$ rpki-client -vvf rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft File: kSlbu3W_quuVMbObNux1Id3jDWM.mft (raw, json) Hash identifier: 80yqheAzuLAvWv/oDvB6SDsq/4UIFVkJhti52wH2O0w= Subject key identifier: 61:33:A1:6C:C8:9C:D5:03:1B:6F:FC:3F:33:C2:EF:4C:2D:38:90:C1 Authority key identifier: 91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 Certificate issuer: /CN=A911D9B2/serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft Manifest number: 5F Signing time: Sun 19 May 2024 07:49:05 +0000 Manifest this update: Sun 19 May 2024 07:49:05 +0000 Manifest next update: Sun 26 May 2024 07:49:05 +0000 Files and hashes: 1: kSlbu3W_quuVMbObNux1Id3jDWM.crl (hash: x0U015Tee4/ElL0PwgCYil0UTnhm6/rgYkVyJqmAAx4=) 2: 11A28878915611EE83F61C41C4F9AE02.roa (hash: RfTnQKCPkCkXu+cLDzDjeZUnPvrVkAuWPJkazJXC7kc=) 3: 59962840D01911EE96596B16C4F9AE02.roa (hash: fYQUl3M9uMnZ4l0aWX4ltk29AzdRDyZ5gevO1DSEIvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D9B2/serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Validity Not Before: May 19 07:49:05 2024 GMT Not After : May 26 07:49:05 2024 GMT Subject: CN=6649aef1-71aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c8:de:f2:0d:de:a8:10:d3:6a:79:3c:40:3a: 35:e0:7e:67:5d:01:8c:70:0d:e9:1c:73:df:40:2e: 8d:14:f7:47:39:04:ec:a7:47:af:8d:4f:67:64:c2: ac:ec:75:56:e2:cc:31:ca:3b:b0:96:17:30:89:d4: 6b:52:ec:25:65:cf:7c:24:09:b4:c5:4e:b5:5c:dc: ff:de:48:e2:52:08:1e:11:7b:81:ac:6c:bf:94:95: 0d:cc:dd:6f:53:13:5b:c1:67:96:72:bc:8f:04:48: 58:10:e5:2e:dc:91:d1:2f:9c:bc:2f:cc:47:a0:90: de:40:fc:3f:d7:c7:68:6b:16:13:8c:fc:6a:cc:a9: 48:8d:6f:e6:69:1c:1e:cd:19:41:5d:77:11:ec:f5: 8c:34:1e:8f:1b:05:4f:19:94:e5:e5:8a:7a:d6:c3: b9:94:59:b3:71:43:91:5c:b6:f2:44:5b:95:cb:12: c6:0d:7d:3d:cf:7c:eb:2f:45:29:77:2b:c1:4c:0f: df:82:c7:75:b3:af:39:e2:8c:7e:90:9e:7d:51:0d: 92:09:3a:1e:36:80:a5:8d:d6:8f:4f:26:a3:ff:10: f9:f9:f3:d8:76:fe:d1:8a:f7:d8:0b:43:99:5d:3c: 6f:4f:56:85:28:9f:89:27:f8:86:a6:62:46:d7:8e: f6:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:33:A1:6C:C8:9C:D5:03:1B:6F:FC:3F:33:C2:EF:4C:2D:38:90:C1 X509v3 Authority Key Identifier: keyid:91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:05:13:cb:57:9e:c1:10:5c:33:4d:0e:11:7a:ad:69:e6:61: 88:e4:84:97:3f:92:a0:ba:f7:1f:49:7c:5f:4f:59:9d:56:f8: 