$ rpki-client -vvf rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft File: khdBhFmoypIuDWajy6pAZyDLSJA.mft (raw, json) Hash identifier: PsuV23YzY6zy2ugpp7+UgTHFqd01ukVS0aHuxHIAr9I= Subject key identifier: 68:08:9C:66:12:1E:86:41:32:B1:74:17:DE:C8:59:A6:A3:88:97:E9 Authority key identifier: 92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 Certificate issuer: /CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Certificate serial: 02D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft Manifest number: 02D0 Signing time: Sun 19 May 2024 03:27:02 +0000 Manifest this update: Sun 19 May 2024 03:27:01 +0000 Manifest next update: Sun 26 May 2024 03:27:01 +0000 Files and hashes: 1: khdBhFmoypIuDWajy6pAZyDLSJA.crl (hash: UNEjDEhBuqJ+X7bIwXRUt3tkV9LDcVmXuUcwcxkZAMM=) 2: 44FBB466A03911EC9AD2F840C4F9AE02.roa (hash: WXao9tq9qETCFpXi8EL5tTh8uxUSfPglIGLC1Om7Rfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 724 (0x2d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Validity Not Before: May 19 03:27:01 2024 GMT Not After : May 26 03:27:01 2024 GMT Subject: CN=66497185-7afc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4b:d9:74:ad:93:65:d7:fe:9f:a8:b2:d5:74: db:fc:13:b0:e2:5f:3a:28:6e:b4:2e:4b:c9:7b:9f: c6:ae:77:44:c7:0b:eb:8d:8b:be:67:09:09:02:24: 8f:2e:92:81:18:f3:f0:07:d1:69:d3:0e:5c:bd:9b: 24:ba:74:5b:bd:dd:53:a8:c3:8e:e6:e0:20:6c:bd: 85:20:9e:a8:c5:92:a3:70:2f:8e:a4:d5:38:78:a6: 20:fd:9b:6f:d5:b0:6a:94:fd:43:3c:ee:40:ec:a3: c9:1f:e2:52:a1:2f:df:d3:d6:4d:b7:b5:9a:d5:00: 45:54:a0:3a:34:1d:59:e0:71:45:af:95:62:86:2d: 23:22:e4:37:96:5d:e2:91:2f:df:bb:96:ae:e9:80: ba:59:50:50:8f:ea:3d:eb:d9:2b:fb:93:fe:0b:4c: 31:07:5a:75:6d:e3:fd:ae:42:de:70:e5:e4:6f:f0: 49:2a:70:c5:be:f9:5c:2f:b2:14:b2:75:23:dc:53: 6e:09:d4:59:bc:94:98:09:ce:e1:de:ec:7f:59:55: 69:e4:45:09:8d:44:bd:0a:6b:58:a8:3d:dc:ca:70: e1:ab:57:01:d5:a2:1d:a5:51:aa:d6:a9:9c:ac:29: 17:44:bd:8b:77:8c:d2:2e:a7:e4:1a:0d:aa:d2:12: 78:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:08:9C:66:12:1E:86:41:32:B1:74:17:DE:C8:59:A6:A3:88:97:E9 X509v3 Authority Key Identifier: keyid:92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:f7:c2:23:c8:5d:0e:c9:b4:99:3c:5e:15:5d:93:09:b7:70: 40:5a:90:06:db:b6:ff:e3:ab:b2:9f:11:63:bb:fd:72:20:b0: 64:68:28:68:3c:30:37:99:c5:da:f8:8c:c0:36:5d:da:85:39: 70:68:f4:0f:33:32:bc:86:93:ce:f7:9e:fc:2f:1c:62:85:36: 1a:9b:45:83:1e:05:4a:2b:58:3a:2f:fb:33:3f:60:64:cb:30: e3:10:22:a0:cb:4a:7c:5c:21:79:55:ae:18:4c:67:8e:f2:aa: 84:3d:0d:26:94:93:31:bb:66:d8:da:23:66:16:f2:94:f7:65: f1:3f:06:1b:d4:4b:3b:7f:a4:0e:e9:ff:95:ce:42:ad:aa:8f: ed:15:50:2f:36:c3:05:a0:d6:5d:a1:fe:ae:6c:a6:71:a9:3d: 73:38:3e:f0:c7:ba:fa:c2:e9:78:82:ba:77:8b:9d:b7:58:0b: 15:20:4f:4d:44:e7:0c:68:96:c9:62:22:0e:6c:d6:3f:01:27: a2:47:4c:c8:6d:55:77:1a:d4:5c:5f:4f:43:79:f4:86:5d:d5: e7:16:31:d4:39:d2:f4:bd:0b:79:6d:65:6c:fb:0a:f7:9c:0f: 3e:b4:94:60:04:8a:40:41:4c:7a:31:4d:27:ac:72:39:4b:9e: 3d:68:3a:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdCMzkxMTAvBgNVBAUTKDkyMTc0MTg0NTlBOENBOTIyRTBENjZBM0NCQUE0MDY3 MjBDQjQ4OTAwHhcNMjQwNTE5MDMyNzAxWhcNMjQwNTI2MDMyNzAxWjAYMRYwFAYD VQQDEw02NjQ5NzE4NS03YWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0vZdK2TZdf+n6iy1XTb/BOw4l86KG60LkvJe5/GrndExwvrjYu+ZwkJAiSP LpKBGPPwB9Fp0w5cvZskunRbvd1TqMOO5uAgbL2FIJ6oxZKjcC+OpNU4eKYg/Ztv 1bBqlP1DPO5A7KPJH+JSoS/f09ZNt7Wa1QBFVKA6NB1Z4HFFr5Vihi0jIuQ3ll3i kS/fu5au6YC6WVBQj+o969kr+5P+C0wxB1p1beP9rkLecOXkb/BJKnDFvvlcL7IU snUj3FNuCdRZvJSYCc7h3ux/WVVp5EUJjUS9CmtYqD3cynDhq1cB1aIdpVGq1qmc rCkXRL2Ld4zSLqfkGg2q0hJ4IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgInGYS HoZBMrF0F97IWaajiJfpMB8GA1UdIwQYMBaAFJIXQYRZqMqSLg1mo8uqQGcgy0iQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0IzOS9BNzU5OUQ3QUEw MzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lwSXVEV2FqeTZwQVp5RExT SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toZEJoRm1veXBJdURXYWp5NnBBWnlETFNKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0IzOS9BNzU5OUQ3QUEwMzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lw SXVEV2FqeTZwQVp5RExTSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX98IjyF0OybSZPF4VXZMJt3BAWpAG27b/46uynxFju/1yILBkaCho PDA3mcXa+IzANl3ahTlwaPQPMzK8hpPO9578LxxihTYam0WDHgVKK1g6L/szP2Bk yzDjECKgy0p8XCF5Va4YTGeO8qqEPQ0mlJMxu2bY2iNmFvKU92XxPwYb1Es7f6QO 6f+VzkKtqo/tFVAvNsMFoNZdof6ubKZxqT1zOD7wx7r6wul4grp3i523WAsVIE9N ROcMaJbJYiIObNY/ASeiR0zIbVV3GtRcX09DefSGXdXnFjHUOdL0vQt5bWVs+wr3 nA8+tJRgBIpAQUx6MU0nrHI5S549aDov -----END CERTIFICATE-----Generated at Sun May 19 04:20:42 2024 by rpki-client on console-ams.rpki-client.org