$ rpki-client -vvf rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft File: sbozBTw5ulhlU3dDESOJ4wDEiAc.mft (raw, json) Hash identifier: EjzVDQNZWrJz2OWIdfPAa+PDA8xesntLVC8WCIJ7QPc= Subject key identifier: 50:E6:2B:96:C0:CF:FD:CE:09:C4:34:2E:CD:95:D8:F1:CF:31:E6:0B Authority key identifier: B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 Certificate issuer: /CN=A9150384/serialNumber=B1BA33053C39BA5865537743112389E300C48807 Certificate serial: 0BAE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft Manifest number: 0BA0 Signing time: Sat 04 May 2024 19:24:54 +0000 Manifest this update: Sat 04 May 2024 19:24:53 +0000 Manifest next update: Sat 11 May 2024 19:24:53 +0000 Files and hashes: 1: sbozBTw5ulhlU3dDESOJ4wDEiAc.crl (hash: GH8WE8dpsDAEGJeIxZ7JR5t6hIqhf4/2kuiBUL2ZX0Q=) 2: 427CB2F0FAFE11ED8553B675C4F9AE02.roa (hash: 1AfZmTN8y2dEAxymesK7ZqhybAJpm7kmJ8uQOh7MeNw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:24:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2990 (0xbae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150384/serialNumber=B1BA33053C39BA5865537743112389E300C48807 Validity Not Before: May 4 19:24:53 2024 GMT Not After : May 11 19:24:53 2024 GMT Subject: CN=66368b86-1f96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c3:34:91:b6:be:2f:e4:63:0b:90:6d:a0:3b: 98:d0:1e:06:9a:b7:9c:9d:50:dc:fc:85:68:1a:aa: f8:10:f2:f2:8a:3b:d4:42:8e:10:68:ec:88:27:c4: ab:12:5e:d8:0e:8e:10:52:0f:d5:82:4d:a9:26:d0: 0e:c6:8d:31:46:57:1f:85:f0:d0:2e:f1:7d:c6:d7: 84:73:f9:a9:cd:f1:f5:e5:75:82:97:1c:4a:83:a7: 21:43:da:aa:ba:d3:06:41:62:b3:3e:bf:c4:cb:09: a3:47:a1:62:1f:f0:de:a7:1c:26:f6:64:90:cc:ec: 00:3f:12:9b:ca:e3:ef:a9:08:f4:23:6a:b4:75:f4: b0:99:ea:84:50:08:5c:15:82:23:25:3d:3f:3c:27: cc:4e:2e:ad:ea:84:a7:5d:4d:f9:fc:00:69:b7:4b: 02:b1:26:ae:af:02:84:52:46:97:fa:fd:1b:c4:6b: 9a:e0:21:39:fb:7d:1a:2f:0c:8d:b1:56:01:53:b6: be:cf:bb:cb:9d:70:68:d6:f4:ec:c4:7c:b6:d9:2d: 38:0c:1c:52:2e:26:4c:d6:75:cf:6b:e3:d2:c7:69: c7:b6:f3:80:31:31:66:e9:c1:28:5d:9e:9c:68:aa: f3:a0:d5:7d:13:cf:9e:82:b7:49:25:a9:b3:b4:ec: f7:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:E6:2B:96:C0:CF:FD:CE:09:C4:34:2E:CD:95:D8:F1:CF:31:E6:0B X509v3 Authority Key Identifier: keyid:B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:c8:74:8d:70:f7:01:c6:aa:a3:c4:cd:3e:31:20:ad:20:6f: b1:71:0b:8c:83:f6:60:22:0d:dd:04:14:f2:18:ff:51:41:f8: c7:97:1f:66:91:ea:93:5d:75:f9:d4:ac:d7:b4:7e:2a:80:d1: 73:43:1b:d4:0e:cb:e0:fe:3d:2d:d1:0c:01:3b:71:e5:2b:aa: 50:aa:26:94:8a:47:94:fe:69:5c:1d:9e:33:48:0e:18:b8:fa: 11:9e:59:c0:f8:04:de:b0:03:a4:5b:71:9f:1d:29:16:c8:cd: aa:5b:54:af:00:45:dd:ab:31:70:cf:fc:c5:b7:90:bc:23:51: 54:0a:b3:d0:12:8e:c3:be:86:83:57:02:69:45:0d:cd:79:54: 8a:99:79:fd:58:04:e4:b8:e7:bf:7c:62:b8:2d:8d:12:98:5a: ee:90:cb:cc:2a:c8:b3:fa:08:40:59:78:50:e0:7d:17:a2:f1: f8:46:42:36:29:2b:91:c9:72:2c:17:14:da:2d:51:a7:eb:d6: fc:3b:f3:bd:5b:f6:5b:b0:18:c0:87:1e:ba:3f:51:fb:26:94: 60:c1:3b:09:20:90:50:c6:e0:d3:14:6d:02:2b:35:53:89:44: ab:5f:68:43:c1:3c:2c:1a:56:4a:a9:ac:89:e7:a8:cd:78:14: c7:aa:6e:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC64wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAzODQxMTAvBgNVBAUTKEIxQkEzMzA1M0MzOUJBNTg2NTUzNzc0MzExMjM4OUUz MDBDNDg4MDcwHhcNMjQwNTA0MTkyNDUzWhcNMjQwNTExMTkyNDUzWjAYMRYwFAYD VQQDEw02NjM2OGI4Ni0xZjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusM0kba+L+RjC5BtoDuY0B4GmrecnVDc/IVoGqr4EPLyijvUQo4QaOyIJ8Sr El7YDo4QUg/Vgk2pJtAOxo0xRlcfhfDQLvF9xteEc/mpzfH15XWClxxKg6chQ9qq utMGQWKzPr/EywmjR6FiH/Depxwm9mSQzOwAPxKbyuPvqQj0I2q0dfSwmeqEUAhc FYIjJT0/PCfMTi6t6oSnXU35/ABpt0sCsSaurwKEUkaX+v0bxGua4CE5+30aLwyN sVYBU7a+z7vLnXBo1vTsxHy22S04DBxSLiZM1nXPa+PSx2nHtvOAMTFm6cEoXZ6c aKrzoNV9E8+egrdJJamztOz3JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDmK5bA z/3OCcQ0Ls2V2PHPMeYLMB8GA1UdIwQYMBaAFLG6MwU8ObpYZVN3QxEjieMAxIgH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDM4NC85MzdGMzcyRTAw NUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVsaGxVM2RERVNPSjR3REVp QWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Nib3pCVHc1dWxobFUzZERFU09KNHdERWlBYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDM4NC85MzdGMzcyRTAwNUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVs aGxVM2RERVNPSjR3REVpQWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiyHSNcPcBxqqjxM0+MSCtIG+xcQuMg/ZgIg3dBBTyGP9RQfjHlx9m keqTXXX51KzXtH4qgNFzQxvUDsvg/j0t0QwBO3HlK6pQqiaUikeU/mlcHZ4zSA4Y uPoRnlnA+ATesAOkW3GfHSkWyM2qW1SvAEXdqzFwz/zFt5C8I1FUCrPQEo7DvoaD VwJpRQ3NeVSKmXn9WATkuOe/fGK4LY0SmFrukMvMKsiz+ghAWXhQ4H0XovH4RkI2 KSuRyXIsFxTaLVGn69b8O/O9W/ZbsBjAhx66P1H7JpRgwTsJIJBQxuDTFG0CKzVT iUSrX2hDwTwsGlZKqayJ56jNeBTHqm6V -----END CERTIFICATE-----Generated at Sat May 4 21:19:28 2024 by rpki-client on console-ams.rpki-client.org