$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft File: kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft (raw, json) Hash identifier: Pfcbk9OjrQ2tuaXlrjz065cr1gZScxMTJHKSpSS4pN8= Subject key identifier: B6:62:9A:7F:9B:C0:2A:FC:B7:BE:72:AB:CB:9A:A7:1E:66:6C:C9:70 Authority key identifier: 91:26:EF:E5:0D:5E:3B:53:1F:EE:E4:54:9A:B3:0B:FE:7A:54:55:07 Certificate issuer: /CN=A917F4D3/serialNumber=9126EFE50D5E3B531FEEE4549AB30BFE7A545507 Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft Manifest number: 011C Signing time: Sun 19 May 2024 05:12:37 +0000 Manifest this update: Sun 19 May 2024 05:12:36 +0000 Manifest next update: Sun 26 May 2024 05:12:36 +0000 Files and hashes: 1: kSbv5Q1eO1Mf7uRUmrML_npUVQc.crl (hash: Zmw+BNhIC+zWRD0FicRGCqg4eXRjdFBnMYGEwnBaj4k=) 2: 32091726626D11ED87BDAC82C4F9AE02.roa (hash: YCTx3a6GU8sg0t3UcD+tdyKtqXQS9S/9RJvSQktGPYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.crl rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4D3/serialNumber=9126EFE50D5E3B531FEEE4549AB30BFE7A545507 Validity Not Before: May 19 05:12:36 2024 GMT Not After : May 26 05:12:36 2024 GMT Subject: CN=66498a45-091d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:04:21:9c:65:5b:ab:2b:14:0a:58:8b:1a:83: 70:69:1a:99:11:13:19:ba:12:da:15:f2:37:b3:db: 2f:68:2b:96:4d:58:3b:ae:3b:63:56:8c:94:8c:4b: b9:5d:3e:fb:77:11:db:c8:33:09:73:3d:69:f4:52: 14:4a:90:f4:0c:9e:3c:df:ae:fb:ce:15:c0:1e:9b: b1:7a:bc:46:fe:a2:87:ae:84:86:35:ff:5c:b3:08: 6f:2a:0e:8a:81:d6:74:7a:40:7d:ea:66:19:8f:e3: 4d:b2:e9:7f:01:17:e8:4d:fa:2e:80:74:f9:0f:b8: 81:c0:1a:0d:9e:58:f1:eb:1c:79:54:47:21:fc:d5: ea:12:49:c4:68:5c:7c:70:0b:2d:72:ef:25:fc:0e: 52:c6:8c:6e:ca:d1:28:5e:67:73:7b:b3:cc:63:b1: 5c:d9:b0:dc:79:8f:7f:14:f0:f6:6b:bf:d8:ba:8f: 07:14:31:60:3f:4b:8f:43:a7:b3:e6:25:87:2b:c1: a0:63:33:4f:31:a6:4f:b3:49:2d:ae:99:73:10:18: ea:79:81:a2:de:bb:40:83:8d:38:e0:b0:95:fd:82: 01:a5:21:ef:6b:e2:a2:84:9c:7f:32:51:cc:93:06: ba:98:cf:53:6f:61:ef:7c:75:f5:1e:d2:9e:f2:01: 5a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:62:9A:7F:9B:C0:2A:FC:B7:BE:72:AB:CB:9A:A7:1E:66:6C:C9:70 X509v3 Authority Key Identifier: keyid:91:26:EF:E5:0D:5E:3B:53:1F:EE:E4:54:9A:B3:0B:FE:7A:54:55:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:1b:2e:c3:02:99:69:eb:b4:32:d4:fb:30:88:d4:1d:fb:d9: 