$ rpki-client -vvf rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft File: KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft (raw, json) Hash identifier: FBDNhVbDpZAN1Xr1HcdcPwJvVRK0fpjEIadBk6FGLa0= Subject key identifier: 94:11:54:51:91:82:D0:BC:47:D5:B8:2D:5E:BF:D3:88:E8:2A:42:F8 Authority key identifier: 2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F Certificate issuer: /CN=A9171927/serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft Manifest number: EB Signing time: Sun 19 May 2024 05:55:56 +0000 Manifest this update: Sun 19 May 2024 05:55:55 +0000 Manifest next update: Sun 26 May 2024 05:55:55 +0000 Files and hashes: 1: KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl (hash: EYpyFELA3+0Z5mP3b9G6XPiUyEPWnNb+G6rc9HIyceI=) 2: 6AA5FC16905211EE840DED1DC4F9AE02.roa (hash: vybML0f9LMBAv/onS8eSVVTR8XtBJYNWvROz/vtKHKk=) 3: FD41FC5EEA6811EDBE3EE23CC4F9AE02.roa (hash: I6vDZeTV0tO1kVtLGCaj1SwgxmJCQ+MVEeZJxjP4BeE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171927/serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Validity Not Before: May 19 05:55:55 2024 GMT Not After : May 26 05:55:55 2024 GMT Subject: CN=6649946b-44d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fb:23:4c:71:99:f9:1c:66:75:1d:2d:05:32: b2:1c:bc:dd:86:f2:a4:13:ef:7a:4a:fe:7e:5d:d7: d3:c5:11:e9:eb:04:9a:8b:7b:f9:1a:f3:d7:d6:ea: 4e:bf:bd:70:99:94:7e:ca:09:e1:1a:aa:62:44:07: 03:31:9a:90:58:6c:2b:35:33:9d:e7:c1:b6:e3:10: 70:c3:a4:26:a0:ba:2a:b8:a2:27:5d:a9:c4:31:f2: ee:d4:c8:ba:d2:f0:ef:a5:34:16:c8:5e:a5:6e:44: b0:ce:ba:70:1b:f2:3d:b4:a3:3c:59:c9:7f:c2:3f: 74:73:60:d5:19:4d:46:d9:3f:1c:27:18:97:3b:4d: 98:b9:33:47:90:a0:ce:25:9b:c9:99:3c:65:ce:70: 11:9b:b6:09:eb:35:13:fd:e8:18:56:9e:84:39:e8: 0b:f8:4c:e6:2e:ff:28:02:09:b9:96:b3:63:a8:57: 46:e3:b6:f5:21:9e:57:3e:4e:3a:73:3d:0c:2c:c8: b2:55:5b:2d:62:03:6c:03:35:62:43:eb:68:11:a0: 19:5f:60:de:7b:2d:5b:e4:37:9c:69:51:74:a9:eb: a2:68:69:77:18:b6:72:66:cc:58:f5:00:42:98:72: 52:06:ed:56:fb:cd:1d:c7:a7:94:8e:7e:b3:ad:09: 7d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:11:54:51:91:82:D0:BC:47:D5:B8:2D:5E:BF:D3:88:E8:2A:42:F8 X509v3 Authority Key Identifier: keyid:2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:f7:a6:fa:05:9a:da:df:68:98:22:e2:7d:54:b3:2d:6f:ba: 36:de:3a:66:b5:c4:2e:1c:b1:31:9f:ed:70:13:aa:04:60:47: ef:f0:59:b6:a8:75:98:5a:25:7e:b1:77:51:ae:e2:15:29:7e: d1:70:e2:44:92:4a:b8:11:36:e3:b5:b9:bc:54:08:67:8b:7a: 23:bb:95:af:69:a9:8a:87:8e:3d:ca:80:92:0e:21:32:6c:00: d4:1f:22:41:a0:e9:a3:e8:8f:fd:8e:1b:d5:cb:d4:fd:fa:89: 3e:ac:88:2b:88:2e:71:4a:ea:1c:39:83:f9:ac:da:5a:6b:f5: fd:89:95:5d:5c:41:8d:5b:c1:4a:93:27:03:a4:0b:f9:55:42: a3:b1:ce:85:6f:50:85:f2:fb:53:a8:22:8f:31:4e:53:ef:d1: b5:c5:a4:91:cc:d9:98:89:7a:36:c3:70:3d:65:d2:ed:94:c5: 53:47:7c:07:bc:ea:07:c0:13:cd:6b:fc:18:2e:c2:ed:3a:28: e6:b6:a8:b1:13:9c:d4:d9:fa:ea:60:dc:d8:47:69:87:f4:65: f8:a4:c2:bf:59:a2:cb:e1:69:5d:e2:71:2f:9f:c6:9e:28:92: e1:84:1e:65:d2:82:d8:7d:59:b3:90:c2:85:63:b7:c6:6f:50: fe:ff:28:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5MjcxMTAvBgNVBAUTKDJBNjlENjk5RjEzQzA0MUJGREEzREFBNTdFMjFGRkFC M0M1M0VENUYwHhcNMjQwNTE5MDU1NTU1WhcNMjQwNTI2MDU1NTU1WjAYMRYwFAYD VQQDEw02NjQ5OTQ2Yi00NGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0/sjTHGZ+RxmdR0tBTKyHLzdhvKkE+96Sv5+XdfTxRHp6wSai3v5GvPX1upO v71wmZR+ygnhGqpiRAcDMZqQWGwrNTOd58G24xBww6QmoLoquKInXanEMfLu1Mi6 0vDvpTQWyF6lbkSwzrpwG/I9tKM8Wcl/wj90c2DVGU1G2T8cJxiXO02YuTNHkKDO JZvJmTxlznARm7YJ6zUT/egYVp6EOegL+EzmLv8oAgm5lrNjqFdG47b1IZ5XPk46 cz0MLMiyVVstYgNsAzViQ+toEaAZX2Deey1b5DecaVF0qeuiaGl3GLZyZsxY9QBC mHJSBu1W+80dx6eUjn6zrQl9sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJQRVFGR gtC8R9W4LV6/04joKkL4MB8GA1UdIwQYMBaAFCpp1pnxPAQb/aPapX4h/6s8U+1f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTkyNy9GRDhCMjJCMEJD MkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJCdjlvOXFsZmlIX3F6eFQ3 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttbldtZkU4QkJ2OW85cWxmaUhfcXp4VDdWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTkyNy9GRDhCMjJCMEJDMkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJC djlvOXFsZmlIX3F6eFQ3VjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAY96b6BZra32iYIuJ9VLMtb7o23jpmtcQuHLExn+1wE6oEYEfv8Fm2 qHWYWiV+sXdRruIVKX7RcOJEkkq4ETbjtbm8VAhni3oju5WvaamKh449yoCSDiEy bADUHyJBoOmj6I/9jhvVy9T9+ok+rIgriC5xSuocOYP5rNpaa/X9iZVdXEGNW8FK kycDpAv5VUKjsc6Fb1CF8vtTqCKPMU5T79G1xaSRzNmYiXo2w3A9ZdLtlMVTR3wH vOoHwBPNa/wYLsLtOijmtqixE5zU2frqYNzYR2mH9GX4pMK/WaLL4Wld4nEvn8ae KJLhhB5l0oLYfVmzkMKFY7fGb1D+/yiD -----END CERTIFICATE-----Generated at Sun May 19 08:25:02 2024 by rpki-client on console-ams.rpki-client.org