$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft File: bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft (raw, json) Hash identifier: 9DhO+ogv5VjeoekzBCQflDXe9TBJ29pW0vhmwqV8Q1U= Subject key identifier: E3:4F:FA:9E:85:8C:18:7E:66:6D:FF:F1:2F:C2:15:51:B6:8B:6D:FD Authority key identifier: 6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 Certificate issuer: /CN=A91FBD28/serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Certificate serial: 19E6 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft Manifest number: 19D2 Signing time: Sat 04 May 2024 16:02:33 +0000 Manifest this update: Sat 04 May 2024 16:02:33 +0000 Manifest next update: Sat 11 May 2024 16:02:33 +0000 Files and hashes: 1: bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl (hash: eQRWg8bd73qliRIUk4CPw+Dw1u969oRrs966MLB0bd0=) 2: D8B92776A16A11EAA517B11EC4F9AE02.roa (hash: UARPOnkXRvTJEjl5A6FQUbx+klUgqei7D2em6aJeaYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6630 (0x19e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD28/serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Validity Not Before: May 4 16:02:33 2024 GMT Not After : May 11 16:02:33 2024 GMT Subject: CN=66365c19-de88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f8:c7:f7:90:67:20:da:44:af:6f:a2:ba:80: 78:26:94:98:d7:dc:77:4c:d3:b8:e2:b9:b7:1e:c6: 92:01:a5:1a:60:53:47:d9:7e:28:30:f9:68:8a:0a: e3:9c:aa:66:93:17:38:1b:72:8c:95:cb:40:5f:be: 01:43:84:36:74:b7:0b:13:14:66:ce:d7:14:31:b3: 96:1e:93:bf:70:87:9a:b8:3c:c8:a3:8e:d7:4a:3a: d9:e0:d4:e6:e8:3e:85:65:9d:c9:94:aa:01:d3:ef: 34:e5:5c:32:87:2c:10:1b:c7:7c:ed:68:f9:19:dc: ec:b6:45:97:2c:a7:24:b4:b7:ce:2c:4c:49:73:99: ad:0c:f4:1c:31:24:61:d7:03:5d:86:9a:1a:49:0a: 23:9e:5b:e5:6a:25:bb:c7:10:f7:e2:f1:91:30:57: d3:21:f5:32:38:2a:56:bd:74:1f:75:6b:d2:69:35: 18:5c:17:c9:d2:82:8b:e6:98:85:1f:fd:51:d7:8e: a4:63:d3:c3:29:74:20:41:ee:a9:4b:bb:ec:f1:22: 62:60:ed:f4:28:aa:82:4d:87:77:4a:fc:70:1b:f0: 60:ac:b4:db:ce:ec:31:05:74:21:0a:cb:11:a9:67: 4e:62:07:c0:95:94:2d:75:6a:81:e9:97:de:ec:48: a7:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:4F:FA:9E:85:8C:18:7E:66:6D:FF:F1:2F:C2:15:51:B6:8B:6D:FD X509v3 Authority Key Identifier: keyid:6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:c3:ad:ec:cd:40:08:15:1c:61:fe:14:ad:9b:e5:1a:fe:5a: 47:51:f8:ad:09:72:ef:6e:fd:25:2d:7c:59:34:96:b3:a8:75: 80:9e:20:5d:80:c3:31:81:dd:5a:46:dd:36:d7:60:db:b3:77: 24:fa:80:c9:31:ac:c4:e2:db:3c:61:e4:a9:73:e1:ad:ff:7a: 68:1b:6f:ba:26:37:c3:4d:4b:6d:aa:26:3c:ed:fe:a7:77:1b: 4e:eb:22:71:8a:6c:92:d2:77:90:79:ca:2a:7c:3b:51:ad:ca: 2b:4a:42:c0:d9:f7:b0:f1:22:52:07:66:66:2e:5b:82:a1:7a: eb:78:ad:c9:86:81:53:50:4a:53:fd:cc:3e:23:07:57:7e:ac: 24:aa:c5:f6:d2:f4:ab:7d:c0:0e:5b:50:1e:99:57:5d:d0:46: 88:ea:b4:88:a9:49:5b:cc:22:c1:62:7b:ca:22:25:e8:d0:f1: 43:11:bd:c0:91:df:f8:5e:9e:76:0d:80:2b:93:c8:75:01:85: 35:71:61:b2:fe:44:ce:78:fa:03:50:06:f9:20:1d:ed:e2:d1: 62:40:32:1e:7f:76:99:42:02:50:66:76:53:8a:ae:18:87:9b: 68:8a:e9:da:9d:1e:68:46:57:7d:cc:21:df:64:56:33:74:25: 62:b7:63:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEMjgxMTAvBgNVBAUTKDZFNDg2MTBBQTBFNkIwRTJDNUVFRDQwMkREMDc4MzNB QTczRTdFQTIwHhcNMjQwNTA0MTYwMjMzWhcNMjQwNTExMTYwMjMzWjAYMRYwFAYD VQQDEw02NjM2NWMxOS1kZTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn/jH95BnINpEr2+iuoB4JpSY19x3TNO44rm3HsaSAaUaYFNH2X4oMPloigrj nKpmkxc4G3KMlctAX74BQ4Q2dLcLExRmztcUMbOWHpO/cIeauDzIo47XSjrZ4NTm 6D6FZZ3JlKoB0+805VwyhywQG8d87Wj5GdzstkWXLKcktLfOLExJc5mtDPQcMSRh 1wNdhpoaSQojnlvlaiW7xxD34vGRMFfTIfUyOCpWvXQfdWvSaTUYXBfJ0oKL5piF H/1R146kY9PDKXQgQe6pS7vs8SJiYO30KKqCTYd3SvxwG/BgrLTbzuwxBXQhCssR qWdOYgfAlZQtdWqB6Zfe7EingQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONP+p6F jBh+Zm3/8S/CFVG2i239MB8GA1UdIwQYMBaAFG5IYQqg5rDixe7UAt0HgzqnPn6i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQyOC8yNjc1OEJCNDNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNPTEY3dFFDM1FlRE9xYy1m cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2JraGhDcURtc09MRjd0UUMzUWVET3FjLWZxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQyOC8yNjc1OEJCNDNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNP TEY3dFFDM1FlRE9xYy1mcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3w63szUAIFRxh/hStm+Ua/lpHUfitCXLvbv0lLXxZNJazqHWAniBd gMMxgd1aRt0212Dbs3ck+oDJMazE4ts8YeSpc+Gt/3poG2+6JjfDTUttqiY87f6n dxtO6yJximyS0neQecoqfDtRrcorSkLA2few8SJSB2ZmLluCoXrreK3JhoFTUEpT /cw+IwdXfqwkqsX20vSrfcAOW1AemVdd0EaI6rSIqUlbzCLBYnvKIiXo0PFDEb3A kd/4Xp52DYArk8h1AYU1cWGy/kTOePoDUAb5IB3t4tFiQDIef3aZQgJQZnZTiq4Y h5toiunanR5oRld9zCHfZFYzdCVit2N+ -----END CERTIFICATE-----Generated at Sat May 4 16:49:09 2024 by rpki-client on console-ams.rpki-client.org