$ rpki-client -vvf rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft File: KJYksuALd009OQ9aCtELW8NfVtg.mft (raw, json) Hash identifier: ilEcpBtFFY+HARgv4UqOq/NKmZl76aAbGa7dNbGEySo= Subject key identifier: 66:57:A7:D9:03:21:1E:E5:1C:AE:B3:A4:5C:B4:AC:FA:1D:A6:3B:DB Authority key identifier: 28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 Certificate issuer: /CN=A918748C/serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Certificate serial: 09BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft Manifest number: 09A2 Signing time: Sat 18 May 2024 20:53:24 +0000 Manifest this update: Sat 18 May 2024 20:53:24 +0000 Manifest next update: Sat 25 May 2024 20:53:24 +0000 Files and hashes: 1: KJYksuALd009OQ9aCtELW8NfVtg.crl (hash: U+Tqlo60Av5zyX9ORANWd+vxpIoQjEJH5UcyNhs4G5Q=) 2: DCE066622C7811EC97C8D979C4F9AE02.roa (hash: XeMJrNAHzwtH700102pLfUhxaHgV7f1vlB5mTcEKGII=) 3: DE137C362C7811EC97C8D979C4F9AE02.roa (hash: TQB7jU8Zhr/8/76VoHIxf8fALMt9zFnstg4O3Nba8g0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2490 (0x9ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918748C/serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Validity Not Before: May 18 20:53:24 2024 GMT Not After : May 25 20:53:24 2024 GMT Subject: CN=66491544-6b7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:42:48:19:01:68:be:51:bc:93:69:cf:a9:1e: a6:3f:7d:0c:fd:6e:29:7b:be:1c:94:94:ce:a0:f6: 03:7a:68:a0:66:ed:47:6a:5d:84:df:02:1b:a9:24: 91:e5:3a:88:ae:3c:db:a4:45:c4:30:03:6b:70:a2: 52:0f:70:d6:17:2b:62:6f:85:db:d1:26:1f:75:ef: 43:e7:1c:a4:b9:fd:6d:be:fb:f6:dc:c9:98:ab:09: 54:f7:8d:78:60:b4:94:cf:37:f7:38:d8:cb:4d:3a: e9:94:3a:88:4b:d0:e9:4e:68:cd:b4:80:32:6a:76: 26:be:2f:c0:a9:cf:4e:7c:eb:2f:00:26:88:7e:08: 02:bf:86:a8:ba:d3:14:fb:9d:39:a2:f3:a0:cf:79: 0f:34:61:d7:c2:e8:99:f8:c5:e1:dc:8e:ec:dd:31: 60:08:59:55:e2:b9:ba:1c:95:fe:66:a5:0b:b7:93: 1b:b9:02:8d:4b:ce:60:89:f4:0e:8a:b0:ec:57:67: 8c:ab:9c:71:46:c1:47:3e:1e:58:f4:fc:16:d2:c1: 2e:eb:6b:16:8e:55:ed:94:75:e7:72:8a:29:7b:91: 44:8a:e3:d3:5f:72:25:d2:69:a6:94:f5:0e:9f:8a: d5:1e:54:16:b4:79:fb:8d:12:f5:54:ea:b0:8a:77: 00:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:57:A7:D9:03:21:1E:E5:1C:AE:B3:A4:5C:B4:AC:FA:1D:A6:3B:DB X509v3 Authority Key Identifier: keyid:28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:28:5f:4f:41:37:24:ca:d5:07:56:e1:d8:4e:94:9a:3d:b6: 26:87:c0:5a:8e:30:3c:28:23:c7:2b:91:14:7c:cd:2f:46:a5: 6c:84:f3:41:0f:09:94:7f:f7:56:2b:90:26:b3:e0:6b:3f:d4: a2:51:47:b2:aa:ef:15:2f:48:1a:4b:28:12:01:cc:e5:b7:2c: 35:ca:30:f1:75:06:51:b9:d2:71:a1:df:2a:d4:b3:5a:a6:fc: 88:62:19:26:dc:0a:6c:59:51:66:58:54:73:36:0c:65:95:a4: 71:33:64:b2:d0:3d:c3:10:f9:42:7e:10:e9:0f:26:de:63:5b: 24:38:c9:69:f2:67:44:1e:eb:78:1a:2b:28:e7:4d:b0:c0:45: 53:1e:28:b2:6e:0a:ce:67:0a:48:77:a3:7f:7e:80:0b:6b:7e: 3e:b3:df:5b:a3:d1:02:2b:09:d9:78:e4:85:0f:68:9f:c0:ef: fd:93:c1:9a:8b:06:e5:f4:19:1b:aa:47:52:c8:dc:fe:1a:1f: ce:a1:24:35:84:b1:b4:ad:91:dc:a6:b4:f1:81:e5:ac:e3:6e: 79:db:00:af:2c:9f:69:2d:4f:08:fc:d9:31:5f:9c:5a:5a:69: a4:dd:86:5b:d7:4e:a5:90:35:0d:85:53:7c:47:0e:c6:e6:a8: ae:9f:c2:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0OEMxMTAvBgNVBAUTKDI4OTYyNEIyRTAwQjc3NEQzRDM5MEY1QTBBRDEwQjVC QzM1RjU2RDgwHhcNMjQwNTE4MjA1MzI0WhcNMjQwNTI1MjA1MzI0WjAYMRYwFAYD VQQDEw02NjQ5MTU0NC02YjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1UJIGQFovlG8k2nPqR6mP30M/W4pe74clJTOoPYDemigZu1Hal2E3wIbqSSR 5TqIrjzbpEXEMANrcKJSD3DWFytib4Xb0SYfde9D5xykuf1tvvv23MmYqwlU9414 YLSUzzf3ONjLTTrplDqIS9DpTmjNtIAyanYmvi/Aqc9OfOsvACaIfggCv4aoutMU +505ovOgz3kPNGHXwuiZ+MXh3I7s3TFgCFlV4rm6HJX+ZqULt5MbuQKNS85gifQO irDsV2eMq5xxRsFHPh5Y9PwW0sEu62sWjlXtlHXncoope5FEiuPTX3Il0mmmlPUO n4rVHlQWtHn7jRL1VOqwincA1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZXp9kD IR7lHK6zpFy0rPodpjvbMB8GA1UdIwQYMBaAFCiWJLLgC3dNPTkPWgrRC1vDX1bY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ4Qy9BNzREQTc3MjY0 QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQwMDlPUTlhQ3RFTFc4TmZW dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tKWWtzdUFMZDAwOU9ROWFDdEVMVzhOZlZ0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQ4Qy9BNzREQTc3MjY0QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQw MDlPUTlhQ3RFTFc4TmZWdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaKF9PQTckytUHVuHYTpSaPbYmh8BajjA8KCPHK5EUfM0vRqVshPNB DwmUf/dWK5Ams+BrP9SiUUeyqu8VL0gaSygSAczltyw1yjDxdQZRudJxod8q1LNa pvyIYhkm3ApsWVFmWFRzNgxllaRxM2Sy0D3DEPlCfhDpDybeY1skOMlp8mdEHut4 Giso502wwEVTHiiybgrOZwpId6N/foALa34+s99bo9ECKwnZeOSFD2ifwO/9k8Ga iwbl9BkbqkdSyNz+Gh/OoSQ1hLG0rZHcprTxgeWs42552wCvLJ9pLU8I/NkxX5xa Wmmk3YZb106lkDUNhVN8Rw7G5qiun8K1 -----END CERTIFICATE-----Generated at Sat May 18 21:24:22 2024 by rpki-client on console-fra.rpki-client.org