$ rpki-client -vvf rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.mft File: kv7-iugp8KWlAbV1Bvrk5cEaHZc.mft (raw, json) Hash identifier: Ukx0dKjgyidX1YftOhbmDJiaqBu3n0Yz9HbdfbMuusM= Subject key identifier: 3B:6D:D1:28:49:2D:F2:37:11:A5:20:E8:EF:57:6B:E8:CE:F4:A9:63 Authority key identifier: 92:FE:FE:8A:E8:29:F0:A5:A5:01:B5:75:06:FA:E4:E5:C1:1A:1D:97 Certificate issuer: /CN=A91403E9/serialNumber=92FEFE8AE829F0A5A501B57506FAE4E5C11A1D97 Certificate serial: FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kv7-iugp8KWlAbV1Bvrk5cEaHZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.mft Manifest number: F5 Signing time: Sun 19 May 2024 05:48:10 +0000 Manifest this update: Sun 19 May 2024 05:48:09 +0000 Manifest next update: Sun 26 May 2024 05:48:09 +0000 Files and hashes: 1: kv7-iugp8KWlAbV1Bvrk5cEaHZc.crl (hash: 0u2EXK9gvfCKPHYRocdTTF2fhLRxdEITMBoI2ApTbsg=) 2: 028335CAC3BC11EEB6DE185EC4F9AE02.roa (hash: YYtXyk1EEHIZzzJgz3IlAy5yL7gltpGPXetLmQmw2Q8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.crl rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kv7-iugp8KWlAbV1Bvrk5cEaHZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91403E9/serialNumber=92FEFE8AE829F0A5A501B57506FAE4E5C11A1D97 Validity Not Before: May 19 05:48:09 2024 GMT Not After : May 26 05:48:09 2024 GMT Subject: CN=66499299-fc4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0a:8c:d3:c9:bb:97:e3:ed:1b:44:e9:54:f4: c6:d9:7f:e2:79:57:5f:a1:e1:a1:b4:f8:54:9e:08: f0:fc:69:e0:0f:ca:98:fc:e1:47:05:97:cd:64:c7: a6:d8:f4:bf:fc:ed:91:0e:4c:3c:dd:f3:0b:63:f1: 51:fe:d1:44:c6:98:5e:f4:d6:91:c0:bc:ed:0d:a0: bf:1c:95:2f:6d:f5:ea:33:58:6f:a6:19:1d:41:7d: 0e:59:eb:ea:83:9f:cf:46:17:06:05:f8:72:c9:85: 69:3c:4f:d0:8f:a2:90:15:00:ba:c9:a7:1a:a9:5f: 96:7a:d4:4c:50:99:60:5f:b9:ff:16:54:fb:57:13: 97:31:31:92:74:f8:67:28:da:cb:96:74:09:21:88: 41:9a:b5:2d:29:4c:50:37:96:aa:c2:9a:77:4e:98: f2:a0:77:0a:62:c7:c7:80:89:76:b0:08:ad:70:6b: 08:9b:b8:a8:78:ad:d1:14:de:9e:ec:49:e4:69:b1: 58:4a:5b:d1:88:a4:67:b0:0f:b7:2e:a5:59:2d:37: 66:30:ab:9f:56:a4:af:8b:bd:56:72:ec:61:7a:e9: e6:16:a0:c7:4d:ac:6d:69:9a:60:27:96:a2:cd:04: 3d:30:dd:91:e4:9f:11:05:33:5e:3f:2e:73:ec:60: 3c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:6D:D1:28:49:2D:F2:37:11:A5:20:E8:EF:57:6B:E8:CE:F4:A9:63 X509v3 Authority Key Identifier: keyid:92:FE:FE:8A:E8:29:F0:A5:A5:01:B5:75:06:FA:E4:E5:C1:1A:1D:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kv7-iugp8KWlAbV1Bvrk5cEaHZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:53:fc:00:a5:72:0a:20:fa:26:86:0f:c0:9c:53:5d:66:e6: