$ rpki-client -vvf rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft File: bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft (raw, json) Hash identifier: BlPyJo/qhJMwGo1pRzrKUz3I99O3tHJSDwFhVFhrrvo= Subject key identifier: 61:98:4B:EC:63:5E:BF:4E:EA:23:E6:F0:6D:9C:87:55:67:4C:EC:0B Authority key identifier: 6E:18:4B:E1:46:12:D5:A2:B5:3C:49:87:68:44:50:85:0D:B0:2C:74 Certificate issuer: /CN=A916B232/serialNumber=6E184BE14612D5A2B53C4987684450850DB02C74 Certificate serial: 0649 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft Manifest number: 0643 Signing time: Wed 01 May 2024 00:00:33 +0000 Manifest this update: Wed 01 May 2024 00:00:33 +0000 Manifest next update: Wed 08 May 2024 00:00:33 +0000 Files and hashes: 1: bhhL4UYS1aK1PEmHaERQhQ2wLHQ.crl (hash: YYef+TFD0tWZa4gQgvpPN6ab5sSDWFXZbgjTNo5d65M=) 2: A2C94D9C3F0F11EB80256B25C4F9AE02.roa (hash: FkpyV66ijxqb32HGtkQFlUte90FSVmvzcK3LzeRXqb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.crl rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1609 (0x649) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B232/serialNumber=6E184BE14612D5A2B53C4987684450850DB02C74 Validity Not Before: May 1 00:00:33 2024 GMT Not After : May 8 00:00:33 2024 GMT Subject: CN=66318621-5bc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2d:d1:8d:1c:2d:41:43:93:1f:ee:ec:e1:e1: 27:fa:2f:44:2c:07:ca:ad:7d:37:ff:0d:b3:81:dd: a6:10:67:9a:d3:61:90:96:c8:92:4f:b1:bd:84:04: c8:f4:6a:17:19:40:a0:d5:8a:cc:2c:7f:30:97:e8: 6b:62:c9:1d:8b:54:f6:06:9c:99:43:dc:65:bf:c9: 07:aa:d2:a0:c1:af:05:3b:5d:c5:9e:1c:44:78:1e: 5e:2f:33:04:29:03:75:e2:2a:7d:a5:f2:72:07:b6: 08:ee:78:67:b9:75:99:40:f2:03:c7:b1:d6:79:92: da:5b:c9:a0:fe:a6:00:61:e5:3a:4b:3e:17:3f:bb: 3a:2b:93:31:b3:bf:a4:aa:5d:7d:59:dd:59:33:ee: c9:0c:ff:b7:5e:8d:70:86:36:76:54:6a:72:b7:e7: 7a:22:5a:cd:03:b7:7a:31:53:e7:b4:5e:88:c5:61: c8:51:a3:95:42:44:84:91:cd:a9:a9:2c:77:f7:f1: dc:f5:e4:af:33:67:b7:f0:a6:d1:c5:06:ea:14:90: e6:32:e6:4c:43:21:8c:f4:d3:c2:2b:5a:d6:ac:af: 4b:ff:c4:76:32:8d:1c:36:4e:ed:cc:3a:52:47:04: f9:d7:cd:6b:54:4a:eb:4f:15:55:79:57:34:f2:17: 1a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:98:4B:EC:63:5E:BF:4E:EA:23:E6:F0:6D:9C:87:55:67:4C:EC:0B X509v3 Authority Key Identifier: keyid:6E:18:4B:E1:46:12:D5:A2:B5:3C:49:87:68:44:50:85:0D:B0:2C:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:18:51:97:34:f9:bf:3d:7c:a9:23:87:25:47:b0:f5:18:b5: fb:51:03:60:c0:95:15:5c:29:3f:1c:db:a0:7f:63:17:90:3e: 71:44:3c:d0:62:9e:3f:60:c3:f0:23:9d:f4:d2:d7:65:9a:a7: f3:44:b0:50:cb:37:b5:f7:20:fe:11:1a:eb:d8:58:58:df:24: c3:85:e0:0d:1b:ad:2d:22:db:8e:b2:70:a8:2e:c4:1f:29:ea: 79:a7:ad:7f:03:8d:0f:8b:26:cf:25:a7:c4:36:cd:d6:be:f1: 69:4b:9c:82:a3:31:c5:d9:31:6c:84:04:32:6a:87:9e:8f:7d: 29:9e:fc:a5:66:fd:bd:6b:34:67:f7:be:23:49:5d:a6:c6:5d: 9e:a5:51:45:d4:9a:78:63:b1:3d:af:e3:8f:98:cf:8b:7a:83: ae:64:da:93:aa:ea:ba:f6:78:38:45:33:6f:e8:ae:cf:ee:4f: 4c:98:e5:e3:12:20:74:82:c1:2d:d1:d7:13:ff:b5:30:c3:0e: 1c:08:73:40:ae:a3:2c:6b:0a:2f:10:fa:ff:34:30:d1:1c:10: 65:60:a5:74:2c:cb:27:b6:8e:3c:20:85:79:6d:99:1b:27:dd: 16:97:55:72:46:1f:e4:d6:f5:92:7b:d9:eb:df:80:14:03:b2: 21:fc:ba:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIyMzIxMTAvBgNVBAUTKDZFMTg0QkUxNDYxMkQ1QTJCNTNDNDk4NzY4NDQ1MDg1 MERCMDJDNzQwHhcNMjQwNTAxMDAwMDMzWhcNMjQwNTA4MDAwMDMzWjAYMRYwFAYD VQQDEw02NjMxODYyMS01YmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsy3RjRwtQUOTH+7s4eEn+i9ELAfKrX03/w2zgd2mEGea02GQlsiST7G9hATI 9GoXGUCg1YrMLH8wl+hrYskdi1T2BpyZQ9xlv8kHqtKgwa8FO13FnhxEeB5eLzME KQN14ip9pfJyB7YI7nhnuXWZQPIDx7HWeZLaW8mg/qYAYeU6Sz4XP7s6K5Mxs7+k ql19Wd1ZM+7JDP+3Xo1whjZ2VGpyt+d6IlrNA7d6MVPntF6IxWHIUaOVQkSEkc2p qSx39/Hc9eSvM2e38KbRxQbqFJDmMuZMQyGM9NPCK1rWrK9L/8R2Mo0cNk7tzDpS RwT5181rVErrTxVVeVc08hcaxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGGYS+xj Xr9O6iPm8G2ch1VnTOwLMB8GA1UdIwQYMBaAFG4YS+FGEtWitTxJh2hEUIUNsCx0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjIzMi85NEQ0Qzc0MDNG MEQxMUVCQUYxRkNFMjJDNEY5QUUwMi9iaGhMNFVZUzFhSzFQRW1IYUVSUWhRMndM SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JoaEw0VVlTMWFLMVBFbUhhRVJRaFEyd0xIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjIzMi85NEQ0Qzc0MDNGMEQxMUVCQUYxRkNFMjJDNEY5QUUwMi9iaGhMNFVZUzFh SzFQRW1IYUVSUWhRMndMSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhGFGXNPm/PXypI4clR7D1GLX7UQNgwJUVXCk/HNugf2MXkD5xRDzQ Yp4/YMPwI5300tdlmqfzRLBQyze19yD+ERrr2FhY3yTDheANG60tItuOsnCoLsQf Kep5p61/A40PiybPJafENs3WvvFpS5yCozHF2TFshAQyaoeej30pnvylZv29azRn 974jSV2mxl2epVFF1Jp4Y7E9r+OPmM+LeoOuZNqTquq69ng4RTNv6K7P7k9MmOXj EiB0gsEt0dcT/7Uwww4cCHNArqMsawovEPr/NDDRHBBlYKV0LMsnto48IIV5bZkb J90Wl1VyRh/k1vWSe9nr34AUA7Ih/LoT -----END CERTIFICATE-----Generated at Wed May 1 01:04:05 2024 by rpki-client on console-fra.rpki-client.org