$ rpki-client -vvf rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft File: KiZlwxQeS_P9LwBKrimlmHETod8.mft (raw, json) Hash identifier: 9T0bRGYp1oBR3sqIcU8ZaLowOdgh+0QtX0MH0x0a59I= Subject key identifier: 80:7C:F8:E0:3D:7F:F3:92:05:B6:30:E1:2D:0C:EA:57:E2:42:69:EE Authority key identifier: 2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF Certificate issuer: /CN=A911972D/serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Certificate serial: 02C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft Manifest number: 02C0 Signing time: Sun 19 May 2024 03:30:47 +0000 Manifest this update: Sun 19 May 2024 03:30:47 +0000 Manifest next update: Sun 26 May 2024 03:30:47 +0000 Files and hashes: 1: KiZlwxQeS_P9LwBKrimlmHETod8.crl (hash: BvnM/eK/vJL7Y9QvHAPs7HLwolSC9O7hCQ2G2PTFN3g=) 2: B067CCDCA8C511EC8F560C42C4F9AE02.roa (hash: M/lr8xkMBnLxQ2UuVdrqkJdSJqLPZmrgr/WgiGu36x0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 708 (0x2c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911972D/serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Validity Not Before: May 19 03:30:47 2024 GMT Not After : May 26 03:30:47 2024 GMT Subject: CN=66497267-0ad1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:88:a9:81:b6:32:90:23:5a:7e:ce:b9:da:fb: f5:2b:66:06:08:d5:4a:a7:ef:c4:77:04:2b:c1:4e: 90:23:c4:a5:a0:5b:e3:40:4f:c6:20:fa:7f:16:45: c5:6c:8f:9f:37:3f:80:70:ac:e0:d1:15:13:19:38: f4:86:fc:eb:83:f6:93:eb:d6:36:96:50:02:40:f2: 03:5f:b1:f4:7e:97:2c:a4:eb:10:c2:19:6b:01:a3: 31:17:ae:16:2e:c0:48:6d:9e:a8:cd:72:9f:6d:7c: 88:9c:12:0c:4d:e9:a2:09:f2:13:a1:1e:cc:6e:c2: 88:2a:65:4c:53:22:a7:a8:03:76:2a:71:a9:fc:3f: fe:92:73:84:12:3b:84:98:18:9a:7e:f9:44:9c:a7: 48:75:a7:5b:31:e5:89:ad:ea:5e:ed:e1:b0:12:36: 3c:ab:62:8e:ab:74:55:39:f2:d2:f0:bb:78:ed:63: 53:f4:e9:9a:6f:0b:4e:78:15:0a:2d:59:38:08:85: 43:a8:16:08:1c:fa:ef:d4:fc:ec:36:b9:cc:05:ea: 6f:f1:59:69:11:68:10:a6:cf:d2:d5:45:0e:69:3c: b7:3e:74:5e:17:ed:0c:62:0c:c1:ea:cc:0b:5a:82: a2:7d:6b:1d:f7:d0:20:4b:ed:ba:7e:e9:0a:58:69: 34:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:7C:F8:E0:3D:7F:F3:92:05:B6:30:E1:2D:0C:EA:57:E2:42:69:EE X509v3 Authority Key Identifier: keyid:2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:c5:95:25:f2:5d:b0:dc:fe:54:ae:1f:d4:2a:1b:92:3f:7a: 7b:41:de:1e:b8:17:64:c8:80:89:2a:ee:1c:3d:d7:29:91:50: 5e:de:3b:e0:89:41:15:6b:6f:92:aa:18:2b:f5:f6:fe:34:bf: 80:5d:23:8d:b8:99:b9:a7:97:14:c8:18:32:02:e7:98:dd:34: b9:4b:0d:de:fb:14:f6:66:47:1e:e3:a8:71:73:2c:0c:dc:a6: 0c:09:db:d6:b1:22:b0:b3:e1:e6:35:fe:c7:b0:c9:d1:e5:ea: 7a:e9:dc:6e:60:76:8e:e2:13:5f:a5:d3:db:31:61:2b:b7:14: a3:6e:df:a7:a9:9b:b2:35:5d:21:36:fd:7f:f2:1e:c9:53:90: f8:b1:98:de:2a:84:d0:fc:32:98:6f:b4:37:4e:96:fb:fe:fa: 6d:7e:87:32:4b:32:67:6e:b6:fa:62:c7:90:2d:6a:77:33:c5: 26:28:52:f0:17:57:ea:4e:45:43:1a:a1:43:0e:66:9a:4d:d1: 1f:10:98:a4:0a:a7:a1:31:8c:68:1a:35:04:64:5d:10:1c:91: af:fa:88:ea:b4:c5:57:ab:70:54:2d:38:bc:89:14:92:a5:1e: a5:a9:ee:8c:20:85:cc:b6:fc:b6:57:d6:58:83:db:45:cb:e4: 5a:21:55:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk3MkQxMTAvBgNVBAUTKDJBMjY2NUMzMTQxRTRCRjNGRDJGMDA0QUFFMjlBNTk4 NzExM0ExREYwHhcNMjQwNTE5MDMzMDQ3WhcNMjQwNTI2MDMzMDQ3WjAYMRYwFAYD VQQDEw02NjQ5NzI2Ny0wYWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmoipgbYykCNafs652vv1K2YGCNVKp+/EdwQrwU6QI8SloFvjQE/GIPp/FkXF bI+fNz+AcKzg0RUTGTj0hvzrg/aT69Y2llACQPIDX7H0fpcspOsQwhlrAaMxF64W LsBIbZ6ozXKfbXyInBIMTemiCfIToR7MbsKIKmVMUyKnqAN2KnGp/D/+knOEEjuE mBiafvlEnKdIdadbMeWJrepe7eGwEjY8q2KOq3RVOfLS8Lt47WNT9OmabwtOeBUK LVk4CIVDqBYIHPrv1PzsNrnMBepv8VlpEWgQps/S1UUOaTy3PnReF+0MYgzB6swL WoKifWsd99AgS+26fukKWGk0vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIB8+OA9 f/OSBbYw4S0M6lfiQmnuMB8GA1UdIwQYMBaAFComZcMUHkvz/S8ASq4ppZhxE6Hf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTcyRC85OUVFOTUwQ0E2 ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNfUDlMd0JLcmltbG1IRVRv ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tpWmx3eFFlU19QOUx3QktyaW1sbUhFVG9kOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTcyRC85OUVFOTUwQ0E2ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNf UDlMd0JLcmltbG1IRVRvZDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9xZUl8l2w3P5Urh/UKhuSP3p7Qd4euBdkyICJKu4cPdcpkVBe3jvg iUEVa2+Sqhgr9fb+NL+AXSONuJm5p5cUyBgyAueY3TS5Sw3e+xT2Zkce46hxcywM 3KYMCdvWsSKws+HmNf7HsMnR5ep66dxuYHaO4hNfpdPbMWErtxSjbt+nqZuyNV0h Nv1/8h7JU5D4sZjeKoTQ/DKYb7Q3Tpb7/vptfocySzJnbrb6YseQLWp3M8UmKFLw F1fqTkVDGqFDDmaaTdEfEJikCqehMYxoGjUEZF0QHJGv+ojqtMVXq3BULTi8iRSS pR6lqe6MIIXMtvy2V9ZYg9tFy+RaIVWo -----END CERTIFICATE-----Generated at Sun May 19 04:22:03 2024 by rpki-client on console-fra.rpki-client.org