$ rpki-client -vvf rpki.apnic.net/member_repository/A9129FD1/F85C25E2651F11EABB632C6DC4F9AE02/bGmJrxjur94Mry7rtRSIPHXtRFY.mft File: bGmJrxjur94Mry7rtRSIPHXtRFY.mft (raw, json) Hash identifier: Bay+rCHn7Wqwt0E2M9OsGFFcoS/Jqbk7P1ltnA1RzMY= Subject key identifier: 56:04:21:78:DD:50:E3:12:36:06:FF:69:24:3B:07:5E:3B:9F:95:6E Authority key identifier: 6C:69:89:AF:18:EE:AF:DE:0C:AF:2E:EB:B5:14:88:3C:75:ED:44:56 Certificate issuer: /CN=A9129FD1/serialNumber=6C6989AF18EEAFDE0CAF2EEBB514883C75ED4456 Certificate serial: 09AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGmJrxjur94Mry7rtRSIPHXtRFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129FD1/F85C25E2651F11EABB632C6DC4F9AE02/bGmJrxjur94Mry7rtRSIPHXtRFY.mft Manifest number: 09A0 Signing time: Sat 18 May 2024 20:53:44 +0000 Manifest this update: Sat 18 May 2024 20:53:43 +0000 Manifest next update: Sat 25 May 2024 20:53:43 +0000 Files and hashes: 1: bGmJrxjur94Mry7rtRSIPHXtRFY.crl (hash: rFfaGFf1neJxdvbMmGaJvLOIU9Iy0dNNVRZ1Ge7YcB0=) 2: 192351DC2D3711EEB5737B0CC4F9AE02.roa (hash: Yx/tB/dsw0XeQztF/7HuNLzuF7Ti1rESlqeHBgPvsEw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129FD1/F85C25E2651F11EABB632C6DC4F9AE02/bGmJrxjur94Mry7rtRSIPHXtRFY.crl rsync://rpki.apnic.net/member_repository/A9129FD1/F85C25E2651F11EABB632C6DC4F9AE02/bGmJrxjur94Mry7rtRSIPHXtRFY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGmJrxjur94Mry7rtRSIPHXtRFY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2474 (0x9aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129FD1/serialNumber=6C6989AF18EEAFDE0CAF2EEBB514883C75ED4456 Validity Not Before: May 18 20:53:43 2024 GMT Not After : May 25 20:53:43 2024 GMT Subject: CN=66491557-5fae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4c:6a:eb:ea:e8:a9:4a:98:17:03:05:a4:05: a4:29:5b:49:dc:27:3f:67:62:92:33:1d:d8:dd:14: 39:fc:5e:9d:7a:30:43:65:69:5a:41:04:9c:ad:57: 9e:b7:de:59:80:6a:88:8f:0f:1d:a6:ad:43:ae:61: e7:2d:ab:62:45:9c:85:93:43:76:2f:71:22:58:6e: c6:83:4d:18:f9:4a:82:ea:5c:b3:87:ad:99:fd:9e: 93:54:32:68:9e:7a:3b:32:1a:d2:b4:23:76:14:84: ba:3b:0e:da:0b:70:ae:98:0c:79:49:d1:63:e9:2c: c0:72:ac:e4:6c:c3:1f:e2:ec:f7:46:f2:1c:8b:41: 3e:55:21:c2:7b:cc:aa:5d:cc:a3:c4:62:09:88:e5: 61:9f:aa:ad:77:41:94:43:c1:13:4a:30:e4:0e:e1: ec:cf:bc:71:85:a6:03:c1:87:2d:c0:c2:16:b7:87: e8:98:2a:47:93:2b:11:18:8a:9e:69:75:b1:19:9f: e0:b8:ce:e6:c4:9e:7f:7f:d6:8b:92:a9:2b:2c:16: 6d:e2:8f:58:b8:97:98:f2:3a:1e:b2:78:20:f3:af: b6:4a:6f:8d:b5:37:37:08:ff:25:71:69:8c:35:b3: 27:75:d9:b1:03:4f:39:c5:8f:a7:4d:36:82:bc:0f: 17:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:04:21:78:DD:50:E3:12:36:06:FF:69:24:3B:07:5E:3B:9F:95:6E X509v3 Authority Key Identifier: keyid:6C:69:89:AF:18:EE:AF:DE:0C:AF:2E:EB:B5:14:88:3C:75:ED:44:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129FD1/F85C25E2651F11EABB632C6DC4F9AE02/bGmJrxjur94Mry7rtRSIPHXtRFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGmJrxjur94Mry7rtRSIPHXtRFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129FD1/F85C25E2651F11EABB632C6DC4F9AE02/bGmJrxjur94Mry7rtRSIPHXtRFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:b8:2b:93:e5:90:71:28:c7:59:79:0b:3b:22:1c:5b:63:40: 4c:ac:28:4c:34:f6:52:8d:21:85:0a:18:9b:d8:12:ca:9c:dc: 35:16:3f:32:42:a4:a0:7d:9f:ab:fc:8a:68:ef:7b:dc:06:16: 57:4c:14:25:64:a3:86:fb:2e:7d:18:f5:82:21:5c:1c:f4:11: 92:c6:91:cd:37:47:b8:46:c7:79:c0:f4:05:ff:50:5e:83:51: c6:be:56:a8:37:31:d2:69:32:2c:43:32:9a:55:3c:60:4d:6e: b1:82:1a:f5:56:40:d5:ad:f8:52:07:a5:bb:7c:24:bf:09:e3: fd:62:5c:4c:c2:9c:09:7e:c5:25:15:60:60:ef:4c:59:34:32: e0:10:b5:61:8c:82:f7:3d:75:c0:55:99:53:fa:ba:31:b0:59: e0:3b:c7:e3:cb:f7:92:45:a8:87:6d:c9:fc:94:7c:a1:79:fb: 65:cf:ea:36:9e:55:bb:43:a7:d3:b4:6e:92:66:82:43:e9:bc: 50:4a:b4:7e:ba:18:fa:5c:db:09:10:71:a4:07:80:d8:fe:ac: b0:3c:f7:c1:a4:af:88:d8:1f:0e:f6:21:25:b8:21:7a:e9:af: 01:0f:e7:75:b6:94:62:b5:ad:cf:08:8f:64:03:42:cd:36:73: 45:24:a4:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlGRDExMTAvBgNVBAUTKDZDNjk4OUFGMThFRUFGREUwQ0FGMkVFQkI1MTQ4ODND NzVFRDQ0NTYwHhcNMjQwNTE4MjA1MzQzWhcNMjQwNTI1MjA1MzQzWjAYMRYwFAYD VQQDEw02NjQ5MTU1Ny01ZmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkxq6+roqUqYFwMFpAWkKVtJ3Cc/Z2KSMx3Y3RQ5/F6dejBDZWlaQQScrVee t95ZgGqIjw8dpq1DrmHnLatiRZyFk0N2L3EiWG7Gg00Y+UqC6lyzh62Z/Z6TVDJo nno7MhrStCN2FIS6Ow7aC3CumAx5SdFj6SzAcqzkbMMf4uz3RvIci0E+VSHCe8yq XcyjxGIJiOVhn6qtd0GUQ8ETSjDkDuHsz7xxhaYDwYctwMIWt4fomCpHkysRGIqe aXWxGZ/guM7mxJ5/f9aLkqkrLBZt4o9YuJeY8joesngg86+2Sm+NtTc3CP8lcWmM NbMnddmxA085xY+nTTaCvA8XzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFYEIXjd UOMSNgb/aSQ7B147n5VuMB8GA1UdIwQYMBaAFGxpia8Y7q/eDK8u67UUiDx17URW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUZEMS9GODVDMjVFMjY1 MUYxMUVBQkI2MzJDNkRDNEY5QUUwMi9iR21KcnhqdXI5NE1yeTdydFJTSVBIWHRS RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHbUpyeGp1cjk0TXJ5N3J0UlNJUEhYdFJGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUZEMS9GODVDMjVFMjY1MUYxMUVBQkI2MzJDNkRDNEY5QUUwMi9iR21KcnhqdXI5 NE1yeTdydFJTSVBIWHRSRlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXuCuT5ZBxKMdZeQs7IhxbY0BMrChMNPZSjSGFChib2BLKnNw1Fj8y QqSgfZ+r/Ipo73vcBhZXTBQlZKOG+y59GPWCIVwc9BGSxpHNN0e4Rsd5wPQF/1Be g1HGvlaoNzHSaTIsQzKaVTxgTW6xghr1VkDVrfhSB6W7fCS/CeP9YlxMwpwJfsUl FWBg70xZNDLgELVhjIL3PXXAVZlT+roxsFngO8fjy/eSRaiHbcn8lHyheftlz+o2 nlW7Q6fTtG6SZoJD6bxQSrR+uhj6XNsJEHGkB4DY/qywPPfBpK+I2B8O9iEluCF6 6a8BD+d1tpRita3PCI9kA0LNNnNFJKSu -----END CERTIFICATE-----Generated at Sat May 18 21:24:21 2024 by rpki-client on console-fra.rpki-client.org