$ rpki-client -vvf rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft File: Bst2YhlvZE7eydz72HmbjHPjlwk.mft (raw, json) Hash identifier: qFlXxLPaG+Sqk77LpBPvqFV6rQveWAeJjNPkFerLsOY= Subject key identifier: 04:C6:DC:D4:AB:B1:17:BD:B8:3C:95:3C:E1:AE:BA:BA:A8:C0:DB:EE Authority key identifier: 06:CB:76:62:19:6F:64:4E:DE:C9:DC:FB:D8:79:9B:8C:73:E3:97:09 Certificate issuer: /CN=A9127C93/serialNumber=06CB7662196F644EDEC9DCFBD8799B8C73E39709 Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bst2YhlvZE7eydz72HmbjHPjlwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft Manifest number: 0124 Signing time: Sun 19 May 2024 05:10:55 +0000 Manifest this update: Sun 19 May 2024 05:10:55 +0000 Manifest next update: Sun 26 May 2024 05:10:55 +0000 Files and hashes: 1: Bst2YhlvZE7eydz72HmbjHPjlwk.crl (hash: iVObPryRRsT4lu3C4dPkHtMztnbYQ8AA5DMjz2BPpR0=) 2: 2965791E5F4011ED9361C246C4F9AE02.roa (hash: wcboBkBsiOUc1fILeS4MBz6tRlg1NvPPP97/P2NtfGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.crl rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bst2YhlvZE7eydz72HmbjHPjlwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127C93/serialNumber=06CB7662196F644EDEC9DCFBD8799B8C73E39709 Validity Not Before: May 19 05:10:55 2024 GMT Not After : May 26 05:10:55 2024 GMT Subject: CN=664989df-327b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:f8:e4:af:8c:05:8a:7e:f3:19:5f:d4:47:6b: fd:06:da:71:36:2d:1b:b1:4a:de:49:8c:ef:e4:5d: 7b:48:bc:b1:24:3a:32:42:f6:5b:6d:3f:3d:66:8a: a5:4a:22:09:af:80:b6:96:cb:c5:ea:2f:7a:97:e6: 3d:82:40:b7:e8:fd:50:34:70:da:47:8d:02:a5:23: f3:12:34:a8:ef:9b:ea:7f:8d:46:15:27:cf:14:c6: 4f:84:9f:97:b3:68:d3:65:61:38:d1:5c:09:b8:15: 7e:40:7a:19:30:0b:24:17:a8:39:e5:80:09:68:14: 6e:cd:e0:48:57:49:9c:4f:8a:98:bb:6b:9d:69:40: 85:26:19:de:21:70:5f:d1:12:3d:98:ad:36:3d:25: 82:a4:45:5e:86:b1:45:65:20:88:63:89:7a:48:b9: e0:83:6c:db:7e:e0:03:77:e9:b9:42:86:20:17:cd: 2a:0b:f0:5c:10:fc:9b:e3:02:46:32:9f:b2:c8:fc: 0e:0f:c9:e7:22:10:3e:ea:e8:81:47:6c:ed:a5:b5: ce:55:a4:b3:ea:14:32:d4:49:d0:08:e6:1f:c0:44: 7e:e0:6d:1c:26:b2:48:2b:36:a1:1c:9a:bd:09:9b: 0b:f3:4f:42:3d:9c:f6:d2:58:f8:ef:c4:6d:41:67: 53:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:C6:DC:D4:AB:B1:17:BD:B8:3C:95:3C:E1:AE:BA:BA:A8:C0:DB:EE X509v3 Authority Key Identifier: keyid:06:CB:76:62:19:6F:64:4E:DE:C9:DC:FB:D8:79:9B:8C:73:E3:97:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bst2YhlvZE7eydz72HmbjHPjlwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:12:cb:ca:16:ab:0c:4f:ea:48:39:72:84:bc:35:35:26:d3: 