$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: jxC1UxIR0NkVENykUfeczzXKNfKOYJ158NYAe+2saTY= Subject key identifier: 59:97:16:46:F2:F2:F0:43:7D:90:5E:6E:B9:1D:A4:EA:E5:CC:2F:94 Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 0627 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 061F Signing time: Sat 18 May 2024 23:47:07 +0000 Manifest this update: Sat 18 May 2024 23:47:07 +0000 Manifest next update: Sat 25 May 2024 23:47:07 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: YlgyFu0u8tlkX8RftzAIwEJU5d4tnZku4fdr9u7K6M4=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: Iuvg3/7830UsRgOZFEh+qPoBWe8+HToEhKCpSn7OwW4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1575 (0x627) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: May 18 23:47:07 2024 GMT Not After : May 25 23:47:07 2024 GMT Subject: CN=66493dfb-a946 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:5c:6e:b8:4b:ea:fa:df:c7:76:43:bc:be:fc: df:47:a5:b8:28:ae:d9:37:28:95:6a:94:6d:77:ed: 3a:72:04:4e:46:18:d1:27:13:cb:be:b2:a1:54:d9: 64:c9:0d:52:48:8c:fe:a1:b7:58:b2:52:3b:06:8d: d3:21:2e:58:24:46:54:00:ff:1a:47:23:c0:bf:21: c4:4c:ed:5d:ba:19:09:5e:a1:67:9c:81:d7:6d:a5: 3e:8f:5d:5f:0c:4a:ba:1a:6c:3e:1c:7e:99:7b:a0: 91:17:69:0c:d6:6b:42:56:72:dc:52:f6:a5:ba:ce: b1:1b:d0:9c:f6:b3:4c:9a:d5:c9:35:09:3c:fb:52: 5a:91:d9:f1:d2:2e:cf:8c:34:8a:f9:31:65:fb:3f: de:b8:84:0b:57:de:b9:e5:a5:15:57:49:1d:cf:a7: 5a:7d:5d:28:fa:a4:e4:a8:f1:3f:81:cc:2a:f3:31: 98:1a:67:1f:bd:c8:5a:57:c1:fc:fa:ea:e7:fa:fe: 51:ab:45:50:37:3e:1e:5c:44:7e:6c:a3:b1:d8:13: 3a:68:2f:4e:cd:b6:c6:4a:d7:08:b7:bb:f0:35:e7: 92:cc:14:55:f8:6d:d1:db:96:e9:1b:d8:4f:0d:dd: 86:2c:13:aa:55:d8:a5:b7:06:58:81:88:67:90:06: 41:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:97:16:46:F2:F2:F0:43:7D:90:5E:6E:B9:1D:A4:EA:E5:CC:2F:94 X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:54:a2:08:a1:ec:ad:0f:39:d6:92:be:ed:61:5b:24:2c:6d: be:02:72:f4:22:4e:f3:57:24:3b:6f:1d:b8:37:1f:33:b3:ab: 0b:fd:0a:cf:28:6e:f2:cf:7c:ea:92:03:a8:00:c0:89:ed:42: 70:b4:af:0e:79:ca:23:03:44:5c:d6:39:52:34:3c:1c:52:2e: 3a:8a:97:f1:80:5b:a5:d6:39:3c:a6:89:7d:9c:90:76:7c:5d: 3e:2c:ee:0f:df:40:d2:c4:96:fc:f8:1d:c7:ce:f5:9b:ce:2e: eb:c1:56:47:8a:87:03:af:f1:ae:01:ee:f8:86:b2:00:77:35: c6:ac:5b:a3:a1:2d:ac:cd:d7:f5:7d:a9:f6:6f:42:ef:29:a1: 88:20:f5:60:66:90:25:c4:d2:77:a8:ce:e5:f1:95:1c:52:8f: a7:57:8e:1b:53:c5:e7:cb:17:0f:70:cf:d8:f5:f1:7c:32:bd: ea:aa:b9:60:db:5d:d9:e0:ec:7a:38:fc:cc:ad:3d:81:b0:1a: c6:43:64:c3:3a:86:44:3b:30:56:b2:87:fe:c1:db:8d:bd:6a: 5c:a6:bd:9e:4b:bd:39:a8:4c:c2:09:1b:46:e7:7c:60:be:0a: 4f:09:74:52:68:4a:98:be:95:77:41:3d:5e:5b:49:a2:08:b9: 05:69:e1:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjQwNTE4MjM0NzA3WhcNMjQwNTI1MjM0NzA3WjAYMRYwFAYD VQQDEw02NjQ5M2RmYi1hOTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4VxuuEvq+t/HdkO8vvzfR6W4KK7ZNyiVapRtd+06cgRORhjRJxPLvrKhVNlk yQ1SSIz+obdYslI7Bo3TIS5YJEZUAP8aRyPAvyHETO1duhkJXqFnnIHXbaU+j11f DEq6Gmw+HH6Ze6CRF2kM1mtCVnLcUvalus6xG9Cc9rNMmtXJNQk8+1Jakdnx0i7P jDSK+TFl+z/euIQLV9655aUVV0kdz6dafV0o+qTkqPE/gcwq8zGYGmcfvchaV8H8 +urn+v5Rq0VQNz4eXER+bKOx2BM6aC9OzbbGStcIt7vwNeeSzBRV+G3R25bpG9hP Dd2GLBOqVdiltwZYgYhnkAZBIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFmXFkby 8vBDfZBebrkdpOrlzC+UMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPVKIIoeytDznWkr7tYVskLG2+AnL0Ik7zVyQ7bx24Nx8zs6sL/QrP KG7yz3zqkgOoAMCJ7UJwtK8OecojA0Rc1jlSNDwcUi46ipfxgFul1jk8pol9nJB2 fF0+LO4P30DSxJb8+B3HzvWbzi7rwVZHiocDr/GuAe74hrIAdzXGrFujoS2szdf1 fan2b0LvKaGIIPVgZpAlxNJ3qM7l8ZUcUo+nV44bU8XnyxcPcM/Y9fF8Mr3qqrlg 213Z4Ox6OPzMrT2BsBrGQ2TDOoZEOzBWsof+wduNvWpcpr2eS705qEzCCRtG53xg vgpPCXRSaEqYvpV3QT1eW0miCLkFaeFC -----END CERTIFICATE-----Generated at Sun May 19 00:30:13 2024 by rpki-client on console-ams.rpki-client.org