$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft File: KtPYi16OCwUUGjvJL4XkJzoFYqE.mft (raw, json) Hash identifier: e/LdRSaLX6kRK8KTMgjwHEIKi2oUbAFndQT0QMzV4Zw= Subject key identifier: 83:96:87:5B:2A:7D:A6:D4:B4:EC:01:EC:9B:F7:52:30:E6:80:91:D6 Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 Certificate issuer: /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft Manifest number: 3C Signing time: Sun 19 May 2024 08:13:31 +0000 Manifest this update: Sun 19 May 2024 08:13:30 +0000 Manifest next update: Sun 26 May 2024 08:13:30 +0000 Files and hashes: 1: KtPYi16OCwUUGjvJL4XkJzoFYqE.crl (hash: UT+MOii7zKw6WTQV+DgrP/vvtcwi8BvFsWFE1afaRmc=) 2: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (hash: drim/D+h+Xt+p+pnKr4+ojkoccz6AyP57BUNn870PPc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Validity Not Before: May 19 08:13:30 2024 GMT Not After : May 26 08:13:30 2024 GMT Subject: CN=6649b4aa-da07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d5:c9:94:77:73:b2:11:62:34:c5:2b:7e:2d: bf:33:13:05:f4:8c:72:76:22:14:2c:a5:9b:a3:89: a4:52:47:62:f4:5f:19:07:e6:d5:fc:c8:db:0c:ba: 77:9a:5c:ff:db:5d:68:14:31:3a:1e:88:ab:0c:b5: 48:7b:91:b8:9f:32:cf:46:df:e5:1b:32:8a:60:8d: a8:78:60:71:f1:1d:92:bf:00:0e:12:c6:03:b2:f2: dd:73:e1:25:c8:5a:17:56:cd:74:25:dc:84:5f:62: 01:4c:a2:00:6b:6a:3c:21:78:62:52:51:58:6c:12: 2a:d6:0a:6a:9d:22:c7:af:76:dd:b7:12:b9:f1:c7: 00:77:0c:46:cf:96:10:a8:03:0f:0b:2f:27:3f:33: 4e:52:14:b6:b1:99:be:ee:58:2e:ac:28:79:f7:d3: e0:63:28:01:9a:8c:9f:47:fb:02:d8:7c:b6:37:86: 66:48:d2:20:f4:6b:33:47:07:8c:05:d8:79:51:99: 7e:9f:3b:26:59:94:6b:2e:37:d6:0c:8c:c3:48:7d: e6:3e:8a:e1:e6:a2:f6:1f:bc:a6:73:c3:94:ee:23: 5b:2e:08:31:79:c6:9f:30:90:5d:80:bd:c1:0b:c0: 80:0c:08:b2:f7:db:29:b9:a8:83:92:bb:59:5e:5d: dd:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:96:87:5B:2A:7D:A6:D4:B4:EC:01:EC:9B:F7:52:30:E6:80:91:D6 X509v3 Authority Key Identifier: keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:64:62:92:76:ee:1a:98:c1:d8:c2:d8:72:a3:1b:22:76:2b: 59:a7:26:95:dd:9f:a9:fa:c1:cf:cc:0d:ac:db:0a:aa:ad:91: d3:6c:95:42:c0:e0:a3:f8:f1:b2:6e:6b:19:6b:7f:d1:de:f5: 10:f0:62:d4:74:95:1f:7d:9b:04:2d:05:25:a3:20:13:14:09: e9:a9:5d:9d:53:72:a7:70:37:d7:c5:8e:60:a6:92:57:60:ee: d3:39:f0:49:cb:eb:ae:46:42:ae:4f:41:4e:e0:07:da:ae:81: ea:cd:36:92:bc:b5:42:fd:2c:f1:73:64:77:95:3d:3f:30:bb: 82:13:9b:68:f3:dc:3f:a3:3b:99:33:d3:85:65:9a:12:8d:a0: 47:27:cc:46:7a:ad:a8:d2:e6:1d:a5:66:d0:76:01:01:fe:5a: eb:8a:50:e0:e0:bb:0a:35:cf:65:67:a6:ed:bd:8e:4b:b0:b4: c2:e2:c3:00:81:02:a7:81:91:0b:af:64:70:bc:8c:d5:4d:a6: 42:62:a6:67:22:54:78:f3:16:3f:f0:65:d8:ae:35:bf:39:4b: d2:a2:26:17:80:50:0e:3e:56:80:64:91:df:1e:b5:67:66:94: 85:c5:51:21:0e:cb:f9:51:82:f9:9c:8b:4b:6e:fc:22:84:ab: 78:ca:a1:08 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MkYyNzExMC8GA1UEBRMoMkFEM0Q4OEI1RThFMEIwNTE0MUEzQkM5MkY4NUU0Mjcz QTA1NjJBMTAeFw0yNDA1MTkwODEzMzBaFw0yNDA1MjYwODEzMzBaMBgxFjAUBgNV BAMTDTY2NDliNGFhLWRhMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDR1cmUd3OyEWI0xSt+Lb8zEwX0jHJ2IhQspZujiaRSR2L0XxkH5tX8yNsMunea XP/bXWgUMToeiKsMtUh7kbifMs9G3+UbMopgjah4YHHxHZK/AA4SxgOy8t1z4SXI WhdWzXQl3IRfYgFMogBrajwheGJSUVhsEirWCmqdIsevdt23ErnxxwB3DEbPlhCo Aw8LLyc/M05SFLaxmb7uWC6sKHn30+BjKAGajJ9H+wLYfLY3hmZI0iD0azNHB4wF 2HlRmX6fOyZZlGsuN9YMjMNIfeY+iuHmovYfvKZzw5TuI1suCDF5xp8wkF2AvcEL wIAMCLL32ym5qIOSu1leXd3tAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUg5aHWyp9 ptS07AHsm/dSMOaAkdYwHwYDVR0jBBgwFoAUKtPYi16OCwUUGjvJL4XkJzoFYqEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMyRjI3LzdBQ0RGOUFBQkI2 QzExRUVBNjgwQUU2REM0RjlBRTAyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllx RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS3RQWWkxNk9Dd1VVR2p2Skw0WGtKem9GWXFFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMy RjI3LzdBQ0RGOUFBQkI2QzExRUVBNjgwQUU2REM0RjlBRTAyL0t0UFlpMTZPQ3dV VUdqdkpMNFhrSnpvRllxRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACtkYpJ27hqYwdjC2HKjGyJ2K1mnJpXdn6n6wc/MDazbCqqtkdNslULA 4KP48bJuaxlrf9He9RDwYtR0lR99mwQtBSWjIBMUCempXZ1TcqdwN9fFjmCmkldg 7tM58EnL665GQq5PQU7gB9qugerNNpK8tUL9LPFzZHeVPT8wu4ITm2jz3D+jO5kz 04VlmhKNoEcnzEZ6rajS5h2lZtB2AQH+WuuKUODguwo1z2Vnpu29jkuwtMLiwwCB AqeBkQuvZHC8jNVNpkJipmciVHjzFj/wZdiuNb85S9KiJheAUA4+VoBkkd8etWdm lIXFUSEOy/lRgvmci0tu/CKEq3jKoQg= -----END CERTIFICATE-----Generated at Sun May 19 09:32:15 2024 by rpki-client on console-ams.rpki-client.org