78:04:af:43:22:d0:f4:f8:ae:cf:e8:8f:78:aa:de:cf:1d:de: de:f9:87:6b:c7:bf:b9:53:be:ce:b6:83:78:0f:db:fd:1f:e4: c6:c0:62:82:e5:2a:e7:97:67:14:83:3a:ec:18:55:53:1e:03: 6c:72:c7:f6:f6:43:0e:45:3d:6e:69:3b:e8:ce:61:87:4f:ec: ed:bb:70:20:51:34:d6:d2:b7:61:5f:6a:bf:0b:e2:91:ad:fb: a2:b8:e8:06:22:40:a2:c4:fe:77:a9:1f:7a:5c:6a:cb:15:ec: 03:35:13:57:0c:cc:73:a1:df:e0:20:71:58:10:eb:17:75:d5: 25:71:f0:a0:49:46:f1:f1:4e:98:c4:db:b4:40:e7:5c:79:c9: 7e:41:cf:d6:96:76:a7:bb:68:92:df:e1:fc:85:3b:9d:f5:d2: 83:0b:1c:2d:56:a6:70:32:de:66:61:cf:c9:eb:e4:ee:4e:9c: b5:1f:75:c4:77:1c:63:f9:67:14:35:e7:38:b2:bd:cb:d2:dc: 6c:38:e6:af:ab:c9:79:38:59:2a:44:3e:29:95:34:55:1c:a2: 58:9f:ee:8e:a2:6d:37:92:4a:40:61:2c:55:75:72:90:30:22: 3d:97:d8:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdDOTMxMTAvBgNVBAUTKDA2Q0I3NjYyMTk2RjY0NEVERUM5RENGQkQ4Nzk5QjhD NzNFMzk3MDkwHhcNMjQwNTE5MDUxMDU1WhcNMjQwNTI2MDUxMDU1WjAYMRYwFAYD VQQDEw02NjQ5ODlkZi0zMjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6vjkr4wFin7zGV/UR2v9BtpxNi0bsUreSYzv5F17SLyxJDoyQvZbbT89Zoql SiIJr4C2lsvF6i96l+Y9gkC36P1QNHDaR40CpSPzEjSo75vqf41GFSfPFMZPhJ+X s2jTZWE40VwJuBV+QHoZMAskF6g55YAJaBRuzeBIV0mcT4qYu2udaUCFJhneIXBf 0RI9mK02PSWCpEVehrFFZSCIY4l6SLngg2zbfuADd+m5QoYgF80qC/BcEPyb4wJG Mp+yyPwOD8nnIhA+6uiBR2ztpbXOVaSz6hQy1EnQCOYfwER+4G0cJrJIKzahHJq9 CZsL809CPZz20lj478RtQWdTJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFATG3NSr sRe9uDyVPOGuurqowNvuMB8GA1UdIwQYMBaAFAbLdmIZb2RO3snc+9h5m4xz45cJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0M5My80MDIxQTRFNjVG MjQxMUVEQjgwQzE5MjFDNEY5QUUwMi9Cc3QyWWhsdlpFN2V5ZHo3MkhtYmpIUGps d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JzdDJZaGx2WkU3ZXlkejcySG1iakhQamx3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0M5My80MDIxQTRFNjVGMjQxMUVEQjgwQzE5MjFDNEY5QUUwMi9Cc3QyWWhsdlpF N2V5ZHo3MkhtYmpIUGpsd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaEsvKFqsMT+pIOXKEvDU1JtN4BK9DItD0+K7P6I94qt7PHd7e+Ydr x7+5U77OtoN4D9v9H+TGwGKC5Srnl2cUgzrsGFVTHgNscsf29kMORT1uaTvozmGH T+ztu3AgUTTW0rdhX2q/C+KRrfuiuOgGIkCixP53qR96XGrLFewDNRNXDMxzod/g IHFYEOsXddUlcfCgSUbx8U6YxNu0QOdcecl+Qc/Wlnanu2iS3+H8hTud9dKDCxwt VqZwMt5mYc/J6+TuTpy1H3XEdxxj+WcUNec4sr3L0txsOOavq8l5OFkqRD4plTRV HKJYn+6Oom03kkpAYSxVdXKQMCI9l9j+ -----END CERTIFICATE-----Generated at Sun May 19 06:14:33 2024 by rpki-client on console-ams.rpki-client.org