$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft File: kFj-3Oxfh289_hYZQxnBRcnAzLU.mft (raw, json) Hash identifier: IC8/1U+Bk2Igc8yd+9+GK1eb8BA/W2CqrGHE23zsCSo= Subject key identifier: 59:21:5D:10:9C:05:A2:C2:10:6E:FB:C8:C6:4F:0B:94:60:77:AB:31 Authority key identifier: 90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5 Certificate issuer: /CN=A9185B0F/serialNumber=9058FEDCEC5F876F3DFE16194319C145C9C0CCB5 Certificate serial: 059A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft Manifest number: 0596 Signing time: Sun 19 May 2024 00:24:34 +0000 Manifest this update: Sun 19 May 2024 00:24:33 +0000 Manifest next update: Sun 26 May 2024 00:24:33 +0000 Files and hashes: 1: kFj-3Oxfh289_hYZQxnBRcnAzLU.crl (hash: R1bCPql45t6RE2LTSp9iSZtNh8O3vTkgA3gilBrwJQE=) 2: 25A7FE7E855211EB8DEDD812C4F9AE02.roa (hash: r5dgI6p4zWpgBsvtOrtsUmNNSfCP3g5KZPV/bK2+7hQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.crl rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1434 (0x59a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B0F/serialNumber=9058FEDCEC5F876F3DFE16194319C145C9C0CCB5 Validity Not Before: May 19 00:24:33 2024 GMT Not After : May 26 00:24:33 2024 GMT Subject: CN=664946c1-ef8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:fd:72:80:57:55:07:64:b5:1d:53:81:8d:45: 23:bb:99:1c:2a:51:41:6b:fa:46:2b:c1:05:aa:2a: 75:ec:98:2d:38:81:5a:88:37:a8:b6:72:35:72:80: 7f:f7:44:5f:72:7d:60:b4:8e:cb:42:d6:d9:79:cf: d2:74:f1:04:55:d6:03:ee:0c:8d:22:9f:4a:9e:9c: 87:4d:19:ee:1d:f2:e2:57:97:b4:f8:95:a5:54:de: 91:c3:c0:49:18:ed:90:f2:7f:da:ae:a6:8a:8d:49: 72:23:95:65:8f:7f:ff:5b:2b:d8:21:61:e1:05:48: 28:3b:a3:3b:d6:42:ee:4c:86:ec:53:e3:d5:91:4e: 73:8c:6f:b7:cf:02:5e:c4:ff:22:82:84:1f:37:c0: 56:c8:6f:e7:e9:df:83:03:da:26:52:f5:4a:cc:a7: 97:0a:bf:d1:01:6a:82:3c:2c:28:c7:a7:58:a5:d2: a0:11:84:3c:16:10:f8:07:79:91:2c:8a:1f:16:7b: ec:e9:42:98:4b:81:8a:84:3a:eb:fd:6d:5d:8c:e9: d5:66:f8:8a:4e:d6:b8:76:92:cc:32:af:95:99:8c: e8:33:fd:0d:ea:26:df:85:61:fb:22:93:73:69:fc: 52:23:44:dd:3c:d6:aa:74:23:c8:0b:05:22:e5:22: 41:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:21:5D:10:9C:05:A2:C2:10:6E:FB:C8:C6:4F:0B:94:60:77:AB:31 X509v3 Authority Key Identifier: keyid:90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:69:aa:7c:01:a2:43:1a:48:5c:09:77:f9:05:f6:61:a1:07: b0:62:b7:2a:ee:81:a0:f5:ba:9f:49:67:c3:ef:9a:7e:87:76: 70:e1:21:dc:22:ca:9e:68:10:13:10:42:ba:d9:d6:cf:3a:67: e2:22:c3:be:ad:60:69:a8:de:7b:13:bf:ec:4e:ef:ab:26:df: 55:b6:08:68:88:4d:03:64:38:69:59:3f:e6:72:53:ff:c5:f5: 0e:7c:96:3b:b1:55:4f:0e:b2:b3:2d:f8:29:f1:3f:27:8f:cd: ab:9c:f4:76:85:08:f4:d2:5a:cb:34:0b:5a:33:17:f5:92:b2: 1f:d8:de:d3:ab:fc:47:93:81:48:f8:72:3d:81:b4:51:4a:fb: 6a:e8:e7:5c:27:fb:45:eb:fb:04:7e:db:ca:20:0a:e5:6d:9b: 92:63:26:96:51:f9:42:46:f5:10:08:de:47:8a:1e:44:08:59: bb:d2:b5:d8:11:49:af:a7:11:f9:c4:26:dc:b2:8b:3d:ae:2f: ad:99:3f:02:b6:b5:ed:96:fb:70:e9:62:f0:ee:2c:3d:2c:8a: 0a:81:82:e7:2d:fe:80:a9:82:98:4d:13:c1:41:1e:c8:58:5a: d3:2a:d5:56:41:09:ec:29:21:ac:b8:b5:53:6b:03:4b:23:ad: 24:07:f7:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMEYxMTAvBgNVBAUTKDkwNThGRURDRUM1Rjg3NkYzREZFMTYxOTQzMTlDMTQ1 QzlDMENDQjUwHhcNMjQwNTE5MDAyNDMzWhcNMjQwNTI2MDAyNDMzWjAYMRYwFAYD VQQDEw02NjQ5NDZjMS1lZjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8v1ygFdVB2S1HVOBjUUju5kcKlFBa/pGK8EFqip17JgtOIFaiDeotnI1coB/ 90Rfcn1gtI7LQtbZec/SdPEEVdYD7gyNIp9KnpyHTRnuHfLiV5e0+JWlVN6Rw8BJ GO2Q8n/arqaKjUlyI5Vlj3//WyvYIWHhBUgoO6M71kLuTIbsU+PVkU5zjG+3zwJe xP8igoQfN8BWyG/n6d+DA9omUvVKzKeXCr/RAWqCPCwox6dYpdKgEYQ8FhD4B3mR LIofFnvs6UKYS4GKhDrr/W1djOnVZviKTta4dpLMMq+VmYzoM/0N6ibfhWH7IpNz afxSI0TdPNaqdCPICwUi5SJBpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkhXRCc BaLCEG77yMZPC5Rgd6sxMB8GA1UdIwQYMBaAFJBY/tzsX4dvPf4WGUMZwUXJwMy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIwRi81MkQwQTEyMDg1 NEUxMUVCQjc1QkIwMDlDNEY5QUUwMi9rRmotM094ZmgyODlfaFlaUXhuQlJjbkF6 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tGai0zT3hmaDI4OV9oWVpReG5CUmNuQXpMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIwRi81MkQwQTEyMDg1NEUxMUVCQjc1QkIwMDlDNEY5QUUwMi9rRmotM094Zmgy ODlfaFlaUXhuQlJjbkF6TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuaap8AaJDGkhcCXf5BfZhoQewYrcq7oGg9bqfSWfD75p+h3Zw4SHc IsqeaBATEEK62dbPOmfiIsO+rWBpqN57E7/sTu+rJt9VtghoiE0DZDhpWT/mclP/ xfUOfJY7sVVPDrKzLfgp8T8nj82rnPR2hQj00lrLNAtaMxf1krIf2N7Tq/xHk4FI +HI9gbRRSvtq6OdcJ/tF6/sEftvKIArlbZuSYyaWUflCRvUQCN5Hih5ECFm70rXY EUmvpxH5xCbcsos9ri+tmT8CtrXtlvtw6WLw7iw9LIoKgYLnLf6AqYKYTRPBQR7I WFrTKtVWQQnsKSGsuLVTawNLI60kB/fW -----END CERTIFICATE-----Generated at Sun May 19 01:47:14 2024 by rpki-client on console-ams.rpki-client.org