$ rpki-client -vvf rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft File: -KpwkWtspYPANj63qaX38mJ9c2A.mft (raw, json) Hash identifier: nosnaK3wam7oDVTOz1nmRJATxQVTPDuvOEZnKUSdCMw= Subject key identifier: 3A:28:97:81:61:CB:3F:90:86:91:C6:8C:37:75:38:63:59:EB:B2:2B Authority key identifier: F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 Certificate issuer: /CN=A915EE53/serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Certificate serial: 2572 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft Manifest number: 247B Signing time: Sat 18 May 2024 16:06:37 +0000 Manifest this update: Sat 18 May 2024 16:06:36 +0000 Manifest next update: Sat 25 May 2024 16:06:36 +0000 Files and hashes: 1: -KpwkWtspYPANj63qaX38mJ9c2A.crl (hash: xbwMwqBuf+rOXMiAJ5dA9Rl7TJSobXEazP1D4ZpStbg=) 2: 9DBB8670790211EC9EE24885C4F9AE02.roa (hash: ImKAgBh0wwbJ4axsR6180frcmMG1KfoysLvfB3TeALo=) 3: 5CCAC7F8528C11ECB6101B10C4F9AE02.roa (hash: ZsSAZxa14WOqCj9S6QAHBdt/ymnK2/rPeWYcR0YWFOw=) 4: 86D13B7E571C11EC81276481C4F9AE02.roa (hash: U9XfFnvz89wtNVf/ysYn6un7mKVOleSAavmFNfO3I2Q=) 5: 63C97CBAC49E11EBAC936D7AC4F9AE02.roa (hash: mtt52iJv/ndq74AyiWlcoqWC3nQmP9GwSeEfIMKrisE=) 6: CFF5A20078E011EC8357FA15C4F9AE02.roa (hash: /Xotzkh/g3yq/TP/e+UoN5EpHRuosPx78/zbMbXs07Q=) 7: 15812F82C4A111EBAE6C7F49C4F9AE02.roa (hash: 6BqXUlWYiTkpgXpGY7rkchtmJ2+yGytSAakHHbF+aDw=) 8: 6E042EFCABF011EC92152E22C4F9AE02.roa (hash: Arz8EKRNueX5MB5p0voBczeXDJw5cZ5iZm5k+gaPTLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9586 (0x2572) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EE53/serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Validity Not Before: May 18 16:06:36 2024 GMT Not After : May 25 16:06:36 2024 GMT Subject: CN=6648d20c-0df6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0c:37:75:2e:20:62:90:01:7e:aa:9e:62:1a: 85:f0:91:d4:06:81:b4:92:a1:6e:ce:5c:7f:18:66: 9f:12:71:02:cd:9c:9c:2d:03:35:76:02:24:cf:9b: 3c:91:c3:f7:dc:d8:a3:19:50:8c:b6:70:4c:a2:4f: db:8e:47:8d:a5:5e:ca:63:fc:a8:89:d7:16:6e:ce: dc:da:8c:db:de:4c:3f:68:45:e6:5e:50:d0:20:34: 3e:17:61:38:63:85:55:37:f8:7b:ac:b0:54:f7:73: 7d:e6:20:53:b4:67:cc:9a:71:26:75:78:13:b7:03: b4:30:48:d3:8c:e9:1f:8d:d5:9e:19:6c:8b:79:ec: aa:df:d3:42:5b:96:98:bb:e9:f1:00:1c:7f:6d:62: cc:37:54:ba:a0:3f:24:5e:e7:00:98:32:3a:8e:ae: 7d:5a:6d:b5:8b:98:c6:e3:4d:d6:c9:6a:e5:82:a0: 3b:40:bd:2b:62:e6:af:77:48:b8:3b:80:88:42:7e: c1:31:f4:92:d9:d8:db:fe:54:10:a2:63:07:f3:5d: 22:e5:fa:c9:5c:f7:d0:d7:05:4b:84:e6:db:bc:80: 28:00:1e:89:ef:98:01:5a:fa:38:dc:bb:f7:ba:4c: 97:f3:56:c9:ea:b1:bb:a1:9e:56:3f:1e:e9:7d:da: 40:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:28:97:81:61:CB:3F:90:86:91:C6:8C:37:75:38:63:59:EB:B2:2B X509v3 Authority Key Identifier: keyid:F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:39:e2:53:c4:12:f5:05:4f:2f:f8:dd:0a:c1:93:ec:26:bb: c1:b3:fb:67:5d:28:d4:ae:8d:ff:43:36:0a:f5:2e:ea:b2:81: ab:3e:8e:48:92:11:f3:5c:c2:44:00:44:ce:dd:65:09:69:1e: 59:77:11:f6:13:d7:50:e2:b8:e9:ec:08:4d:55:3e:64:0c:51: 13:13:7b:f0:0b:e7:74:a2:54:5d:db:d7:93:36:3b:ae:e8:30: 15:10:77:be:fb:42:eb:53:a7:7b:e2:30:fa:fc:ed:66:91:7f: f1:4b:bc:a9:f5:98:b9:30:1f:af:5c:16:8f:2b:af:15:2a:9d: 6b:f1:09:c4:17:9a:3e:10:34:88:1b:53:da:82:f2:34:ee:53: 4e:d9:c2:eb:e5:cd:5a:9b:ad:3a:39:df:b9:48:cd:f7:fa:81: 25:69:d5:01:da:c6:98:09:06:f3:a2:13:f2:4a:17:c1:54:91: 77:39:28:e5:31:67:9b:02:56:0a:83:97:55:aa:fe:90:91:7a: 33:35:2b:84:0c:cc:e9:27:65:2f:07:38:91:49:4b:4c:26:34: de:82:e5:86:ad:7a:d2:b7:da:1b:79:ac:9d:b3:14:4e:81:99: 72:a8:a9:bb:c8:60:00:b7:02:87:93:08:12:8a:23:c5:58:2b: 4c:d1:f3:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVFNTMxMTAvBgNVBAUTKEY4QUE3MDkxNkI2Q0E1ODNDMDM2M0VCN0E5QTVGN0Yy NjI3RDczNjAwHhcNMjQwNTE4MTYwNjM2WhcNMjQwNTI1MTYwNjM2WjAYMRYwFAYD VQQDEw02NjQ4ZDIwYy0wZGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuAw3dS4gYpABfqqeYhqF8JHUBoG0kqFuzlx/GGafEnECzZycLQM1dgIkz5s8 kcP33NijGVCMtnBMok/bjkeNpV7KY/yoidcWbs7c2ozb3kw/aEXmXlDQIDQ+F2E4 Y4VVN/h7rLBU93N95iBTtGfMmnEmdXgTtwO0MEjTjOkfjdWeGWyLeeyq39NCW5aY u+nxABx/bWLMN1S6oD8kXucAmDI6jq59Wm21i5jG403WyWrlgqA7QL0rYuavd0i4 O4CIQn7BMfSS2djb/lQQomMH810i5frJXPfQ1wVLhObbvIAoAB6J75gBWvo43Lv3 ukyX81bJ6rG7oZ5WPx7pfdpApQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDool4Fh yz+QhpHGjDd1OGNZ67IrMB8GA1UdIwQYMBaAFPiqcJFrbKWDwDY+t6ml9/JifXNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUU1My8zODUxMTg0MDQ1 ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZUEFOajYzcWFYMzhtSjlj MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1LcHdrV3RzcFlQQU5qNjNxYVgzOG1KOWMyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUU1My8zODUxMTg0MDQ1ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZ UEFOajYzcWFYMzhtSjljMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfOeJTxBL1BU8v+N0KwZPsJrvBs/tnXSjUro3/QzYK9S7qsoGrPo5I khHzXMJEAETO3WUJaR5ZdxH2E9dQ4rjp7AhNVT5kDFETE3vwC+d0olRd29eTNjuu 6DAVEHe++0LrU6d74jD6/O1mkX/xS7yp9Zi5MB+vXBaPK68VKp1r8QnEF5o+EDSI G1PagvI07lNO2cLr5c1am606Od+5SM33+oEladUB2saYCQbzohPyShfBVJF3OSjl MWebAlYKg5dVqv6QkXozNSuEDMzpJ2UvBziRSUtMJjTeguWGrXrSt9obeaydsxRO gZlyqKm7yGAAtwKHkwgSiiPFWCtM0fPy -----END CERTIFICATE-----Generated at Sat May 18 16:57:53 2024 by rpki-client on console-fra.rpki-client.org