$ rpki-client -vvf rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft File: KUrNCNoZE4w376-ydKHndXceRT4.mft (raw, json) Hash identifier: oJzFpzDVxjQkIn7v3r8Y7slporKVkuUSDvwE8SFJ03g= Subject key identifier: 88:0C:E3:9A:16:7D:AD:46:D4:51:EC:43:4E:B8:33:FA:A3:A5:EF:38 Authority key identifier: 29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E Certificate issuer: /CN=A919C8F9/serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Certificate serial: 046B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft Manifest number: 0466 Signing time: Sun 19 May 2024 01:46:29 +0000 Manifest this update: Sun 19 May 2024 01:46:28 +0000 Manifest next update: Sun 26 May 2024 01:46:28 +0000 Files and hashes: 1: KUrNCNoZE4w376-ydKHndXceRT4.crl (hash: 2OadqLddW/xvk7iyHn2XQeX+f98pj5XWCM1oS9MWIUw=) 2: 2D7BD4EA03DD11ECA448405BC4F9AE02.roa (hash: YSc5boVMKwRMhn/M8zXGpxfF3jaAcCONXN+5+B53UcY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1131 (0x46b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C8F9/serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Validity Not Before: May 19 01:46:28 2024 GMT Not After : May 26 01:46:28 2024 GMT Subject: CN=664959f4-af7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:7c:24:0c:ee:d5:4b:57:d7:71:37:6c:7a:e5: 83:67:e0:87:51:5d:49:34:1e:f6:e2:9e:8c:d1:e8: 4a:32:f9:f7:a8:8a:fb:5d:90:05:67:e9:65:78:59: e2:86:7e:57:ca:e5:dc:e1:8e:69:43:f5:c9:6c:7b: b1:39:82:6f:0b:d6:6f:92:69:d9:10:62:6a:27:f4: 7b:6a:5d:87:a7:2e:9a:fb:8c:c5:a0:9a:5e:c9:c7: 19:a3:4a:73:cf:67:b8:49:b8:0f:6c:f5:3e:00:cc: 7b:01:74:50:b7:e0:c0:a8:1c:c5:fd:90:98:18:68: 14:03:c1:d5:86:1a:2a:dd:65:ef:23:87:a0:f7:99: 7a:46:e6:c4:51:c7:ba:3c:60:79:ca:ff:ed:d2:0c: 40:69:47:28:47:35:2f:c7:f6:f4:5c:ab:9f:4d:ab: c5:2d:cb:68:f0:2f:94:29:1e:71:70:21:cf:2e:f7: 0a:9d:f9:9f:75:75:a8:3b:d8:b6:ed:65:2e:45:ff: c3:b0:33:b3:4a:9c:86:d5:6f:ff:3b:1c:cc:0f:fd: 9d:e4:0d:05:df:7c:0c:c6:43:83:8c:db:38:92:3f: 3c:ce:9a:94:37:d8:b5:6f:0b:f1:34:50:86:e3:d8: 62:94:cf:50:b4:d4:0d:0b:27:d1:b5:a3:47:a9:8c: 08:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:0C:E3:9A:16:7D:AD:46:D4:51:EC:43:4E:B8:33:FA:A3:A5:EF:38 X509v3 Authority Key Identifier: keyid:29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:b1:2d:a1:1f:f6:ee:bd:12:a1:51:76:2a:d0:40:be:be:85: 45:93:1f:02:0b:ce:a2:d3:98:1e:2c:e9:8a:5b:2a:fd:1c:c8: 4a:6b:ef:28:5a:9b:0d:65:1b:01:62:fe:bd:f5:70:7f:9d:bd: d3:8b:7f:5d:75:fa:ae:30:7a:ba:54:90:92:7d:5b:08:99:99: 3e:70:c8:c5:80:f0:71:2a:7e:5e:2f:a8:56:bb:ef:09:94:35: ad:33:c6:94:0f:5a:ad:ea:91:64:f6:63:1e:0d:58:a8:06:c8: 57:48:0d:5a:31:28:09:53:7d:20:8b:05:69:4a:17:dc:c5:9f: c6:b5:cf:4d:65:63:a0:88:53:42:49:a3:ca:98:8c:2c:2f:2c: 8f:94:ae:2c:69:ed:0e:f0:d5:a5:85:8f:98:6b:f2:fd:63:22: 8b:8e:9c:d2:c7:06:43:a5:78:a9:27:4f:6a:cb:74:7a:18:20: 08:f3:f4:db:1e:0a:25:c9:6a:b2:29:c3:02:38:eb:26:7e:ed: 8d:30:3c:32:02:05:0c:b2:71:3c:3f:4c:3b:86:72:ef:ff:05: ae:1b:51:db:bd:33:98:01:9e:62:3c:42:7f:34:dd:c5:e7:87: 3e:6c:ba:94:43:dd:6d:b2:9d:c3:25:07:98:1d:14:ee:cb:21: 9c:0c:37:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM4RjkxMTAvBgNVBAUTKDI5NEFDRDA4REExOTEzOEMzN0VGQUZCMjc0QTFFNzc1 NzcxRTQ1M0UwHhcNMjQwNTE5MDE0NjI4WhcNMjQwNTI2MDE0NjI4WjAYMRYwFAYD VQQDEw02NjQ5NTlmNC1hZjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7XwkDO7VS1fXcTdseuWDZ+CHUV1JNB724p6M0ehKMvn3qIr7XZAFZ+lleFni hn5XyuXc4Y5pQ/XJbHuxOYJvC9ZvkmnZEGJqJ/R7al2Hpy6a+4zFoJpeyccZo0pz z2e4SbgPbPU+AMx7AXRQt+DAqBzF/ZCYGGgUA8HVhhoq3WXvI4eg95l6RubEUce6 PGB5yv/t0gxAaUcoRzUvx/b0XKufTavFLcto8C+UKR5xcCHPLvcKnfmfdXWoO9i2 7WUuRf/DsDOzSpyG1W//OxzMD/2d5A0F33wMxkODjNs4kj88zpqUN9i1bwvxNFCG 49hilM9QtNQNCyfRtaNHqYwIowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIgM45oW fa1G1FHsQ064M/qjpe84MB8GA1UdIwQYMBaAFClKzQjaGROMN++vsnSh53V3HkU+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzhGOS9EQzZCMzYxNEZF NkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0dzM3Ni15ZEtIbmRYY2VS VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVck5DTm9aRTR3Mzc2LXlkS0huZFhjZVJUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzhGOS9EQzZCMzYxNEZFNkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0 dzM3Ni15ZEtIbmRYY2VSVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhsS2hH/buvRKhUXYq0EC+voVFkx8CC86i05geLOmKWyr9HMhKa+8o WpsNZRsBYv699XB/nb3Ti39ddfquMHq6VJCSfVsImZk+cMjFgPBxKn5eL6hWu+8J lDWtM8aUD1qt6pFk9mMeDVioBshXSA1aMSgJU30giwVpShfcxZ/Gtc9NZWOgiFNC SaPKmIwsLyyPlK4sae0O8NWlhY+Ya/L9YyKLjpzSxwZDpXipJ09qy3R6GCAI8/Tb HgolyWqyKcMCOOsmfu2NMDwyAgUMsnE8P0w7hnLv/wWuG1HbvTOYAZ5iPEJ/NN3F 54c+bLqUQ91tsp3DJQeYHRTuyyGcDDdy -----END CERTIFICATE-----Generated at Sun May 19 02:39:37 2024 by rpki-client on console-fra.rpki-client.org