$ rpki-client -vvf rpki.apnic.net/member_repository/A9195393/886E8344431711EAAE88C720C4F9AE02/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.mft File: KAsuk7Sv0gMgo9CCpbPNo7ANLh0.mft (raw, json) Hash identifier: uFU7m7dBxcj4tPFqEWGTwrHMiyBR9F5xts01Cp06JgQ= Subject key identifier: 39:01:8F:DC:58:32:7B:67:B2:DD:E0:40:9E:A3:47:E2:05:1E:20:A1 Authority key identifier: 28:0B:2E:93:B4:AF:D2:03:20:A3:D0:82:A5:B3:CD:A3:B0:0D:2E:1D Certificate issuer: /CN=A9195393/serialNumber=280B2E93B4AFD20320A3D082A5B3CDA3B00D2E1D Certificate serial: 0A4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195393/886E8344431711EAAE88C720C4F9AE02/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.mft Manifest number: 0A45 Signing time: Sat 18 May 2024 20:28:41 +0000 Manifest this update: Sat 18 May 2024 20:28:41 +0000 Manifest next update: Sat 25 May 2024 20:28:41 +0000 Files and hashes: 1: KAsuk7Sv0gMgo9CCpbPNo7ANLh0.crl (hash: QEyYApVFB2D/IIskj16CRDSnGAhini/Qf9rzwxTFQsE=) 2: 784507FC9F4211ECB5BC4D14C4F9AE02.roa (hash: Rrqo0fHhyR6JUNrP9MMcsUE6hhp2tronEE70lXIOPYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195393/886E8344431711EAAE88C720C4F9AE02/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.crl rsync://rpki.apnic.net/member_repository/A9195393/886E8344431711EAAE88C720C4F9AE02/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2636 (0xa4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195393/serialNumber=280B2E93B4AFD20320A3D082A5B3CDA3B00D2E1D Validity Not Before: May 18 20:28:41 2024 GMT Not After : May 25 20:28:41 2024 GMT Subject: CN=66490f79-f486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c9:dd:ab:bf:d7:f8:d3:81:6b:e7:bb:e0:fe: 91:d6:14:2d:4c:3c:cd:e8:c7:16:0e:4a:9c:ce:99: 47:29:cb:21:ea:2d:93:1b:74:41:87:e6:02:e4:24: 89:b4:97:4b:ab:74:5f:89:19:a9:1a:ca:f6:0b:10: ef:1a:90:2b:51:ea:38:37:be:3e:bd:2d:3e:4c:9e: c8:7d:46:b2:b8:e2:9c:6a:b5:c5:14:91:be:b2:45: d2:7f:2a:f6:25:88:0f:9e:e8:a9:29:17:23:0b:75: 2d:e0:51:49:2e:31:6c:41:2b:5d:5a:d7:2a:94:29: 02:4c:46:e0:b7:d6:c8:e6:82:51:aa:bd:7e:1d:f5: 5c:68:cc:c4:ba:f6:6e:cf:eb:43:15:8d:f9:9b:81: 61:3d:85:b3:e1:ca:ac:ee:d8:59:6b:73:a5:62:e6: 2a:ef:ee:41:9a:fc:cf:c8:72:00:f6:ae:44:9e:41: 48:ba:b6:47:39:fa:9f:24:02:cd:14:ca:19:0e:71: 6e:16:5b:ee:27:89:33:6b:6b:51:20:56:d9:bd:25: bb:b2:b7:c9:5e:a4:4d:67:79:57:8b:e8:96:27:b1: 33:f9:77:ef:14:77:26:c1:b4:bb:cb:b0:0b:5d:40: 03:b8:f0:8b:ac:92:30:e8:11:24:d0:d9:e1:f8:75: be:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:01:8F:DC:58:32:7B:67:B2:DD:E0:40:9E:A3:47:E2:05:1E:20:A1 X509v3 Authority Key Identifier: