$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: TOENXk4JsbfB4qR/Ukxjqum2xwr2RLgQViXR0+rmywc= Subject key identifier: 88:3B:91:44:67:6A:E2:7A:6D:50:A0:71:E6:16:95:3F:CF:91:12:65 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 02C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 0298 Signing time: Sun 19 May 2024 03:44:08 +0000 Manifest this update: Sun 19 May 2024 03:44:07 +0000 Manifest next update: Sun 26 May 2024 03:44:07 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: giKPOG0E6MsyJftFsbX1tNTDowAdoCLUcJaYLVnTJtY=) 2: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: yjF1vBAnB2/Vtt4bQW4iTYhZqGssoCLw4RVDIGf898Q=) 3: A430F3B2A2F611EE8477DC13C4F9AE02.roa (hash: qfRdmITtzZ6gVFBzmEwWx1JAfswaai9APZYAHwLUaik=) 4: F1930FBAEFE011ED81AE706DC4F9AE02.roa (hash: 51wV8ILWAn25yFNKdCFqhCqeklwdHo2+p2NIS5g/3DY=) 5: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: U3oumhU6T0BmIq3jlCm/1cAUinPeMctGSUrsC85XUNQ=) 6: 96C3CFEAD46711EEA842517BC4F9AE02.roa (hash: +8ppDDvxSy2q2aM7S1BLIbwvYFSh6Bx1aeXj22W8sik=) 7: BE60F6465F9A11EE86E5F045C4F9AE02.roa (hash: QjBhJ0A3GKGqyqxXpkdWTB/3hCNFFin6blZ2Muczx60=) 8: 79B228E4A39D11EDB714273AC4F9AE02.roa (hash: 8TDLo3NvR+9MHFC9Dj6qEioCZRP4A/RxGP0kkyHpBCY=) 9: 13D58140172711ED8E3E8136C4F9AE02.roa (hash: K/RU3pzt4SXdi2E0/qmtqJ1LA/N82fkzYttgR0VF4eU=) 10: A510073CA2F611EE8477DC13C4F9AE02.roa (hash: taFaljMaP9atIrw1KMTs48RoSW+yEQf4TZmr10eKlMk=) 11: 7A589CF6A39D11EDB714273AC4F9AE02.roa (hash: 6lsGBtrnvcBm0t+pZh1ND+NZ7mAtIYzvny8VS286Y0o=) 12: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: xDhYi/kOufXzx6pcvT21PQsqRI8a2xznKezKFeHg0l4=) 13: 10B42B8CEE7811EDBED06287C4F9AE02.roa (hash: yLjqGBSnUcZl7mURkvcGqe3G/KCxzrz7hr1bhq1f8E4=) 14: 458AC21A684111EEA6632877C4F9AE02.roa (hash: /SCMEdWRmwZNeXNFedFclx+3MZsGpXtaksQL0wZ77rk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 707 (0x2c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: May 19 03:44:07 2024 GMT Not After : May 26 03:44:07 2024 GMT Subject: CN=66497588-21fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:90:0b:44:cd:8c:29:cd:f5:7f:0d:da:68:69: c5:c3:f4:1f:0b:c8:38:87:d1:ca:b2:87:52:74:04: 8e:77:a9:bb:56:16:17:d3:c6:69:c6:de:e1:b1:2e: e5:c9:38:2a:76:cd:78:04:70:ee:15:08:7a:8c:18: cf:5d:c1:9a:ea:d1:9c:fd:56:d6:18:49:26:e3:a4: dd:bb:50:97:08:f5:da:2e:f9:15:9a:a7:e6:0a:58: ce:32:0e:b4:b6:24:45:6c:35:6d:69:ea:ab:2d:8f: a3:5a:d5:d7:18:4b:ab:24:4a:f5:cd:04:4e:aa:87: bf:d5:1e:7e:7b:98:3d:ac:50:f1:d7:64:8d:87:6b: 