$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft File: bkWq8A0m8fB31nRzkUTUuMOU87g.mft (raw, json) Hash identifier: xiZcYHU8reLsaSQ1l6Zt1rDYQuXgBG1f4QYt9W4nd6s= Subject key identifier: 5E:AB:47:6D:0F:B4:43:A7:E2:25:C8:AA:1E:B9:E0:E9:F5:AD:95:99 Authority key identifier: 6E:45:AA:F0:0D:26:F1:F0:77:D6:74:73:91:44:D4:B8:C3:94:F3:B8 Certificate issuer: /CN=A919F0DA/serialNumber=6E45AAF00D26F1F077D674739144D4B8C394F3B8 Certificate serial: 2317 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkWq8A0m8fB31nRzkUTUuMOU87g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft Manifest number: 5DDA Signing time: Mon 06 May 2024 14:15:30 +0000 Manifest this update: Mon 06 May 2024 14:15:29 +0000 Manifest next update: Mon 13 May 2024 14:15:29 +0000 Files and hashes: 1: bkWq8A0m8fB31nRzkUTUuMOU87g.crl (hash: gZPSfadEAk378ZycQB6nanKLdEu62q7JKOsHzrnLiEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.crl rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkWq8A0m8fB31nRzkUTUuMOU87g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 14:15:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8983 (0x2317) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA/serialNumber=6E45AAF00D26F1F077D674739144D4B8C394F3B8 Validity Not Before: May 6 14:15:29 2024 GMT Not After : May 13 14:15:29 2024 GMT Subject: CN=6638e601-60db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:73:12:53:39:a9:50:c3:96:4a:c5:d6:7c:da: 1e:5e:fc:f4:2b:f7:e6:f2:4a:1e:8a:d5:27:75:a3: a4:86:8f:71:3e:10:5e:70:18:9b:e3:8a:35:d9:0f: a3:aa:9a:43:fa:29:f8:73:27:07:74:7c:1a:e2:8e: eb:67:08:59:62:07:fd:01:b2:c6:4b:ba:a5:ed:dd: 72:fc:da:d2:dd:71:f9:10:91:a2:d9:1b:46:1d:1f: 66:94:03:4c:55:c0:42:2b:55:8c:3a:60:35:bb:7e: a2:33:c4:41:88:bf:ef:f7:0f:8d:1b:22:3e:3e:ba: ff:51:8d:b6:a2:60:73:c3:e4:c0:a7:d4:c0:84:f4: 00:ed:93:ab:e0:26:59:d1:6d:d3:17:1f:db:d7:c1: 91:63:d5:55:75:f7:02:35:53:ad:95:a9:98:3a:d0: a9:be:23:dd:8c:b8:1f:69:42:f6:ee:21:72:7b:0c: 55:0b:5b:b4:69:67:b0:95:3e:1d:c0:cd:47:da:dd: c3:36:19:7d:aa:ac:9c:b6:32:ca:a2:3e:7b:96:99: b1:8c:64:09:0e:4f:2f:1c:d0:33:69:7b:92:18:d6: ce:7c:b6:27:2f:74:2a:65:48:47:3e:a9:82:eb:96: 7a:5e:99:15:e0:9e:16:15:63:6e:31:b8:4a:18:f6: 13:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:AB:47:6D:0F:B4:43:A7:E2:25:C8:AA:1E:B9:E0:E9:F5:AD:95:99 X509v3 Authority Key Identifier: keyid:6E:45:AA:F0:0D:26:F1:F0:77:D6:74:73:91:44:D4:B8:C3:94:F3:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkWq8A0m8fB31nRzkUTUuMOU87g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:e4:54:c7:22:6d:da:2a:e7:84:a5:15:b8:e4:4c:4c:54:46: 86:42:8f:f4:c0:15:8e:2a:1b:90:9d:e9:04:c9:9d:77:e3:80: 8c:70:89:d3:92:c5:02:95:a8:d8:f5:81:56:6a:15:80:7d:f7: fd:a1:1c:18:45:9b:15:a2:5b:1a:b6:86:a9:57:65:a3:cf:af: 1b:44:95:67:f4:eb:4b:d4:f1:7d:04:15:69:5a:8c:2e:84:50: c8:0b:d5:90:34:36:ff:17:3d:d7:00:1b:97:cf:8f:f5:8e:91: 8b:91:82:d2:e5:20:ec:12:59:dc:92:3b:4c:a9:c2:7b:40:63: 49:ff:0f:a2:36:f2:d1:64:32:7f:11:c5:c5:c2:1b:54:bf:05: 58:4e:27:a9:f5:fc:02:86:a5:94:52:56:a9:b3:f3:39:d4:8c: e7:af:57:df:e2:7e:4a:82:aa:82:4f:ff:87:4f:2d:45:a4:83: af:ca:16:71:f1:ab:12:15:45:28:ac:d0:01:1c:bf:75:7e:8a: d9:b3:49:9f:03:d5:e1:a2:d3:93:59:22:11:c1:bd:ba:25:70: 43:cd:ab:a3:95:88:24:9d:9a:7f:4b:eb:c1:33:16:1f:23:48: 89:e5:21:ee:de:79:81:f6:39:aa:22:92:88:f0:5b:e4:4c:44: 14:b8:13:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDZFNDVBQUYwMEQyNkYxRjA3N0Q2NzQ3MzkxNDRENEI4 QzM5NEYzQjgwHhcNMjQwNTA2MTQxNTI5WhcNMjQwNTEzMTQxNTI5WjAYMRYwFAYD VQQDEw02NjM4ZTYwMS02MGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHMSUzmpUMOWSsXWfNoeXvz0K/fm8koeitUndaOkho9xPhBecBib44o12Q+j qppD+in4cycHdHwa4o7rZwhZYgf9AbLGS7ql7d1y/NrS3XH5EJGi2RtGHR9mlANM VcBCK1WMOmA1u36iM8RBiL/v9w+NGyI+Prr/UY22omBzw+TAp9TAhPQA7ZOr4CZZ 0W3TFx/b18GRY9VVdfcCNVOtlamYOtCpviPdjLgfaUL27iFyewxVC1u0aWewlT4d wM1H2t3DNhl9qqyctjLKoj57lpmxjGQJDk8vHNAzaXuSGNbOfLYnL3QqZUhHPqmC 65Z6XpkV4J4WFWNuMbhKGPYTdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6rR20P tEOn4iXIqh654On1rZWZMB8GA1UdIwQYMBaAFG5FqvANJvHwd9Z0c5FE1LjDlPO4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS8xNTBEM0VGNDFE NjgxMUUyOEMxODI4QTQwOEIwMkNEMi9ia1dxOEEwbThmQjMxblJ6a1VUVXVNT1U4 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JrV3E4QTBtOGZCMzFuUnprVVRVdU1PVTg3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS8xNTBEM0VGNDFENjgxMUUyOEMxODI4QTQwOEIwMkNEMi9ia1dxOEEwbThm QjMxblJ6a1VUVXVNT1U4N2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAe5FTHIm3aKueEpRW45ExMVEaGQo/0wBWOKhuQnekEyZ1344CMcInT ksUClajY9YFWahWAfff9oRwYRZsVolsatoapV2Wjz68bRJVn9OtL1PF9BBVpWowu hFDIC9WQNDb/Fz3XABuXz4/1jpGLkYLS5SDsElnckjtMqcJ7QGNJ/w+iNvLRZDJ/ EcXFwhtUvwVYTiep9fwChqWUUlaps/M51Iznr1ff4n5KgqqCT/+HTy1FpIOvyhZx 8asSFUUorNABHL91forZs0mfA9XhotOTWSIRwb26JXBDzaujlYgknZp/S+vBMxYf I0iJ5SHu3nmB9jmqIpKI8FvkTEQUuBNd -----END CERTIFICATE-----Generated at Mon May 6 17:36:16 2024 by rpki-client on console-fra.rpki-client.org