$ rpki-client -vvf rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft File: BSmF8r4ox5507_TbTHFCKEVHc1w.mft (raw, json) Hash identifier: MO9OU5ctnAy/DKFwSjFkMeEHFM13IWkVWBaMOPU06Yc= Subject key identifier: ED:F8:22:4A:CA:C5:8F:81:EB:B3:EE:93:D5:61:43:EB:BD:04:E2:03 Authority key identifier: 05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C Certificate issuer: /CN=A9151A79/serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft Manifest number: BD Signing time: Sun 19 May 2024 06:25:46 +0000 Manifest this update: Sun 19 May 2024 06:25:46 +0000 Manifest next update: Sun 26 May 2024 06:25:46 +0000 Files and hashes: 1: BSmF8r4ox5507_TbTHFCKEVHc1w.crl (hash: PjOMveDUHzHm2fkFOrYleD5E0gmVlXIG378Fqn7sZic=) 2: A799F54AF1F111EE9D899046C4F9AE02.roa (hash: s9Hq2WKNBLpIHUUpKntveP4U+1sM2OLROzstT7r+cr8=) 3: D9FACFBEF1F111EEA7B10347C4F9AE02.roa (hash: 3dfFc3qr5u6PL/yffP0V14rLFaJPhkJSoHD0YlejQTE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151A79/serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C Validity Not Before: May 19 06:25:46 2024 GMT Not After : May 26 06:25:46 2024 GMT Subject: CN=66499b6a-84d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d9:e8:dd:87:bd:08:54:4a:1c:fa:79:b3:ee: a1:c6:25:71:b5:5c:af:81:69:c9:65:ef:3a:f1:32: a6:0e:bd:4c:34:c3:5b:1d:3e:6a:46:bd:b5:7d:5b: cd:bc:2b:fe:d2:0f:60:c3:72:56:92:62:78:d9:46: 44:63:45:ea:81:60:bd:84:be:52:82:db:37:aa:29: 37:e8:ca:22:f1:e0:ad:9c:a5:ff:6c:8e:e0:df:ee: b2:45:44:0b:18:ec:86:50:2b:38:ea:76:b7:24:ec: d8:84:7a:a6:73:ae:40:b9:d5:6e:cb:df:67:6d:24: 6c:47:f7:98:73:9f:2f:cb:b6:5f:32:93:6f:2a:11: 2b:2d:3f:bb:d5:01:07:5b:fa:7b:24:7a:dc:59:a0: f1:9e:77:e5:20:c3:9a:ff:30:7c:87:4d:47:0c:fa: cb:73:d4:9c:09:78:44:f8:ce:02:26:ae:50:c4:51: 0d:3a:fd:f0:88:41:a3:fd:4d:bf:ca:43:46:c0:46: dd:73:a0:7c:d5:b5:98:bc:25:fd:f6:a9:e4:68:aa: c0:6e:b1:39:5d:f5:de:9e:f2:a3:1e:2e:c6:fd:7c: c9:0a:a1:dd:a2:0d:98:3f:4f:e4:29:de:17:a4:c6: 59:8e:dd:20:09:77:85:67:f6:1c:22:69:9f:4f:81: a9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:F8:22:4A:CA:C5:8F:81:EB:B3:EE:93:D5:61:43:EB:BD:04:E2:03 X509v3 Authority Key Identifier: keyid:05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:fe:7f:73:c6:e7:bc:83:dd:9b:be:f1:c3:63:9a:a9:b7:49: fd:7b:55:48:a0:95:9a:c2:5f:c1:22:bf:39:b3:9a:0a:29:89: 