$ rpki-client -vvf rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.mft File: kxWcm2Ez9IBvuyjGIl6UOWOmsAE.mft (raw, json) Hash identifier: YKYiNRXMC4RdjdL2BA1t99J3cQLDDnytauS2HMLUm7Y= Subject key identifier: 81:0D:3D:78:2C:C2:F3:F6:3F:31:FC:22:19:9A:F6:2B:EB:6F:E3:5F Authority key identifier: 93:15:9C:9B:61:33:F4:80:6F:BB:28:C6:22:5E:94:39:63:A6:B0:01 Certificate issuer: /CN=A912EDB7/serialNumber=93159C9B6133F4806FBB28C6225E943963A6B001 Certificate serial: 0BAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.mft Manifest number: 0BA2 Signing time: Sat 18 May 2024 19:11:33 +0000 Manifest this update: Sat 18 May 2024 19:11:33 +0000 Manifest next update: Sat 25 May 2024 19:11:33 +0000 Files and hashes: 1: kxWcm2Ez9IBvuyjGIl6UOWOmsAE.crl (hash: yn7ZYDwahYKPSC19NHyWrEfBG0mzsjjCPO8qTzjfEB0=) 2: 18CA7386E35511EDA63D5182C4F9AE02.roa (hash: jUh9HWgqHcHUh3GM/0jd6GB19NzGhJzgRvV+zQaL17o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.crl rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2986 (0xbaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912EDB7/serialNumber=93159C9B6133F4806FBB28C6225E943963A6B001 Validity Not Before: May 18 19:11:33 2024 GMT Not After : May 25 19:11:33 2024 GMT Subject: CN=6648fd65-514d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:21:0e:d2:49:42:30:7b:e2:58:4c:e9:24:6d: 6e:33:2d:22:64:79:c4:53:79:92:97:78:8c:de:0a: 41:44:53:bb:e0:81:7c:fd:88:1c:01:2b:c6:55:f5: ec:eb:ff:6b:f3:d3:1d:8f:ca:fe:a3:0e:11:b5:ce: 09:e8:59:7e:eb:71:88:b4:06:10:b5:f3:f5:fc:f2: 3e:ff:28:3b:bc:13:a9:b8:38:7c:9f:2f:d3:2c:41: be:3a:f9:07:9e:b0:51:eb:76:c0:47:8d:8d:ba:c2: 18:16:14:e7:40:50:ad:47:ed:b5:bb:e8:64:33:dc: 2c:ed:c4:b3:87:2e:ef:f5:ff:63:03:f5:ba:18:c3: da:f8:c0:1e:5a:77:fb:31:8a:4b:7e:15:8a:0f:65: 38:4d:f9:90:e9:55:f0:2d:3b:b9:0e:f8:8f:64:93: 9f:f2:dc:ad:29:5d:40:e6:dc:37:33:e7:87:8b:d2: a1:58:6b:39:6d:7e:bd:df:30:01:4e:1c:71:ac:7b: 8b:ca:9c:5c:e9:e2:03:06:e6:9b:75:c2:9a:ca:65: 3c:88:a6:d3:0c:77:96:18:bf:05:db:02:c9:84:a4: c6:10:67:fe:5c:88:6c:c3:dc:62:10:c9:e6:e6:a2: c7:17:b6:e5:81:20:16:18:65:24:0d:39:93:2b:9e: 3f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:0D:3D:78:2C:C2:F3:F6:3F:31:FC:22:19:9A:F6:2B:EB:6F:E3:5F X509v3 Authority Key Identifier: keyid:93:15:9C:9B:61:33:F4:80:6F:BB:28:C6:22:5E:94:39:63:A6:B0:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:8d:29:ac:82:be:c6:23:47:a4:97:2b:6b:8f:11:47:16:61: d1:34:a6:f0:58:6d:a6:1c:ea:3d:24:d3:6c:ab:39:44:60:61: 8b:4c:d8:ab:12:63:0e:63:4b:1c:4d:88:25:27:f0:4f:69:d4: 2e:a2:03:79:e9:04:13:c1:ee:28:25:4b:da:95:b7:48:c9:b8: ef:2b:ef:08:29:17:5e:34:aa:57:2c:a6:5b:da:6b:d7:54:f6: ca:a4:40:3e:ec:82:6b:2c:dd:c6:7e:11:b1:1e:42:ad:ca:8c: 19:60:e9:8d:f2:02:10:b1:85:a6:e7:02:3d:69:e8:62:cb:a3: be:ba:cb:4e:04:7b:5c:c0:9d:af:11:08:2d:b9:99:6b:19:93: d0:4c:73:6b:52:98:94:52:2b:1f:5c:d8:be:7a:2e:8b:1a:48: 8c:96:fd:fc:45:53:1c:c6:09:46:ed:8a:10:15:a7:29:97:81: 89:07:78:19:34:21:8e:22:49:d1:6c:d3:6c:af:8d:19:b9:9a: 57:af:2a:e3:e6:ae:f1:14:4e:dc:c8:d6:44:a9:6b:c4:e2:54: 55:aa:77:65:89:c8:71:f6:02:06:1d:5b:aa:78:d6:6a:2d:2b: e0:1d:49:84:95:ea:53:56:fe:71:9b:46:3a:f3:34:db:cc:3f: 9f:4b:91:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkVEQjcxMTAvBgNVBAUTKDkzMTU5QzlCNjEzM0Y0ODA2RkJCMjhDNjIyNUU5NDM5 NjNBNkIwMDEwHhcNMjQwNTE4MTkxMTMzWhcNMjQwNTI1MTkxMTMzWjAYMRYwFAYD VQQDEw02NjQ4ZmQ2NS01MTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSEO0klCMHviWEzpJG1uMy0iZHnEU3mSl3iM3gpBRFO74IF8/YgcASvGVfXs 6/9r89Mdj8r+ow4Rtc4J6Fl+63GItAYQtfP1/PI+/yg7vBOpuDh8ny/TLEG+OvkH nrBR63bAR42NusIYFhTnQFCtR+21u+hkM9ws7cSzhy7v9f9jA/W6GMPa+MAeWnf7 MYpLfhWKD2U4TfmQ6VXwLTu5DviPZJOf8tytKV1A5tw3M+eHi9KhWGs5bX693zAB ThxxrHuLypxc6eIDBuabdcKaymU8iKbTDHeWGL8F2wLJhKTGEGf+XIhsw9xiEMnm 5qLHF7blgSAWGGUkDTmTK54/cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIENPXgs wvP2PzH8Ihma9ivrb+NfMB8GA1UdIwQYMBaAFJMVnJthM/SAb7soxiJelDljprAB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRURCNy80NjE2MkFEQUZF RDIxMUU5ODdGRkMyMTdDNEY5QUUwMi9reFdjbTJFejlJQnZ1eWpHSWw2VU9XT21z QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t4V2NtMkV6OUlCdnV5akdJbDZVT1dPbXNBRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RURCNy80NjE2MkFEQUZFRDIxMUU5ODdGRkMyMTdDNEY5QUUwMi9reFdjbTJFejlJ QnZ1eWpHSWw2VU9XT21zQUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdjSmsgr7GI0eklytrjxFHFmHRNKbwWG2mHOo9JNNsqzlEYGGLTNir EmMOY0scTYglJ/BPadQuogN56QQTwe4oJUvalbdIybjvK+8IKRdeNKpXLKZb2mvX VPbKpEA+7IJrLN3GfhGxHkKtyowZYOmN8gIQsYWm5wI9aehiy6O+ustOBHtcwJ2v EQgtuZlrGZPQTHNrUpiUUisfXNi+ei6LGkiMlv38RVMcxglG7YoQFacpl4GJB3gZ NCGOIknRbNNsr40ZuZpXryrj5q7xFE7cyNZEqWvE4lRVqndlichx9gIGHVuqeNZq LSvgHUmElepTVv5xm0Y68zTbzD+fS5Gq -----END CERTIFICATE-----Generated at Sat May 18 20:15:59 2024 by rpki-client on console-ams.rpki-client.org