$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: qm4J0VNVxqDH6pjMBxP9mTJCHO7pX0Yiht7boyu6rds= Subject key identifier: 1E:B1:42:97:35:02:5B:C0:3D:6B:19:93:61:0C:17:44:B0:9B:C9:42 Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 8A Signing time: Tue 21 May 2024 07:01:33 +0000 Manifest this update: Tue 21 May 2024 07:01:33 +0000 Manifest next update: Tue 28 May 2024 07:01:33 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: jS5aCdQ9A4Nev2i8dcq55Pl/ZeptXDkC9oz605myIC8=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: g/+jUDFbmU3qj9AfAKSl3kwzplQXj9NIVbGDOmw78Ds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: May 21 07:01:33 2024 GMT Not After : May 28 07:01:33 2024 GMT Subject: CN=664c46cd-7463 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:1e:d3:c1:70:dd:4d:9b:13:f3:90:0c:c5:b4: 7e:f0:29:9d:08:28:0a:64:fa:0d:58:63:f6:b5:1e: fd:dc:6e:70:86:55:1b:b9:cd:0a:7d:0c:e7:f0:ac: 20:cc:77:21:27:e5:51:76:09:15:0a:2c:c8:2a:3d: fc:84:92:4d:d8:4b:f1:b0:bd:55:39:6e:35:27:56: 55:cf:17:93:76:55:7b:f4:15:7d:73:49:c3:24:14: 72:94:33:fd:dd:44:a3:3e:22:36:da:c5:55:80:e9: b9:4d:66:4a:08:88:d0:13:8f:c0:cc:5f:04:2e:b5: b7:4b:34:11:a3:c9:d7:26:78:58:f7:47:da:29:85: 87:f8:ee:20:71:01:62:73:ca:cb:7e:b9:1d:6a:c6: b2:f6:f9:70:4e:52:f6:6f:bb:3b:9f:90:fc:a2:be: ea:d0:05:f1:3c:75:3f:97:95:98:8f:0e:3e:77:2a: a0:12:04:ba:f0:1a:39:fb:0b:d3:34:8a:c5:1d:57: 84:b0:d1:ce:43:8f:7c:b9:2d:44:06:35:93:7f:43: 7d:d6:03:76:99:93:d0:09:03:32:58:34:e7:32:bb: 6a:fd:f3:c3:ab:de:34:05:06:63:d4:4c:5c:88:90: 88:85:96:b4:2c:ec:0e:88:44:92:00:77:a4:39:47: 71:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:B1:42:97:35:02:5B:C0:3D:6B:19:93:61:0C:17:44:B0:9B:C9:42 X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:3b:c3:fb:72:1a:47:48:a4:a5:e5:40:25:2e:6c:9b:6a:c1: 88:16:0f:48:cf:59:85:7a:24:94:16:ca:d7:73:19:d1:7e:1e: c6:c2:24:c8:c9:c8:ff:78:ef:05:88:f0:b3:ea:dd:28:2b:1d: 45:0f:8d:89:fd:5b:cd:35:9f:ed:26:e1:1c:4f:a6:e4:88:04: d2:56:7b:be:ad:78:78:e1:35:68:ca:bf:ae:7c:f7:1a:5c:78: 17:02:13:86:28:65:ab:12:8b:74:eb:68:58:2b:60:a3:6d:41: 6a:e7:92:48:c4:04:d8:e2:73:7c:fa:a4:30:1e:96:dd:e6:96: 77:99:88:67:74:ea:86:65:1e:a2:bb:4d:d3:06:91:86:cf:ba: 8b:81:1c:e2:ca:a6:66:f8:00:4f:12:a2:b7:27:a3:5c:ee:3e: a5:20:b5:fa:be:e9:fa:01:26:6b:ec:a9:39:30:35:30:69:7e: 5d:40:5c:05:b3:ed:ea:c3:7d:2f:c6:5d:56:e3:52:a0:7d:4e: 9b:01:8d:50:d8:2c:3d:0b:14:19:00:6b:b1:ce:5a:6b:ea:ed: 18:6b:5b:7b:81:e5:b4:bf:43:b1:01:2c:b3:f8:be:7b:54:ec: 07:d2:91:d8:9d:d0:ba:c7:72:56:cd:2f:0e:d0:9a:c7:f5:77: 81:a9:85:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjQwNTIxMDcwMTMzWhcNMjQwNTI4MDcwMTMzWjAYMRYwFAYD VQQDEw02NjRjNDZjZC03NDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArR7TwXDdTZsT85AMxbR+8CmdCCgKZPoNWGP2tR793G5whlUbuc0KfQzn8Kwg zHchJ+VRdgkVCizIKj38hJJN2EvxsL1VOW41J1ZVzxeTdlV79BV9c0nDJBRylDP9 3USjPiI22sVVgOm5TWZKCIjQE4/AzF8ELrW3SzQRo8nXJnhY90faKYWH+O4gcQFi c8rLfrkdasay9vlwTlL2b7s7n5D8or7q0AXxPHU/l5WYjw4+dyqgEgS68Bo5+wvT NIrFHVeEsNHOQ498uS1EBjWTf0N91gN2mZPQCQMyWDTnMrtq/fPDq940BQZj1Exc iJCIhZa0LOwOiESSAHekOUdxAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6xQpc1 AlvAPWsZk2EMF0Swm8lCMB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWO8P7chpHSKSl5UAlLmybasGIFg9Iz1mFeiSUFsrXcxnRfh7GwiTI ycj/eO8FiPCz6t0oKx1FD42J/VvNNZ/tJuEcT6bkiATSVnu+rXh44TVoyr+ufPca XHgXAhOGKGWrEot062hYK2CjbUFq55JIxATY4nN8+qQwHpbd5pZ3mYhndOqGZR6i u03TBpGGz7qLgRziyqZm+ABPEqK3J6Nc7j6lILX6vun6ASZr7Kk5MDUwaX5dQFwF s+3qw30vxl1W41KgfU6bAY1Q2Cw9CxQZAGuxzlpr6u0Ya1t7geW0v0OxASyz+L57 VOwH0pHYndC6x3JWzS8O0JrH9XeBqYV+ -----END CERTIFICATE-----Generated at Tue May 21 08:38:34 2024 by rpki-client on console-fra.rpki-client.org