$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft File: Ktu3GxFSPKM5Ll832dx2shHb4IM.mft (raw, json) Hash identifier: W9vvhrvpj535NRAQIoYaeVFxdY8Mrq2SW/EU4qDhKfg= Subject key identifier: 09:CC:24:89:13:28:6D:7D:81:DD:BC:D0:0B:04:A4:9C:EA:9D:E3:A1 Authority key identifier: 2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 Certificate issuer: /CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft Manifest number: 19 Signing time: Sun 19 May 2024 08:47:36 +0000 Manifest this update: Sun 19 May 2024 08:47:35 +0000 Manifest next update: Sun 26 May 2024 08:47:35 +0000 Files and hashes: 1: Ktu3GxFSPKM5Ll832dx2shHb4IM.crl (hash: IeZK2goz8NegYDwmqsPB4FkQoA2gpesnPf+42UGnfuw=) 2: 34C7EB4010F411EFB4CD9614C4F9AE02.roa (hash: HQVBp5krW/zWsMNVmonE+C1EZrAA3t7C0+n3mvRWkOE=) 3: 6A14D330F9AC11EEABC2273CC4F9AE02.roa (hash: 9vyxV5N8Vtczvs3g0ENVtn8rIBFHBSN2Hftwdo1KcBQ=) 4: A9C850AC11FC11EF839D777EC4F9AE02.roa (hash: TsGpdccWVX09RUbqU4JV/2qtrLp4pgx5JTlXuFyTU1A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Validity Not Before: May 19 08:47:35 2024 GMT Not After : May 26 08:47:35 2024 GMT Subject: CN=6649bca7-5507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:36:9d:f0:03:9b:2d:a9:fc:f6:db:79:62:7b: d4:ba:73:ff:01:9b:16:4a:e2:66:d5:7b:80:56:3a: 6d:c7:5a:e3:87:0b:81:57:f7:a2:d3:f6:7d:b1:4f: 53:13:0b:9e:f3:33:a6:e7:4c:7a:65:6e:ca:d6:ee: 67:5f:54:1c:96:5b:49:fc:2f:15:c4:a5:d6:db:3a: f1:cf:00:9d:0f:27:fb:2c:a7:b0:09:8c:a4:d6:b0: 2a:6b:8e:6e:6f:6a:47:6c:2b:47:6d:9e:33:52:26: 96:61:8d:97:d6:2e:af:18:24:01:51:b8:3c:3e:3a: 31:86:61:c4:a5:f7:18:48:33:3d:e4:53:11:dd:a1: 6f:60:38:77:fb:03:d3:c4:d7:a2:de:16:68:75:93: 4f:11:7d:b5:48:13:69:d6:9f:0d:cb:a8:d8:f3:87: cb:04:07:75:5e:a0:5a:b4:15:ad:12:4e:b4:3d:eb: b8:90:ca:bb:17:65:5b:ca:6f:f6:96:7f:15:6f:ca: c9:bf:ae:bc:b1:89:b4:93:a6:f0:67:30:e8:05:6b: 19:af:11:97:34:4e:f0:8a:7c:b0:6f:6b:4e:f6:70: 36:98:83:02:00:d6:0c:c8:b3:3c:c4:3c:8e:72:73: 90:fd:50:2e:f2:4e:17:fc:6e:84:3b:22:b7:8a:07: ed:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:CC:24:89:13:28:6D:7D:81:DD:BC:D0:0B:04:A4:9C:EA:9D:E3:A1 X509v3 Authority Key Identifier: keyid:2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:56:2d:f5:0a:12:a4:b1:8c:b9:ec:da:30:92:66:71:54:7e: f6:b9:dc:e1:3d:4d:d0:1a:2e:75:97:c4:e7:23:21:d9:81:0a: ad:32:df:0d:c6:d3:97:01:e7:47:88:00:76:21:73:b3:cd:a5: dc:ca:08:52:f7:26:b1:47:7f:96:58:61:20:da:0a:6e:d2:24: 09:cc:01:e7:35:56:c2:af:93:e9:5b:36:fd:cf:53:1d:1f:7c: fc:c4:24:d0:9c:ae:e3:d2:28:ef:79:d3:43:ea:53:c7:ba:13: bb:a0:1f:73:92:68:c2:61:a9:e9:54:e2:f4:4c:44:aa:24:3b: c0:ab:a8:5d:db:13:7a:67:45:dd:70:db:62:15:78:57:9c:29: dd:7a:f3:66:0f:97:24:f4:27:ba:b2:19:0c:51:6c:5d:ef:7f: cd:b0:d3:0c:69:0f:a2:22:72:dd:45:0b:3d:c5:80:1a:d9:39: 9c:d7:4f:d9:b4:0b:30:02:17:f2:d4:42:c0:41:c4:01:b4:fe: e6:32:1b:9d:ae:27:a7:41:df:a2:ed:ee:88:7a:e7:5c:dd:36: 97:fd:fd:7d:83:1b:ea:74:20:ca:4b:71:55:a3:6b:31:3e:cd: 77:10:25:0c:64:2b:64:3b:b2:3b:e4:e0:2c:65:f9:a6:35:80: 90:76:69:63 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD ODM0NzExMC8GA1UEBRMoMkFEQkI3MUIxMTUyM0NBMzM5MkU1RjM3RDlEQzc2QjIx MURCRTA4MzAeFw0yNDA1MTkwODQ3MzVaFw0yNDA1MjYwODQ3MzVaMBgxFjAUBgNV BAMTDTY2NDliY2E3LTU1MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrNp3wA5stqfz223lie9S6c/8BmxZK4mbVe4BWOm3HWuOHC4FX96LT9n2xT1MT C57zM6bnTHplbsrW7mdfVByWW0n8LxXEpdbbOvHPAJ0PJ/ssp7AJjKTWsCprjm5v akdsK0dtnjNSJpZhjZfWLq8YJAFRuDw+OjGGYcSl9xhIMz3kUxHdoW9gOHf7A9PE 16LeFmh1k08RfbVIE2nWnw3LqNjzh8sEB3VeoFq0Fa0STrQ967iQyrsXZVvKb/aW fxVvysm/rryxibSTpvBnMOgFaxmvEZc0TvCKfLBva072cDaYgwIA1gzIszzEPI5y c5D9UC7yThf8boQ7IreKB+3TAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCcwkiRMo bX2B3bzQCwSknOqd46EwHwYDVR0jBBgwFoAUKtu3GxFSPKM5Ll832dx2shHb4IMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4MzQ3L0MzRTcyMTkwRjlB OTExRUVBODJBNzkxQUM0RjlBRTAyL0t0dTNHeEZTUEtNNUxsODMyZHgyc2hIYjRJ TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS3R1M0d4RlNQS001TGw4MzJkeDJzaEhiNElNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4 MzQ3L0MzRTcyMTkwRjlBOTExRUVBODJBNzkxQUM0RjlBRTAyL0t0dTNHeEZTUEtN NUxsODMyZHgyc2hIYjRJTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAItWLfUKEqSxjLns2jCSZnFUfva53OE9TdAaLnWXxOcjIdmBCq0y3w3G 05cB50eIAHYhc7PNpdzKCFL3JrFHf5ZYYSDaCm7SJAnMAec1VsKvk+lbNv3PUx0f fPzEJNCcruPSKO9500PqU8e6E7ugH3OSaMJhqelU4vRMRKokO8CrqF3bE3pnRd1w 22IVeFecKd1682YPlyT0J7qyGQxRbF3vf82w0wxpD6Iict1FCz3FgBrZOZzXT9m0 CzACF/LUQsBBxAG0/uYyG52uJ6dB36Lt7oh651zdNpf9/X2DG+p0IMpLcVWjazE+ zXcQJQxkK2Q7sjvk4Cxl+aY1gJB2aWM= -----END CERTIFICATE-----Generated at Sun May 19 09:38:26 2024 by rpki-client on console-fra.rpki-client.org