$ rpki-client -vvf rpki.apnic.net/member_repository/A913FC26/FEA57E60B67711E8A0A0D332C4F9AE02/bKnl9NY_H1jrllKlKzuc-7vnQbw.mft File: bKnl9NY_H1jrllKlKzuc-7vnQbw.mft (raw, json) Hash identifier: jfku8fiUcu0etMEQBPxryV5JYm3/q6j6PoeTdZ3Q8zQ= Subject key identifier: 7F:18:0A:AB:56:D2:A7:22:9D:F7:C8:8C:D1:CD:56:9F:EB:17:F2:DC Authority key identifier: 6C:A9:E5:F4:D6:3F:1F:58:EB:96:52:A5:2B:3B:9C:FB:BB:E7:41:BC Certificate issuer: /CN=A913FC26/serialNumber=6CA9E5F4D63F1F58EB9652A52B3B9CFBBBE741BC Certificate serial: 122A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKnl9NY_H1jrllKlKzuc-7vnQbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FC26/FEA57E60B67711E8A0A0D332C4F9AE02/bKnl9NY_H1jrllKlKzuc-7vnQbw.mft Manifest number: 1224 Signing time: Sat 18 May 2024 17:41:33 +0000 Manifest this update: Sat 18 May 2024 17:41:32 +0000 Manifest next update: Sat 25 May 2024 17:41:32 +0000 Files and hashes: 1: bKnl9NY_H1jrllKlKzuc-7vnQbw.crl (hash: sVuIQar/w5nVgv5q7HXKsIa8yGwHwfHeyNZWq0nnTks=) 2: 706382C2B67811E8A2696333C4F9AE02.roa (hash: zvFpakET3MgB0pnaXjVDegfYWoN+VsdzpaoPXHpxs+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FC26/FEA57E60B67711E8A0A0D332C4F9AE02/bKnl9NY_H1jrllKlKzuc-7vnQbw.crl rsync://rpki.apnic.net/member_repository/A913FC26/FEA57E60B67711E8A0A0D332C4F9AE02/bKnl9NY_H1jrllKlKzuc-7vnQbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKnl9NY_H1jrllKlKzuc-7vnQbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4650 (0x122a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FC26/serialNumber=6CA9E5F4D63F1F58EB9652A52B3B9CFBBBE741BC Validity Not Before: May 18 17:41:32 2024 GMT Not After : May 25 17:41:32 2024 GMT Subject: CN=6648e84c-28a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:78:51:03:c0:24:91:e3:06:12:ee:56:80:fe: 6d:ae:b1:0e:bc:e7:d8:54:65:a9:74:8b:6d:e6:b8: 72:a8:72:e6:bf:1b:c9:34:fb:a2:6d:12:c9:1e:11: bc:7f:a4:53:73:31:f4:b6:6c:fa:30:33:de:10:6e: ae:5d:ef:68:01:5c:4c:26:9c:b5:be:de:68:9e:a4: d1:52:c8:b7:79:94:4e:ac:7a:12:df:b4:57:f4:29: a6:67:24:30:5d:f8:35:9f:15:09:03:99:91:54:e5: b7:02:90:76:22:1c:b0:8b:46:17:27:c7:bd:46:6b: 9d:f7:da:e5:c1:1a:93:53:58:b1:29:bb:a5:fe:cb: 97:cc:62:1a:0f:a4:ec:e0:13:90:cb:97:3f:d6:76: 3e:78:74:86:11:08:03:06:01:fb:30:8c:39:02:57: ab:7e:ce:4e:08:ae:24:4d:1c:bd:73:d1:58:19:35: d4:f7:12:35:fe:38:99:e7:52:6e:e9:dc:62:84:bc: 37:ca:61:8e:bc:10:c3:e5:a4:00:e2:b0:d7:89:5a: 50:5f:17:01:c5:a7:77:b6:cd:76:85:26:72:34:1a: 3e:8c:e2:f4:be:45:05:c2:d4:f4:f4:49:01:9b:0e: 9c:08:23:02:17:85:3a:50:90:84:f8:79:13:57:d3: 84:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:18:0A:AB:56:D2:A7:22:9D:F7:C8:8C:D1:CD:56:9F:EB:17:F2:DC X509v3 Authority Key Identifier: keyid:6C:A9:E5:F4:D6:3F:1F:58:EB:96:52:A5:2B:3B:9C:FB:BB:E7:41:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FC26/FEA57E60B67711E8A0A0D332C4F9AE02/bKnl9NY_H1jrllKlKzuc-7vnQbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKnl9NY_H1jrllKlKzuc-7vnQbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FC26/FEA57E60B67711E8A0A0D332C4F9AE02/bKnl9NY_H1jrllKlKzuc-7vnQbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:d6:43:79:34:8f:38:59:7c:fa:04:0e:58:00:ac:ae:6b:18: 64:f6:b4:99:84:40:c3:09:96:8c:37:b9:48:7f:36:91:ff:14: cc:82:4f:4d:11:f6:2a:5e:41:ea:53:ca:c9:ab:ae:16:8c:0d: 2a:44:6b:77:40:9b:b4:3b:1f:82:4d:af:4b:52:af:f8:d0:09: 3d:24:13:0b:00:42:80:00:b1:15:be:57:ac:60:77:a4:7e:1a: b2:dd:5c:cd:dd:61:ca:f6:62:aa:28:1c:56:7d:7a:da:72:9c: 74:2b:46:5a:34:cf:2b:41:47:a1:6e:6c:95:13:31:d2:f7:36: 6f:0f:58:d4:16:34:9f:a8:a1:39:df:b9:1b:cb:52:2a:95:a6: 7b:39:ce:b6:bc:d5:f8:59:ac:22:96:0b:99:00:ba:7a:a7:d2: 7e:d2:b1:68:b4:2c:3a:cc:65:60:a0:f7:85:93:77:97:d1:d7: 6d:5e:97:75:df:a9:71:d9:b0:aa:ce:ea:08:9d:ae:78:a8:fc: 15:13:21:65:f9:57:37:81:fb:06:85:35:9d:03:de:2c:bb:af: ce:82:eb:fe:c2:1a:cd:22:0c:a6:1d:2e:2c:4e:ad:6a:4d:15: 8a:11:ff:9d:4f:e0:c2:d9:88:f1:f8:d1:66:01:7a:7c:88:20: fa:17:b4:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZDMjYxMTAvBgNVBAUTKDZDQTlFNUY0RDYzRjFGNThFQjk2NTJBNTJCM0I5Q0ZC QkJFNzQxQkMwHhcNMjQwNTE4MTc0MTMyWhcNMjQwNTI1MTc0MTMyWjAYMRYwFAYD VQQDEw02NjQ4ZTg0Yy0yOGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXhRA8AkkeMGEu5WgP5trrEOvOfYVGWpdItt5rhyqHLmvxvJNPuibRLJHhG8 f6RTczH0tmz6MDPeEG6uXe9oAVxMJpy1vt5onqTRUsi3eZROrHoS37RX9CmmZyQw Xfg1nxUJA5mRVOW3ApB2Ihywi0YXJ8e9Rmud99rlwRqTU1ixKbul/suXzGIaD6Ts 4BOQy5c/1nY+eHSGEQgDBgH7MIw5Alerfs5OCK4kTRy9c9FYGTXU9xI1/jiZ51Ju 6dxihLw3ymGOvBDD5aQA4rDXiVpQXxcBxad3ts12hSZyNBo+jOL0vkUFwtT09EkB mw6cCCMCF4U6UJCE+HkTV9OEPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH8YCqtW 0qcinffIjNHNVp/rF/LcMB8GA1UdIwQYMBaAFGyp5fTWPx9Y65ZSpSs7nPu750G8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkMyNi9GRUE1N0U2MEI2 NzcxMUU4QTBBMEQzMzJDNEY5QUUwMi9iS25sOU5ZX0gxanJsbEtsS3p1Yy03dm5R YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLbmw5TllfSDFqcmxsS2xLenVjLTd2blFidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RkMyNi9GRUE1N0U2MEI2NzcxMUU4QTBBMEQzMzJDNEY5QUUwMi9iS25sOU5ZX0gx anJsbEtsS3p1Yy03dm5RYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBR1kN5NI84WXz6BA5YAKyuaxhk9rSZhEDDCZaMN7lIfzaR/xTMgk9N EfYqXkHqU8rJq64WjA0qRGt3QJu0Ox+CTa9LUq/40Ak9JBMLAEKAALEVvlesYHek fhqy3VzN3WHK9mKqKBxWfXracpx0K0ZaNM8rQUehbmyVEzHS9zZvD1jUFjSfqKE5 37kby1IqlaZ7Oc62vNX4WawilguZALp6p9J+0rFotCw6zGVgoPeFk3eX0ddtXpd1 36lx2bCqzuoIna54qPwVEyFl+Vc3gfsGhTWdA94su6/Oguv+whrNIgymHS4sTq1q TRWKEf+dT+DC2Yjx+NFmAXp8iCD6F7SO -----END CERTIFICATE-----Generated at Sat May 18 18:12:31 2024 by rpki-client on console-fra.rpki-client.org