$ rpki-client -vvf rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft File: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft (raw, json) Hash identifier: SKQbxaqw7YbHZQa0YxQlR+UflTzjiNwhTk6qNFE4k/I= Subject key identifier: 82:7F:1B:23:C8:43:E1:0C:81:DE:16:B1:AB:31:10:68:1F:37:92:B3 Authority key identifier: 28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 Certificate issuer: /CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft Manifest number: 7E Signing time: Sun 19 May 2024 07:15:28 +0000 Manifest this update: Sun 19 May 2024 07:15:28 +0000 Manifest next update: Sun 26 May 2024 07:15:28 +0000 Files and hashes: 1: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl (hash: lbpT8HDwUBaVegeUtyU0/JcuMHRAfwQCbxD/IZ4HWPQ=) 2: 759C16DC577711EE96F5F775C4F9AE02.roa (hash: mxInePc0EsNB/w6RHuFLVmwbMb6GCPHoDumOqKPz2kA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Validity Not Before: May 19 07:15:28 2024 GMT Not After : May 26 07:15:28 2024 GMT Subject: CN=6649a710-fd34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:39:29:2b:46:d6:89:ab:be:b7:97:79:e4:e4: 6a:95:00:bd:23:6e:6b:de:67:2d:e1:af:56:30:b0: 76:fd:a4:cc:86:d1:71:45:7a:db:4d:6a:de:b5:35: 5a:24:60:d5:e1:a3:61:09:5b:ab:89:d8:6f:c1:f5: 7b:15:d1:cc:7a:5e:8a:bb:83:cc:1b:b0:ce:ba:bf: a0:df:01:42:3a:d2:d6:00:a4:fe:86:8a:2a:04:85: ae:8d:3e:e0:99:72:01:18:cb:38:4d:36:84:ac:27: 28:a0:de:6c:49:24:73:a0:63:26:2b:ec:88:9e:28: 7e:bc:91:02:7e:9e:69:6e:59:d0:53:6f:14:81:81: d1:23:7f:34:93:16:e5:cc:6f:50:55:16:23:97:00: 65:c7:ab:66:77:72:dd:e9:1f:42:31:fa:86:b8:a6: 2e:8c:0d:27:5f:e5:2f:e1:a9:43:f8:10:4e:4d:9b: af:f5:4b:47:b5:08:01:d3:ad:a9:00:a4:84:96:5b: 00:e1:de:78:e1:61:6c:b9:b6:7c:c2:cb:98:fb:47: 47:e2:6b:2a:ef:fc:a3:49:68:79:d6:4f:20:00:13: 93:b3:fc:ca:9c:f8:36:50:b1:6c:71:90:6b:3f:0c: 21:4c:72:e5:54:9c:48:f0:af:ac:b3:bc:5e:b0:fd: a1:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:7F:1B:23:C8:43:E1:0C:81:DE:16:B1:AB:31:10:68:1F:37:92:B3 X509v3 Authority Key Identifier: keyid:28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:49:60:06:17:7d:1a:53:1e:16:8a:f9:84:9c:b6:2e:b7:3f: 87:0d:19:1c:68:2a:14:17:dc:94:9d:b4:7c:f5:e9:61:5f:3c: 52:6c:12:8b:4f:a9:82:32:ee:8b:62:93:52:be:03:94:16:4f: f9:01:f2:20:dc:f7:cb:58:d2:51:70:b4:34:6d:68:3d:51:af: 53:25:b7:a6:21:d3:ae:2a:99:53:22:79:ff:c9:ec:22:0c:2f: a9:17:5a:56:75:64:8a:b1:a9:9b:62:f8:8b:37:58:60:51:d5: 55:4a:07:c6:9d:5e:bc:19:10:d8:fe:b6:03:b8:c9:36:98:f3: 68:0e:7e:6e:7d:7f:ab:b8:08:5c:7a:d5:1a:a2:56:fe:56:5a: 72:24:21:0c:76:06:ae:91:4e:29:92:fb:ee:22:9c:4f:17:5b: 1b:58:39:dd:71:99:3d:9f:0b:01:b3:56:2d:8c:2c:47:84:92: 8b:8c:83:5f:dd:13:c6:8a:a8:7f:ef:53:7f:9c:c2:e8:da:c6: fd:5c:2e:92:82:6a:f1:d7:e9:ec:06:e1:6a:49:17:40:8a:63: 86:1b:07:fb:b3:9e:d3:cf:9d:93:e1:b3:a4:8c:cc:12:fa:6d: 40:3c:a1:13:0e:31:29:06:3d:7a:b4:40:6d:9c:d9:26:44:31: 0c:08:c5:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ2NzcxMTAvBgNVBAUTKDI4NzY4MjVGNzdDMjRBMTY3REM0MTIxNTM1MEY2ODg3 OTI5ODFBNjcwHhcNMjQwNTE5MDcxNTI4WhcNMjQwNTI2MDcxNTI4WjAYMRYwFAYD VQQDEw02NjQ5YTcxMC1mZDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDkpK0bWiau+t5d55ORqlQC9I25r3mct4a9WMLB2/aTMhtFxRXrbTWretTVa JGDV4aNhCVuridhvwfV7FdHMel6Ku4PMG7DOur+g3wFCOtLWAKT+hooqBIWujT7g mXIBGMs4TTaErCcooN5sSSRzoGMmK+yInih+vJECfp5pblnQU28UgYHRI380kxbl zG9QVRYjlwBlx6tmd3Ld6R9CMfqGuKYujA0nX+Uv4alD+BBOTZuv9UtHtQgB062p AKSEllsA4d544WFsubZ8wsuY+0dH4msq7/yjSWh51k8gABOTs/zKnPg2ULFscZBr PwwhTHLlVJxI8K+ss7xesP2h5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJ/GyPI Q+EMgd4WsasxEGgfN5KzMB8GA1UdIwQYMBaAFCh2gl93wkoWfcQSFTUPaIeSmBpn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDY3Ny8wMjI3Rjc4NjU3 NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1NoWjl4QklWTlE5b2g1S1lH bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIYUNYM2ZDU2haOXhCSVZOUTlvaDVLWUdtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDY3Ny8wMjI3Rjc4NjU3NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1No Wjl4QklWTlE5b2g1S1lHbWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2SWAGF30aUx4WivmEnLYutz+HDRkcaCoUF9yUnbR89elhXzxSbBKL T6mCMu6LYpNSvgOUFk/5AfIg3PfLWNJRcLQ0bWg9Ua9TJbemIdOuKplTInn/yewi DC+pF1pWdWSKsambYviLN1hgUdVVSgfGnV68GRDY/rYDuMk2mPNoDn5ufX+ruAhc etUaolb+VlpyJCEMdgaukU4pkvvuIpxPF1sbWDndcZk9nwsBs1YtjCxHhJKLjINf 3RPGiqh/71N/nMLo2sb9XC6Sgmrx1+nsBuFqSRdAimOGGwf7s57Tz52T4bOkjMwS +m1APKETDjEpBj16tEBtnNkmRDEMCMUn -----END CERTIFICATE-----Generated at Sun May 19 07:40:41 2024 by rpki-client on console-fra.rpki-client.org