$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: 5YotDIqhxjlFmKA2H1JpnSY7PmSNlseDYiZYDPUeAvM= Subject key identifier: 16:B0:88:9B:09:2C:06:7C:C9:12:3A:DF:30:FF:D2:26:0B:7F:2A:18 Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 89 Signing time: Sun 19 May 2024 07:05:28 +0000 Manifest this update: Sun 19 May 2024 07:05:27 +0000 Manifest next update: Sun 26 May 2024 07:05:27 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: JNhayKwZ9DViEFzaCOu5CsQLPUFvP4qTNbBrz0B26lE=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: g/+jUDFbmU3qj9AfAKSl3kwzplQXj9NIVbGDOmw78Ds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: May 19 07:05:27 2024 GMT Not After : May 26 07:05:27 2024 GMT Subject: CN=6649a4b8-3d1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:75:b3:1d:cf:42:06:fc:1a:91:8d:ae:a6:f5: 99:4d:2c:78:c8:ad:c1:d2:be:89:77:a5:46:e2:62: d0:fe:af:cf:3f:8a:e0:50:36:2a:f7:d7:e3:ec:45: 4d:72:21:55:54:3c:6d:dd:d5:ad:1c:98:ba:88:15: a4:05:03:50:4f:0b:1b:80:b8:80:a4:64:3e:5a:f1: c8:92:b0:45:96:81:d4:89:50:e6:ca:c0:bb:6d:0b: ea:bb:b3:f1:f9:3e:54:4b:96:6b:b8:da:59:cf:aa: 92:27:82:74:20:1d:81:b1:fc:0f:a4:be:13:6e:d2: 4f:69:3e:ee:c6:16:9f:c5:ef:0f:14:d2:40:45:7f: 37:b5:6d:69:30:d8:6f:29:02:04:58:b6:39:e3:c9: 6b:97:d2:33:1f:b1:9b:9f:22:c0:f8:8c:ec:79:a5: 62:ee:5e:8a:db:01:e6:18:a3:35:dd:98:d6:76:ab: 9d:4e:d6:f8:92:b5:8d:ad:14:1f:06:43:16:dd:28: 41:b4:79:b9:00:97:2b:04:99:ea:b9:b2:d9:c8:a5: 5f:50:e6:d3:1c:c2:46:31:84:54:38:fe:36:06:8a: 23:f9:84:d6:6a:ab:b4:8b:88:13:ab:da:ac:9c:32: a4:1f:f8:2a:a6:64:23:d8:5c:68:86:4d:e4:8a:d5: ee:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:B0:88:9B:09:2C:06:7C:C9:12:3A:DF:30:FF:D2:26:0B:7F:2A:18 X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:aa:c4:01:9b:85:c6:4b:67:f4:ca:51:1c:40:a2:2b:91:a6: 16:d7:ce:ce:a8:a4:b2:d6:a2:45:ba:c3:ef:85:86:be:9b:35: 53:55:95:4e:30:a2:cf:02:42:9f:d9:82:2a:33:16:eb:18:65: 54:b3:ce:d2:5c:0f:d9:92:f6:53:d5:c3:fd:90:c6:c2:47:50: 3b:0f:76:fa:3a:2f:cd:3f:91:7b:ef:b6:cc:d1:0d:c9:86:7b: 13:06:34:89:6b:50:01:d1:91:a3:f7:29:57:0f:c3:fc:95:f6: bb:cf:09:6c:a7:ce:38:cd:91:34:c9:15:a5:49:52:e3:0c:91: 18:5e:e3:72:30:7a:60:11:7b:e9:3a:b7:c8:bd:e4:b3:e7:b9: d3:7c:fc:4f:a8:56:54:23:32:d5:67:f4:ae:04:2e:41:33:08: a8:ce:c6:0b:bb:37:67:3e:3f:ba:c7:ab:2f:f0:1d:a7:a2:8c: 59:8c:97:2c:eb:d3:1b:22:15:0f:7d:01:f6:f7:bd:14:b4:12: 55:44:73:26:20:d3:c8:a4:9c:09:2f:6f:75:ce:f4:22:eb:a4: 69:3e:cb:af:a3:fb:cd:06:7b:7b:d4:00:fc:bf:05:f9:2b:49: f5:3d:6e:bb:96:f5:6c:47:80:2d:0c:88:63:92:ee:58:d8:8e: 84:46:1a:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjQwNTE5MDcwNTI3WhcNMjQwNTI2MDcwNTI3WjAYMRYwFAYD VQQDEw02NjQ5YTRiOC0zZDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqHWzHc9CBvwakY2upvWZTSx4yK3B0r6Jd6VG4mLQ/q/PP4rgUDYq99fj7EVN ciFVVDxt3dWtHJi6iBWkBQNQTwsbgLiApGQ+WvHIkrBFloHUiVDmysC7bQvqu7Px +T5US5ZruNpZz6qSJ4J0IB2BsfwPpL4TbtJPaT7uxhafxe8PFNJARX83tW1pMNhv KQIEWLY548lrl9IzH7GbnyLA+IzseaVi7l6K2wHmGKM13ZjWdqudTtb4krWNrRQf BkMW3ShBtHm5AJcrBJnqubLZyKVfUObTHMJGMYRUOP42Booj+YTWaqu0i4gTq9qs nDKkH/gqpmQj2Fxohk3kitXuFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBawiJsJ LAZ8yRI63zD/0iYLfyoYMB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpqsQBm4XGS2f0ylEcQKIrkaYW187OqKSy1qJFusPvhYa+mzVTVZVO MKLPAkKf2YIqMxbrGGVUs87SXA/ZkvZT1cP9kMbCR1A7D3b6Oi/NP5F777bM0Q3J hnsTBjSJa1AB0ZGj9ylXD8P8lfa7zwlsp844zZE0yRWlSVLjDJEYXuNyMHpgEXvp OrfIveSz57nTfPxPqFZUIzLVZ/SuBC5BMwiozsYLuzdnPj+6x6sv8B2nooxZjJcs 69MbIhUPfQH2970UtBJVRHMmINPIpJwJL291zvQi66RpPsuvo/vNBnt71AD8vwX5 K0n1PW67lvVsR4AtDIhjku5Y2I6ERhr7 -----END CERTIFICATE-----Generated at Sun May 19 07:40:38 2024 by rpki-client on console-fra.rpki-client.org