$ rpki-client -vvf rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft File: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft (raw, json) Hash identifier: 9SpYddZMtd70IK9FTpFLUlYxwZpGWaYMG+thc9M/6vY= Subject key identifier: 41:41:1B:3B:18:A8:B5:66:C9:27:80:7B:6A:59:02:67:16:EB:E7:E0 Authority key identifier: 05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 Certificate issuer: /CN=A915E575/serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Certificate serial: 02FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft Manifest number: 02F7 Signing time: Sun 19 May 2024 03:14:29 +0000 Manifest this update: Sun 19 May 2024 03:14:29 +0000 Manifest next update: Sun 26 May 2024 03:14:29 +0000 Files and hashes: 1: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl (hash: IfMPL/qVElYJvnHLBsduvxrQXrtOfE/bZYG9A2BxAFQ=) 2: D86008008FAA11ECB0728B0FC4F9AE02.roa (hash: ewafMRT4o3+fjjmfmPiaBN4gqgR15y8GC0cPz7bWyOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 762 (0x2fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E575/serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Validity Not Before: May 19 03:14:29 2024 GMT Not After : May 26 03:14:29 2024 GMT Subject: CN=66496e95-b90d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:32:f8:b5:8d:2b:ff:e8:e7:65:1c:04:5b:ca: 0c:fd:c3:09:1f:59:c7:83:94:80:a0:b0:0d:64:34: 57:45:84:27:2b:67:40:c6:4d:fc:0a:dd:ad:28:ef: 11:b0:d9:d4:46:ed:2a:db:1f:5f:2c:12:47:f1:98: a9:58:a1:6e:8f:06:de:04:b2:75:eb:e6:b5:d2:20: 1d:b7:a6:1e:53:6f:64:00:23:62:9a:25:e1:c0:c7: 65:06:ce:a6:1e:89:57:79:a1:59:46:0d:a0:5e:9d: 8c:8f:73:1f:e3:7c:09:d4:3a:22:1e:d4:a5:61:73: d4:ab:79:2a:d9:c8:5e:42:4f:2d:b4:76:4e:58:1c: 36:41:0b:ac:f8:3e:c4:0c:20:4b:9e:38:5d:f4:62: a9:ec:4e:b9:08:6d:67:12:84:c7:a7:63:91:85:fe: c0:f1:d0:fa:87:d7:31:6b:47:1d:35:13:2b:02:cb: 95:51:89:9b:98:dd:80:d6:d3:eb:ba:7e:72:8e:dc: 2e:15:09:10:c0:eb:89:17:86:bd:1f:77:c5:3f:32: c9:c1:f0:5b:1f:a1:ef:fb:d9:cf:cb:6d:6a:7c:47: c3:74:92:c9:c2:3c:3e:56:df:27:41:17:55:ad:cb: 10:6a:f7:3c:b7:94:a9:1a:df:35:2c:28:b0:d7:ea: 00:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:41:1B:3B:18:A8:B5:66:C9:27:80:7B:6A:59:02:67:16:EB:E7:E0 X509v3 Authority Key Identifier: keyid:05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:98:c0:5b:33:cd:08:da:73:fb:4a:d2:5d:27:82:49:b1:da: 7d:cc:ee:8e:27:17:17:73:e6:46:ff:4f:23:f2:bd:89:80:ba: 44:6c:9a:9a:d0:ca:d3:eb:9e:6d:c2:96:10:75:91:b3:94:2d: 71:5f:2e:5e:aa:a5:64:8b:04:b5:44:0d:9a:96:db:c8:21:37: 95:64:5e:33:58:2a:61:d4:f0:ff:3b:f2:bd:52:a0:30:25:f2: 9d:b4:b2:72:8c:95:37:a4:d7:81:92:32:9b:99:dd:0d:c3:0e: b3:35:34:83:c7:51:6a:9d:00:b3:c6:13:3c:83:3b:ab:64:e1: ec:03:6f:b4:d8:cb:42:a9:54:66:9b:7e:4e:be:72:57:c2:b7: d2:fc:72:20:cc:67:09:d8:47:b6:a2:4e:a2:a3:02:54:e4:c1: b8:6d:2c:42:7b:54:91:56:e1:d0:b5:e0:3d:5a:2f:fc:61:ba: 37:7c:29:c7:e1:46:4d:c0:fd:d0:c9:f6:19:32:e8:be:39:a5: ba:33:1b:85:50:0e:21:f7:4d:73:a9:21:3a:2d:d9:ab:2d:04: b4:e3:22:e0:ee:bc:02:75:11:21:ac:6f:93:89:fe:18:1c:8c: cb:24:b8:bb:13:a9:c6:91:c9:5c:b4:56:78:b5:fe:87:b2:ab: 88:c9:57:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU1NzUxMTAvBgNVBAUTKDA1Rjg0MTlBRjlBQTMxODRFQUIxRkY4NzQyNEE2QUUz M0NGNzMyQzQwHhcNMjQwNTE5MDMxNDI5WhcNMjQwNTI2MDMxNDI5WjAYMRYwFAYD VQQDEw02NjQ5NmU5NS1iOTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjL4tY0r/+jnZRwEW8oM/cMJH1nHg5SAoLANZDRXRYQnK2dAxk38Ct2tKO8R sNnURu0q2x9fLBJH8ZipWKFujwbeBLJ16+a10iAdt6YeU29kACNimiXhwMdlBs6m HolXeaFZRg2gXp2Mj3Mf43wJ1DoiHtSlYXPUq3kq2cheQk8ttHZOWBw2QQus+D7E DCBLnjhd9GKp7E65CG1nEoTHp2ORhf7A8dD6h9cxa0cdNRMrAsuVUYmbmN2A1tPr un5yjtwuFQkQwOuJF4a9H3fFPzLJwfBbH6Hv+9nPy21qfEfDdJLJwjw+Vt8nQRdV rcsQavc8t5SpGt81LCiw1+oAbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEFBGzsY qLVmySeAe2pZAmcW6+fgMB8GA1UdIwQYMBaAFAX4QZr5qjGE6rH/h0JKauM89zLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTU3NS9GMEIyNDIxNDhG QTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1ZVHFzZi1IUWtwcTR6ejNN c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JmaEJtdm1xTVlUcXNmLUhRa3BxNHp6M01zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTU3NS9GMEIyNDIxNDhGQTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1Z VHFzZi1IUWtwcTR6ejNNc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVmMBbM80I2nP7StJdJ4JJsdp9zO6OJxcXc+ZG/08j8r2JgLpEbJqa 0MrT655twpYQdZGzlC1xXy5eqqVkiwS1RA2altvIITeVZF4zWCph1PD/O/K9UqAw JfKdtLJyjJU3pNeBkjKbmd0Nww6zNTSDx1FqnQCzxhM8gzurZOHsA2+02MtCqVRm m35OvnJXwrfS/HIgzGcJ2Ee2ok6iowJU5MG4bSxCe1SRVuHQteA9Wi/8Ybo3fCnH 4UZNwP3QyfYZMui+OaW6MxuFUA4h901zqSE6LdmrLQS04yLg7rwCdREhrG+Tif4Y HIzLJLi7E6nGkclctFZ4tf6HsquIyVdI -----END CERTIFICATE-----Generated at Sun May 19 03:48:51 2024 by rpki-client on console-fra.rpki-client.org