f9:5b:7e:80:db:9f:7d:e7:ce:f3:dc:71:09:51:bb:28:c2:5a: c4:0a:e5:d0:b4:e5:76:37:de:3d:3e:ba:99:12:a0:ff:7f:11: 17:b5:7a:de:1d:28:72:95:ea:9f:0a:f5:9e:5f:9b:40:c7:8e: 57:57:b0:41:b7:ed:af:04:bb:91:0c:92:f4:b7:f6:2b:89:4e: 36:28:7c:f6:8b:42:96:ab:74:ce:cc:3a:7d:45:d2:12:7e:7f: 3a:43:a1:f5:8d:40:f2:c5:7d:f1:d1:3b:1d:65:a7:28:71:f9: 21:d3:2b:e1:19:75:6b:7f:0d:79:2d:8d:0b:72:8f:bf:a2:c3: 6e:02:24:26:6c:52:8e:34:8d:b8:c1:f0:da:54:a5:4f:dc:25: ef:77:8a:06:3d:1f:41:e2:e5:f7:dc:97:49:29:f2:ad:e1:36: 2f:17:b9:c8:d8:9a:a1:8e:a4:80:62:2a:b2:61:5c:35:21:eb: b1:25:37:c3:52:96:f5:bc:e1:d3:bb:f9:df:f8:e6:af:ed:96: c8:4f:68:28:f8:cc:c6:4c:5b:aa:84:1c:e1:e0:11:75:8c:c5: 83:cc:44:a7:6c:1a:ca:a8:be:37:fb:05:96:e6:d6:40:0b:d1: 5c:60:53:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAzRTkxMTAvBgNVBAUTKDkyRkVGRThBRTgyOUYwQTVBNTAxQjU3NTA2RkFFNEU1 QzExQTFEOTcwHhcNMjQwNTE5MDU0ODA5WhcNMjQwNTI2MDU0ODA5WjAYMRYwFAYD VQQDEw02NjQ5OTI5OS1mYzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswqM08m7l+PtG0TpVPTG2X/ieVdfoeGhtPhUngjw/GngD8qY/OFHBZfNZMem 2PS//O2RDkw83fMLY/FR/tFExphe9NaRwLztDaC/HJUvbfXqM1hvphkdQX0OWevq g5/PRhcGBfhyyYVpPE/Qj6KQFQC6yacaqV+WetRMUJlgX7n/FlT7VxOXMTGSdPhn KNrLlnQJIYhBmrUtKUxQN5aqwpp3TpjyoHcKYsfHgIl2sAitcGsIm7ioeK3RFN6e 7EnkabFYSlvRiKRnsA+3LqVZLTdmMKufVqSvi71WcuxheunmFqDHTaxtaZpgJ5ai zQQ9MN2R5J8RBTNePy5z7GA8FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtt0ShJ LfI3EaUg6O9Xa+jO9KljMB8GA1UdIwQYMBaAFJL+/oroKfClpQG1dQb65OXBGh2X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDNFOS8xNzYxMzIzNEFD M0ExMUVEOTc0MEI2NTVDNEY5QUUwMi9rdjctaXVncDhLV2xBYlYxQnZyazVjRWFI WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t2Ny1pdWdwOEtXbEFiVjFCdnJrNWNFYUhaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDNFOS8xNzYxMzIzNEFDM0ExMUVEOTc0MEI2NTVDNEY5QUUwMi9rdjctaXVncDhL V2xBYlYxQnZyazVjRWFIWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzU/wApXIKIPomhg/AnFNdZub5W36A2599587z3HEJUbsowlrECuXQ tOV2N949PrqZEqD/fxEXtXreHShyleqfCvWeX5tAx45XV7BBt+2vBLuRDJL0t/Yr iU42KHz2i0KWq3TOzDp9RdISfn86Q6H1jUDyxX3x0TsdZacocfkh0yvhGXVrfw15 LY0Lco+/osNuAiQmbFKONI24wfDaVKVP3CXvd4oGPR9B4uX33JdJKfKt4TYvF7nI 2JqhjqSAYiqyYVw1IeuxJTfDUpb1vOHTu/nf+Oav7ZbIT2go+MzGTFuqhBzh4BF1 jMWDzESnbBrKqL43+wWW5tZAC9FcYFOo -----END CERTIFICATE-----Generated at Sun May 19 07:40:38 2024 by rpki-client on console-fra.rpki-client.org