$ rpki-client -vvf rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.mft File: Kt1a2PtDrdgNUrtYNpPDG42asuw.mft (raw, json) Hash identifier: XYALfQavjddhxGS0A0TCrqfO+uiVvBLHcAUZ9QGEE9Y= Subject key identifier: 76:CC:1C:EF:81:C9:A3:A1:5F:D2:3B:8B:72:00:6F:5B:09:61:51:74 Authority key identifier: 2A:DD:5A:D8:FB:43:AD:D8:0D:52:BB:58:36:93:C3:1B:8D:9A:B2:EC Certificate issuer: /CN=A913149F/serialNumber=2ADD5AD8FB43ADD80D52BB583693C31B8D9AB2EC Certificate serial: 0B69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kt1a2PtDrdgNUrtYNpPDG42asuw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.mft Manifest number: 0B66 Signing time: Sat 18 May 2024 19:30:38 +0000 Manifest this update: Sat 18 May 2024 19:30:37 +0000 Manifest next update: Sat 25 May 2024 19:30:37 +0000 Files and hashes: 1: Kt1a2PtDrdgNUrtYNpPDG42asuw.crl (hash: 2EGYMrqeI3H+HepD6GnAmxCAILaUWnniFIl68U5Nlws=) 2: 78550A2608FE11EAA003E778C4F9AE02.roa (hash: oFYr2yy9dMefE9Z1wzHmLqOiXmS6OATdYeTX4qCFAV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.crl rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kt1a2PtDrdgNUrtYNpPDG42asuw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2921 (0xb69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913149F/serialNumber=2ADD5AD8FB43ADD80D52BB583693C31B8D9AB2EC Validity Not Before: May 18 19:30:37 2024 GMT Not After : May 25 19:30:37 2024 GMT Subject: CN=664901dd-b918 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3f:d0:3c:40:f7:5f:c6:06:75:01:57:10:39: 2d:46:55:d4:c1:3a:91:7b:b2:57:c7:d9:c8:4e:be: 72:1f:c3:71:db:fe:96:e5:bb:e8:fb:82:fe:19:89: dd:78:1d:20:c2:4a:c5:8b:9d:dd:7a:ee:74:08:96: cc:1f:69:16:d9:cd:75:ea:f2:11:15:0d:26:64:95: 3c:cc:78:e8:71:63:26:e0:93:7c:3d:48:43:6e:7f: 83:a4:a3:4b:3a:57:f1:21:b6:e5:b9:10:bc:43:80: 9d:ad:5a:29:73:a7:f8:0d:ee:79:ce:79:da:f7:33: 0b:20:03:40:36:96:7f:9e:52:0c:20:6b:4c:58:91: 54:1d:5c:7a:4b:33:98:49:3b:0e:b4:b4:2a:47:2d: 42:16:84:4d:d8:e8:1f:68:b6:42:9f:70:9a:bc:d3: db:02:2a:20:9d:80:12:c3:a4:ad:cd:fc:55:cb:f2: 6f:3a:33:37:ea:30:13:1f:8a:36:0f:32:59:81:5c: 59:0d:d2:84:e1:c5:60:f3:4c:5a:e5:2d:eb:e3:80: 2a:f7:d9:07:e6:99:ac:a5:cd:2c:0c:47:89:5d:d6: 89:78:b6:23:4c:b6:f4:4f:af:06:c7:27:41:b8:53: 5c:03:d1:77:d5:05:fd:c9:4e:e6:87:e5:37:a1:2a: fd:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:CC:1C:EF:81:C9:A3:A1:5F:D2:3B:8B:72:00:6F:5B:09:61:51:74 X509v3 Authority Key Identifier: