$ rpki-client -vvf rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft File: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft (raw, json) Hash identifier: b8VYy3aZmd5Dg8o6usGUHCmuRcUgusdLQO0old+kq68= Subject key identifier: 83:16:CA:EA:5E:C9:B3:73:A9:72:30:4E:A8:B6:12:86:7B:F3:98:1C Authority key identifier: 05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 Certificate issuer: /CN=A915E575/serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Certificate serial: 02F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft Manifest number: 02F0 Signing time: Fri 03 May 2024 03:21:18 +0000 Manifest this update: Fri 03 May 2024 03:21:17 +0000 Manifest next update: Fri 10 May 2024 03:21:17 +0000 Files and hashes: 1: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl (hash: RKvdam96bKpqE/op5xTWrBb+K9bEr2OnU4MiQak6w9c=) 2: D86008008FAA11ECB0728B0FC4F9AE02.roa (hash: ewafMRT4o3+fjjmfmPiaBN4gqgR15y8GC0cPz7bWyOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:21:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 755 (0x2f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E575/serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Validity Not Before: May 3 03:21:17 2024 GMT Not After : May 10 03:21:17 2024 GMT Subject: CN=6634582d-3a36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a5:4f:b8:be:20:dd:ab:1f:3e:9a:fb:2e:84: 9d:94:13:29:52:c6:36:2e:38:cb:1c:0f:d6:fa:0f: a1:5b:67:ba:28:8f:50:89:2e:21:6f:40:9f:12:9f: 80:9c:e8:f3:11:1d:fb:ef:bc:60:2e:80:4e:fe:09: 41:49:d2:28:b7:1f:96:c4:99:62:58:97:a6:2c:4f: 4d:33:04:41:a5:37:7c:88:c9:98:95:e7:52:f5:28: 59:a8:22:27:30:5c:8b:e0:a9:48:f6:82:d1:e1:9b: ed:17:71:01:33:0b:a4:bd:86:8b:6d:76:90:3b:5e: 8d:50:25:a3:10:0f:89:7e:4d:22:b8:fa:08:09:8e: 85:89:70:c0:86:21:78:c3:f7:2f:7b:69:24:50:54: f8:a9:c5:85:b7:ba:b9:92:bc:17:f8:5b:0f:e1:79: 00:6f:36:a2:86:34:83:79:59:52:44:94:66:dd:73: 44:73:e4:37:dc:75:8e:74:7d:18:87:96:4b:cf:50: b5:99:03:ea:d1:c5:57:84:4c:00:8c:2b:82:77:67: b2:6b:f6:d0:52:43:90:c6:bf:0e:45:c9:13:bd:ef: f1:70:44:a4:c1:55:0f:d2:26:6c:38:49:08:9e:da: 73:43:7e:dc:45:b7:9c:b2:0e:1f:9b:6c:ce:36:56: 3c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:16:CA:EA:5E:C9:B3:73:A9:72:30:4E:A8:B6:12:86:7B:F3:98:1C X509v3 Authority Key Identifier: keyid:05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:ac:3d:f9:c1:2a:da:28:3d:a0:f5:27:52:e7:f3:0b:a7:8a: 8c:6d:d2:4e:37:12:c8:9a:b0:b3:7b:74:ce:41:c4:f1:81:a5: 6a:d8:cf:0a:58:62:79:e4:bc:30:68:e1:3b:11:72:46:6d:d3: 29:12:79:c5:3e:d0:fc:13:07:f5:4c:a7:bd:b2:99:a7:40:9d: fe:ab:cf:57:49:ac:2c:0a:79:8f:30:13:d2:f0:77:f2:6d:34: b1:6e:96:fd:bc:dc:44:42:08:dc:2b:63:43:8f:4c:65:23:54: 44:d0:63:1f:a8:c2:56:c9:d4:0d:78:f9:17:4e:9b:45:65:d7: 37:af:6e:13:55:bf:02:fb:44:f4:e3:ce:25:22:8c:da:94:b4: b4:84:8a:db:ad:09:d0:09:bf:b6:fd:7f:6a:59:e2:f8:b0:86: 2f:8d:29:42:3b:5d:13:ee:10:d6:ec:32:38:b0:61:80:0d:a6: 10:e4:75:5e:c9:35:43:b6:f5:9e:45:bf:fe:b9:e1:cd:99:98: 77:ca:c9:1d:f2:fe:46:0d:c9:c3:63:67:07:d4:e5:03:76:83: 16:d7:dd:7d:23:7b:84:fa:68:13:c2:01:9c:31:20:28:b4:dc: da:c2:44:50:19:7c:8d:bc:c8:aa:92:c8:db:05:cd:98:dd:63: cf:c6:1d:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU1NzUxMTAvBgNVBAUTKDA1Rjg0MTlBRjlBQTMxODRFQUIxRkY4NzQyNEE2QUUz M0NGNzMyQzQwHhcNMjQwNTAzMDMyMTE3WhcNMjQwNTEwMDMyMTE3WjAYMRYwFAYD VQQDEw02NjM0NTgyZC0zYTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoKVPuL4g3asfPpr7LoSdlBMpUsY2LjjLHA/W+g+hW2e6KI9QiS4hb0CfEp+A nOjzER3777xgLoBO/glBSdIotx+WxJliWJemLE9NMwRBpTd8iMmYledS9ShZqCIn MFyL4KlI9oLR4ZvtF3EBMwukvYaLbXaQO16NUCWjEA+Jfk0iuPoICY6FiXDAhiF4 w/cve2kkUFT4qcWFt7q5krwX+FsP4XkAbzaihjSDeVlSRJRm3XNEc+Q33HWOdH0Y h5ZLz1C1mQPq0cVXhEwAjCuCd2eya/bQUkOQxr8ORckTve/xcESkwVUP0iZsOEkI ntpzQ37cRbecsg4fm2zONlY8PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMWyupe ybNzqXIwTqi2EoZ785gcMB8GA1UdIwQYMBaAFAX4QZr5qjGE6rH/h0JKauM89zLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTU3NS9GMEIyNDIxNDhG QTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1ZVHFzZi1IUWtwcTR6ejNN c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JmaEJtdm1xTVlUcXNmLUhRa3BxNHp6M01zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTU3NS9GMEIyNDIxNDhGQTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1Z VHFzZi1IUWtwcTR6ejNNc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGrD35wSraKD2g9SdS5/MLp4qMbdJONxLImrCze3TOQcTxgaVq2M8K WGJ55LwwaOE7EXJGbdMpEnnFPtD8Ewf1TKe9spmnQJ3+q89XSawsCnmPMBPS8Hfy bTSxbpb9vNxEQgjcK2NDj0xlI1RE0GMfqMJWydQNePkXTptFZdc3r24TVb8C+0T0 484lIozalLS0hIrbrQnQCb+2/X9qWeL4sIYvjSlCO10T7hDW7DI4sGGADaYQ5HVe yTVDtvWeRb/+ueHNmZh3yskd8v5GDcnDY2cH1OUDdoMW1919I3uE+mgTwgGcMSAo tNzawkRQGXyNvMiqksjbBc2Y3WPPxh3g -----END CERTIFICATE-----Generated at Fri May 3 04:36:47 2024 by rpki-client on console-ams.rpki-client.org