$ rpki-client -vvf rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft File: bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft (raw, json) Hash identifier: WAmCuzgjfw2FTQtjTMcOHpVThTvaAZIWMCgZWU0NlUc= Subject key identifier: 12:4A:AC:FB:8A:31:AE:F8:3E:7F:A1:11:28:24:3F:5D:84:48:08:9B Authority key identifier: 6E:18:4B:E1:46:12:D5:A2:B5:3C:49:87:68:44:50:85:0D:B0:2C:74 Certificate issuer: /CN=A916B232/serialNumber=6E184BE14612D5A2B53C4987684450850DB02C74 Certificate serial: 0651 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft Manifest number: 064B Signing time: Sat 18 May 2024 23:39:26 +0000 Manifest this update: Sat 18 May 2024 23:39:25 +0000 Manifest next update: Sat 25 May 2024 23:39:25 +0000 Files and hashes: 1: bhhL4UYS1aK1PEmHaERQhQ2wLHQ.crl (hash: y/ZK9yGP9tMTVn5lnJNwXFxKxJoFxkyO4PBfxEy4TWA=) 2: A2C94D9C3F0F11EB80256B25C4F9AE02.roa (hash: FkpyV66ijxqb32HGtkQFlUte90FSVmvzcK3LzeRXqb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.crl rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1617 (0x651) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B232/serialNumber=6E184BE14612D5A2B53C4987684450850DB02C74 Validity Not Before: May 18 23:39:25 2024 GMT Not After : May 25 23:39:25 2024 GMT Subject: CN=66493c2d-fa18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:94:e1:42:95:05:53:bb:4b:64:65:c6:42:60: ca:83:3d:e4:71:11:67:06:86:06:f0:7b:29:4a:93: 19:9e:df:d3:57:22:59:8e:e7:d0:b4:f0:c2:14:12: e2:67:b4:be:7c:b2:33:08:24:f9:b4:4d:42:2e:48: 31:a5:7d:80:f4:c2:56:7f:3a:de:4b:c3:9d:1a:98: 59:22:a6:16:e8:94:54:51:8c:d3:1f:ef:48:06:8e: f1:8c:91:f7:19:af:f8:dd:59:08:b5:67:22:37:65: e0:73:40:a6:77:f5:d2:e3:e3:cd:33:22:f3:29:44: 3a:e6:50:a9:ab:96:68:d2:9c:84:4a:86:c0:49:d7: ef:e6:d3:21:85:52:7e:fd:1e:4e:d2:65:04:d2:28: bd:27:81:71:49:ed:a4:03:00:4a:11:cf:f0:3b:27: 5e:ca:14:74:de:7a:83:23:7c:d4:e6:77:1b:da:cd: d6:d7:98:f5:7b:f1:3e:81:4f:81:fd:00:bd:09:5a: 24:74:5b:8c:06:67:7f:b7:b9:a1:12:93:1b:cd:fa: d4:24:39:cc:0d:3a:cb:6f:73:7b:bf:5e:3b:4e:df: 85:cc:ca:14:fb:d4:d7:ca:ef:76:12:cc:85:e1:d8: 12:65:3c:40:88:94:8e:a6:73:7e:6c:0d:26:e3:a7: b3:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:4A:AC:FB:8A:31:AE:F8:3E:7F:A1:11:28:24:3F:5D:84:48:08:9B X509v3 Authority Key Identifier: keyid:6E:18:4B:E1:46:12:D5:A2:B5:3C:49:87:68:44:50:85:0D:B0:2C:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:bc:db:65:fc:9e:34:51:4a:48:40:b8:8f:b6:e8:ee:06:3b: d8:27:81:55:67:68:5e:ec:ef:0e:47:3f:42:af:d4:8f:16:1d: 69:30:13:20:4c:37:87:7c:5b:be:2e:99:c1:d7:70:60:db:32: e1:fb:60:30:01:86:8a:4e:2d:d5:c4:ec:b1:c8:39:5f:7f:a8: 64:d5:60:80:f5:7c:0f:7c:24:fb:26:77:8c:f3:05:42:5c:61: 2e:45:d0:c7:53:d8:ee:9f:50:39:d8:fa:b5:8b:b7:cd:06:b2: 4c:dd:56:b2:4b:3c:42:c2:cc:b3:d1:d1:6d:17:a5:da:65:34: b5:8d:e6:23:82:fc:92:c3:ec:13:cb:79:c9:40:51:9d:2a:d0: 3a:8a:1c:da:7b:85:54:33:53:cb:ae:88:90:84:ee:76:ab:6b: 10:50:ee:0e:ce:b9:09:5d:1a:11:dc:da:ab:a5:aa:80:08:b2: 4e:8a:2f:17:8b:41:4e:cc:61:7c:16:6c:ed:f9:1f:5d:6e:38: c4:71:df:8f:c8:d1:c3:12:b3:a5:51:ba:68:d6:8e:d4:d5:eb: 68:04:7c:e7:8d:ef:dd:64:cb:d1:f8:00:c2:99:1f:cd:7b:69: 85:17:18:85:20:e6:17:93:15:60:09:da:1b:b7:b3:f7:05:cf: 9d:bf:ab:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIyMzIxMTAvBgNVBAUTKDZFMTg0QkUxNDYxMkQ1QTJCNTNDNDk4NzY4NDQ1MDg1 MERCMDJDNzQwHhcNMjQwNTE4MjMzOTI1WhcNMjQwNTI1MjMzOTI1WjAYMRYwFAYD VQQDEw02NjQ5M2MyZC1mYTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZThQpUFU7tLZGXGQmDKgz3kcRFnBoYG8HspSpMZnt/TVyJZjufQtPDCFBLi Z7S+fLIzCCT5tE1CLkgxpX2A9MJWfzreS8OdGphZIqYW6JRUUYzTH+9IBo7xjJH3 Ga/43VkItWciN2Xgc0Cmd/XS4+PNMyLzKUQ65lCpq5Zo0pyESobASdfv5tMhhVJ+ /R5O0mUE0ii9J4FxSe2kAwBKEc/wOydeyhR03nqDI3zU5ncb2s3W15j1e/E+gU+B /QC9CVokdFuMBmd/t7mhEpMbzfrUJDnMDTrLb3N7v147Tt+FzMoU+9TXyu92EsyF 4dgSZTxAiJSOpnN+bA0m46ez5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJKrPuK Ma74Pn+hESgkP12ESAibMB8GA1UdIwQYMBaAFG4YS+FGEtWitTxJh2hEUIUNsCx0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjIzMi85NEQ0Qzc0MDNG MEQxMUVCQUYxRkNFMjJDNEY5QUUwMi9iaGhMNFVZUzFhSzFQRW1IYUVSUWhRMndM SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JoaEw0VVlTMWFLMVBFbUhhRVJRaFEyd0xIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjIzMi85NEQ0Qzc0MDNGMEQxMUVCQUYxRkNFMjJDNEY5QUUwMi9iaGhMNFVZUzFh SzFQRW1IYUVSUWhRMndMSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAavNtl/J40UUpIQLiPtujuBjvYJ4FVZ2he7O8ORz9Cr9SPFh1pMBMg TDeHfFu+LpnB13Bg2zLh+2AwAYaKTi3VxOyxyDlff6hk1WCA9XwPfCT7JneM8wVC XGEuRdDHU9jun1A52Pq1i7fNBrJM3VaySzxCwsyz0dFtF6XaZTS1jeYjgvySw+wT y3nJQFGdKtA6ihzae4VUM1PLroiQhO52q2sQUO4OzrkJXRoR3NqrpaqACLJOii8X i0FOzGF8Fmzt+R9dbjjEcd+PyNHDErOlUbpo1o7U1etoBHznje/dZMvR+ADCmR/N e2mFFxiFIOYXkxVgCdobt7P3Bc+dv6tT -----END CERTIFICATE-----Generated at Sun May 19 00:16:15 2024 by rpki-client on console-fra.rpki-client.org