keyid:2A:DD:5A:D8:FB:43:AD:D8:0D:52:BB:58:36:93:C3:1B:8D:9A:B2:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kt1a2PtDrdgNUrtYNpPDG42asuw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:05:8d:27:ac:d8:ed:da:fd:f3:70:33:7b:f7:da:ca:df:63: 59:00:20:37:28:f1:56:39:61:d6:4e:0a:28:2d:37:21:28:ab: 0f:5b:b0:8f:c7:af:fa:ba:9f:8e:29:95:7b:f4:35:c7:8b:82: 91:37:c5:31:86:90:df:1a:1b:2d:f0:ab:e2:fb:6c:51:6b:8c: 1b:77:25:c6:cc:6f:f7:38:e9:4d:fe:e7:c6:13:df:98:38:b9: 54:8b:6b:ad:f3:fd:28:51:bd:32:b3:18:63:e8:42:b8:1c:53: 80:a4:32:22:d0:1e:b2:4b:46:f5:0d:cd:3a:f0:01:e9:6a:fb: 14:49:9f:5a:3b:72:bb:ec:b6:f8:85:c9:04:10:4a:71:05:92: 9d:05:c7:e6:4e:76:47:d8:32:97:3a:e0:1a:d1:22:7b:23:7f: c3:52:aa:49:c0:7f:6f:82:85:40:cc:f1:18:5b:96:ad:6d:38: 3e:7b:eb:a3:96:7b:24:f5:53:ea:47:f4:79:bd:82:e9:5d:5f: e6:65:ce:2c:52:16:77:e5:89:e0:95:c3:4f:b2:cc:b1:06:e3: c2:10:75:50:12:5a:03:76:4d:43:f8:d1:69:19:78:02:c1:d4: e2:0b:bc:72:dc:2a:e9:9f:dc:3c:33:d0:2c:c7:b9:ca:ac:12: cb:66:5f:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE0OUYxMTAvBgNVBAUTKDJBREQ1QUQ4RkI0M0FERDgwRDUyQkI1ODM2OTNDMzFC OEQ5QUIyRUMwHhcNMjQwNTE4MTkzMDM3WhcNMjQwNTI1MTkzMDM3WjAYMRYwFAYD VQQDEw02NjQ5MDFkZC1iOTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvz/QPED3X8YGdQFXEDktRlXUwTqRe7JXx9nITr5yH8Nx2/6W5bvo+4L+GYnd eB0gwkrFi53deu50CJbMH2kW2c116vIRFQ0mZJU8zHjocWMm4JN8PUhDbn+DpKNL OlfxIbbluRC8Q4CdrVopc6f4De55znna9zMLIANANpZ/nlIMIGtMWJFUHVx6SzOY STsOtLQqRy1CFoRN2OgfaLZCn3CavNPbAiognYASw6StzfxVy/JvOjM36jATH4o2 DzJZgVxZDdKE4cVg80xa5S3r44Aq99kH5pmspc0sDEeJXdaJeLYjTLb0T68GxydB uFNcA9F31QX9yU7mh+U3oSr9RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbMHO+B yaOhX9I7i3IAb1sJYVF0MB8GA1UdIwQYMBaAFCrdWtj7Q63YDVK7WDaTwxuNmrLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTQ5Ri9ERjAxNTgwODA4 RkMxMUVBQTg5MUE1NzVDNEY5QUUwMi9LdDFhMlB0RHJkZ05VcnRZTnBQREc0MmFz dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0MWEyUHREcmRnTlVydFlOcFBERzQyYXN1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTQ5Ri9ERjAxNTgwODA4RkMxMUVBQTg5MUE1NzVDNEY5QUUwMi9LdDFhMlB0RHJk Z05VcnRZTnBQREc0MmFzdXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxBY0nrNjt2v3zcDN799rK32NZACA3KPFWOWHWTgooLTchKKsPW7CP x6/6up+OKZV79DXHi4KRN8UxhpDfGhst8Kvi+2xRa4wbdyXGzG/3OOlN/ufGE9+Y OLlUi2ut8/0oUb0ysxhj6EK4HFOApDIi0B6yS0b1Dc068AHpavsUSZ9aO3K77Lb4 hckEEEpxBZKdBcfmTnZH2DKXOuAa0SJ7I3/DUqpJwH9vgoVAzPEYW5atbTg+e+uj lnsk9VPqR/R5vYLpXV/mZc4sUhZ35YnglcNPssyxBuPCEHVQEloDdk1D+NFpGXgC wdTiC7xy3Crpn9w8M9Asx7nKrBLLZl9r -----END CERTIFICATE-----Generated at Sat May 18 20:15:59 2024 by rpki-client on console-ams.rpki-client.org