$ rpki-client -vvf rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft File: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft (raw, json) Hash identifier: 7enIC+9k/cxhbWhRGD4CdmlzZik36XbFU6pViIZ4R0Y= Subject key identifier: B6:BA:DB:19:2D:DA:A0:DA:96:E1:06:9D:68:61:6B:8A:39:85:D6:21 Authority key identifier: 28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 Certificate issuer: /CN=A91602ED/serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Certificate serial: 05B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft Manifest number: 05B0 Signing time: Sun 19 May 2024 00:14:09 +0000 Manifest this update: Sun 19 May 2024 00:14:09 +0000 Manifest next update: Sun 26 May 2024 00:14:09 +0000 Files and hashes: 1: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl (hash: HPgshJFAH4VMOvDAf7+dMq46CfuZ94L74lCeJyQYqJI=) 2: 7883418E943A11EBB6706530C4F9AE02.roa (hash: JnE8YOt8k5stLHGvhUXv9i++NuiB7eRDBXg4yo9a9/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1461 (0x5b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91602ED/serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Validity Not Before: May 19 00:14:09 2024 GMT Not After : May 26 00:14:09 2024 GMT Subject: CN=66494451-2a9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:71:17:54:c9:cf:43:65:23:b3:20:ba:9c:d7: f5:f9:01:8b:de:cb:eb:d6:0f:e4:de:4f:1d:c6:4d: 6e:f2:f8:2e:a4:59:e9:cd:af:e9:71:19:cd:c5:e2: 7f:2b:7a:38:86:1f:b7:c4:ff:31:db:f9:60:57:89: a4:0f:ae:3c:36:6c:0e:d7:5d:ff:95:88:08:be:25: e2:37:99:1b:fa:a5:65:5c:38:a4:56:c8:1a:d6:17: f9:d7:96:98:ee:68:d1:6e:34:87:16:b1:f2:e7:72: ec:46:cc:3f:fb:a5:7f:e3:62:a4:97:ba:0a:1b:a5: 79:9a:3b:2a:69:b5:cf:56:68:a0:68:8d:f8:9c:05: 13:e6:0d:1b:ea:4e:a4:8d:cc:8a:e1:22:af:cc:79: 5d:01:ba:ce:27:53:6d:e4:d1:86:0f:2f:49:df:67: 96:45:63:14:78:a5:d1:be:21:15:b8:95:f6:8e:07: 76:16:be:8c:90:12:5d:ad:8a:c0:31:56:74:58:65: 41:91:60:f6:f0:3e:44:52:a0:8c:e8:aa:79:fb:3a: 4c:49:3d:ea:74:f6:03:c7:3b:f1:3a:5f:d7:e5:1e: f7:9e:f0:b6:a8:20:85:46:12:a9:30:54:01:b6:fe: 67:d2:7a:93:31:d2:3b:c3:97:bd:d6:b3:ac:f3:da: f7:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:BA:DB:19:2D:DA:A0:DA:96:E1:06:9D:68:61:6B:8A:39:85:D6:21 X509v3 Authority Key Identifier: keyid:28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:62:55:f7:67:5c:74:83:3d:65:72:81:59:06:7f:2d:a7:8e: d2:b8:d2:ea:4c:2a:85:00:56:0f:f8:30:48:b3:ba:11:2a:02: 85:ef:96:58:d8:d0:41:e2:5f:60:5b:97:3f:75:c5:29:e7:dd: 93:8b:22:2d:5c:de:9e:36:1a:0d:cc:b9:24:60:a1:46:f9:8d: bd:db:fa:88:13:22:8b:16:54:f1:82:8e:37:c3:1f:3b:ac:fa: d3:01:a9:8c:45:5e:2d:f1:63:45:6e:e4:6a:55:20:86:74:fd: 91:5a:e8:c6:a9:c3:42:df:a5:2e:3c:4e:c2:9b:d4:c9:c4:0b: b8:8f:14:12:29:48:f1:01:d0:b5:3c:9b:12:6a:1d:32:d5:c4: 09:52:7a:6c:70:dd:9c:9a:1f:27:95:32:4d:9b:03:38:b5:d0: 86:3f:52:b7:9d:3d:6a:5f:34:60:43:3b:af:ca:9b:59:89:68: cf:95:17:70:ee:59:dd:9d:c5:92:3a:a0:a6:65:39:9e:67:f0: 03:d8:06:eb:bc:fc:83:9f:29:e9:46:eb:75:ae:46:0c:5e:32: 9c:75:ca:9e:b8:de:fe:f8:19:cc:d9:12:3e:01:6a:8c:86:61: 82:e5:2b:d6:d3:f7:3c:4e:ee:6f:b9:8f:c2:48:0d:c0:d0:44: 6c:a9:30:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyRUQxMTAvBgNVBAUTKDI4NzUyOURDMjBDQTBFQ0U5NUE3QTU1NkUxMEJDREZE NzIzN0Q4RDgwHhcNMjQwNTE5MDAxNDA5WhcNMjQwNTI2MDAxNDA5WjAYMRYwFAYD VQQDEw02NjQ5NDQ1MS0yYTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynEXVMnPQ2UjsyC6nNf1+QGL3svr1g/k3k8dxk1u8vgupFnpza/pcRnNxeJ/ K3o4hh+3xP8x2/lgV4mkD648NmwO113/lYgIviXiN5kb+qVlXDikVsga1hf515aY 7mjRbjSHFrHy53LsRsw/+6V/42Kkl7oKG6V5mjsqabXPVmigaI34nAUT5g0b6k6k jcyK4SKvzHldAbrOJ1Nt5NGGDy9J32eWRWMUeKXRviEVuJX2jgd2Fr6MkBJdrYrA MVZ0WGVBkWD28D5EUqCM6Kp5+zpMST3qdPYDxzvxOl/X5R73nvC2qCCFRhKpMFQB tv5n0nqTMdI7w5e91rOs89r3lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLa62xkt 2qDaluEGnWhha4o5hdYhMB8GA1UdIwQYMBaAFCh1Kdwgyg7OlaelVuELzf1yN9jY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDJFRC8xNjdCQzYzQzdD MUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0RzNlZwNlZXNFF2Tl9YSTMy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIVXAzQ0RLRHM2VnA2Vlc0UXZOX1hJMzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDJFRC8xNjdCQzYzQzdDMUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0Rz NlZwNlZXNFF2Tl9YSTMyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApYlX3Z1x0gz1lcoFZBn8tp47SuNLqTCqFAFYP+DBIs7oRKgKF75ZY 2NBB4l9gW5c/dcUp592TiyItXN6eNhoNzLkkYKFG+Y292/qIEyKLFlTxgo43wx87 rPrTAamMRV4t8WNFbuRqVSCGdP2RWujGqcNC36UuPE7Cm9TJxAu4jxQSKUjxAdC1 PJsSah0y1cQJUnpscN2cmh8nlTJNmwM4tdCGP1K3nT1qXzRgQzuvyptZiWjPlRdw 7lndncWSOqCmZTmeZ/AD2AbrvPyDnynpRut1rkYMXjKcdcqeuN7++BnM2RI+AWqM hmGC5SvW0/c8Tu5vuY/CSA3A0ERsqTDl -----END CERTIFICATE-----Generated at Sun May 19 00:59:41 2024 by rpki-client on console-fra.rpki-client.org