$ rpki-client -vvf rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft File: sbozBTw5ulhlU3dDESOJ4wDEiAc.mft (raw, json) Hash identifier: +HWmz3yXOOpuP42tG3qHZUzIvI6zPJYgv+Oaq5vmDOc= Subject key identifier: F7:BC:A6:79:4D:03:D8:B0:99:02:6F:BB:C2:B9:16:FB:72:87:41:A6 Authority key identifier: B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 Certificate issuer: /CN=A9150384/serialNumber=B1BA33053C39BA5865537743112389E300C48807 Certificate serial: 0BB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft Manifest number: 0BA7 Signing time: Sat 18 May 2024 19:14:40 +0000 Manifest this update: Sat 18 May 2024 19:14:40 +0000 Manifest next update: Sat 25 May 2024 19:14:40 +0000 Files and hashes: 1: sbozBTw5ulhlU3dDESOJ4wDEiAc.crl (hash: cpS2yi0GBZDGGk/NHwrGemg7Ig5J1SQFsKH26sdy7Y0=) 2: 427CB2F0FAFE11ED8553B675C4F9AE02.roa (hash: 1AfZmTN8y2dEAxymesK7ZqhybAJpm7kmJ8uQOh7MeNw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2997 (0xbb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150384/serialNumber=B1BA33053C39BA5865537743112389E300C48807 Validity Not Before: May 18 19:14:40 2024 GMT Not After : May 25 19:14:40 2024 GMT Subject: CN=6648fe20-0b17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8b:46:f2:c2:94:66:75:ec:bb:a4:24:8a:13: 79:d2:60:5c:7c:13:4e:a4:92:eb:9d:3e:3e:43:4a: b4:ec:1f:67:e8:75:35:c8:33:6a:d2:d7:c4:7d:d2: 65:a5:78:e7:5e:da:23:f1:f1:be:03:da:a1:38:50: e7:93:8d:7e:13:8b:28:75:b8:08:c4:bd:9e:40:a4: 09:94:5f:12:3a:3a:7e:d4:bf:10:93:e6:cb:d5:d9: bc:5b:d6:b6:8e:33:f7:e2:c6:10:d1:ee:85:f7:b0: 55:96:33:ed:8a:fc:ca:8d:d6:9d:7f:8a:df:66:04: 78:2e:a8:28:c1:20:7c:65:24:65:df:d9:26:1e:48: c5:70:f2:85:87:dd:7f:25:28:e4:aa:40:d3:12:55: 2e:4b:61:11:45:ad:35:36:98:89:34:0b:5d:53:71: 91:71:7a:29:25:dd:59:a9:22:25:24:f7:30:c8:38: f9:07:e4:74:9a:0b:2b:6b:65:3e:f4:62:90:63:37: 69:de:18:e0:ab:f1:12:5d:f7:e3:89:da:dc:a1:31: f1:2e:35:d1:ef:95:50:6d:01:17:9c:e8:96:27:74: a7:d6:2c:14:db:d7:54:3a:b2:ec:90:70:46:ee:62: fe:d5:a2:7b:dc:38:f1:23:17:9b:c0:7a:e9:01:7d: d8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:BC:A6:79:4D:03:D8:B0:99:02:6F:BB:C2:B9:16:FB:72:87:41:A6 X509v3 Authority Key Identifier: keyid:B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:f7:c7:b6:6e:03:33:75:9e:81:c3:e2:ff:15:14:c6:af:ec: 54:fc:a5:4d:73:d1:40:48:26:da:52:d8:7f:a3:f1:5e:2e:91: 7f:58:76:52:4b:33:58:67:49:73:65:73:3b:e7:2c:b5:0a:9c: 54:f1:e6:20:09:b7:d1:15:17:ce:15:59:ba:a4:cc:59:b6:04: 68:ee:a8:66:d8:f8:c0:cc:29:8b:48:9a:eb:17:d5:fe:d0:9d: c2:04:96:a6:02:87:85:5c:89:6f:7e:e1:f6:5d:68:36:c3:a2: 4d:b6:ac:78:68:c1:b6:bd:4a:d2:4d:4d:fe:97:da:a1:ae:20: dc:d4:17:14:67:2f:61:af:b1:1e:43:e8:eb:bc:1a:34:2b:6d: 04:46:b9:36:04:cd:7c:64:46:f2:c3:88:74:16:de:da:d6:80: 4f:4e:eb:6d:21:17:38:30:6c:77:89:a4:89:73:ac:7d:de:c4: 7d:a3:96:d0:d2:ee:5b:e0:0a:8a:5b:e4:4a:a2:bd:c0:e7:6b: ad:e0:62:cf:ba:29:d0:fc:13:b1:97:57:46:b7:0b:6a:6c:e2: 44:6a:f0:cb:16:e8:8f:10:b8:8d:3a:7e:3d:8e:0d:4b:cd:ba: 38:ff:74:f2:cf:d6:ab:94:06:68:38:b1:ec:a1:cf:fd:06:e7: 1c:33:8f:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAzODQxMTAvBgNVBAUTKEIxQkEzMzA1M0MzOUJBNTg2NTUzNzc0MzExMjM4OUUz MDBDNDg4MDcwHhcNMjQwNTE4MTkxNDQwWhcNMjQwNTI1MTkxNDQwWjAYMRYwFAYD VQQDEw02NjQ4ZmUyMC0wYjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4tG8sKUZnXsu6QkihN50mBcfBNOpJLrnT4+Q0q07B9n6HU1yDNq0tfEfdJl pXjnXtoj8fG+A9qhOFDnk41+E4sodbgIxL2eQKQJlF8SOjp+1L8Qk+bL1dm8W9a2 jjP34sYQ0e6F97BVljPtivzKjdadf4rfZgR4LqgowSB8ZSRl39kmHkjFcPKFh91/ JSjkqkDTElUuS2ERRa01NpiJNAtdU3GRcXopJd1ZqSIlJPcwyDj5B+R0mgsra2U+ 9GKQYzdp3hjgq/ESXffjidrcoTHxLjXR75VQbQEXnOiWJ3Sn1iwU29dUOrLskHBG 7mL+1aJ73DjxIxebwHrpAX3YEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPe8pnlN A9iwmQJvu8K5Fvtyh0GmMB8GA1UdIwQYMBaAFLG6MwU8ObpYZVN3QxEjieMAxIgH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDM4NC85MzdGMzcyRTAw NUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVsaGxVM2RERVNPSjR3REVp QWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Nib3pCVHc1dWxobFUzZERFU09KNHdERWlBYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDM4NC85MzdGMzcyRTAwNUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVs aGxVM2RERVNPSjR3REVpQWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk98e2bgMzdZ6Bw+L/FRTGr+xU/KVNc9FASCbaUth/o/FeLpF/WHZS SzNYZ0lzZXM75yy1CpxU8eYgCbfRFRfOFVm6pMxZtgRo7qhm2PjAzCmLSJrrF9X+ 0J3CBJamAoeFXIlvfuH2XWg2w6JNtqx4aMG2vUrSTU3+l9qhriDc1BcUZy9hr7Ee Q+jrvBo0K20ERrk2BM18ZEbyw4h0Ft7a1oBPTuttIRc4MGx3iaSJc6x93sR9o5bQ 0u5b4AqKW+RKor3A52ut4GLPuinQ/BOxl1dGtwtqbOJEavDLFuiPELiNOn49jg1L zbo4/3Tyz9arlAZoOLHsoc/9BuccM49c -----END CERTIFICATE-----Generated at Sat May 18 19:56:05 2024 by rpki-client on console-fra.rpki-client.org