3a:bc:64:55:31:a8:ff:34:16:a3:a0:e9:58:d7:84:44:7f:6d: 9d:68:56:16:73:5c:5c:17:e0:29:35:36:48:cf:3b:6b:ff:da: 0a:2e:78:3d:54:bd:8e:03:30:6c:d2:11:64:45:30:cd:56:4a: 50:e7:b2:27:06:c1:e7:b1:4b:3c:11:fe:df:79:2c:12:cb:94: 52:e1:e8:22:a8:84:a3:9e:88:bb:ed:50:e3:34:bb:72:18:29: 9f:3b:ad:1c:00:79:d2:8c:59:78:f5:cd:03:29:fe:91:14:a3: f6:4e:61:e7:9b:6e:d5:8c:61:a3:71:1b:c2:79:ec:a4:30:c6: 76:f2:b6:7b:54:90:cc:e0:65:b9:ca:9f:ac:18:33:68:cd:25: b4:41:4b:fe:58:c6:4d:80:0d:f3:40:f4:7c:28:6c:d6:9a:19: 74:f7:d6:13:9b:48:a2:61:1f:9c:25:a9:e3:ef:54:e2:7b:73: e2:d4:16:26:3e:11:d4:b1:d9:93:a9:ac:b9:34:7f:9c:6c:e2: cd:6d:49:94:bb:3e:9b:f7:58:db:21:0d:c6:49:4c:d6:82:2b: 61:39:b6:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFBNzkxMTAvBgNVBAUTKDA1Mjk4NUYyQkUyOEM3OUU3NEVGRjREQjRDNzE0MjI4 NDU0NzczNUMwHhcNMjQwNTE5MDYyNTQ2WhcNMjQwNTI2MDYyNTQ2WjAYMRYwFAYD VQQDEw02NjQ5OWI2YS04NGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA09no3Ye9CFRKHPp5s+6hxiVxtVyvgWnJZe868TKmDr1MNMNbHT5qRr21fVvN vCv+0g9gw3JWkmJ42UZEY0XqgWC9hL5Sgts3qik36Moi8eCtnKX/bI7g3+6yRUQL GOyGUCs46na3JOzYhHqmc65AudVuy99nbSRsR/eYc58vy7ZfMpNvKhErLT+71QEH W/p7JHrcWaDxnnflIMOa/zB8h01HDPrLc9ScCXhE+M4CJq5QxFENOv3wiEGj/U2/ ykNGwEbdc6B81bWYvCX99qnkaKrAbrE5XfXenvKjHi7G/XzJCqHdog2YP0/kKd4X pMZZjt0gCXeFZ/YcImmfT4GpDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO34IkrK xY+B67Puk9VhQ+u9BOIDMB8GA1UdIwQYMBaAFAUphfK+KMeedO/020xxQihFR3Nc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUE3OS9ENENBMTVDMEY5 NDcxMUVEODhDMTg3NDZDNEY5QUUwMi9CU21GOHI0b3g1NTA3X1RiVEhGQ0tFVkhj MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JTbUY4cjRveDU1MDdfVGJUSEZDS0VWSGMxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUE3OS9ENENBMTVDMEY5NDcxMUVEODhDMTg3NDZDNEY5QUUwMi9CU21GOHI0b3g1 NTA3X1RiVEhGQ0tFVkhjMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBx/n9zxue8g92bvvHDY5qpt0n9e1VIoJWawl/BIr85s5oKKYk6vGRV Maj/NBajoOlY14REf22daFYWc1xcF+ApNTZIzztr/9oKLng9VL2OAzBs0hFkRTDN VkpQ57InBsHnsUs8Ef7feSwSy5RS4egiqISjnoi77VDjNLtyGCmfO60cAHnSjFl4 9c0DKf6RFKP2TmHnm27VjGGjcRvCeeykMMZ28rZ7VJDM4GW5yp+sGDNozSW0QUv+ WMZNgA3zQPR8KGzWmhl099YTm0iiYR+cJanj71Tie3Pi1BYmPhHUsdmTqay5NH+c bOLNbUmUuz6b91jbIQ3GSUzWgithObYa -----END CERTIFICATE-----Generated at Sun May 19 07:40:39 2024 by rpki-client on console-fra.rpki-client.org