$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft File: 8bck5A2FxU9R1iHHL4lskXXJsRk.mft (raw, json) Hash identifier: Nw5bFR8NBDuk6Dw3LicpRTZl4OIXBbMuSLSxkU12uMk= Subject key identifier: EA:05:56:5C:18:01:98:38:A6:C0:20:BA:10:20:63:E1:0E:49:E6:1B Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Certificate serial: 093D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft Manifest number: 0937 Signing time: Tue 30 Apr 2024 21:28:21 +0000 Manifest this update: Tue 30 Apr 2024 21:28:20 +0000 Manifest next update: Tue 07 May 2024 21:28:20 +0000 Files and hashes: 1: 8bck5A2FxU9R1iHHL4lskXXJsRk.crl (hash: aSoqDAa8zleNOu7zDR0RPuVdjVi1F9RbFFtM/g/wguE=) 2: 354725E6763311EABAE64466C4F9AE02.roa (hash: OBNnHwe4WMlygXPp/yjie30/QyKX7+ncDFYx8Vw872A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 21:28:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2365 (0x93d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Validity Not Before: Apr 30 21:28:20 2024 GMT Not After : May 7 21:28:20 2024 GMT Subject: CN=66316274-3346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e7:55:ea:1e:b2:01:18:0d:13:b9:27:83:9d: 74:10:a8:18:1f:94:8f:d0:dd:72:12:5c:82:94:e7: 9f:18:0b:5c:d6:c7:fd:ff:46:fb:0b:85:80:b5:90: bd:f5:d9:11:cf:33:14:31:da:b7:a5:1b:5f:74:bb: c4:78:83:fc:e7:49:c7:76:12:97:d2:98:39:ef:83: 45:28:bf:17:36:14:5d:16:81:a0:d5:be:08:31:c5: 1a:cf:d4:8f:64:10:c4:ce:f4:39:8b:de:1c:85:ef: 0d:76:c0:2d:cf:38:17:ca:fc:7a:b3:f2:3c:3a:41: f0:75:5a:1a:77:2f:97:67:88:e8:01:b8:95:e5:f7: 74:4a:77:d1:c3:ee:d2:0c:1d:a8:58:2c:de:7d:d1: 60:3c:b3:fb:9b:fa:82:5f:3a:b3:83:8b:0b:b3:d3: 8f:12:19:01:2b:02:e6:3e:e8:de:1a:ae:9e:8f:0a: ed:e6:45:ac:a5:7e:8e:72:ac:cf:70:8c:a3:5b:d3: 80:3a:54:db:21:a8:f1:b0:64:5a:23:b4:a5:8c:d6: f9:5d:1e:bc:bc:16:de:25:f7:55:23:36:26:58:d1: 94:53:a5:93:15:37:08:76:55:a3:39:3b:72:3b:a5: 81:99:47:b3:87:44:ea:ca:7a:7e:d9:ce:b8:f2:68: 29:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:05:56:5C:18:01:98:38:A6:C0:20:BA:10:20:63:E1:0E:49:E6:1B X509v3 Authority Key Identifier: keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:06:92:f5:16:30:e4:17:70:e4:bf:05:da:88:b5:86:22:25: ad:2b:30:4e:d4:f8:a8:44:d0:56:be:65:25:4f:c0:ad:45:c3: 95:7a:e6:8d:ff:9d:7a:a0:ee:32:02:d7:e6:54:1c:c6:f2:b2: 41:64:8d:ce:1a:13:0e:c3:26:b6:f7:b2:f0:62:83:b7:84:83: f1:9a:47:02:6f:7d:f0:66:01:86:4c:06:40:6d:be:ba:61:3f: 89:6c:6d:50:78:77:b5:b8:72:fa:8e:16:fe:a5:44:3b:b5:45: 2b:4f:4d:e6:7c:2f:37:8e:2e:a8:0b:58:22:d0:fe:98:af:87: 50:64:81:5a:9b:74:59:9f:85:2b:9b:32:41:f8:23:97:47:a5: f3:49:23:1a:74:8d:2c:b5:4a:6b:32:c6:8e:2d:57:09:6b:1b: 9f:c2:6e:16:a1:00:34:ff:83:31:94:aa:8e:c7:e7:4a:f6:30: e8:61:d3:8a:55:09:32:40:a3:ad:d8:87:bd:ae:0d:21:8c:d1: f4:fc:72:b0:d4:2c:37:e1:f4:ff:c9:5a:19:7c:34:49:37:89: a3:0a:54:93:b1:5d:3d:d4:31:0d:4d:f0:de:c1:08:58:b9:e9: 6e:c3:a9:ef:30:f4:c4:bc:16:d4:fe:2d:25:6a:f5:ad:d9:03: 60:5d:78:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzRjUxMTAvBgNVBAUTKEYxQjcyNEU0MEQ4NUM1NEY1MUQ2MjFDNzJGODk2Qzkx NzVDOUIxMTkwHhcNMjQwNDMwMjEyODIwWhcNMjQwNTA3MjEyODIwWjAYMRYwFAYD VQQDEw02NjMxNjI3NC0zMzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOdV6h6yARgNE7kng510EKgYH5SP0N1yElyClOefGAtc1sf9/0b7C4WAtZC9 9dkRzzMUMdq3pRtfdLvEeIP850nHdhKX0pg574NFKL8XNhRdFoGg1b4IMcUaz9SP ZBDEzvQ5i94che8NdsAtzzgXyvx6s/I8OkHwdVoady+XZ4joAbiV5fd0SnfRw+7S DB2oWCzefdFgPLP7m/qCXzqzg4sLs9OPEhkBKwLmPujeGq6ejwrt5kWspX6OcqzP cIyjW9OAOlTbIajxsGRaI7SljNb5XR68vBbeJfdVIzYmWNGUU6WTFTcIdlWjOTty O6WBmUezh0Tqynp+2c648mgpGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOoFVlwY AZg4psAguhAgY+EOSeYbMB8GA1UdIwQYMBaAFPG3JOQNhcVPUdYhxy+JbJF1ybEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNGNS84MTFCNjA0Qzc2 MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhVOVIxaUhITDRsc2tYWEpz UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiY2s1QTJGeFU5UjFpSEhMNGxza1hYSnNSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNGNS84MTFCNjA0Qzc2MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhV OVIxaUhITDRsc2tYWEpzUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzBpL1FjDkF3DkvwXaiLWGIiWtKzBO1PioRNBWvmUlT8CtRcOVeuaN /516oO4yAtfmVBzG8rJBZI3OGhMOwya297LwYoO3hIPxmkcCb33wZgGGTAZAbb66 YT+JbG1QeHe1uHL6jhb+pUQ7tUUrT03mfC83ji6oC1gi0P6Yr4dQZIFam3RZn4Ur mzJB+COXR6XzSSMadI0stUprMsaOLVcJaxufwm4WoQA0/4MxlKqOx+dK9jDoYdOK VQkyQKOt2Ie9rg0hjNH0/HKw1Cw34fT/yVoZfDRJN4mjClSTsV091DENTfDewQhY ueluw6nvMPTEvBbU/i0lavWt2QNgXXh0 -----END CERTIFICATE-----Generated at Tue Apr 30 22:56:13 2024 by rpki-client on console-fra.rpki-client.org