$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.mft File: K1N18tBgdUbVH2UR9hvEoYl0_eI.mft (raw, json) Hash identifier: Vnq13/vYKMpYpO2c34xTDPlXRUYjarnawNS8YzAP8iE= Subject key identifier: 1C:57:C5:B5:10:EA:5C:86:30:FF:2D:74:A5:31:8E:16:CF:59:96:3B Authority key identifier: 2B:53:75:F2:D0:60:75:46:D5:1F:65:11:F6:1B:C4:A1:89:74:FD:E2 Certificate issuer: /CN=A91EF19E/serialNumber=2B5375F2D0607546D51F6511F61BC4A18974FDE2 Certificate serial: 33F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.mft Manifest number: 33E7 Signing time: Sat 18 May 2024 14:25:18 +0000 Manifest this update: Sat 18 May 2024 14:25:17 +0000 Manifest next update: Sat 25 May 2024 14:25:17 +0000 Files and hashes: 1: K1N18tBgdUbVH2UR9hvEoYl0_eI.crl (hash: 9gC35kWwxQNdbjxpglkpZUykdwLvAbRWVgSi91yQNp8=) 2: FACC58F855C411E9A0FEF781C4F9AE02.roa (hash: xtQcs+98fIke2X8WowLjSFx0nv2MEIv06a7KRnKWNEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.crl rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:25:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13302 (0x33f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF19E/serialNumber=2B5375F2D0607546D51F6511F61BC4A18974FDE2 Validity Not Before: May 18 14:25:17 2024 GMT Not After : May 25 14:25:17 2024 GMT Subject: CN=6648ba4d-9da3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f7:63:a0:87:27:48:67:47:65:b2:c0:33:93: 87:f6:fe:20:f8:ab:5f:f0:b7:40:a3:72:1a:d3:f4: 29:6b:77:93:fb:c8:c8:a7:b6:89:1b:bb:6c:7a:eb: 9c:70:1a:d8:91:3e:7d:21:11:a9:27:22:6d:42:9f: 01:a5:1e:25:8f:e3:97:a1:2c:b4:5d:b7:4e:69:dd: b3:d0:b5:59:9e:cf:43:16:6c:5c:71:36:d4:a9:9e: 3a:c3:b8:13:0b:98:4f:47:c5:cc:c6:1a:a8:c0:11: 66:52:ba:2c:ff:44:c3:85:8f:a0:4c:7e:bd:e8:5a: 5a:b1:c2:19:d9:b1:6d:da:1c:09:8a:59:cf:c3:39: 71:17:92:a4:4e:e0:7f:c5:e5:c7:8c:97:7d:d4:12: e2:8f:64:51:d1:3b:2e:0e:54:f8:5f:de:66:a1:1a: fd:5f:cc:d8:b1:7c:a5:f8:ed:0e:53:8f:43:49:0a: 42:b1:94:c4:2a:a5:01:cc:87:bf:25:ac:5f:14:c6: c1:aa:46:3b:78:59:18:1d:78:1b:51:4e:8e:99:69: 63:6b:a3:86:f6:21:86:79:ac:d2:79:df:3c:a2:0f: 77:32:7f:08:5d:54:64:e8:a9:e5:9d:ab:22:c2:05: 71:4d:2c:98:ad:89:f3:84:81:37:4a:39:18:47:d1: ca:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:57:C5:B5:10:EA:5C:86:30:FF:2D:74:A5:31:8E:16:CF:59:96:3B X509v3 Authority Key Identifier: keyid:2B:53:75:F2:D0:60:75:46:D5:1F:65:11:F6:1B:C4:A1:89:74:FD:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:1c:3c:f2:8f:d0:33:ce:af:fe:48:69:96:a6:b5:ba:84:2f: