$ rpki-client -vvf rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft File: -bspsKvoSef-GA4znkscKCNoxSE.mft (raw, json) Hash identifier: q6b4jvRLZ5nbb9saMygIcTBTK0+NSfFcOvcqi4LC4zQ= Subject key identifier: 17:CD:61:C7:9F:57:E0:B7:40:9C:47:06:BA:C3:38:13:37:01:AC:E9 Authority key identifier: F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21 Certificate issuer: /CN=A913E8F3/serialNumber=F9BB29B0ABE849E7FE180E339E4B1C282368C521 Certificate serial: 0F28 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft Manifest number: 0F15 Signing time: Sat 04 May 2024 18:24:59 +0000 Manifest this update: Sat 04 May 2024 18:24:58 +0000 Manifest next update: Sat 11 May 2024 18:24:58 +0000 Files and hashes: 1: -bspsKvoSef-GA4znkscKCNoxSE.crl (hash: 0XpV9kYug6eLYXG3e+w5nIkh3YcxJkhVtct0bGlBVII=) 2: 9F883BFCB33811E981BB4E6FC4F9AE02.roa (hash: rRlhYDjmsKn1HWp2b9Kwcsqx4aDeX7WeOuZsyustf0A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.crl rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3880 (0xf28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E8F3/serialNumber=F9BB29B0ABE849E7FE180E339E4B1C282368C521 Validity Not Before: May 4 18:24:58 2024 GMT Not After : May 11 18:24:58 2024 GMT Subject: CN=66367d7b-cb54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c4:69:20:58:3c:15:8c:c8:fd:65:fd:5c:08: dc:ca:ad:66:9f:9d:e8:17:98:44:6b:1e:f1:0a:90: 8c:31:c0:15:7a:1c:69:69:6a:da:8d:ce:aa:b2:35: b3:cb:f2:d8:fb:c4:85:32:53:d7:e2:41:e0:6b:83: 90:5a:4a:aa:15:a7:c0:b8:77:f9:98:6d:89:2d:bc: bf:43:7d:2f:fd:47:17:f4:0c:ec:3b:34:33:3f:5a: ee:2c:fa:2c:e7:ad:13:2d:f2:3c:66:55:c9:c6:92: 28:b6:77:07:2e:4f:d1:38:65:ab:b4:f1:62:ad:4c: ff:ae:4a:a7:c8:cf:e9:96:cb:7d:a7:89:75:72:9e: f1:12:7c:23:f4:d0:4f:ce:47:fb:7f:f5:08:e5:41: 12:0b:3a:d0:0c:18:61:19:d9:05:c3:e2:82:39:21: 89:9e:78:0b:32:76:e1:1f:8f:f2:7c:57:53:b5:ca: d4:87:09:ac:a5:70:99:7b:4a:5e:bf:f1:0f:20:df: cd:9c:d9:cf:a6:70:6c:cb:fd:b9:18:b3:6c:2a:10: e8:98:5a:7a:f4:60:30:48:c8:1a:3d:9f:8b:8c:17: 9e:f0:d5:03:79:3f:d1:d3:85:23:c2:aa:4b:5c:63: a2:22:f1:77:c7:a7:5b:e4:e8:75:0f:7e:aa:bb:53: 91:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:CD:61:C7:9F:57:E0:B7:40:9C:47:06:BA:C3:38:13:37:01:AC:E9 X509v3 Authority Key Identifier: keyid:F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:bc:e2:9a:21:ca:8c:ea:04:44:65:66:8a:f5:fe:a9:6f:64: 