$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft File: kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json) Hash identifier: tGkdOwf8mV/UwK6qjqJrDNdowPKfasWI56zKQbKEpk0= Subject key identifier: F5:A3:14:6D:EA:1A:91:BE:65:3E:6C:17:78:60:AC:3C:8E:4A:96:D5 Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 Certificate issuer: /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Certificate serial: 0326 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft Manifest number: 0323 Signing time: Sun 19 May 2024 03:03:44 +0000 Manifest this update: Sun 19 May 2024 03:03:43 +0000 Manifest next update: Sun 26 May 2024 03:03:43 +0000 Files and hashes: 1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: ACfzTuSWO+YwJlO1L57fJa7Cus+5OEMJ9fMCRhtCoNI=) 2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: pe1MGxSi7iPtvvfwzwELVkMkZPeh6VUSzbUEm+FXObk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 806 (0x326) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Validity Not Before: May 19 03:03:43 2024 GMT Not After : May 26 03:03:43 2024 GMT Subject: CN=66496c0f-3688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:46:b9:b6:be:de:27:a6:e8:39:62:d8:1a:29: 31:bd:fc:cd:fd:c1:09:ce:bc:17:cc:af:1e:f8:f7: 42:a6:fe:2b:34:78:b1:1f:0f:86:37:32:b3:d7:bf: 52:28:ea:71:ec:7b:3d:5c:bd:16:b7:0d:5c:2d:92: 76:e9:d3:f0:84:f7:1d:6c:e6:89:af:c0:bc:71:bf: ff:83:b0:e1:ca:74:30:f7:d9:20:cf:de:6c:fa:65: fd:63:54:69:39:05:63:7d:51:6c:88:73:e1:34:3d: 7e:91:77:7f:5e:ab:89:74:ce:35:f2:2e:d7:2b:0f: cd:bf:67:14:50:9e:22:e7:63:46:ff:21:b9:21:24: 3e:4d:2a:15:ce:cc:a2:ca:27:39:fb:8e:c2:e0:9e: c4:f7:d3:05:40:23:20:cf:b9:01:1c:44:f0:38:51: d1:c0:47:7d:3f:75:d7:82:b2:e0:d2:0a:c6:04:29: 35:01:a4:80:0d:5d:59:02:21:bd:8e:f7:3e:a1:3d: 0b:cb:17:2a:a2:1c:4f:3d:e4:04:bd:46:8b:5f:47: 1f:e1:1d:6a:7b:93:89:5d:47:05:bb:5a:e3:15:2b: a6:84:32:0d:83:ef:0d:a4:48:e9:c5:01:86:18:18: f5:ab:dd:cc:15:4b:ff:37:bf:e4:05:62:b6:d6:d7: 27:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:A3:14:6D:EA:1A:91:BE:65:3E:6C:17:78:60:AC:3C:8E:4A:96:D5 X509v3 Authority Key Identifier: keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:98:ae:05:93:90:9b:75:50:c0:61:14:45:35:8d:ed:14:b1: a8:d2:3c:53:5f:8d:c1:06:d3:b8:2c:1e:61:30:42:f4:0c:28: 6e:80:56:83:61:d7:b7:7b:02:f1:5a:b7:c8:01:a4:0a:6a:a7: bf:57:01:42:ea:98:38:9f:34:7e:f8:63:73:15:6e:a0:d3:2a: a5:2a:92:2b:f3:68:47:64:7f:19:e6:a2:7c:dc:f9:9c:33:cf: 30:49:9f:32:64:97:5c:f6:09:bc:94:85:ff:67:44:96:47:0f: 77:6f:96:0a:41:3d:ce:e5:67:20:a0:e3:47:c0:e8:a9:64:fb: 43:a7:49:2d:be:1d:ea:46:6c:e8:41:ca:3e:af:58:b9:9a:ff: 24:41:bc:e3:07:5d:3d:4e:42:5d:2c:d8:69:25:52:b6:24:bb: 2d:15:09:63:e1:8e:3d:9b:0d:2c:34:54:96:d3:86:20:78:f9: 2d:9e:f6:19:49:56:2b:da:18:a5:26:66:5a:38:e3:4c:d0:31: f6:27:80:bc:09:07:0f:43:66:b9:8f:51:6d:9e:a9:4c:ca:c1: b3:bf:fa:dc:ea:65:4b:3d:3f:2b:1d:1c:42:4a:e0:08:cc:32: a6:8d:d5:f2:24:3e:9f:02:2e:01:76:88:9a:e6:dc:15:c9:99: bf:30:07:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEOTMxMTAvBgNVBAUTKDkwMUY5ODkxRkJGN0YyN0Q0MTZBMUVFMDZCMzFCMDE2 NUFBRTFEQzUwHhcNMjQwNTE5MDMwMzQzWhcNMjQwNTI2MDMwMzQzWjAYMRYwFAYD VQQDEw02NjQ5NmMwZi0zNjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0a5tr7eJ6boOWLYGikxvfzN/cEJzrwXzK8e+PdCpv4rNHixHw+GNzKz179S KOpx7Hs9XL0Wtw1cLZJ26dPwhPcdbOaJr8C8cb//g7DhynQw99kgz95s+mX9Y1Rp OQVjfVFsiHPhND1+kXd/XquJdM418i7XKw/Nv2cUUJ4i52NG/yG5ISQ+TSoVzsyi yic5+47C4J7E99MFQCMgz7kBHETwOFHRwEd9P3XXgrLg0grGBCk1AaSADV1ZAiG9 jvc+oT0LyxcqohxPPeQEvUaLX0cf4R1qe5OJXUcFu1rjFSumhDINg+8NpEjpxQGG GBj1q93MFUv/N7/kBWK21tcnwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPWjFG3q GpG+ZT5sF3hgrDyOSpbVMB8GA1UdIwQYMBaAFJAfmJH79/J9QWoe4GsxsBZarh3F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkQ5My8wRjg3NEE3NDdG M0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2MzhuMUJhaDdnYXpHd0ZscXVI Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCLVlrZnYzOG4xQmFoN2dhekd3RmxxdUhjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkQ5My8wRjg3NEE3NDdGM0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2Mzhu MUJhaDdnYXpHd0ZscXVIY1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBamK4Fk5CbdVDAYRRFNY3tFLGo0jxTX43BBtO4LB5hMEL0DChugFaD Yde3ewLxWrfIAaQKaqe/VwFC6pg4nzR++GNzFW6g0yqlKpIr82hHZH8Z5qJ83Pmc M88wSZ8yZJdc9gm8lIX/Z0SWRw93b5YKQT3O5WcgoONHwOipZPtDp0ktvh3qRmzo Qco+r1i5mv8kQbzjB109TkJdLNhpJVK2JLstFQlj4Y49mw0sNFSW04YgePktnvYZ SVYr2hilJmZaOONM0DH2J4C8CQcPQ2a5j1FtnqlMysGzv/rc6mVLPT8rHRxCSuAI zDKmjdXyJD6fAi4Bdoia5twVyZm/MAc7 -----END CERTIFICATE-----Generated at Sun May 19 03:38:13 2024 by rpki-client on console-ams.rpki-client.org