$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft File: 8bck5A2FxU9R1iHHL4lskXXJsRk.mft (raw, json) Hash identifier: s6OwPbiTRobJwi4J9aevE4dnwsYpK0Bqt1itQfcGzpg= Subject key identifier: 6E:E3:7C:AB:7D:E9:72:1A:D7:A0:C6:BA:56:A7:A4:43:FF:1E:07:25 Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Certificate serial: 0945 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft Manifest number: 093F Signing time: Sat 18 May 2024 21:06:50 +0000 Manifest this update: Sat 18 May 2024 21:06:50 +0000 Manifest next update: Sat 25 May 2024 21:06:50 +0000 Files and hashes: 1: 8bck5A2FxU9R1iHHL4lskXXJsRk.crl (hash: O/HhzLgX2076jbk+ZqoKdSbiXcqphI/GugwbyjzXtSk=) 2: 354725E6763311EABAE64466C4F9AE02.roa (hash: OBNnHwe4WMlygXPp/yjie30/QyKX7+ncDFYx8Vw872A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2373 (0x945) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Validity Not Before: May 18 21:06:50 2024 GMT Not After : May 25 21:06:50 2024 GMT Subject: CN=6649186a-1a9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:54:fa:f0:fb:1e:78:2d:3f:e7:74:4a:39:70: b6:4f:e2:a0:85:e5:b8:62:84:6d:da:3d:44:74:da: dc:52:db:bb:40:a0:ad:ab:cf:f6:94:30:9c:d8:de: 02:eb:b2:47:71:ce:18:1f:87:f8:55:1c:49:8b:1b: 04:51:74:78:29:51:10:b3:b4:7d:ed:9f:cb:06:b4: 5c:33:81:7d:3d:91:62:ee:ca:bd:1b:38:82:26:90: 79:5b:9b:4d:73:08:dd:0c:cf:c5:ab:8b:60:e5:47: 69:1c:dd:09:05:51:57:76:8c:b8:33:81:c5:ae:d3: 65:a0:f4:ee:c8:7d:f6:6e:4a:dc:5e:60:c6:43:17: b2:53:b7:77:63:48:53:df:67:63:dd:e1:37:2f:6e: 92:3a:a3:07:9d:9a:7a:26:08:81:f9:d4:27:0a:04: b5:6a:53:e5:7d:10:3e:82:7e:3b:89:bc:ae:96:27: b7:64:b1:a2:60:f4:62:cf:45:70:13:99:a3:1a:8a: 35:3e:a0:44:dc:ba:d1:4c:27:07:ce:b7:a0:3a:97: d0:c4:13:9d:7b:55:a5:18:35:14:47:27:a0:9d:7f: 3c:99:aa:44:86:f8:62:18:c8:5b:f9:c2:52:a9:be: 2d:85:26:31:72:03:44:48:30:5c:3e:60:8d:73:6e: 2a:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:E3:7C:AB:7D:E9:72:1A:D7:A0:C6:BA:56:A7:A4:43:FF:1E:07:25 X509v3 Authority Key Identifier: keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:04:e2:fc:09:20:f1:f4:d0:28:86:43:95:3f:f8:bb:22:23: 6d:5f:ac:30:e5:d4:60:98:f3:da:84:c6:83:90:b6:71:4a:eb: 5a:12:31:d1:76:b5:ef:a2:55:16:ec:10:9f:68:1e:29:82:6a: bf:ea:d5:a0:a7:4b:1d:97:6b:a7:39:40:c9:36:7b:ed:6c:c4: 0b:30:5f:a7:a3:da:b0:4b:30:cc:f8:da:20:bc:92:5a:be:09: 92:f8:79:4a:d3:27:81:f3:73:f7:33:18:57:11:0e:86:75:9c: 7a:9b:2a:bf:68:f3:9d:eb:47:23:83:9f:f1:9c:17:9a:e1:ad: 53:65:5f:72:79:dd:fc:a9:02:19:67:4a:b9:a2:15:66:19:12: d6:4e:d8:e7:4d:53:a7:07:23:4c:cf:ae:8a:c8:b2:82:d9:47: c3:99:c8:b9:74:74:c1:36:64:79:c0:aa:42:3e:f4:aa:9e:30: a7:f2:da:32:b3:7c:3d:7f:aa:ba:1d:3a:ee:b0:b3:a7:25:04: 55:67:0d:20:09:fb:9f:bf:39:94:7c:2a:50:3a:4c:bb:e4:f2: 9a:5d:39:4d:8b:6b:93:c5:b7:7b:a2:8c:29:9e:5a:29:d6:d5: 7d:8a:70:81:41:f9:5c:8a:5f:8f:b8:10:6e:d9:b7:47:4f:e2: 88:46:40:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzRjUxMTAvBgNVBAUTKEYxQjcyNEU0MEQ4NUM1NEY1MUQ2MjFDNzJGODk2Qzkx NzVDOUIxMTkwHhcNMjQwNTE4MjEwNjUwWhcNMjQwNTI1MjEwNjUwWjAYMRYwFAYD VQQDEw02NjQ5MTg2YS0xYTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1T68PseeC0/53RKOXC2T+KgheW4YoRt2j1EdNrcUtu7QKCtq8/2lDCc2N4C 67JHcc4YH4f4VRxJixsEUXR4KVEQs7R97Z/LBrRcM4F9PZFi7sq9GziCJpB5W5tN cwjdDM/Fq4tg5UdpHN0JBVFXdoy4M4HFrtNloPTuyH32bkrcXmDGQxeyU7d3Y0hT 32dj3eE3L26SOqMHnZp6JgiB+dQnCgS1alPlfRA+gn47ibyulie3ZLGiYPRiz0Vw E5mjGoo1PqBE3LrRTCcHzregOpfQxBOde1WlGDUURyegnX88mapEhvhiGMhb+cJS qb4thSYxcgNESDBcPmCNc24qXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG7jfKt9 6XIa16DGulanpEP/HgclMB8GA1UdIwQYMBaAFPG3JOQNhcVPUdYhxy+JbJF1ybEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNGNS84MTFCNjA0Qzc2 MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhVOVIxaUhITDRsc2tYWEpz UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiY2s1QTJGeFU5UjFpSEhMNGxza1hYSnNSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNGNS84MTFCNjA0Qzc2MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhV OVIxaUhITDRsc2tYWEpzUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxBOL8CSDx9NAohkOVP/i7IiNtX6ww5dRgmPPahMaDkLZxSutaEjHR drXvolUW7BCfaB4pgmq/6tWgp0sdl2unOUDJNnvtbMQLMF+no9qwSzDM+NogvJJa vgmS+HlK0yeB83P3MxhXEQ6GdZx6myq/aPOd60cjg5/xnBea4a1TZV9yed38qQIZ Z0q5ohVmGRLWTtjnTVOnByNMz66KyLKC2UfDmci5dHTBNmR5wKpCPvSqnjCn8toy s3w9f6q6HTrusLOnJQRVZw0gCfufvzmUfCpQOky75PKaXTlNi2uTxbd7oowpnlop 1tV9inCBQflcil+PuBBu2bdHT+KIRkAA -----END CERTIFICATE-----Generated at Sat May 18 22:27:54 2024 by rpki-client on console-ams.rpki-client.org