9c:b3:ff:ed:cf:70:2d:01:4c:58:fb:b4:cf:0a:cd:d0:cc:17: a0:1b:3d:5f:87:e9:5a:61:32:27:3f:a8:32:8f:eb:c9:fb:d9: 7e:dc:67:23:38:d9:55:c1:d7:2a:7f:71:f9:2d:1e:f8:ce:1d: 3a:22:43:0e:e1:1e:ea:5b:6c:ce:b9:38:28:9d:ba:64:94:2c: 42:a2:d3:dc:29:0a:14:5f:69:91:67:6a:fc:cc:7b:6f:e0:29: d9:a6:e6:1b:51:44:95:b2:3c:7b:7b:f1:3e:ac:e4:02:9f:6b: 31:94:f0:f5:b9:7f:a5:b0:5d:88:d9:98:2a:a0:cf:66:64:22: 84:4b:eb:cb:87:80:00:13:2b:66:08:95:46:dc:a0:b2:7b:45: 6d:b0:4f:cf:33:a8:05:c1:a2:d7:8a:65:9e:7a:94:1e:9c:9e: b2:06:72:c9:cb:45:ee:d8:f9:98:48:b1:b6:86:a2:92:e9:8a: 5b:ea:0f:e3:f8:ff:b4:64:7c:7d:da:c1:ee:db:d4:07:69:e4: 35:25:78:e3:10:6f:8a:bc:bf:09:89:55:99:b2:1a:ba:62:76: bc:d0:96:70:36:52:d9:cf:1f:26:b8:fe:ab:aa:88:b4:fd:58: 40:ae:72:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U4RjMxMTAvBgNVBAUTKEY5QkIyOUIwQUJFODQ5RTdGRTE4MEUzMzlFNEIxQzI4 MjM2OEM1MjEwHhcNMjQwNTA0MTgyNDU4WhcNMjQwNTExMTgyNDU4WjAYMRYwFAYD VQQDEw02NjM2N2Q3Yi1jYjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnsRpIFg8FYzI/WX9XAjcyq1mn53oF5hEax7xCpCMMcAVehxpaWrajc6qsjWz y/LY+8SFMlPX4kHga4OQWkqqFafAuHf5mG2JLby/Q30v/UcX9AzsOzQzP1ruLPos 560TLfI8ZlXJxpIotncHLk/ROGWrtPFirUz/rkqnyM/plst9p4l1cp7xEnwj9NBP zkf7f/UI5UESCzrQDBhhGdkFw+KCOSGJnngLMnbhH4/yfFdTtcrUhwmspXCZe0pe v/EPIN/NnNnPpnBsy/25GLNsKhDomFp69GAwSMgaPZ+LjBee8NUDeT/R04UjwqpL XGOiIvF3x6db5Oh1D36qu1ORLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBfNYcef V+C3QJxHBrrDOBM3AazpMB8GA1UdIwQYMBaAFPm7KbCr6Enn/hgOM55LHCgjaMUh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRThGMy8wQTA0RjRFMjU0 OTQxMUU5QjU5N0U1NzFDNEY5QUUwMi8tYnNwc0t2b1NlZi1HQTR6bmtzY0tDTm94 U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1ic3BzS3ZvU2VmLUdBNHpua3NjS0NOb3hTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RThGMy8wQTA0RjRFMjU0OTQxMUU5QjU5N0U1NzFDNEY5QUUwMi8tYnNwc0t2b1Nl Zi1HQTR6bmtzY0tDTm94U0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzvOKaIcqM6gREZWaK9f6pb2Scs//tz3AtAUxY+7TPCs3QzBegGz1f h+laYTInP6gyj+vJ+9l+3GcjONlVwdcqf3H5LR74zh06IkMO4R7qW2zOuTgonbpk lCxCotPcKQoUX2mRZ2r8zHtv4CnZpuYbUUSVsjx7e/E+rOQCn2sxlPD1uX+lsF2I 2ZgqoM9mZCKES+vLh4AAEytmCJVG3KCye0VtsE/PM6gFwaLXimWeepQenJ6yBnLJ y0Xu2PmYSLG2hqKS6Ypb6g/j+P+0ZHx92sHu29QHaeQ1JXjjEG+KvL8JiVWZshq6 Yna80JZwNlLZzx8muP6rqoi0/VhArnK8 -----END CERTIFICATE-----Generated at Sat May 4 19:58:37 2024 by rpki-client on console-ams.rpki-client.org