$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft File: KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft (raw, json) Hash identifier: 9XWRbg+oP+qI+TSvRcQi9pFtAe8/3DVJAmwej6ZxMaA= Subject key identifier: 12:F7:D1:41:F9:06:F8:4F:73:8D:62:0B:F0:70:A7:C9:18:4A:A5:04 Authority key identifier: 2A:C5:3E:26:20:2F:4B:CB:C1:48:06:F1:3E:9E:86:0D:0A:C6:77:F9 Certificate issuer: /CN=A91A4EF9/serialNumber=2AC53E26202F4BCBC14806F13E9E860D0AC677F9 Certificate serial: 2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsU-JiAvS8vBSAbxPp6GDQrGd_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft Manifest number: 2D Signing time: Sun 19 May 2024 08:25:57 +0000 Manifest this update: Sun 19 May 2024 08:25:56 +0000 Manifest next update: Sun 26 May 2024 08:25:56 +0000 Files and hashes: 1: KsU-JiAvS8vBSAbxPp6GDQrGd_k.crl (hash: FCxz48RD5cwy1qDqsYL+OxDgjrUDaI9g65tG7alTdgc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.crl rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsU-JiAvS8vBSAbxPp6GDQrGd_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4EF9/serialNumber=2AC53E26202F4BCBC14806F13E9E860D0AC677F9 Validity Not Before: May 19 08:25:56 2024 GMT Not After : May 26 08:25:56 2024 GMT Subject: CN=6649b794-addc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:54:78:f8:49:03:74:2a:90:8e:92:81:8e:c7: d4:ac:ea:d2:dd:68:7e:e3:03:a3:98:7e:0f:e7:23: d3:ff:3c:f5:9c:58:be:63:26:47:de:d0:36:97:16: 0c:89:b5:65:bf:4c:87:e1:c8:6f:f4:f2:43:71:22: 20:34:dd:3e:96:e4:10:74:e5:72:39:13:1d:7d:49: 95:47:16:1c:6f:e6:9c:9b:11:40:ab:12:ed:81:8b: 61:c4:54:68:1e:3b:2f:6a:cd:b6:7d:68:1b:ce:53: 89:26:05:50:1c:9e:ab:59:43:d1:87:f6:f7:a8:90: 9c:e8:3e:d5:67:5f:41:cb:b4:10:58:11:1e:4e:ff: e9:0b:08:21:8e:f8:66:1f:f9:ca:b2:e3:a0:b7:d5: a6:00:4e:42:a5:3f:3c:a3:ee:fd:a2:40:70:59:65: 0c:6d:e6:bc:9f:eb:10:25:aa:b7:06:a6:b8:e0:a6: 2c:23:5c:f7:4d:b9:a4:0d:9d:24:c4:5b:1a:10:47: a4:72:e4:fa:f3:c9:bf:50:ed:a6:54:e6:80:e4:6c: 5e:af:9e:ff:bc:2a:42:92:cf:0b:4e:ab:22:a7:e2: 22:29:bb:0f:d8:2b:15:3f:92:d8:b8:75:5c:b7:2f: 68:4b:82:52:8b:85:43:37:3b:a6:b6:1f:ce:4a:c4: d1:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:F7:D1:41:F9:06:F8:4F:73:8D:62:0B:F0:70:A7:C9:18:4A:A5:04 X509v3 Authority Key Identifier: keyid:2A:C5:3E:26:20:2F:4B:CB:C1:48:06:F1:3E:9E:86:0D:0A:C6:77:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsU-JiAvS8vBSAbxPp6GDQrGd_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:97:fc:b8:d0:71:e4:16:12:63:1b:ba:93:94:7d:72:5c:b4: