$ rpki-client -vvf rpki.apnic.net/member_repository/A9165DB1/50C1BF920E1711ED8E3BD915C4F9AE02/kBpDycSAhnF-284lXAKi8DU9qvo.mft File: kBpDycSAhnF-284lXAKi8DU9qvo.mft (raw, json) Hash identifier: qR1jSjBlOJMsi6Tqafc0VR1/5em3iAxjOLLwni5rrME= Subject key identifier: 3A:02:E6:AE:A0:E1:41:8A:5C:8A:2B:B0:7A:D3:92:50:6A:5B:EB:D7 Authority key identifier: 90:1A:43:C9:C4:80:86:71:7E:DB:CE:25:5C:02:A2:F0:35:3D:AA:FA Certificate issuer: /CN=A9165DB1/serialNumber=901A43C9C48086717EDBCE255C02A2F0353DAAFA Certificate serial: 01B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBpDycSAhnF-284lXAKi8DU9qvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165DB1/50C1BF920E1711ED8E3BD915C4F9AE02/kBpDycSAhnF-284lXAKi8DU9qvo.mft Manifest number: 01B3 Signing time: Sun 19 May 2024 04:32:13 +0000 Manifest this update: Sun 19 May 2024 04:32:12 +0000 Manifest next update: Sun 26 May 2024 04:32:12 +0000 Files and hashes: 1: kBpDycSAhnF-284lXAKi8DU9qvo.crl (hash: 232wie/yjPmGI3XBxBmad/oap+bPkAUfoxus0P6gpAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165DB1/50C1BF920E1711ED8E3BD915C4F9AE02/kBpDycSAhnF-284lXAKi8DU9qvo.crl rsync://rpki.apnic.net/member_repository/A9165DB1/50C1BF920E1711ED8E3BD915C4F9AE02/kBpDycSAhnF-284lXAKi8DU9qvo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBpDycSAhnF-284lXAKi8DU9qvo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165DB1/serialNumber=901A43C9C48086717EDBCE255C02A2F0353DAAFA Validity Not Before: May 19 04:32:12 2024 GMT Not After : May 26 04:32:12 2024 GMT Subject: CN=664980cc-5390 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6a:e8:d0:59:0d:25:dd:88:71:ce:6e:3e:f4: 2d:a1:1d:cd:dc:32:fa:b2:af:64:b7:37:8c:6d:d3: 51:79:a7:8c:11:17:ef:1b:f7:7b:21:a5:dd:3c:c9: 28:a3:8a:85:0b:73:c4:8f:00:91:db:91:d3:c3:16: bd:96:c6:53:4a:0e:c0:53:0f:0f:65:0a:75:c3:7d: e0:e9:c5:45:d9:7e:b6:c9:b9:26:0a:11:5e:f8:c2: 26:4e:35:8b:80:c8:c2:fd:bd:dd:01:3f:9a:99:d5: b8:8b:02:a4:a6:a4:f0:87:9f:17:45:dd:08:a0:d1: 14:26:d4:92:83:31:27:c6:de:96:6d:a7:c0:f6:68: 8e:6c:9f:42:28:c4:6b:25:38:71:93:5e:df:76:46: 2b:9c:c5:e4:b0:68:a8:c1:36:1c:35:08:aa:59:ee: 5d:ac:e0:10:66:d6:ca:a3:cb:4d:03:89:a9:a2:b5: ea:4b:37:4f:ad:9c:0f:67:8d:3e:00:15:ca:b0:17: 47:e1:12:92:b7:d1:76:32:a0:8e:0a:90:58:4e:d6: 6a:ee:31:45:1c:ad:ec:1f:66:de:1b:d0:5b:1d:d7: ad:b6:41:e1:0a:8a:33:85:60:3d:7d:aa:9e:a1:0e: 61:43:ca:7f:22:c7:32:0c:73:47:81:46:18:11:a2: a2:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:02:E6:AE:A0:E1:41:8A:5C:8A:2B:B0:7A:D3:92:50:6A:5B:EB:D7 X509v3 Authority Key Identifier: keyid:90:1A:43:C9:C4:80:86:71:7E:DB:CE:25:5C:02:A2:F0:35:3D:AA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165DB1/50C1BF920E1711ED8E3BD915C4F9AE02/kBpDycSAhnF-284lXAKi8DU9qvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBpDycSAhnF-284lXAKi8DU9qvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165DB1/50C1BF920E1711ED8E3BD915C4F9AE02/kBpDycSAhnF-284lXAKi8DU9qvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:40:02:77:c6:d1:53:94:4d:8c:0a:ee:2e:99:8b:4f:0b:cd: 88:2d:b3:d7:eb:6d:6a:43:bc:95:17:bb:1f:d2:a8:b0:7b:7d: a1:44:1b:e3:76:95:31:6a:3d:4b:8d:fe:89:a7:34:b6:8a:96: 19:a6:73:33:f0:8e:75:5c:3b:28:59:45:f0:81:ef:16:66:73: 22:1e:15:2f:2f:50:b3:4a:20:d1:aa:29:77:d0:df:61:f9:9a: fd:95:39:e3:42:b5:f0:dc:3a:c0:99:60:3a:49:b2:4c:3d:14: 4b:60:6d:ef:52:03:2c:90:01:f7:43:a7:70:3b:43:40:c9:d2: 6b:5e:9f:1f:b5:46:3c:db:a3:b9:35:2b:3a:46:14:f5:ef:87: b2:b6:90:33:a0:fa:6a:ac:e2:7c:df:00:09:53:a5:2e:a3:5c: fe:00:a1:bd:7b:de:55:ea:52:0d:ce:2c:a5:7d:f9:d2:43:be: 92:8d:55:f8:a9:ad:84:7c:b7:7d:61:55:41:45:9f:82:45:03: 42:3c:bd:d5:ae:b0:9a:a3:95:f2:36:ad:a1:59:94:36:2d:db: 5f:88:8f:1c:52:4f:dc:93:07:98:95:05:29:11:f6:c0:b6:86: f1:d3:53:66:0e:b4:75:ff:93:aa:08:6f:60:0f:76:3b:46:0b: 3a:ce:c3:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVEQjExMTAvBgNVBAUTKDkwMUE0M0M5QzQ4MDg2NzE3RURCQ0UyNTVDMDJBMkYw MzUzREFBRkEwHhcNMjQwNTE5MDQzMjEyWhcNMjQwNTI2MDQzMjEyWjAYMRYwFAYD VQQDEw02NjQ5ODBjYy01MzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmro0FkNJd2Icc5uPvQtoR3N3DL6sq9ktzeMbdNReaeMERfvG/d7IaXdPMko o4qFC3PEjwCR25HTwxa9lsZTSg7AUw8PZQp1w33g6cVF2X62ybkmChFe+MImTjWL gMjC/b3dAT+amdW4iwKkpqTwh58XRd0IoNEUJtSSgzEnxt6WbafA9miObJ9CKMRr JThxk17fdkYrnMXksGiowTYcNQiqWe5drOAQZtbKo8tNA4mporXqSzdPrZwPZ40+ ABXKsBdH4RKSt9F2MqCOCpBYTtZq7jFFHK3sH2beG9BbHdettkHhCoozhWA9faqe oQ5hQ8p/IscyDHNHgUYYEaKicwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDoC5q6g 4UGKXIorsHrTklBqW+vXMB8GA1UdIwQYMBaAFJAaQ8nEgIZxftvOJVwCovA1Par6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NURCMS81MEMxQkY5MjBF MTcxMUVEOEUzQkQ5MTVDNEY5QUUwMi9rQnBEeWNTQWhuRi0yODRsWEFLaThEVTlx dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tCcER5Y1NBaG5GLTI4NGxYQUtpOERVOXF2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NURCMS81MEMxQkY5MjBFMTcxMUVEOEUzQkQ5MTVDNEY5QUUwMi9rQnBEeWNTQWhu Ri0yODRsWEFLaThEVTlxdm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSQAJ3xtFTlE2MCu4umYtPC82ILbPX621qQ7yVF7sf0qiwe32hRBvj dpUxaj1Ljf6JpzS2ipYZpnMz8I51XDsoWUXwge8WZnMiHhUvL1CzSiDRqil30N9h +Zr9lTnjQrXw3DrAmWA6SbJMPRRLYG3vUgMskAH3Q6dwO0NAydJrXp8ftUY826O5 NSs6RhT174eytpAzoPpqrOJ83wAJU6Uuo1z+AKG9e95V6lINziylffnSQ76SjVX4 qa2EfLd9YVVBRZ+CRQNCPL3VrrCao5XyNq2hWZQ2LdtfiI8cUk/ckweYlQUpEfbA tobx01NmDrR1/5OqCG9gD3Y7Rgs6zsOp -----END CERTIFICATE-----Generated at Sun May 19 05:48:50 2024 by rpki-client on console-fra.rpki-client.org