$ rpki-client -vvf rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft File: BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft (raw, json) Hash identifier: sXTw92tdHbDjHr7yJLWIU6OY4fZAsG6LRYE0GN1gwQ4= Subject key identifier: 07:D1:86:74:5D:D4:0B:6B:20:DC:A0:7F:67:92:43:36:AC:D9:6C:C7 Authority key identifier: 04:F0:74:A0:BA:87:80:5C:50:FC:79:93:D4:04:10:B8:4A:11:D2:F6 Certificate issuer: /CN=A9126B7C/serialNumber=04F074A0BA87805C50FC7993D40410B84A11D2F6 Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft Manifest number: C4 Signing time: Sun 05 May 2024 06:22:59 +0000 Manifest this update: Sun 05 May 2024 06:22:58 +0000 Manifest next update: Sun 12 May 2024 06:22:58 +0000 Files and hashes: 1: BPB0oLqHgFxQ_HmT1AQQuEoR0vY.crl (hash: YSncgjzh8qyGkATnrN/dnoPYGCwqzwOtBLtAsr9/M3c=) 2: F57CB8F6DF8C11ED9EAE5884C4F9AE02.roa (hash: HqQXHOvuK+VlHXKJD5jJO3nnn5w0PKEuLey9o5E60/s=) 3: F607A6C8DF8C11ED9EAE5884C4F9AE02.roa (hash: Eof5iCyinI9zB4LAPlIHk/0h3EcPss7Rkc+r1JDBNOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.crl rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 06:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126B7C/serialNumber=04F074A0BA87805C50FC7993D40410B84A11D2F6 Validity Not Before: May 5 06:22:58 2024 GMT Not After : May 12 06:22:58 2024 GMT Subject: CN=663725c2-46e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a4:29:ba:b6:e5:50:eb:de:73:af:aa:1d:32: 2f:98:95:bd:ed:a4:3f:5f:46:4d:75:b7:72:81:7a: a7:42:85:ee:83:9d:e9:27:8e:fa:39:8f:e2:de:ce: bb:11:4f:25:96:c9:9d:65:3f:35:c6:db:20:e2:c0: 1a:ec:c0:05:0e:76:10:52:57:4d:ec:c2:9c:0c:af: c6:a7:01:3c:4e:9e:18:89:23:fe:03:ad:ba:82:40: 5a:b5:a9:24:e8:27:c9:da:5d:86:63:9c:2e:89:3d: 24:f0:06:35:94:6c:93:45:ee:a0:ab:24:0b:cc:83: ba:80:2f:75:9c:59:cc:ef:bc:39:4e:23:80:b6:b1: 45:88:8e:c7:32:c7:46:58:d9:16:89:46:b7:46:44: 8a:59:7d:7d:36:d6:1e:ce:8a:ee:ce:dc:80:b7:a9: 2c:e9:af:8a:2d:81:be:1a:7a:28:ef:8d:5e:88:03: de:4c:b9:2a:d5:40:9f:4a:ae:73:c2:b4:f2:69:01: 20:22:7c:c6:46:05:ed:3b:90:3d:89:7c:e5:db:c2: e6:6f:63:bd:43:b0:9f:4d:2a:46:2b:4b:33:87:8b: 6b:b9:57:60:22:8d:e6:59:1f:a3:bb:73:2c:6d:c1: 6e:e8:70:25:12:a6:64:d0:57:1f:e0:11:b4:37:68: 30:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:D1:86:74:5D:D4:0B:6B:20:DC:A0:7F:67:92:43:36:AC:D9:6C:C7 X509v3 Authority Key Identifier: keyid:04:F0:74:A0:BA:87:80:5C:50:FC:79:93:D4:04:10:B8:4A:11:D2:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:0a:18:1f:a6:f2:66:07:a2:2b:93:43:91:e2:08:f3:fc:f2: 