$ rpki-client -vvf rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft File: BKfrBJqTf9nyuG4Vnd310sma1B4.mft (raw, json) Hash identifier: rNN7JoX0cdgrqnmIpU4Jfe3tbqS1NHgaCJuhi5YKbz8= Subject key identifier: 20:60:D2:DA:4D:A8:8F:FE:35:30:A2:0B:1C:3D:9C:0A:36:41:10:40 Authority key identifier: 04:A7:EB:04:9A:93:7F:D9:F2:B8:6E:15:9D:DD:F5:D2:C9:9A:D4:1E Certificate issuer: /CN=A91E87AB/serialNumber=04A7EB049A937FD9F2B86E159DDDF5D2C99AD41E Certificate serial: 0434 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft Manifest number: 0430 Signing time: Sun 19 May 2024 01:59:41 +0000 Manifest this update: Sun 19 May 2024 01:59:40 +0000 Manifest next update: Sun 26 May 2024 01:59:40 +0000 Files and hashes: 1: BKfrBJqTf9nyuG4Vnd310sma1B4.crl (hash: atR/twoi7VRqv/y0f9nEWKwUf7leObehIk9PE9zLn6Y=) 2: 709F3B2E145C11EC9A902165C4F9AE02.roa (hash: jSv6IgsRwIfkDcFXv1cYxosZDSuxpdCLwAe0M4CWKRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.crl rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1076 (0x434) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E87AB/serialNumber=04A7EB049A937FD9F2B86E159DDDF5D2C99AD41E Validity Not Before: May 19 01:59:40 2024 GMT Not After : May 26 01:59:40 2024 GMT Subject: CN=66495d0c-12d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f1:96:8e:e2:d9:cf:71:8b:3c:2f:44:74:f3: 8f:f1:b1:d5:10:38:54:39:82:93:69:86:e6:c4:f2: 0d:60:84:44:d2:1b:ed:c4:7e:6a:e4:3f:7e:7b:2b: f6:5b:d2:0d:c8:0b:a9:3f:32:db:0e:ac:0f:23:8a: ab:2e:1c:ce:df:4e:db:7b:b1:28:b3:47:52:0e:f4: a5:d4:d7:14:41:4e:67:f7:cd:80:5a:79:bb:eb:a4: cb:06:e3:26:b7:47:ef:52:6b:6c:e6:a5:dc:de:78: a4:d9:8a:ac:b9:bb:78:65:5f:fd:08:f0:8d:cd:28: 23:17:9d:fe:df:5a:8b:d3:fa:72:78:06:df:dc:c4: f0:f2:63:1e:d3:39:17:78:e6:ab:17:f8:77:aa:41: 22:1a:c6:23:88:57:25:84:51:7b:0e:50:b8:76:e2: ad:0e:97:4f:10:47:e0:c2:e5:5b:c0:6d:5a:9e:29: fc:2b:cc:35:78:86:9b:c5:77:e8:16:0d:91:f6:da: 94:aa:87:7b:ce:34:f6:d1:3f:f2:2d:39:9a:37:87: 95:23:67:9b:b7:72:c0:e4:1b:88:7e:e3:70:91:4c: 3a:8e:7b:11:17:a1:93:0c:b6:6e:13:66:b4:07:fa: fc:9d:40:d1:84:02:81:af:db:54:fc:1e:c4:82:17: ca:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:60:D2:DA:4D:A8:8F:FE:35:30:A2:0B:1C:3D:9C:0A:36:41:10:40 X509v3 Authority Key Identifier: keyid:04:A7:EB:04:9A:93:7F:D9:F2:B8:6E:15:9D:DD:F5:D2:C9:9A:D4:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:2b:e9:3c:be:37:e8:ff:16:32:07:3f:20:17:6c:3d:e3:5f: 