$ rpki-client -vvf rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft File: -bspsKvoSef-GA4znkscKCNoxSE.mft (raw, json) Hash identifier: +7TPLSLZtGXm55BokAKTPdchbcCtJhAkdPSQu6Gv5vA= Subject key identifier: 34:A4:B6:28:91:48:79:A9:B1:C2:79:48:24:DD:0C:FE:6E:7D:93:BB Authority key identifier: F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21 Certificate issuer: /CN=A913E8F3/serialNumber=F9BB29B0ABE849E7FE180E339E4B1C282368C521 Certificate serial: 0F2F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft Manifest number: 0F1C Signing time: Sat 18 May 2024 18:14:44 +0000 Manifest this update: Sat 18 May 2024 18:14:43 +0000 Manifest next update: Sat 25 May 2024 18:14:43 +0000 Files and hashes: 1: -bspsKvoSef-GA4znkscKCNoxSE.crl (hash: TTMpInlxecdu36yC6ML8sE2KXMU1W+x/Teieodf/E7U=) 2: 9F883BFCB33811E981BB4E6FC4F9AE02.roa (hash: rRlhYDjmsKn1HWp2b9Kwcsqx4aDeX7WeOuZsyustf0A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.crl rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3887 (0xf2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E8F3/serialNumber=F9BB29B0ABE849E7FE180E339E4B1C282368C521 Validity Not Before: May 18 18:14:43 2024 GMT Not After : May 25 18:14:43 2024 GMT Subject: CN=6648f014-a8d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:32:0c:10:b6:fe:74:7f:c2:8a:93:78:79:0c: 4d:5e:4f:5a:cb:db:67:92:c3:1b:95:3b:7e:da:ae: ed:3c:0e:1e:a2:d2:61:9a:fa:25:22:29:d2:c6:e7: 81:e7:72:e2:b9:a3:57:3b:60:44:3d:10:1b:d6:b0: e2:b2:00:51:ec:0d:08:c7:98:5c:d0:ac:1b:09:fc: 29:de:a1:05:97:14:50:38:7c:88:3a:d1:45:73:73: 6d:e0:f5:43:35:cc:9b:90:0b:14:46:f5:7c:6f:d6: 0f:e8:e0:a4:be:07:73:b3:44:bc:23:fd:a8:fa:ce: 3e:54:15:fc:93:53:e8:c9:30:ab:f7:8a:87:96:cc: 20:0a:6c:d2:d2:ea:6d:55:3a:5d:e8:e4:7a:74:2c: b6:df:75:f0:34:df:87:26:87:a5:60:17:44:1e:92: be:98:8c:e0:d3:e8:d0:56:d8:89:b3:3f:a4:e5:ea: 2d:28:e9:7a:9a:2a:28:8e:59:b7:07:72:c1:9a:e5: e5:2d:0c:95:cc:13:28:d5:c6:09:ed:ac:b5:b4:82: 43:d6:e6:75:79:87:55:64:1b:1e:ff:fe:ba:48:17: d8:03:93:52:3f:53:59:d5:a3:01:d3:61:50:a7:26: 35:12:da:50:37:ea:dd:d3:5c:65:69:ae:3a:9c:11: 7d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:A4:B6:28:91:48:79:A9:B1:C2:79:48:24:DD:0C:FE:6E:7D:93:BB X509v3 Authority Key Identifier: keyid:F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:06:b7:7e:2c:52:78:a5:12:cb:28:77:32:41:85:32:63:73: 