$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft File: BPDYqTArIrYOMPRlG4KumZ_3TJs.mft (raw, json) Hash identifier: zpwaPQoZ8anyk45HM9mhsTx56FwvQA8uP41R7pFS3ek= Subject key identifier: 5C:EC:6E:E5:01:3A:26:87:E8:AF:0E:6E:FC:7E:76:E5:1B:57:64:F2 Authority key identifier: 04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B Certificate issuer: /CN=A9171882/serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft Manifest number: 16 Signing time: Wed 15 May 2024 08:53:56 +0000 Manifest this update: Wed 15 May 2024 08:53:55 +0000 Manifest next update: Wed 22 May 2024 08:53:55 +0000 Files and hashes: 1: BPDYqTArIrYOMPRlG4KumZ_3TJs.crl (hash: PdxHhgqGD82HViFRLS+BVDeTR8aaf2F+nY58MBtvUu8=) 2: 08D1870EF0B411EE962EE784C4F9AE02.roa (hash: kd+ZyEIa8OKJXxOJS7tnyqy5H5nqc0a2LvwnZGx0i2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171882/serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Validity Not Before: May 15 08:53:55 2024 GMT Not After : May 22 08:53:55 2024 GMT Subject: CN=66447823-4ae0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:43:d5:71:d5:f5:49:25:8b:14:00:d5:38:c0: 25:df:dc:c6:50:6d:ce:6f:f3:8b:6e:be:1d:35:59: 65:b2:4a:08:97:4c:f1:ed:d7:68:e0:45:f5:8e:50: f6:23:e1:b1:fc:19:22:2a:2a:e1:97:b4:6b:6a:15: 1c:3d:bc:68:c3:de:53:93:7a:23:21:ad:13:24:6f: 23:07:0e:0a:27:f9:41:44:d6:39:98:65:78:2d:e8: 9a:ab:31:85:c0:55:b6:46:bd:80:c8:77:ba:7f:fc: e9:3c:50:19:ba:70:b0:f7:16:69:2e:b2:a2:b5:35: 97:40:5d:2f:28:76:ef:44:60:92:27:a7:cd:8e:e9: 6d:ee:4f:0c:1c:9e:a5:b0:a0:6d:48:13:ed:d3:d1: bc:68:13:41:22:57:50:ed:9b:e0:a5:10:c0:cd:df: 70:ce:8b:0d:bf:4e:73:d9:83:b9:ee:39:5f:9d:cb: d5:f4:b5:06:0c:9f:ee:3e:ef:6d:ac:00:44:b7:50: 98:7a:76:5a:fe:ef:ef:ee:b1:99:b9:74:eb:3b:36: 39:bf:73:ab:f5:b7:b3:48:bd:85:30:0b:f9:d8:86: 4a:60:bf:b0:09:f2:46:f3:6c:6c:2d:67:40:e1:db: 80:aa:ac:ac:16:5c:7e:02:15:50:1c:31:b3:3f:f6: 0a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:EC:6E:E5:01:3A:26:87:E8:AF:0E:6E:FC:7E:76:E5:1B:57:64:F2 X509v3 Authority Key Identifier: keyid:04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:ec:13:e1:19:b0:f5:cc:e6:d8:31:50:9a:d4:d3:32:8f:53: 46:dd:61:f8:b5:c0:81:75:db:50:09:56:86:c5:30:b3:34:fb: ed:55:49:03:e3:07:e1:65:60:c9:d9:45:c9:55:51:99:dc:19: fe:f8:1a:67:ce:48:a9:e9:7c:35:8b:80:90:bd:9d:47:fd:d0: 0a:2e:5a:5a:d5:49:87:22:52:55:4b:b6:ca:b4:f8:37:9f:62: c4:0d:00:50:72:37:53:2d:ba:03:c2:1f:fe:f0:4d:5b:13:6e: d8:00:ac:ab:e0:af:b7:74:b6:b8:b1:64:4f:95:52:3f:96:a1: 82:5a:b0:b6:44:ad:f8:bf:bd:fd:18:ca:c6:d3:39:81:ab:c5: 9e:7e:21:8d:d7:2a:eb:9c:f6:6a:82:65:4b:17:3e:4b:8f:42: 38:17:35:1c:e4:fc:5a:13:13:75:2b:37:f7:7f:41:4e:96:8d: b0:ff:e2:ce:b7:66:6b:e2:71:c7:68:e5:e7:c1:71:d3:de:71: 98:d3:ed:79:f3:cf:d2:fc:cc:a5:01:68:3d:6c:c5:28:5f:d8: fd:bf:cb:13:b0:f2:65:f5:fc:8e:92:ae:19:56:49:31:95:5e: 6c:09:9c:5a:f3:aa:25:b1:f3:1a:5c:92:dd:9b:77:58:e0:aa: 87:ca:8d:27 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MTg4MjExMC8GA1UEBRMoMDRGMEQ4QTkzMDJCMjJCNjBFMzBGNDY1MUI4MkFFOTk5 RkY3NEM5QjAeFw0yNDA1MTUwODUzNTVaFw0yNDA1MjIwODUzNTVaMBgxFjAUBgNV BAMTDTY2NDQ3ODIzLTRhZTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEQ9Vx1fVJJYsUANU4wCXf3MZQbc5v84tuvh01WWWySgiXTPHt12jgRfWOUPYj 4bH8GSIqKuGXtGtqFRw9vGjD3lOTeiMhrRMkbyMHDgon+UFE1jmYZXgt6JqrMYXA VbZGvYDId7p//Ok8UBm6cLD3FmkusqK1NZdAXS8odu9EYJInp82O6W3uTwwcnqWw oG1IE+3T0bxoE0EiV1Dtm+ClEMDN33DOiw2/TnPZg7nuOV+dy9X0tQYMn+4+722s AES3UJh6dlr+7+/usZm5dOs7Njm/c6v1t7NIvYUwC/nYhkpgv7AJ8kbzbGwtZ0Dh 24CqrKwWXH4CFVAcMbM/9gpVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXOxu5QE6 Joforw5u/H525RtXZPIwHwYDVR0jBBgwFoAUBPDYqTArIrYOMPRlG4KumZ/3TJsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcxODgyL0IyMzhBMTg0RjBC MzExRUVBNEM3MkY4NEM0RjlBRTAyL0JQRFlxVEFySXJZT01QUmxHNEt1bVpfM1RK cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQlBEWXFUQXJJcllPTVBSbEc0S3VtWl8zVEpzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcx ODgyL0IyMzhBMTg0RjBCMzExRUVBNEM3MkY4NEM0RjlBRTAyL0JQRFlxVEFySXJZ T01QUmxHNEt1bVpfM1RKcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGfsE+EZsPXM5tgxUJrU0zKPU0bdYfi1wIF121AJVobFMLM0++1VSQPj B+FlYMnZRclVUZncGf74GmfOSKnpfDWLgJC9nUf90AouWlrVSYciUlVLtsq0+Def YsQNAFByN1MtugPCH/7wTVsTbtgArKvgr7d0trixZE+VUj+WoYJasLZErfi/vf0Y ysbTOYGrxZ5+IY3XKuuc9mqCZUsXPkuPQjgXNRzk/FoTE3UrN/d/QU6WjbD/4s63 Zmviccdo5efBcdPecZjT7Xnzz9L8zKUBaD1sxShf2P2/yxOw8mX1/I6SrhlWSTGV XmwJnFrzqiWx8xpckt2bd1jgqofKjSc= -----END CERTIFICATE-----Generated at Wed May 15 09:27:34 2024 by rpki-client on console-fra.rpki-client.org