91:48:59:f4:9b:15:23:97:cd:21:4f:22:7e:80:5a:f5:fd:13: d1:5b:12:db:db:57:2a:ce:e2:71:91:2e:88:ba:dd:da:1f:c4: b2:a9:fa:18:b1:97:cc:41:fa:9e:d4:3e:3b:3c:df:85:84:68: 41:f3:bc:ea:03:5f:25:23:b8:e1:b2:d1:b2:bf:bf:6e:1c:7e: 81:6f:d6:45:be:1b:d3:a5:86:ed:07:ef:30:fa:39:c2:db:3e: ee:e7:ea:48:d2:7e:db:b9:d2:ce:9a:2b:f7:28:96:db:48:fb: e2:8f:8b:b1:3e:1c:39:96:f4:8d:48:cf:87:d4:14:7b:43:0f: b6:38:a1:90:6a:f4:fa:be:82:27:9d:e7:66:88:2d:06:b0:90: cf:9e:ff:b5:9e:a2:1d:1e:aa:72:ea:88:f2:f0:f5:18:c3:b5: ed:2d:93:c6:0b:7c:46:2b:fa:d9:b1:8a:b4:4f:9a:b2:cc:02: d1:6f:6d:e2:06:35:bc:fb:80:af:5e:b7:c8:3a:27:ec:9c:0b: 54:37:4c:47:63:36:6b:f9:b8:61:cc:96:9c:a3:34:5e:9a:fa: 00:47:b5:14:04:84:0a:ee:0f:1e:61:3f:12:cf:a6:67:f3:c3: fc:48:97:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg3QUIxMTAvBgNVBAUTKDA0QTdFQjA0OUE5MzdGRDlGMkI4NkUxNTlERERGNUQy Qzk5QUQ0MUUwHhcNMjQwNTE5MDE1OTQwWhcNMjQwNTI2MDE1OTQwWjAYMRYwFAYD VQQDEw02NjQ5NWQwYy0xMmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/GWjuLZz3GLPC9EdPOP8bHVEDhUOYKTaYbmxPINYIRE0hvtxH5q5D9+eyv2 W9INyAupPzLbDqwPI4qrLhzO307be7Eos0dSDvSl1NcUQU5n982AWnm766TLBuMm t0fvUmts5qXc3nik2Yqsubt4ZV/9CPCNzSgjF53+31qL0/pyeAbf3MTw8mMe0zkX eOarF/h3qkEiGsYjiFclhFF7DlC4duKtDpdPEEfgwuVbwG1anin8K8w1eIabxXfo Fg2R9tqUqod7zjT20T/yLTmaN4eVI2ebt3LA5BuIfuNwkUw6jnsRF6GTDLZuE2a0 B/r8nUDRhAKBr9tU/B7EghfKUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCBg0tpN qI/+NTCiCxw9nAo2QRBAMB8GA1UdIwQYMBaAFASn6wSak3/Z8rhuFZ3d9dLJmtQe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODdBQi85MTZCMDY2NjE0 NTgxMUVDOUVENkM3M0JDNEY5QUUwMi9CS2ZyQkpxVGY5bnl1RzRWbmQzMTBzbWEx QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLZnJCSnFUZjlueXVHNFZuZDMxMHNtYTFCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODdBQi85MTZCMDY2NjE0NTgxMUVDOUVENkM3M0JDNEY5QUUwMi9CS2ZyQkpxVGY5 bnl1RzRWbmQzMTBzbWExQjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9K+k8vjfo/xYyBz8gF2w941+RSFn0mxUjl80hTyJ+gFr1/RPRWxLb 21cqzuJxkS6Iut3aH8SyqfoYsZfMQfqe1D47PN+FhGhB87zqA18lI7jhstGyv79u HH6Bb9ZFvhvTpYbtB+8w+jnC2z7u5+pI0n7budLOmiv3KJbbSPvij4uxPhw5lvSN SM+H1BR7Qw+2OKGQavT6voInnedmiC0GsJDPnv+1nqIdHqpy6ojy8PUYw7XtLZPG C3xGK/rZsYq0T5qyzALRb23iBjW8+4CvXrfIOifsnAtUN0xHYzZr+bhhzJacozRe mvoAR7UUBIQK7g8eYT8Sz6Zn88P8SJey -----END CERTIFICATE-----Generated at Sun May 19 02:39:38 2024 by rpki-client on console-fra.rpki-client.org