4a:61:1e:89:53:38:0d:46:cf:d9:2f:89:42:64:2f:d5:6d:6c: a3:81:d4:7c:fb:d3:9b:e4:d5:96:96:8d:d8:1c:56:28:ff:80: ef:c4:38:41:16:5d:2b:0e:dd:ca:da:ab:f3:ae:82:74:5e:6f: 37:36:6b:77:ea:86:29:4b:c3:6f:a1:cf:8f:3c:4e:24:63:9b: bf:7a:6d:12:03:d2:00:f0:fa:90:e7:1a:e2:c4:19:ac:b0:0f: 97:11:a8:94:56:f0:a6:17:d8:73:33:b3:49:ae:10:1b:63:41: 70:6a:1f:ef:02:20:06:c6:a1:85:b5:84:28:70:49:7f:81:5c: a9:09:30:2e:dc:9f:8d:c6:88:ca:b5:ab:b1:9d:fe:41:81:ac: ca:94:e3:6e:bd:7a:ae:65:07:8e:09:9d:af:fe:db:71:3c:cf: b3:93:55:cf:8c:c1:6b:77:c1:60:cf:a3:66:a2:98:6c:db:78: 1d:df:b1:55:5b:21:1f:29:43:7b:45:99:06:49:6d:1e:0b:85: fe:72:fa:18:47:3d:5a:f4:c2:aa:9b:50:a2:b1:57:5d:da:c9: f0:9f:c7:5c:67:7a:9b:9e:75:94:20:45:31:e5:21:ed:86:81: ee:db:18:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RDMxMTAvBgNVBAUTKDkxMjZFRkU1MEQ1RTNCNTMxRkVFRTQ1NDlBQjMwQkZF N0E1NDU1MDcwHhcNMjQwNTE5MDUxMjM2WhcNMjQwNTI2MDUxMjM2WjAYMRYwFAYD VQQDEw02NjQ5OGE0NS0wOTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1AQhnGVbqysUCliLGoNwaRqZERMZuhLaFfI3s9svaCuWTVg7rjtjVoyUjEu5 XT77dxHbyDMJcz1p9FIUSpD0DJ483677zhXAHpuxerxG/qKHroSGNf9cswhvKg6K gdZ0ekB96mYZj+NNsul/ARfoTfougHT5D7iBwBoNnljx6xx5VEch/NXqEknEaFx8 cAstcu8l/A5SxoxuytEoXmdze7PMY7Fc2bDceY9/FPD2a7/Yuo8HFDFgP0uPQ6ez 5iWHK8GgYzNPMaZPs0ktrplzEBjqeYGi3rtAg4044LCV/YIBpSHva+KihJx/MlHM kwa6mM9Tb2HvfHX1HtKe8gFaxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZimn+b wCr8t75yq8uapx5mbMlwMB8GA1UdIwQYMBaAFJEm7+UNXjtTH+7kVJqzC/56VFUH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjREMy82ODAzNEM2ODYy NjYxMUVEODI0MkM3ODZDNEY5QUUwMi9rU2J2NVExZU8xTWY3dVJVbXJNTF9ucFVW UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTYnY1UTFlTzFNZjd1UlVtck1MX25wVVZRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjREMy82ODAzNEM2ODYyNjYxMUVEODI0MkM3ODZDNEY5QUUwMi9rU2J2NVExZU8x TWY3dVJVbXJNTF9ucFVWUWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHGy7DAplp67Qy1PswiNQd+9lKYR6JUzgNRs/ZL4lCZC/VbWyjgdR8 +9Ob5NWWlo3YHFYo/4DvxDhBFl0rDt3K2qvzroJ0Xm83Nmt36oYpS8Nvoc+PPE4k Y5u/em0SA9IA8PqQ5xrixBmssA+XEaiUVvCmF9hzM7NJrhAbY0Fwah/vAiAGxqGF tYQocEl/gVypCTAu3J+NxojKtauxnf5BgazKlONuvXquZQeOCZ2v/ttxPM+zk1XP jMFrd8Fgz6Nmophs23gd37FVWyEfKUN7RZkGSW0eC4X+cvoYRz1a9MKqm1CisVdd 2snwn8dcZ3qbnnWUIEUx5SHthoHu2xio -----END CERTIFICATE-----Generated at Sun May 19 05:48:51 2024 by rpki-client on console-fra.rpki-client.org