$ rpki-client -vvf rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.mft File: m-KS59FtTo6BYWnDtQLr5O9FwWM.mft (raw, json) Hash identifier: kyEh/6dcmfJQO1zy4U3QERXjJPh8fVANSz++1eg8qIM= Subject key identifier: FD:3D:05:3F:0E:6B:8A:E8:A0:D9:22:1C:2C:55:FC:86:B1:08:A4:BA Authority key identifier: 9B:E2:92:E7:D1:6D:4E:8E:81:61:69:C3:B5:02:EB:E4:EF:45:C1:63 Certificate issuer: /CN=A91897B3/serialNumber=9BE292E7D16D4E8E816169C3B502EBE4EF45C163 Certificate serial: 04DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m-KS59FtTo6BYWnDtQLr5O9FwWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.mft Manifest number: 04DD Signing time: Sun 19 May 2024 01:18:56 +0000 Manifest this update: Sun 19 May 2024 01:18:56 +0000 Manifest next update: Sun 26 May 2024 01:18:56 +0000 Files and hashes: 1: m-KS59FtTo6BYWnDtQLr5O9FwWM.crl (hash: bmo7LID0XNXPvNStJp81DRn+hBdVFmyxqBZ+QzsmqOw=) 2: 372C520CFDFF11EEA6CEDB2FC4F9AE02.roa (hash: 2HSyR9/qDj6A++MWvCQqzP3v4KNQcaxA2Cp1UbFvPlM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.crl rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m-KS59FtTo6BYWnDtQLr5O9FwWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:18:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1246 (0x4de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91897B3/serialNumber=9BE292E7D16D4E8E816169C3B502EBE4EF45C163 Validity Not Before: May 19 01:18:56 2024 GMT Not After : May 26 01:18:56 2024 GMT Subject: CN=66495380-5a7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b8:85:f9:be:84:3f:15:26:bc:c4:d2:7f:17: f1:fc:1a:21:c0:42:89:68:70:46:f4:f9:dc:0e:29: 33:6f:69:71:0a:75:37:26:71:d5:90:cd:c7:fc:7d: d9:61:45:5c:07:9f:09:f0:2d:35:5d:b5:b2:e6:48: 03:08:52:4f:43:a7:e8:84:a2:e4:45:79:51:78:95: 48:af:1e:cf:00:c0:45:60:45:97:ea:24:e5:37:a7: ed:87:c9:5c:33:64:6b:2b:3a:1c:ca:cd:3d:7e:95: 57:b8:98:a9:ae:5a:e4:92:69:b5:69:52:13:2b:df: b4:dd:cc:c8:f2:57:94:27:8b:87:01:3f:b1:fa:a3: be:04:0d:00:91:cd:31:a3:f8:2e:61:36:18:6f:48: c6:c4:da:38:53:0e:1a:28:53:34:a5:63:a9:48:37: 4d:c9:b1:98:79:fa:3a:9b:ad:25:f2:91:b3:8a:57: 92:81:4e:bf:fc:9a:50:dc:9b:d1:fe:47:1b:56:f2: d5:bf:37:08:f7:7d:0e:25:35:89:20:fa:2e:70:66: 74:07:e8:b8:d4:d0:63:f7:6b:65:b0:19:8b:d3:4d: a4:43:d4:7f:54:01:5e:cf:4d:ee:52:1e:e3:c6:9b: 76:0c:26:00:50:a5:8c:4d:6c:6f:44:c1:41:d4:e0: 4d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:3D:05:3F:0E:6B:8A:E8:A0:D9:22:1C:2C:55:FC:86:B1:08:A4:BA X509v3 Authority Key Identifier: keyid:9B:E2:92:E7:D1:6D:4E:8E:81:61:69:C3:B5:02:EB:E4:EF:45:C1:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m-KS59FtTo6BYWnDtQLr5O9FwWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:c0:35:43:2f:33:e3:6f:4e:59:36:ec:3b:36:1c:e7:78:fc: e1:4c:ba:43:17:95:c2:67:3c:74:7e:80:b4:23:36:63:08:70: 1f:cb:7d:49:4e:e1:d5:98:da:60:1a:21:3b:5b:68:e6:10:76: e6:8f:81:f9:89:bc:de:d8:f5:f2:bd:3e:61:4d:81:b9:f7:80: c8:68:14:8d:ba:ba:ae:3f:a2:e5:08:5f:26:a6:2e:1f:c3:73: bf:11:1d:68:d2:2a:9d:83:e1:a3:35:8d:dc:ca:82:97:e7:c7: a1:aa:67:9f:0e:a0:ab:48:97:aa:b8:09:23:25:74:70:1b:6c: c9:88:86:49:7d:3b:ef:44:e7:9c:8f:b0:fc:f9:fb:b6:c4:45: dd:02:e5:38:3f:fd:5d:c0:1a:49:72:2f:4d:ac:54:6a:38:55: 64:ee:60:9e:7a:54:d7:90:6c:ab:10:d8:50:a6:5d:43:44:39: ec:85:62:b0:18:e7:f9:17:e6:3d:1c:4d:90:74:52:a9:1e:02: aa:fc:2c:a1:01:66:1f:9f:94:32:2f:12:b6:90:8e:1a:84:43: 97:50:9e:fd:a5:d3:c3:e7:cd:1d:3b:7c:53:73:14:e5:4b:04: 41:a2:84:ad:0d:81:b9:81:2f:0f:45:39:41:3f:22:61:b4:93: 53:05:52:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk3QjMxMTAvBgNVBAUTKDlCRTI5MkU3RDE2RDRFOEU4MTYxNjlDM0I1MDJFQkU0 RUY0NUMxNjMwHhcNMjQwNTE5MDExODU2WhcNMjQwNTI2MDExODU2WjAYMRYwFAYD VQQDEw02NjQ5NTM4MC01YTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn7iF+b6EPxUmvMTSfxfx/BohwEKJaHBG9PncDikzb2lxCnU3JnHVkM3H/H3Z YUVcB58J8C01XbWy5kgDCFJPQ6fohKLkRXlReJVIrx7PAMBFYEWX6iTlN6fth8lc M2RrKzocys09fpVXuJiprlrkkmm1aVITK9+03czI8leUJ4uHAT+x+qO+BA0Akc0x o/guYTYYb0jGxNo4Uw4aKFM0pWOpSDdNybGYefo6m60l8pGzileSgU6//JpQ3JvR /kcbVvLVvzcI930OJTWJIPoucGZ0B+i41NBj92tlsBmL002kQ9R/VAFez03uUh7j xpt2DCYAUKWMTWxvRMFB1OBNFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP09BT8O a4rooNkiHCxV/IaxCKS6MB8GA1UdIwQYMBaAFJvikufRbU6OgWFpw7UC6+TvRcFj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTdCMy82NzIxMkRGRUNF QTgxMUVCOUE5NjlFMEZDNEY5QUUwMi9tLUtTNTlGdFRvNkJZV25EdFFMcjVPOUZ3 V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20tS1M1OUZ0VG82QllXbkR0UUxyNU85RndXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTdCMy82NzIxMkRGRUNFQTgxMUVCOUE5NjlFMEZDNEY5QUUwMi9tLUtTNTlGdFRv NkJZV25EdFFMcjVPOUZ3V00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJwDVDLzPjb05ZNuw7NhznePzhTLpDF5XCZzx0foC0IzZjCHAfy31J TuHVmNpgGiE7W2jmEHbmj4H5ibze2PXyvT5hTYG594DIaBSNurquP6LlCF8mpi4f w3O/ER1o0iqdg+GjNY3cyoKX58ehqmefDqCrSJequAkjJXRwG2zJiIZJfTvvROec j7D8+fu2xEXdAuU4P/1dwBpJci9NrFRqOFVk7mCeelTXkGyrENhQpl1DRDnshWKw GOf5F+Y9HE2QdFKpHgKq/CyhAWYfn5QyLxK2kI4ahEOXUJ79pdPD580dO3xTcxTl SwRBooStDYG5gS8PRTlBPyJhtJNTBVIK -----END CERTIFICATE-----Generated at Sun May 19 02:59:08 2024 by rpki-client on console-ams.rpki-client.org