$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft File: K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft (raw, json) Hash identifier: w908LzSufVJKjWHlF9gZtv+vugaRyfGwBpNkdGCR80s= Subject key identifier: 25:9F:30:AF:A0:4E:C3:3D:3C:F8:C5:EA:8D:A3:8D:AD:2C:6E:A7:E6 Authority key identifier: 2B:94:EB:A4:78:E9:D1:12:B1:E5:0A:0D:E3:30:D2:AD:85:8E:1C:D0 Certificate issuer: /CN=A9140E40/serialNumber=2B94EBA478E9D112B1E50A0DE330D2AD858E1CD0 Certificate serial: 20D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft Manifest number: 20D7 Signing time: Sat 18 May 2024 16:15:13 +0000 Manifest this update: Sat 18 May 2024 16:15:12 +0000 Manifest next update: Sat 25 May 2024 16:15:12 +0000 Files and hashes: 1: K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl (hash: vOprrCMhgovipz6fUp5b6hkM+nAK1OQK/NZcLhdCsx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8407 (0x20d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E40/serialNumber=2B94EBA478E9D112B1E50A0DE330D2AD858E1CD0 Validity Not Before: May 18 16:15:12 2024 GMT Not After : May 25 16:15:12 2024 GMT Subject: CN=6648d410-582d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4d:9b:68:82:02:03:09:e7:42:d4:09:f0:65: 99:a4:9a:41:28:43:87:10:5f:3a:f5:9f:42:dc:96: 7b:36:e0:f6:33:25:06:98:40:ad:79:fa:d0:a7:ce: e0:10:97:e8:a8:3a:db:6f:8c:2b:5d:18:98:4d:6f: 8b:76:74:ac:38:d0:33:16:8b:e9:53:27:4b:8c:85: 89:84:11:2f:bc:ed:82:78:bc:68:01:f1:9d:a2:11: 4e:28:4f:14:08:bf:c7:ed:68:e3:06:ce:ca:6d:c4: 81:a1:50:29:5c:83:15:b5:ed:86:12:d4:3b:1c:a6: e5:87:9f:c3:99:f2:d1:d4:cd:04:37:a5:1f:e8:95: e0:56:97:a4:3f:a3:8b:33:88:38:73:9c:72:49:b2: 97:5f:18:70:f9:12:e5:78:8c:d0:5b:ab:07:e6:d3: ec:d3:b9:9f:12:f8:c0:ff:be:bd:55:48:18:07:7a: 76:74:6a:ec:98:df:83:64:c5:b2:fa:51:1f:44:cf: 64:3a:7c:4a:07:5a:cc:4c:be:08:dc:9e:b4:b0:cc: c4:97:7c:04:6c:cb:e7:e1:33:d3:b6:fa:17:a5:22: 8c:cc:26:92:53:ed:bc:ca:13:ba:19:61:bf:9d:ec: 23:c7:20:53:03:e0:81:67:6b:37:76:76:65:48:dc: 7a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:9F:30:AF:A0:4E:C3:3D:3C:F8:C5:EA:8D:A3:8D:AD:2C:6E:A7:E6 X509v3 Authority Key Identifier: keyid:2B:94:EB:A4:78:E9:D1:12:B1:E5:0A:0D:E3:30:D2:AD:85:8E:1C:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:9d:fd:5f:2f:27:1b:8f:ed:20:17:37:17:10:38:f0:b2:e7: 34:87:ba:88:ea:de:86:5f:fe:04:db:61:8c:6e:42:3b:98:c6: ee:cc:9a:6c:08:0e:41:37:6c:c8:f6:76:9a:66:0a:aa:89:cd: 03:d3:08:cf:4c:32:40:a2:ed:8a:0a:2d:75:65:a9:05:08:8e: 10:f8:50:97:e0:1e:b6:03:6e:25:87:0f:26:01:96:32:63:58: 93:95:6f:d1:ce:39:56:13:53:1a:6d:46:08:57:60:a8:98:a6: cd:09:e9:b1:72:21:15:27:cf:1a:e6:eb:09:d0:01:e6:fc:a6: 98:c6:c3:27:d5:c0:23:f8:25:b8:82:40:4b:76:5f:e8:b3:c6: b9:d0:20:df:27:7a:9d:62:e9:5c:c6:19:d2:19:30:f3:f9:85: fc:24:46:8c:04:be:f5:8e:87:38:81:fa:06:6d:92:4d:b8:db: e2:79:55:5b:4d:42:ac:7c:ac:08:43:55:c0:6c:d9:ec:c2:2d: f7:c4:52:9c:47:fc:83:60:21:c2:fc:f3:03:5c:15:62:39:17: 73:22:75:a3:ad:3e:92:e4:4a:f3:49:2f:c3:0b:c0:da:c8:12: f5:c5:e2:8c:06:e8:cb:09:b1:77:24:d4:5e:95:bf:3c:87:4a: 14:db:b3:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICINcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNDAxMTAvBgNVBAUTKDJCOTRFQkE0NzhFOUQxMTJCMUU1MEEwREUzMzBEMkFE ODU4RTFDRDAwHhcNMjQwNTE4MTYxNTEyWhcNMjQwNTI1MTYxNTEyWjAYMRYwFAYD VQQDEw02NjQ4ZDQxMC01ODJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxU2baIICAwnnQtQJ8GWZpJpBKEOHEF869Z9C3JZ7NuD2MyUGmECtefrQp87g EJfoqDrbb4wrXRiYTW+LdnSsONAzFovpUydLjIWJhBEvvO2CeLxoAfGdohFOKE8U CL/H7WjjBs7KbcSBoVApXIMVte2GEtQ7HKblh5/DmfLR1M0EN6Uf6JXgVpekP6OL M4g4c5xySbKXXxhw+RLleIzQW6sH5tPs07mfEvjA/769VUgYB3p2dGrsmN+DZMWy +lEfRM9kOnxKB1rMTL4I3J60sMzEl3wEbMvn4TPTtvoXpSKMzCaSU+28yhO6GWG/ newjxyBTA+CBZ2s3dnZlSNx6TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCWfMK+g TsM9PPjF6o2jja0sbqfmMB8GA1UdIwQYMBaAFCuU66R46dESseUKDeMw0q2FjhzQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU0MC9FMzYxMUJENkQz OEIxMUU1ODM5MkY1NERDNEY5QUUwMi9LNVRycEhqcDBSS3g1UW9ONHpEU3JZV09I TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1VHJwSGpwMFJLeDVRb040ekRTcllXT0hOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU0MC9FMzYxMUJENkQzOEIxMUU1ODM5MkY1NERDNEY5QUUwMi9LNVRycEhqcDBS S3g1UW9ONHpEU3JZV09ITkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOnf1fLycbj+0gFzcXEDjwsuc0h7qI6t6GX/4E22GMbkI7mMbuzJps CA5BN2zI9naaZgqqic0D0wjPTDJAou2KCi11ZakFCI4Q+FCX4B62A24lhw8mAZYy Y1iTlW/RzjlWE1MabUYIV2ComKbNCemxciEVJ88a5usJ0AHm/KaYxsMn1cAj+CW4 gkBLdl/os8a50CDfJ3qdYulcxhnSGTDz+YX8JEaMBL71joc4gfoGbZJNuNvieVVb TUKsfKwIQ1XAbNnswi33xFKcR/yDYCHC/PMDXBViORdzInWjrT6S5ErzSS/DC8Da yBL1xeKMBujLCbF3JNRelb88h0oU27Nw -----END CERTIFICATE-----Generated at Sat May 18 16:57:53 2024 by rpki-client on console-fra.rpki-client.org