$ rpki-client -vvf rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft File: kDo4Q2eaCxBdykhcPWSPPREnL7c.mft (raw, json) Hash identifier: iCFiMjp84SqqPGpJ1xk8gKohvPiZmNuRFFdNTUYfHJA= Subject key identifier: FB:73:B9:C8:DF:C5:E4:6A:95:7F:F6:A1:2D:2F:F6:A7:5E:89:8E:43 Authority key identifier: 90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 Certificate issuer: /CN=A914E488/serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Certificate serial: 0182 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft Manifest number: 017F Signing time: Sun 19 May 2024 04:44:42 +0000 Manifest this update: Sun 19 May 2024 04:44:41 +0000 Manifest next update: Sun 26 May 2024 04:44:41 +0000 Files and hashes: 1: kDo4Q2eaCxBdykhcPWSPPREnL7c.crl (hash: ZBiqKbXPCVHrIm7XAHYTVorGT2PS6MvwvwhhxfNinGk=) 2: 606EB6AE240911EDBFA59C27C4F9AE02.roa (hash: 0UV0yRwSr/VzYmy257JD3ubhqkS2cDn4vJ8Zt4cfw48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 386 (0x182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E488/serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Validity Not Before: May 19 04:44:41 2024 GMT Not After : May 26 04:44:41 2024 GMT Subject: CN=664983b9-0cb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a0:72:37:25:e9:c9:92:d9:17:aa:75:6f:5c: d0:5f:5c:99:62:15:34:2f:0e:00:60:6c:42:22:82: a4:d2:7e:97:08:45:5d:b1:df:b9:12:bf:b9:15:9a: ac:df:fb:3a:d7:71:79:cc:fd:61:16:c3:da:43:e2: f6:bc:9f:d2:a5:13:60:35:5a:e7:8b:f7:cd:e5:e5: 8b:7d:85:99:b4:25:f9:82:13:1b:03:4d:6a:af:91: c9:8f:64:28:2a:fe:44:c9:48:e2:6c:4e:f7:4a:17: 49:82:e1:0c:b1:b8:26:45:45:d0:e5:be:1f:e6:a8: d8:db:39:62:b8:ec:d2:fc:2b:57:f0:31:b9:c8:7a: c2:2e:de:b2:b2:8d:f5:47:a3:03:1e:cb:f3:b3:0b: 0c:15:1a:fa:22:5f:d1:5d:57:14:8f:27:52:b6:58: e6:99:71:9d:8f:f6:f6:39:fc:9a:6a:de:a8:fd:ba: b9:84:1b:89:fa:a1:26:e8:ed:65:57:2c:48:34:e0: 4b:5d:f0:24:50:c2:0d:fc:1f:4c:eb:ee:8a:08:b1: b1:97:0c:99:92:63:82:ac:de:ba:a9:86:63:04:df: f4:a6:a9:1a:55:43:8c:80:33:eb:37:c5:19:6b:d3: 96:3c:ce:7e:25:6d:6e:94:4e:c0:f9:f9:9d:6e:3a: 2c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:73:B9:C8:DF:C5:E4:6A:95:7F:F6:A1:2D:2F:F6:A7:5E:89:8E:43 X509v3 Authority Key Identifier: keyid:90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:0e:cc:ef:1e:87:db:95:95:0a:4c:dd:9c:a0:63:f9:ff:64: a1:28:29:7c:8a:f3:06:9d:0b:a2:bb:d0:c5:94:97:b8:2e:52: c1:57:36:e8:ba:cd:1d:2e:f1:20:44:2b:d8:df:78:91:30:73: 95:7e:b3:42:ed:f3:65:17:4f:4c:88:a9:2e:8f:da:82:be:ab: 12:cb:6f:c5:1d:8b:bb:0f:87:62:06:ee:fa:a1:28:ca:ba:03: a0:9c:38:66:a4:ef:86:db:84:7c:01:33:74:9c:a9:b4:83:2d: 51:7e:9c:4d:89:23:ce:c7:35:41:cc:7d:31:3d:5d:a3:d3:78: 21:29:90:a0:2d:db:61:d5:43:bd:1c:03:fa:34:37:26:56:67: d8:67:f4:75:1d:ff:28:da:96:32:69:f4:8f:70:7c:79:56:fa: ef:3e:cb:eb:d9:6d:14:e1:72:c7:28:5e:04:30:49:29:3a:2a: 85:0c:d8:65:6c:fa:9b:7a:58:97:d5:e0:0e:e2:3d:90:32:3c: 6d:69:9c:aa:a3:ad:b6:fd:6f:27:71:2c:44:99:e8:bb:0a:5e: 8c:8f:f1:e4:11:da:05:7d:78:1d:e4:23:2b:47:5f:76:8c:2d: dd:69:ce:83:80:71:70:14:35:62:26:3f:74:c2:4a:01:a2:80: c8:d2:d3:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU0ODgxMTAvBgNVBAUTKDkwM0EzODQzNjc5QTBCMTA1RENBNDg1QzNENjQ4RjNE MTEyNzJGQjcwHhcNMjQwNTE5MDQ0NDQxWhcNMjQwNTI2MDQ0NDQxWjAYMRYwFAYD VQQDEw02NjQ5ODNiOS0wY2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtaByNyXpyZLZF6p1b1zQX1yZYhU0Lw4AYGxCIoKk0n6XCEVdsd+5Er+5FZqs 3/s613F5zP1hFsPaQ+L2vJ/SpRNgNVrni/fN5eWLfYWZtCX5ghMbA01qr5HJj2Qo Kv5EyUjibE73ShdJguEMsbgmRUXQ5b4f5qjY2zliuOzS/CtX8DG5yHrCLt6yso31 R6MDHsvzswsMFRr6Il/RXVcUjydStljmmXGdj/b2Ofyaat6o/bq5hBuJ+qEm6O1l VyxINOBLXfAkUMIN/B9M6+6KCLGxlwyZkmOCrN66qYZjBN/0pqkaVUOMgDPrN8UZ a9OWPM5+JW1ulE7A+fmdbjosxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPtzucjf xeRqlX/2oS0v9qdeiY5DMB8GA1UdIwQYMBaAFJA6OENnmgsQXcpIXD1kjz0RJy+3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTQ4OC9GODg2OThDQTI0 MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4QmR5a2hjUFdTUFBSRW5M N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEbzRRMmVhQ3hCZHlraGNQV1NQUFJFbkw3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTQ4OC9GODg2OThDQTI0MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4 QmR5a2hjUFdTUFBSRW5MN2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzDszvHofblZUKTN2coGP5/2ShKCl8ivMGnQuiu9DFlJe4LlLBVzbo us0dLvEgRCvY33iRMHOVfrNC7fNlF09MiKkuj9qCvqsSy2/FHYu7D4diBu76oSjK ugOgnDhmpO+G24R8ATN0nKm0gy1RfpxNiSPOxzVBzH0xPV2j03ghKZCgLdth1UO9 HAP6NDcmVmfYZ/R1Hf8o2pYyafSPcHx5VvrvPsvr2W0U4XLHKF4EMEkpOiqFDNhl bPqbeliX1eAO4j2QMjxtaZyqo622/W8ncSxEmei7Cl6Mj/HkEdoFfXgd5CMrR192 jC3dac6DgHFwFDViJj90wkoBooDI0tOu -----END CERTIFICATE-----Generated at Sun May 19 06:14:33 2024 by rpki-client on console-ams.rpki-client.org