01C782C11EBB0B71971C4F9AE02.roa (hash: vANLWWY0YHYC0sh+JQ5XsGgfQudlAFfwTFv4G7Gqqlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 17:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1516 (0x5ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Validity Not Before: Apr 30 23:52:25 2024 GMT Not After : May 7 23:52:25 2024 GMT Subject: CN=66318439-8957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d8:18:2d:22:66:cc:59:67:37:66:75:dd:16: b2:b5:4e:84:c5:17:f8:01:2c:2c:85:1c:b9:72:22: 2d:75:a9:b1:1a:42:35:5e:65:c3:d9:21:6b:0c:b1: f7:74:60:5e:27:b2:c6:12:77:c0:c6:8e:7e:3f:70: 3e:f5:70:9d:b3:06:97:9c:5f:cf:4c:29:02:8f:65: 18:9a:4d:f2:8a:3f:20:d4:ff:df:c6:30:be:26:4a: 10:dd:bb:0f:a4:2c:41:cd:67:dc:a8:d6:84:b8:6d: 82:1b:3d:af:47:c2:de:c7:80:09:bc:3f:f4:56:fe: 61:d5:58:5a:23:62:42:32:53:1b:83:fc:9e:b9:b6: 20:c3:a4:17:d9:39:3a:02:a0:c4:b7:1e:9c:4d:e3: e5:33:c9:11:19:7a:d9:89:df:a5:3d:7b:c7:f8:cb: eb:e1:4a:dd:13:19:00:11:6c:c8:d5:e6:5d:00:57: fd:f7:1f:46:40:39:c1:1d:43:a6:76:6e:02:f3:f6: d6:e6:01:dd:94:88:1c:8e:c0:64:37:a2:f2:2f:ac: 51:5f:da:b3:9f:d1:2a:7c:18:4b:4c:38:ef:c4:ee: 45:06:ab:6e:39:63:dd:95:3b:a6:ad:34:46:32:14: c7:ea:41:ae:81:fd:89:95:a6:6c:7d:5e:5f:6f:e4: 25:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D3:04:80:45:CF:82:C5:7D:CF:D0:62:C4:FD:F4:38:03:A8:EB:ED X509v3 Authority Key Identifier: keyid:05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:35:d8:e6:8c:75:72:29:a2:ae:5b:5e:07:c0:17:a0:b4:e8: fd:6a:84:ab:33:a8:03:d7:b4:77:54:7f:b1:65:45:22:42:d0: f2:a7:d8:fb:75:4d:89:a3:7d:d5:16:06:13:dc:0e:1d:06:db: 63:55:28:a5:9b:44:84:68:54:0a:ce:3c:d1:a3:58:20:78:4a: b4:e7:0f:52:c2:6e:2c:a7:06:cf:a4:6a:55:cb:32:67:51:46: 3a:b9:06:6d:bb:93:68:3e:3b:5b:1f:66:06:e3:32:c2:9b:05: e8:77:3d:32:66:2c:ba:c5:68:a4:7d:ad:a9:22:dd:df:ff:a5: ed:cd:6c:b9:d0:09:14:3a:5b:09:c8:e6:87:4c:bb:2a:2f:67: 8a:12:1e:1d:0f:f8:de:23:d7:91:24:c1:f7:ee:7e:f6:f8:d6: ea:cc:ff:87:6b:5d:6b:21:c4:5b:55:60:35:84:81:0b:44:e4: 93:b6:cc:9b:10:8f:f6:72:21:47:fa:70:6a:3a:c1:f0:67:8e: 9a:6d:c7:52:e3:32:e3:b8:89:f3:0e:7e:19:a0:8e:87:45:a8: c0:f3:f1:08:84:e9:42:8c:ef:ab:e0:01:a1:00:6f:ae:9b:88: 0d:1a:91:2c:9f:ab:16:b0:41:f2:89:97:92:41:e1:8e:5e:eb: 37:76:b4:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3NEIxMTAvBgNVBAUTKDA1OUU2RjAzQUU3Njc2QTlEMEYwOUQ1RjZDQkRCOTA4 NjE4NTVBNTcwHhcNMjQwNDMwMjM1MjI1WhcNMjQwNTA3MjM1MjI1WjAYMRYwFAYD VQQDEw02NjMxODQzOS04OTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NgYLSJmzFlnN2Z13RaytU6ExRf4ASwshRy5ciItdamxGkI1XmXD2SFrDLH3 dGBeJ7LGEnfAxo5+P3A+9XCdswaXnF/PTCkCj2UYmk3yij8g1P/fxjC+JkoQ3bsP pCxBzWfcqNaEuG2CGz2vR8Lex4AJvD/0Vv5h1VhaI2JCMlMbg/yeubYgw6QX2Tk6 AqDEtx6cTePlM8kRGXrZid+lPXvH+Mvr4UrdExkAEWzI1eZdAFf99x9GQDnBHUOm dm4C8/bW5gHdlIgcjsBkN6LyL6xRX9qzn9EqfBhLTDjvxO5FBqtuOWPdlTumrTRG MhTH6kGugf2JlaZsfV5fb+QlpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbTBIBF z4LFfc/QYsT99DgDqOvtMB8GA1UdIwQYMBaAFAWebwOudnap0PCdX2y9uQhhhVpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjc0Qi82MUEzMzg0QTc4 MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRxblE4SjFmYkwyNUNHR0ZX bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JaNXZBNjUyZHFuUThKMWZiTDI1Q0dHRldsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjc0Qi82MUEzMzg0QTc4MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRx blE4SjFmYkwyNUNHR0ZXbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuNdjmjHVyKaKuW14HwBegtOj9aoSrM6gD17R3VH+xZUUiQtDyp9j7 dU2Jo33VFgYT3A4dBttjVSilm0SEaFQKzjzRo1ggeEq05w9Swm4spwbPpGpVyzJn UUY6uQZtu5NoPjtbH2YG4zLCmwXodz0yZiy6xWikfa2pIt3f/6XtzWy50AkUOlsJ yOaHTLsqL2eKEh4dD/jeI9eRJMH37n72+NbqzP+Ha11rIcRbVWA1hIELROSTtsyb EI/2ciFH+nBqOsHwZ46abcdS4zLjuInzDn4ZoI6HRajA8/EIhOlCjO+r4AGhAG+u m4gNGpEsn6sWsEHyiZeSQeGOXus3drQx -----END CERTIFICATE-----Generated at Wed May 1 00:24:04 2024 by rpki-client on console-fra.rpki-client.org