$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: GJmHZgaPcJBSS28ThFnTBDYb4BmJ0TW2q95Xsfrb4nw= Subject key identifier: C5:1D:5E:03:BA:61:CD:07:46:BF:11:6E:B3:33:45:BC:74:7D:EC:C5 Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: D7 Signing time: Fri 31 May 2024 06:53:09 +0000 Manifest this update: Fri 31 May 2024 06:53:08 +0000 Manifest next update: Fri 07 Jun 2024 06:53:08 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: brE9mHI32GvrYaJhF6vpH6HZlEvHGx+GqdceEgJXLqI=) 2: 424F4EB0D86111ED8E82F133C4F9AE02.roa (hash: voqPTk/BPJnQxJLLWHMyZQvm7AMsagIexzISeaCE3BQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 06:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: May 31 06:53:08 2024 GMT Not After : Jun 7 06:53:08 2024 GMT Subject: CN=665973d4-e46c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:34:c8:34:0d:60:12:84:52:4e:7b:8d:f8:0a: 74:93:c4:a2:e1:96:11:05:66:b9:9a:84:9a:f2:18: e5:1c:61:2f:9d:9a:0b:ca:38:4c:47:31:3a:1c:ed: 71:ca:80:ff:c0:f0:39:27:22:b0:b8:a9:1c:9b:4e: 95:8e:92:65:28:a6:73:49:01:ea:9c:8f:f2:75:1a: 0f:e9:2b:3c:4d:67:d4:f7:84:b7:ae:5d:31:e9:ed: 4c:5c:03:8d:0f:fe:ab:b6:98:66:a6:48:4c:a0:0e: b9:d3:ea:2a:ca:52:47:5a:b7:62:3c:5a:fd:f7:88: 20:08:c1:94:49:78:d8:89:e9:89:59:37:37:a6:34: 8e:62:bc:ee:86:3e:9c:f7:17:36:9a:e6:03:25:4b: 91:12:cd:59:fb:68:d6:19:f3:ca:52:ec:45:d0:49: 61:8b:73:ed:c8:c2:bb:ab:fd:c4:95:61:72:ee:ce: 41:e8:03:05:a5:b0:ef:21:91:97:29:61:7e:9f:59: 49:35:73:79:b7:c5:2b:3f:ca:45:1a:33:c9:54:7f: ae:c7:df:3a:3f:c7:6e:f7:a3:8c:b0:eb:a9:a8:60: bf:a0:bd:00:67:48:b2:2c:71:57:b2:ec:ed:07:92: 5c:c6:ef:06:fd:fb:3c:c6:93:9b:d1:85:b5:cc:86: 4c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:1D:5E:03:BA:61:CD:07:46:BF:11:6E:B3:33:45:BC:74:7D:EC:C5 X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:85:f2:33:bb:3a:04:09:49:5b:1f:ef:86:2c:95:dd:e9:94: b1:75:de:54:3b:51:1c:07:34:d9:52:f0:2a:c9:f5:45:2f:0d: 81:4a:51:67:d1:1d:44:26:f6:b3:89:b8:8b:08:6a:85:b4:7d: dc:14:af:c2:5d:d4:f0:00:b3:ae:01:73:74:b8:12:b7:9c:c1: 37:d9:2f:65:3d:50:d1:5a:b6:00:d3:bb:64:41:cd:4f:f5:b3: 16:db:ab:e3:19:d8:15:0a:71:19:b7:92:96:9e:fe:ce:b6:d8: b4:37:14:b7:00:22:56:1d:47:0f:88:37:19:d3:d2:87:a4:24: 1d:65:21:50:94:93:15:26:9a:d0:54:86:f7:b1:5c:f8:16:3d: ba:11:aa:4e:12:d4:ff:5b:c8:32:42:e6:f2:33:0a:da:05:f0: 70:32:ab:d3:72:05:f0:e2:aa:0b:78:6a:a3:6e:ef:01:89:9b: d6:32:b7:22:2c:80:0a:0d:a8:7f:30:7c:64:8b:17:82:a5:28: 6e:aa:a8:bc:ad:bf:e9:5a:d5:0c:06:7f:2b:d9:a8:7e:75:25: dc:19:ce:2f:1e:d9:17:89:3f:24:56:e3:d9:e1:6d:77:a8:49: a2:96:07:e3:be:1d:18:89:4c:a5:b2:a0:77:eb:29:20:fa:4d: 8c:f6:0c:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjQwNTMxMDY1MzA4WhcNMjQwNjA3MDY1MzA4WjAYMRYwFAYD VQQDEw02NjU5NzNkNC1lNDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TTINA1gEoRSTnuN+Ap0k8Si4ZYRBWa5moSa8hjlHGEvnZoLyjhMRzE6HO1x yoD/wPA5JyKwuKkcm06VjpJlKKZzSQHqnI/ydRoP6Ss8TWfU94S3rl0x6e1MXAON D/6rtphmpkhMoA650+oqylJHWrdiPFr994ggCMGUSXjYiemJWTc3pjSOYrzuhj6c 9xc2muYDJUuREs1Z+2jWGfPKUuxF0Elhi3PtyMK7q/3ElWFy7s5B6AMFpbDvIZGX KWF+n1lJNXN5t8UrP8pFGjPJVH+ux986P8du96OMsOupqGC/oL0AZ0iyLHFXsuzt B5Jcxu8G/fs8xpOb0YW1zIZMDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMUdXgO6 Yc0HRr8RbrMzRbx0fezFMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyhfIzuzoECUlbH++GLJXd6ZSxdd5UO1EcBzTZUvAqyfVFLw2BSlFn 0R1EJvazibiLCGqFtH3cFK/CXdTwALOuAXN0uBK3nME32S9lPVDRWrYA07tkQc1P 9bMW26vjGdgVCnEZt5KWnv7Otti0NxS3ACJWHUcPiDcZ09KHpCQdZSFQlJMVJprQ VIb3sVz4Fj26EapOEtT/W8gyQubyMwraBfBwMqvTcgXw4qoLeGqjbu8BiZvWMrci LIAKDah/MHxkixeCpShuqqi8rb/pWtUMBn8r2ah+dSXcGc4vHtkXiT8kVuPZ4W13 qEmilgfjvh0YiUylsqB36ykg+k2M9gyJ -----END CERTIFICATE-----Generated at Fri May 31 08:38:31 2024 by rpki-client on console-fra.rpki-client.org