f1:b2:6a:d6:b3:ab:6a:ec:3c:b0:ba:dc:bf:4d:74:83:e7:d6: cc:5e:ea:87:dd:52:da:af:20:43:12:87:6a:60:af:78:19:5a: 2e:80:34:2a:4b:a6:c7:4f:2c:11:c5:b1:68:d7:cf:99:53:b5: 55:95:3d:f2:10:d2:55:26:45:e3:0d:9c:96:db:01:cc:37:2c: b5:02:54:b9:55:98:cf:68:c5:c2:0e:62:a5:42:12:63:d9:af: 7a:41:0c:d7:17:cd:7d:d6:07:02:7d:85:45:fb:3a:3d:18:f5: 2b:77:a6:ed:94:cd:5a:4d:45:be:4a:63:6e:d3:24:51:d6:c3: 5b:8a:58:80:ff:f5:8f:b2:f3:66:6b:cb:0d:e5:64:48:9e:ba: 74:ae:83:bf:89:45:a3:61:a0:81:93:5e:cd:d2:61:25:59:d0: 84:b0:d0:8a:7e:bd:d1:fe:80:82:a3:a4:33:8e:24:20:f4:d1: ec:30:3e:50:a4:35:27:44:6d:5c:ac:5a:44:8f:c3:34:e3:5a: 89:46:18:2e:8c:20:4c:f0:19:f3:b1:2e:71:be:35:6a:7c:b3: ae:0e:66:df:ed:93:0d:b2:19:2b:d1:eb:ad:52:83:55:44:8c: 2f:6d:07:3d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NEVGOTExMC8GA1UEBRMoMkFDNTNFMjYyMDJGNEJDQkMxNDgwNkYxM0U5RTg2MEQw QUM2NzdGOTAeFw0yNDA1MTkwODI1NTZaFw0yNDA1MjYwODI1NTZaMBgxFjAUBgNV BAMTDTY2NDliNzk0LWFkZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBVHj4SQN0KpCOkoGOx9Ss6tLdaH7jA6OYfg/nI9P/PPWcWL5jJkfe0DaXFgyJ tWW/TIfhyG/08kNxIiA03T6W5BB05XI5Ex19SZVHFhxv5pybEUCrEu2Bi2HEVGge Oy9qzbZ9aBvOU4kmBVAcnqtZQ9GH9veokJzoPtVnX0HLtBBYER5O/+kLCCGO+GYf +cqy46C31aYATkKlPzyj7v2iQHBZZQxt5ryf6xAlqrcGprjgpiwjXPdNuaQNnSTE WxoQR6Ry5Przyb9Q7aZU5oDkbF6vnv+8KkKSzwtOqyKn4iIpuw/YKxU/kti4dVy3 L2hLglKLhUM3O6a2H85KxNFNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEvfRQfkG +E9zjWIL8HCnyRhKpQQwHwYDVR0jBBgwFoAUKsU+JiAvS8vBSAbxPp6GDQrGd/kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0RUY5LzdFOUUyM0Y4RDEz NzExRUVBQTlGMTk4MEM0RjlBRTAyL0tzVS1KaUF2Uzh2QlNBYnhQcDZHRFFyR2Rf ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS3NVLUppQXZTOHZCU0FieFBwNkdEUXJHZF9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0 RUY5LzdFOUUyM0Y4RDEzNzExRUVBQTlGMTk4MEM0RjlBRTAyL0tzVS1KaUF2Uzh2 QlNBYnhQcDZHRFFyR2Rfay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIGX/LjQceQWEmMbupOUfXJctPGyatazq2rsPLC63L9NdIPn1sxe6ofd UtqvIEMSh2pgr3gZWi6ANCpLpsdPLBHFsWjXz5lTtVWVPfIQ0lUmReMNnJbbAcw3 LLUCVLlVmM9oxcIOYqVCEmPZr3pBDNcXzX3WBwJ9hUX7Oj0Y9St3pu2UzVpNRb5K Y27TJFHWw1uKWID/9Y+y82Zryw3lZEieunSug7+JRaNhoIGTXs3SYSVZ0ISw0Ip+ vdH+gIKjpDOOJCD00ewwPlCkNSdEbVysWkSPwzTjWolGGC6MIEzwGfOxLnG+NWp8 s64OZt/tkw2yGSvR661Sg1VEjC9tBz0= -----END CERTIFICATE-----Generated at Sun May 19 09:04:14 2024 by rpki-client on console-fra.rpki-client.org