2c:48:ba:52:b5:8d:3b:2a:7f:dd:63:13:6c:c1:96:18:8c:88: 5d:43:87:3a:5f:f9:74:df:fa:6e:5e:22:9c:a5:69:48:7f:3b: 85:a9:1f:25:69:37:1d:4f:64:53:aa:6c:95:0f:fb:41:c0:28: 7f:1d:fe:a9:0f:22:e0:c3:03:b9:cc:fd:12:56:b7:7c:c1:14: d6:44:bc:e6:f5:e4:17:37:12:d8:84:61:be:f3:91:ea:aa:c6: ab:18:b6:61:6b:7f:95:54:d0:2a:f6:e9:5d:9b:c6:b8:91:a0: d7:2d:15:a4:f0:13:33:0a:93:f8:dd:d9:d4:1b:a2:f3:55:83: 32:ce:b8:2a:0c:2d:e3:46:cc:1c:57:e7:91:38:f2:c8:c0:58: 67:06:6d:46:b4:2a:fb:2d:40:6b:5f:de:78:21:5d:30:b5:85: 8f:c0:30:90:f5:95:db:77:56:6e:f5:b1:b0:57:20:6c:c5:99: a5:fc:8a:13:e1:87:7f:3e:6c:08:e6:75:46:06:e6:7e:8d:68: 6e:fa:30:b6:33:be:9b:82:9d:f4:d9:d8:bb:e7:c0:1d:09:10: 1a:78:43:80:46:ce:a8:0f:5c:9a:39:d8:bb:79:23:04:ec:fe: a0:d2:04:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZCN0MxMTAvBgNVBAUTKDA0RjA3NEEwQkE4NzgwNUM1MEZDNzk5M0Q0MDQxMEI4 NEExMUQyRjYwHhcNMjQwNTA1MDYyMjU4WhcNMjQwNTEyMDYyMjU4WjAYMRYwFAYD VQQDEw02NjM3MjVjMi00NmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvaQpurblUOvec6+qHTIvmJW97aQ/X0ZNdbdygXqnQoXug53pJ476OY/i3s67 EU8llsmdZT81xtsg4sAa7MAFDnYQUldN7MKcDK/GpwE8Tp4YiSP+A626gkBatakk 6CfJ2l2GY5wuiT0k8AY1lGyTRe6gqyQLzIO6gC91nFnM77w5TiOAtrFFiI7HMsdG WNkWiUa3RkSKWX19NtYezoruztyAt6ks6a+KLYG+Gnoo741eiAPeTLkq1UCfSq5z wrTyaQEgInzGRgXtO5A9iXzl28Lmb2O9Q7CfTSpGK0szh4truVdgIo3mWR+ju3Ms bcFu6HAlEqZk0Fcf4BG0N2gwzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAfRhnRd 1AtrINygf2eSQzas2WzHMB8GA1UdIwQYMBaAFATwdKC6h4BcUPx5k9QEELhKEdL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkI3Qy81MUE5NDQ1QURG ODgxMUVEQUZCRjJCN0ZDNEY5QUUwMi9CUEIwb0xxSGdGeFFfSG1UMUFRUXVFb1Iw dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JQQjBvTHFIZ0Z4UV9IbVQxQVFRdUVvUjB2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkI3Qy81MUE5NDQ1QURGODgxMUVEQUZCRjJCN0ZDNEY5QUUwMi9CUEIwb0xxSGdG eFFfSG1UMUFRUXVFb1IwdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2ChgfpvJmB6Irk0OR4gjz/PIsSLpStY07Kn/dYxNswZYYjIhdQ4c6 X/l03/puXiKcpWlIfzuFqR8laTcdT2RTqmyVD/tBwCh/Hf6pDyLgwwO5zP0SVrd8 wRTWRLzm9eQXNxLYhGG+85HqqsarGLZha3+VVNAq9uldm8a4kaDXLRWk8BMzCpP4 3dnUG6LzVYMyzrgqDC3jRswcV+eROPLIwFhnBm1GtCr7LUBrX954IV0wtYWPwDCQ 9ZXbd1Zu9bGwVyBsxZml/IoT4Yd/PmwI5nVGBuZ+jWhu+jC2M76bgp302di758Ad CRAaeEOARs6oD1yaOdi7eSME7P6g0gQl -----END CERTIFICATE-----Generated at Sun May 5 08:38:59 2024 by rpki-client on console-fra.rpki-client.org