90:c5:46:07:b2:53:87:5c:1f:25:3a:d4:92:c8:db:14:c7:95: 18:d3:a9:b5:60:d5:2d:2f:d8:23:2b:7b:80:f5:e8:da:2a:ff: 56:55:9b:25:79:f0:ac:3c:03:60:dd:49:f3:7b:1e:1a:50:9b: fd:6c:11:00:9e:0a:a6:ba:5c:0c:56:d3:67:80:b7:ee:dc:c9: 2d:ff:81:d7:6c:f5:08:ef:5c:57:77:d0:d8:90:a3:82:d5:5a: 08:b9:0c:ec:5c:22:f3:17:44:38:6b:49:9e:01:74:c5:fd:6c: 36:a7:42:9d:79:9e:11:fb:9f:bc:c1:b3:07:21:e5:82:69:46: b2:16:af:7a:3d:89:95:63:e8:79:d6:84:f5:66:98:62:bb:3d: 2f:84:09:58:25:85:33:a7:0d:af:b0:b9:02:6d:93:12:f9:99: a3:1f:70:38:a4:4a:2d:4d:7f:dd:a0:41:d6:b4:33:70:8a:7d: 53:79:fc:bc:40:53:0b:34:a6:fb:3e:9f:e8:da:f5:35:62:6a: c7:0d:24:be:af:8f:d6:a4:37:8c:28:52:93:7c:f1:1f:89:94: db:12:d9:71 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RDlCMjExMC8GA1UEBRMoOTEyOTVCQkI3NUJGQUFFQjk1MzFCMzlCMzZFQzc1MjFE REUzMEQ2MzAeFw0yNDA1MTkwNzQ5MDVaFw0yNDA1MjYwNzQ5MDVaMBgxFjAUBgNV BAMTDTY2NDlhZWYxLTcxYWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2yN7yDd6oENNqeTxAOjXgfmddAYxwDekcc99ALo0U90c5BOynR6+NT2dkwqzs dVbizDHKO7CWFzCJ1GtS7CVlz3wkCbTFTrVc3P/eSOJSCB4Re4GsbL+UlQ3M3W9T E1vBZ5ZyvI8ESFgQ5S7ckdEvnLwvzEegkN5A/D/Xx2hrFhOM/GrMqUiNb+ZpHB7N GUFddxHs9Yw0Ho8bBU8ZlOXlinrWw7mUWbNxQ5FctvJEW5XLEsYNfT3PfOsvRSl3 K8FMD9+Cx3WzrznijH6Qnn1RDZIJOh42gKWN1o9PJqP/EPn589h2/tGK99gLQ5ld PG9PVoUon4kn+IamYkbXjvYHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYTOhbMic 1QMbb/w/M8LvTC04kMEwHwYDVR0jBBgwFoAUkSlbu3W/quuVMbObNux1Id3jDWMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFEOUIyLzBBNkYzQjQyOTE1 NTExRUVBNEMwRjY2OEM0RjlBRTAyL2tTbGJ1M1dfcXV1Vk1iT2JOdXgxSWQzakRX TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1NsYnUzV19xdXVWTWJPYk51eDFJZDNqRFdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFE OUIyLzBBNkYzQjQyOTE1NTExRUVBNEMwRjY2OEM0RjlBRTAyL2tTbGJ1M1dfcXV1 Vk1iT2JOdXgxSWQzakRXTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAcFE8tXnsEQXDNNDhF6rWnmYYjkhJc/kqC69x9JfF9PWZ1W+JDFRgey U4dcHyU61JLI2xTHlRjTqbVg1S0v2CMre4D16Noq/1ZVmyV58Kw8A2DdSfN7HhpQ m/1sEQCeCqa6XAxW02eAt+7cyS3/gdds9QjvXFd30NiQo4LVWgi5DOxcIvMXRDhr SZ4BdMX9bDanQp15nhH7n7zBswch5YJpRrIWr3o9iZVj6HnWhPVmmGK7PS+ECVgl hTOnDa+wuQJtkxL5maMfcDikSi1Nf92gQda0M3CKfVN5/LxAUws0pvs+n+ja9TVi ascNJL6vj9akN4woUpN88R+JlNsS2XE= -----END CERTIFICATE-----Generated at Sun May 19 08:26:42 2024 by rpki-client on console-fra.rpki-client.org