$ rpki-client -vvf rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft File: BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft (raw, json) Hash identifier: MayEgoCent0uR8r7H0rPAZU/UDIduJ//bDjy5PnJeqg= Subject key identifier: 03:2A:75:1D:70:F6:A0:FC:F9:7B:D6:CF:39:EC:4A:EE:77:8C:B7:7C Authority key identifier: 06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 Certificate issuer: /CN=A9122905/serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft Manifest number: 0157 Signing time: Sun 19 May 2024 04:52:05 +0000 Manifest this update: Sun 19 May 2024 04:52:05 +0000 Manifest next update: Sun 26 May 2024 04:52:05 +0000 Files and hashes: 1: BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl (hash: rFwvJs+82Sk47o569BLNRscMrtsWvT2xexjKaUvzTec=) 2: 8BFE9EA6335911EDBC60AC44C4F9AE02.roa (hash: kwPYM3eNEmTBafyjP2u3E0wkgKddG8VQLJvyVo+ylYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122905/serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Validity Not Before: May 19 04:52:05 2024 GMT Not After : May 26 04:52:05 2024 GMT Subject: CN=66498575-a992 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:dc:4b:6d:13:0b:b8:fd:76:1f:79:e6:7b:08: 13:97:cb:85:28:fb:5e:3b:a6:bc:88:c5:de:b6:d0: 7e:ec:6b:a2:f9:1e:fe:49:8e:8c:bf:22:27:42:ec: 70:23:07:3f:56:5d:78:cb:cc:49:e8:8e:27:8e:0c: 61:f1:fc:2d:01:c5:c4:20:aa:c1:a1:95:dd:ab:b0: 9e:14:0d:6a:bc:f0:73:fd:29:b2:90:16:75:97:b1: 24:b1:01:ec:96:e4:50:29:61:b3:e9:b4:2b:e2:6f: cc:0e:00:89:99:07:20:38:86:80:49:76:b6:5b:57: 23:ec:9f:1f:55:b5:cc:17:c7:71:ec:87:87:bf:b3: 3b:62:cc:ed:9d:63:64:40:9d:17:fb:0f:50:dd:71: 83:f6:a9:fc:d3:db:d7:54:34:3d:00:9f:d8:e1:13: 18:eb:09:53:01:b7:39:83:51:22:be:ba:ad:53:ed: 82:da:92:fa:65:27:c1:09:7f:71:29:e2:cc:26:00: 83:59:d5:f7:db:34:78:ba:dc:46:ee:ff:37:64:6d: 42:0e:62:87:b7:4c:8c:ad:55:9b:83:de:f6:e0:2a: 90:9c:49:f3:07:aa:69:51:0f:d6:f3:fe:14:12:41: e7:cd:27:8c:a1:c9:e6:eb:93:21:61:02:da:c4:b4: fb:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:2A:75:1D:70:F6:A0:FC:F9:7B:D6:CF:39:EC:4A:EE:77:8C:B7:7C X509v3 Authority Key Identifier: keyid:06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:e0:4f:00:0a:7b:7c:4b:5f:bb:ec:19:78:cc:7b:1d:07:89: 2b:e9:35:c5:29:44:84:44:6b:1a:d3:41:c8:d1:94:db:8d:9f: 35:0e:9e:97:3f:e1:43:d6:e6:14:46:b3:6c:d2:b7:04:be:32: ce:98:4b:6d:2d:a3:a3:f1:0e:66:d5:57:05:a7:b6:0c:23:d6: 3c:c1:d7:eb:40:a2:40:1d:b1:35:58:bc:e9:21:10:f6:98:e4: 84:c6:11:01:98:bb:7d:b6:e2:0b:47:1f:7e:42:db:d0:23:6a: 2b:88:88:6e:f2:5f:4d:e3:42:b3:e8:7c:5f:b8:4f:be:bc:85: fe:9d:18:51:94:19:ef:40:7c:61:9d:c7:27:74:47:7d:c2:02: 5e:30:34:77:5a:29:a7:9a:94:f0:65:2f:73:04:80:4c:d0:14: 85:66:86:74:7d:5d:34:e2:61:a1:9a:97:ff:53:c5:09:34:a3: bd:27:88:bf:11:1e:ad:b7:6a:64:48:bd:ef:b0:ed:78:bc:97: 18:6c:5a:c0:ab:a4:03:27:ae:80:13:61:9b:38:3a:b5:2a:36: 8e:5a:49:21:cb:b8:a1:00:85:83:ea:34:84:1c:d4:c0:72:f6: 28:56:36:b0:3d:d6:f7:cf:45:34:b1:35:59:f9:36:fe:a3:29: de:84:2d:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI5MDUxMTAvBgNVBAUTKDA2NDZDNTIyOTFENUNENERGNEEwRkY3ODY3ODRGQ0Y1 MjgzNDYzMjQwHhcNMjQwNTE5MDQ1MjA1WhcNMjQwNTI2MDQ1MjA1WjAYMRYwFAYD VQQDEw02NjQ5ODU3NS1hOTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutxLbRMLuP12H3nmewgTl8uFKPteO6a8iMXettB+7Gui+R7+SY6MvyInQuxw Iwc/Vl14y8xJ6I4njgxh8fwtAcXEIKrBoZXdq7CeFA1qvPBz/SmykBZ1l7EksQHs luRQKWGz6bQr4m/MDgCJmQcgOIaASXa2W1cj7J8fVbXMF8dx7IeHv7M7YsztnWNk QJ0X+w9Q3XGD9qn809vXVDQ9AJ/Y4RMY6wlTAbc5g1EivrqtU+2C2pL6ZSfBCX9x KeLMJgCDWdX32zR4utxG7v83ZG1CDmKHt0yMrVWbg9724CqQnEnzB6ppUQ/W8/4U EkHnzSeMocnm65MhYQLaxLT7yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAMqdR1w 9qD8+XvWzznsSu53jLd8MB8GA1UdIwQYMBaAFAZGxSKR1c1N9KD/eGeE/PUoNGMk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjkwNS8xMUVCMDg2QTMz NTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpVMzBvUDk0WjRUODlTZzBZ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JrYkZJcEhWelUzMG9QOTRaNFQ4OVNnMFl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjkwNS8xMUVCMDg2QTMzNTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpV MzBvUDk0WjRUODlTZzBZeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBz4E8ACnt8S1+77Bl4zHsdB4kr6TXFKUSERGsa00HI0ZTbjZ81Dp6X P+FD1uYURrNs0rcEvjLOmEttLaOj8Q5m1VcFp7YMI9Y8wdfrQKJAHbE1WLzpIRD2 mOSExhEBmLt9tuILRx9+QtvQI2oriIhu8l9N40Kz6HxfuE++vIX+nRhRlBnvQHxh nccndEd9wgJeMDR3WimnmpTwZS9zBIBM0BSFZoZ0fV004mGhmpf/U8UJNKO9J4i/ ER6tt2pkSL3vsO14vJcYbFrAq6QDJ66AE2GbODq1KjaOWkkhy7ihAIWD6jSEHNTA cvYoVjawPdb3z0U0sTVZ+Tb+oynehC0M -----END CERTIFICATE-----Generated at Sun May 19 05:48:49 2024 by rpki-client on console-fra.rpki-client.org