78:60:92:c1:c6:03:3b:ad:53:ca:68:67:ce:b4:89:8f:e0:7a: f9:89:46:eb:4d:90:2b:8c:1e:4e:50:fc:26:bd:ea:65:a0:2b: 5c:ca:f4:2c:a8:d4:b4:ac:43:0c:30:aa:f9:c5:3b:31:c1:16: 8f:28:f7:73:e1:eb:a3:8b:1d:7c:27:ab:35:b0:23:1e:7c:ee: c7:f2:f0:97:f4:87:46:50:7a:00:e3:47:52:f3:f1:95:80:9f: 87:8f:85:6c:57:04:9d:9f:7d:88:2b:1f:24:59:ac:c9:85:c0: 88:49:7e:d0:f0:b3:90:15:91:2e:90:a8:c3:b5:f6:1f:92:51: 3e:4c:45:ef:2e:7b:53:f0:03:1d:45:8a:81:cf:67:61:b8:b0: 46:c1:d8:38:24:ba:50:b7:0f:db:63:c1:8c:61:a8:8c:c9:3b: 0d:fc:b8:50:6e:93:f0:86:c2:1c:b3:9c:f6:b0:cd:5e:ec:0b: f4:82:90:a0:9a:11:9b:fe:69:f5:f7:05:a0:ae:b8:54:87:80: 8a:b0:df:c7:4e:3f:49:d4:a9:d5:eb:ed:b0:7f:7a:d4:91:41: 05:a5:9e:26:f7:d8:7e:e2:02:2a:31:28:46:e6:da:41:f0:f4: 09:34:cf:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U4RjMxMTAvBgNVBAUTKEY5QkIyOUIwQUJFODQ5RTdGRTE4MEUzMzlFNEIxQzI4 MjM2OEM1MjEwHhcNMjQwNTE4MTgxNDQzWhcNMjQwNTI1MTgxNDQzWjAYMRYwFAYD VQQDEw02NjQ4ZjAxNC1hOGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzIMELb+dH/CipN4eQxNXk9ay9tnksMblTt+2q7tPA4eotJhmvolIinSxueB 53LiuaNXO2BEPRAb1rDisgBR7A0Ix5hc0KwbCfwp3qEFlxRQOHyIOtFFc3Nt4PVD NcybkAsURvV8b9YP6OCkvgdzs0S8I/2o+s4+VBX8k1PoyTCr94qHlswgCmzS0upt VTpd6OR6dCy233XwNN+HJoelYBdEHpK+mIzg0+jQVtiJsz+k5eotKOl6mioojlm3 B3LBmuXlLQyVzBMo1cYJ7ay1tIJD1uZ1eYdVZBse//66SBfYA5NSP1NZ1aMB02FQ pyY1EtpQN+rd01xlaa46nBF9QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDSktiiR SHmpscJ5SCTdDP5ufZO7MB8GA1UdIwQYMBaAFPm7KbCr6Enn/hgOM55LHCgjaMUh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRThGMy8wQTA0RjRFMjU0 OTQxMUU5QjU5N0U1NzFDNEY5QUUwMi8tYnNwc0t2b1NlZi1HQTR6bmtzY0tDTm94 U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1ic3BzS3ZvU2VmLUdBNHpua3NjS0NOb3hTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RThGMy8wQTA0RjRFMjU0OTQxMUU5QjU5N0U1NzFDNEY5QUUwMi8tYnNwc0t2b1Nl Zi1HQTR6bmtzY0tDTm94U0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdBrd+LFJ4pRLLKHcyQYUyY3N4YJLBxgM7rVPKaGfOtImP4Hr5iUbr TZArjB5OUPwmveploCtcyvQsqNS0rEMMMKr5xTsxwRaPKPdz4eujix18J6s1sCMe fO7H8vCX9IdGUHoA40dS8/GVgJ+Hj4VsVwSdn32IKx8kWazJhcCISX7Q8LOQFZEu kKjDtfYfklE+TEXvLntT8AMdRYqBz2dhuLBGwdg4JLpQtw/bY8GMYaiMyTsN/LhQ bpPwhsIcs5z2sM1e7Av0gpCgmhGb/mn19wWgrrhUh4CKsN/HTj9J1KnV6+2wf3rU kUEFpZ4m99h+4gIqMShG5tpB8PQJNM9M -----END CERTIFICATE-----Generated at Sat May 18 18:46:45 2024 by rpki-client on console-fra.rpki-client.org