22:8c:9a:bd:9e:11:ba:88:a2:55:44:e3:b9:5a:8a: 45:92:91:8d:2a:54:a1:a2:a7:f1:41:50:17:89:37: e8:c9:87:79:a3:a1:a6:3b:fc:a1:f0:fc:46:6e:9e: 44:99:73:cc:ba:28:87:98:b7:b8:bc:51:9a:0d:0a: ba:1d:32:8c:b7:19:2f:ef:97:d3:9c:69:ea:2b:3f: b5:d8:f4:47:7f:04:1d:fe:fc:6e:03:7e:17:87:14: 7b:23:25:3c:69:d5:26:e8:a3:6c:1a:75:15:dd:cd: b5:c4:0c:c6:71:15:c4:7a:38:74:e9:6f:21:f7:3a: a2:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:3B:91:44:67:6A:E2:7A:6D:50:A0:71:E6:16:95:3F:CF:91:12:65 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:ea:31:d8:83:d0:58:e6:9c:4b:50:18:a0:e3:8b:d7:5f:c8: f7:40:38:6c:cf:98:1e:77:6e:98:7d:4e:1f:a7:07:7d:c2:57: 91:da:9d:8c:79:af:1b:b3:b6:bf:38:49:0b:59:b9:46:8b:cc: 1f:63:19:5c:c8:7d:79:45:92:d4:14:51:56:0e:d7:e0:ff:b8: e2:ad:e2:93:61:87:44:e3:87:2f:e7:7c:ef:36:3e:af:65:8d: b2:bb:64:35:72:48:cf:c3:f1:c9:fe:3a:9e:d6:c7:a6:ed:12: 99:70:30:cc:87:60:02:ea:22:94:52:04:c9:11:93:af:9d:aa: ab:61:48:a2:16:a7:58:2d:40:1e:c5:2b:5b:22:dd:cd:94:28: ab:bf:e5:8f:72:71:a1:92:0d:e3:82:68:4b:fb:f5:a2:f6:8e: 05:11:b2:d2:ec:84:1e:c7:9a:46:1b:28:a9:ec:a3:c5:a7:2f: 76:ce:29:e1:9d:e7:c1:13:1d:f3:6d:34:a2:58:8a:6d:56:c3: 58:6d:0c:5e:10:8e:b1:dd:3a:b6:52:24:c1:f1:92:42:d8:ec: 31:61:00:2b:b3:ee:34:bf:01:81:12:75:ff:53:29:1a:20:de: 56:49:a5:2e:c6:af:b4:50:04:79:2a:eb:f5:24:d7:4c:33:62: 7f:f9:f0:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjQwNTE5MDM0NDA3WhcNMjQwNTI2MDM0NDA3WjAYMRYwFAYD VQQDEw02NjQ5NzU4OC0yMWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pALRM2MKc31fw3aaGnFw/QfC8g4h9HKsodSdASOd6m7VhYX08Zpxt7hsS7l yTgqds14BHDuFQh6jBjPXcGa6tGc/VbWGEkm46Tdu1CXCPXaLvkVmqfmCljOMg60 tiRFbDVtaeqrLY+jWtXXGEurJEr1zQROqoe/1R5+e5g9rFDx12SNh2sijJq9nhG6 iKJVROO5WopFkpGNKlShoqfxQVAXiTfoyYd5o6GmO/yh8PxGbp5EmXPMuiiHmLe4 vFGaDQq6HTKMtxkv75fTnGnqKz+12PRHfwQd/vxuA34XhxR7IyU8adUm6KNsGnUV 3c21xAzGcRXEejh06W8h9zqiFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIg7kURn auJ6bVCgceYWlT/PkRJlMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj6jHYg9BY5pxLUBig44vXX8j3QDhsz5ged26YfU4fpwd9wleR2p2M ea8bs7a/OEkLWblGi8wfYxlcyH15RZLUFFFWDtfg/7jireKTYYdE44cv53zvNj6v ZY2yu2Q1ckjPw/HJ/jqe1sem7RKZcDDMh2AC6iKUUgTJEZOvnaqrYUiiFqdYLUAe xStbIt3NlCirv+WPcnGhkg3jgmhL+/Wi9o4FEbLS7IQex5pGGyip7KPFpy92zinh nefBEx3zbTSiWIptVsNYbQxeEI6x3Tq2UiTB8ZJC2OwxYQArs+40vwGBEnX/Uyka IN5WSaUuxq+0UAR5Kuv1JNdMM2J/+fD3 -----END CERTIFICATE-----Generated at Sun May 19 04:22:04 2024 by rpki-client on console-fra.rpki-client.org