keyid:28:0B:2E:93:B4:AF:D2:03:20:A3:D0:82:A5:B3:CD:A3:B0:0D:2E:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195393/886E8344431711EAAE88C720C4F9AE02/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195393/886E8344431711EAAE88C720C4F9AE02/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:6e:0b:40:06:d2:30:19:50:da:bd:8f:3b:c3:10:6f:fd:61: c4:44:7d:28:13:c7:41:6f:78:d7:d8:94:5c:d2:e1:71:72:a8: e8:db:1b:9f:1b:89:87:84:d3:8c:76:31:66:69:f8:f0:ba:d7: e0:5a:7e:4c:07:93:29:ec:2c:47:57:0a:da:8e:26:db:61:b2: 45:00:55:63:a4:a5:b3:3c:d8:ab:aa:1b:de:0d:34:c7:d8:3a: b3:16:86:64:2b:97:8c:75:c0:77:51:61:bc:b9:7c:b3:c1:80: ea:1f:b1:ec:71:39:09:81:09:3b:c8:4a:85:89:8e:39:3e:48: 16:bd:4a:20:29:8a:7d:7f:14:54:92:41:ca:50:3d:d0:c2:7d: 4c:6d:c2:b8:1d:cd:1d:3a:83:5b:28:4f:ea:8a:ea:ad:69:1d: 82:e6:5d:6f:f5:79:2e:e5:14:c0:10:9d:36:fc:94:e2:b9:75: 69:1f:62:a4:71:ce:f3:2c:07:d6:ed:48:f1:76:1a:91:10:db: 1b:54:37:f1:36:91:64:19:c6:01:dd:d1:10:31:5b:01:47:a9: fa:05:4e:d3:1a:8c:a8:61:38:e2:d9:9b:dc:4f:52:23:5c:1a: 92:a0:3b:19:8b:8a:df:b9:62:e2:16:90:ed:a4:02:69:a9:d7: cb:01:cb:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzOTMxMTAvBgNVBAUTKDI4MEIyRTkzQjRBRkQyMDMyMEEzRDA4MkE1QjNDREEz QjAwRDJFMUQwHhcNMjQwNTE4MjAyODQxWhcNMjQwNTI1MjAyODQxWjAYMRYwFAYD VQQDEw02NjQ5MGY3OS1mNDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8ndq7/X+NOBa+e74P6R1hQtTDzN6McWDkqczplHKcsh6i2TG3RBh+YC5CSJ tJdLq3RfiRmpGsr2CxDvGpArUeo4N74+vS0+TJ7IfUayuOKcarXFFJG+skXSfyr2 JYgPnuipKRcjC3Ut4FFJLjFsQStdWtcqlCkCTEbgt9bI5oJRqr1+HfVcaMzEuvZu z+tDFY35m4FhPYWz4cqs7thZa3OlYuYq7+5BmvzPyHIA9q5EnkFIurZHOfqfJALN FMoZDnFuFlvuJ4kza2tRIFbZvSW7srfJXqRNZ3lXi+iWJ7Ez+XfvFHcmwbS7y7AL XUADuPCLrJIw6BEk0Nnh+HW+JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkBj9xY Mntnst3gQJ6jR+IFHiChMB8GA1UdIwQYMBaAFCgLLpO0r9IDIKPQgqWzzaOwDS4d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM5My84ODZFODM0NDQz MTcxMUVBQUU4OEM3MjBDNEY5QUUwMi9LQXN1azdTdjBnTWdvOUNDcGJQTm83QU5M aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tBc3VrN1N2MGdNZ285Q0NwYlBObzdBTkxoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTM5My84ODZFODM0NDQzMTcxMUVBQUU4OEM3MjBDNEY5QUUwMi9LQXN1azdTdjBn TWdvOUNDcGJQTm83QU5MaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApbgtABtIwGVDavY87wxBv/WHERH0oE8dBb3jX2JRc0uFxcqjo2xuf G4mHhNOMdjFmafjwutfgWn5MB5Mp7CxHVwrajibbYbJFAFVjpKWzPNirqhveDTTH 2DqzFoZkK5eMdcB3UWG8uXyzwYDqH7HscTkJgQk7yEqFiY45PkgWvUogKYp9fxRU kkHKUD3Qwn1MbcK4Hc0dOoNbKE/qiuqtaR2C5l1v9Xku5RTAEJ02/JTiuXVpH2Kk cc7zLAfW7UjxdhqRENsbVDfxNpFkGcYB3dEQMVsBR6n6BU7TGoyoYTji2ZvcT1Ij XBqSoDsZi4rfuWLiFpDtpAJpqdfLAcso -----END CERTIFICATE-----Generated at Sat May 18 21:24:22 2024 by rpki-client on console-fra.rpki-client.org