ca:8a:0b:59:3f:82:f3:be:81:35:e5:fe:f4:34:cd:78:19:5a: 40:c4:91:27:5c:98:7b:ca:1f:e2:61:40:88:3c:c2:2f:82:29: bb:90:81:5a:a3:15:3c:0e:1e:61:e2:d2:43:89:da:78:3c:03: 42:51:f6:71:c5:15:07:67:eb:a0:31:71:97:8c:b1:25:0a:60: c5:11:9b:cf:39:1c:54:29:1b:8b:87:2c:09:ab:be:31:ba:2d: 60:18:e5:8f:34:35:1c:b9:29:a6:c4:e2:62:13:bf:bf:38:d5: e1:55:96:76:2d:2f:2c:f5:92:4f:2c:fa:84:90:54:04:83:06: 78:06:f6:de:07:7a:5a:4a:79:49:ee:b9:15:6b:18:d3:6c:e8: 1f:77:1f:1e:57:f7:eb:ac:55:30:8b:ab:ff:b8:80:e9:f1:37: b7:3b:36:f4:e4:fd:00:0b:b6:af:cd:19:15:70:68:79:f6:0a: 0b:46:fa:e6:ef:06:8b:0f:fa:ce:2c:e1:4e:d4:17:1b:08:0a: 85:18:d0:d8:12:ea:8e:84:c6:c9:18:33:b0:3b:1d:bc:96:97: 07:a1:da:61:1d:25:52:04:ae:a8:3d:20:28:42:bc:4f:dc:94: 26:42:6f:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxOUUxMTAvBgNVBAUTKDJCNTM3NUYyRDA2MDc1NDZENTFGNjUxMUY2MUJDNEEx ODk3NEZERTIwHhcNMjQwNTE4MTQyNTE3WhcNMjQwNTI1MTQyNTE3WjAYMRYwFAYD VQQDEw02NjQ4YmE0ZC05ZGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPdjoIcnSGdHZbLAM5OH9v4g+Ktf8LdAo3Ia0/Qpa3eT+8jIp7aJG7tseuuc cBrYkT59IRGpJyJtQp8BpR4lj+OXoSy0XbdOad2z0LVZns9DFmxccTbUqZ46w7gT C5hPR8XMxhqowBFmUros/0TDhY+gTH696FpascIZ2bFt2hwJilnPwzlxF5KkTuB/ xeXHjJd91BLij2RR0TsuDlT4X95moRr9X8zYsXyl+O0OU49DSQpCsZTEKqUBzIe/ JaxfFMbBqkY7eFkYHXgbUU6OmWlja6OG9iGGeazSed88og93Mn8IXVRk6Knlnasi wgVxTSyYrYnzhIE3SjkYR9HKUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxXxbUQ 6lyGMP8tdKUxjhbPWZY7MB8GA1UdIwQYMBaAFCtTdfLQYHVG1R9lEfYbxKGJdP3i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE5RS8wNUM0QzBBNDFE ODQxMUUyQjBDNUEzRDkwOEIwMkNEMi9LMU4xOHRCZ2RVYlZIMlVSOWh2RW9ZbDBf ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxTjE4dEJnZFViVkgyVVI5aHZFb1lsMF9lSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjE5RS8wNUM0QzBBNDFEODQxMUUyQjBDNUEzRDkwOEIwMkNEMi9LMU4xOHRCZ2RV YlZIMlVSOWh2RW9ZbDBfZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2HDzyj9Azzq/+SGmWprW6hC/KigtZP4LzvoE15f70NM14GVpAxJEn XJh7yh/iYUCIPMIvgim7kIFaoxU8Dh5h4tJDidp4PANCUfZxxRUHZ+ugMXGXjLEl CmDFEZvPORxUKRuLhywJq74xui1gGOWPNDUcuSmmxOJiE7+/ONXhVZZ2LS8s9ZJP LPqEkFQEgwZ4BvbeB3paSnlJ7rkVaxjTbOgfdx8eV/frrFUwi6v/uIDp8Te3Ozb0 5P0AC7avzRkVcGh59goLRvrm7waLD/rOLOFO1BcbCAqFGNDYEuqOhMbJGDOwOx28 lpcHodphHSVSBK6oPSAoQrxP3JQmQm/M -----END CERTIFICATE-----Generated at Sat May 18 15:26:08 2024 by rpki-client on console-fra.rpki-client.org