$ rpki-client -vvf rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft File: bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft (raw, json) Hash identifier: Tnu0fMcl+yFxfPoJG2fbv0VMIwCFdXAvUL0hKwg7KxI= Subject key identifier: 8D:3B:86:F3:22:5A:E0:5C:4E:31:92:7A:C8:E4:BF:9A:CE:DB:8B:A2 Authority key identifier: 6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38 Certificate issuer: /CN=A913EA16/serialNumber=6E148A0D085780386A817DCD8D64695411C76838 Certificate serial: 033B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft Manifest number: 0338 Signing time: Sun 19 May 2024 02:58:39 +0000 Manifest this update: Sun 19 May 2024 02:58:38 +0000 Manifest next update: Sun 26 May 2024 02:58:38 +0000 Files and hashes: 1: bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl (hash: plxI+8r9prhmbSg0ajeMQSiz26pusiTsO/Nu773Lg1U=) 2: 5BCE86F6777F11ECB4730632C4F9AE02.roa (hash: SPFzGgDFpn4T/AHD6ewSny2S7exdvz/wRQmqo+wpWRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 827 (0x33b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EA16/serialNumber=6E148A0D085780386A817DCD8D64695411C76838 Validity Not Before: May 19 02:58:38 2024 GMT Not After : May 26 02:58:38 2024 GMT Subject: CN=66496adf-f21d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1c:65:25:b0:a6:37:bf:34:b9:d4:73:af:cb: 5c:4c:dd:0e:94:df:3a:ad:10:87:ef:f7:6c:b2:c6: bf:47:f8:0d:c4:43:df:a6:61:d4:9d:dc:1e:d1:46: e5:5d:4b:aa:bc:65:45:33:95:e5:3c:dd:59:03:cb: d8:8c:93:8b:1b:ea:41:b9:47:4f:d9:ae:ba:5a:08: 6f:b6:0f:dc:1a:21:0c:5a:1c:61:40:f6:67:63:9c: f3:48:ff:bd:ad:65:d0:be:a6:c1:c3:ba:a4:28:54: 98:5e:a3:fd:08:64:45:b8:c0:45:71:83:91:38:a5: c7:fa:54:60:02:1d:a4:da:fb:8e:14:f8:65:93:87: 34:23:ea:1d:f7:25:f3:77:b6:b4:79:1d:d5:bf:b2: 46:b9:1d:a3:a1:97:80:e2:a7:49:e5:c9:99:2c:3f: 9e:5d:ee:24:36:09:fb:f6:fb:62:d4:9f:75:dd:b7: a1:f3:02:17:a1:92:83:ac:61:1c:6f:90:8c:8d:dd: 3f:4b:5d:0e:bf:f8:fd:5f:de:29:bb:65:01:c4:c4: cf:d5:d7:99:c2:9a:34:e7:08:0b:76:ba:2f:9e:a3: 7d:2e:b1:6b:45:2a:fd:1a:98:31:30:78:29:4f:d5: 0b:e2:a4:82:0d:23:4e:f5:88:0d:fa:e5:bf:ec:b6: ac:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:3B:86:F3:22:5A:E0:5C:4E:31:92:7A:C8:E4:BF:9A:CE:DB:8B:A2 X509v3 Authority Key Identifier: keyid:6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:9a:e8:36:d4:4a:f5:8b:f9:62:7b:fb:b6:1c:70:e8:b3:03: b4:d1:8e:67:88:c5:ec:9e:a7:ed:95:d9:f7:5d:80:1e:1e:f4: d9:1b:14:22:a0:74:10:89:94:f5:b9:a9:ba:7b:b1:05:0a:a2: 9e:3c:81:ca:c8:33:01:e5:ae:c0:db:42:b6:48:d6:bd:61:95: e0:e0:be:63:2a:6d:b7:f5:15:50:0c:ce:38:85:55:50:56:44: 4e:fa:8a:cb:3d:a5:f6:3b:a1:ab:03:ca:f0:7e:7b:b2:92:cc: 18:f3:83:2b:76:93:32:9f:35:ca:81:56:3d:d8:cf:7b:69:2c: 0c:4a:9d:16:a1:52:9d:e6:b8:c5:91:34:22:35:b2:20:12:7a: 23:e0:ec:4b:07:4c:ac:d9:56:8f:f7:78:42:8d:48:82:c5:8b: e3:9e:7c:92:a6:da:64:d0:e4:25:fa:a8:e1:36:95:b5:c7:76: 20:22:a8:54:76:12:d3:ce:20:a4:17:9c:46:ad:f6:c8:0f:ad: 8f:9c:05:e2:32:eb:4e:2a:97:92:f6:1a:93:d7:31:21:22:94: d9:7b:24:73:34:a9:82:43:e5:8a:c5:ae:2c:64:42:1a:30:03: 6c:94:6e:07:6a:5b:a6:e8:75:09:d8:02:0c:fc:a4:3b:85:45: 92:f1:fa:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VBMTYxMTAvBgNVBAUTKDZFMTQ4QTBEMDg1NzgwMzg2QTgxN0RDRDhENjQ2OTU0 MTFDNzY4MzgwHhcNMjQwNTE5MDI1ODM4WhcNMjQwNTI2MDI1ODM4WjAYMRYwFAYD VQQDEw02NjQ5NmFkZi1mMjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRxlJbCmN780udRzr8tcTN0OlN86rRCH7/dsssa/R/gNxEPfpmHUndwe0Ubl XUuqvGVFM5XlPN1ZA8vYjJOLG+pBuUdP2a66Wghvtg/cGiEMWhxhQPZnY5zzSP+9 rWXQvqbBw7qkKFSYXqP9CGRFuMBFcYOROKXH+lRgAh2k2vuOFPhlk4c0I+od9yXz d7a0eR3Vv7JGuR2joZeA4qdJ5cmZLD+eXe4kNgn79vti1J913beh8wIXoZKDrGEc b5CMjd0/S10Ov/j9X94pu2UBxMTP1deZwpo05wgLdrovnqN9LrFrRSr9GpgxMHgp T9UL4qSCDSNO9YgN+uW/7LasGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI07hvMi WuBcTjGSesjkv5rO24uiMB8GA1UdIwQYMBaAFG4Uig0IV4A4aoF9zY1kaVQRx2g4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUExNi80NTJGN0FFRTc3 N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdEaHFnWDNOaldScFZCSEhh RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JoU0tEUWhYZ0RocWdYM05qV1JwVkJISGFEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUExNi80NTJGN0FFRTc3N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdE aHFnWDNOaldScFZCSEhhRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjmug21Er1i/lie/u2HHDoswO00Y5niMXsnqftldn3XYAeHvTZGxQi oHQQiZT1uam6e7EFCqKePIHKyDMB5a7A20K2SNa9YZXg4L5jKm239RVQDM44hVVQ VkRO+orLPaX2O6GrA8rwfnuykswY84MrdpMynzXKgVY92M97aSwMSp0WoVKd5rjF kTQiNbIgEnoj4OxLB0ys2VaP93hCjUiCxYvjnnySptpk0OQl+qjhNpW1x3YgIqhU dhLTziCkF5xGrfbID62PnAXiMutOKpeS9hqT1zEhIpTZeyRzNKmCQ+WKxa4sZEIa MANslG4Halum6HUJ2AIM/KQ7hUWS8fpu -----END CERTIFICATE-----Generated at Sun May 19 03:48:51 2024 by rpki-client on console-fra.rpki-client.org