$ rpki-client -vvf rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft File: Km8SBBLYIPn_JM0F1ez0nmYtmco.mft (raw, json) Hash identifier: crrtHAbzfnI6bhBr4vpjZgBeuYPGI+RaA8jQhcn4XGE= Subject key identifier: 63:ED:B1:5E:D5:18:9E:5D:72:E9:B9:D8:DF:EE:DF:98:17:21:13:3F Authority key identifier: 2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA Certificate issuer: /CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Certificate serial: 1EB9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft Manifest number: 1EAD Signing time: Sat 18 May 2024 16:22:52 +0000 Manifest this update: Sat 18 May 2024 16:22:51 +0000 Manifest next update: Sat 25 May 2024 16:22:51 +0000 Files and hashes: 1: Km8SBBLYIPn_JM0F1ez0nmYtmco.crl (hash: ULXIcjaqsElZgV3g8St7bMDv2CG41Rtzsjz4xK0Q0hA=) 2: E352E0A2896F11E7BBF2923CC4F9AE02.roa (hash: yxUON/PNfYDClPxawdylAN7htBrSqPl3AH4sRpx8OwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7865 (0x1eb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Validity Not Before: May 18 16:22:51 2024 GMT Not After : May 25 16:22:51 2024 GMT Subject: CN=6648d5dc-f71a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:63:00:6e:5f:a3:57:ea:ec:b3:31:9f:97:fc: c9:2d:6d:50:71:c4:b0:ea:84:a7:c8:12:f2:14:39: 89:a0:48:49:15:67:c1:39:d9:e7:ac:de:05:24:8a: 6c:c0:78:ea:8c:fe:a1:1a:61:69:0b:3b:f2:37:6d: 63:6a:e3:d8:50:30:be:77:1e:f5:ba:63:67:2e:a1: 99:e3:13:25:4a:bf:45:e6:a4:fc:b8:b4:37:4b:fb: f7:dd:1a:ab:a1:cc:dc:39:30:fc:68:71:8d:57:bb: 7a:81:5e:2d:ce:10:cd:e3:dd:42:59:60:98:b7:79: 99:11:a6:91:a3:3c:01:71:36:f7:3d:3d:f1:cc:de: 28:a2:44:64:c3:80:af:95:d8:5e:6f:64:87:df:30: aa:4c:f6:f2:34:ed:bb:34:15:c0:2f:25:d3:bd:0b: ef:c7:ac:6c:c9:7b:a3:6f:73:bc:9d:2d:6b:30:a4: 1c:8a:47:76:94:e3:36:a0:81:96:6d:49:fb:a5:2b: 91:59:de:92:f9:ba:e7:78:09:c3:bb:c6:a1:03:62: 1f:eb:45:11:b6:f7:76:7e:a1:70:36:e0:a3:1f:87: 91:1d:4f:49:b0:b8:4e:34:48:39:17:08:ea:1a:18: 03:38:d3:41:ad:9e:42:e6:b5:62:82:09:7d:df:f6: 1b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:ED:B1:5E:D5:18:9E:5D:72:E9:B9:D8:DF:EE:DF:98:17:21:13:3F X509v3 Authority Key Identifier: keyid:2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:01:c9:bc:72:7e:b6:3d:30:27:4a:fa:76:00:0b:15:1a:58: c4:af:ba:c4:1d:79:2c:d4:0e:1c:4c:be:3a:73:21:9c:f9:27: bb:f3:92:0c:75:27:31:91:44:81:aa:df:19:ba:e9:91:91:da: 6b:14:45:5d:82:da:95:eb:08:9c:a4:bb:68:8e:67:72:0c:a9: eb:0e:af:0b:2f:ca:23:0b:c5:9c:7b:53:0b:89:bd:53:ff:b3: 73:bc:1c:e3:4c:3b:ee:be:a9:83:f3:36:c0:57:21:39:19:33: 32:e0:3a:05:9e:b2:39:0a:23:29:c4:02:ce:3a:0f:1f:e9:6f: 34:b0:8a:1e:72:2b:13:10:e6:8d:84:c7:32:ee:24:99:4d:8b: 74:5c:e5:c3:ca:59:52:11:86:4c:16:eb:de:bc:a5:9e:20:b7: 3f:90:1a:3f:61:34:40:80:7f:4a:fe:e3:ea:a9:1c:ea:75:d9: 3e:fc:de:17:53:fe:1e:1e:f5:46:84:12:0b:76:14:2b:9c:ed: 14:b0:39:dd:86:b5:2f:d8:80:53:ed:ad:ce:45:f5:f1:3e:05: 13:57:e9:83:e6:40:66:2d:30:35:79:06:09:4b:d2:10:a0:fd: 30:3e:9c:4c:5f:15:4b:bd:7b:c7:50:68:a3:32:08:75:b1:e4: 08:09:86:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI0MEIxMTAvBgNVBAUTKDJBNkYxMjA0MTJEODIwRjlGRjI0Q0QwNUQ1RUNGNDlF NjYyRDk5Q0EwHhcNMjQwNTE4MTYyMjUxWhcNMjQwNTI1MTYyMjUxWjAYMRYwFAYD VQQDEw02NjQ4ZDVkYy1mNzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9GMAbl+jV+rsszGfl/zJLW1QccSw6oSnyBLyFDmJoEhJFWfBOdnnrN4FJIps wHjqjP6hGmFpCzvyN21jauPYUDC+dx71umNnLqGZ4xMlSr9F5qT8uLQ3S/v33Rqr oczcOTD8aHGNV7t6gV4tzhDN491CWWCYt3mZEaaRozwBcTb3PT3xzN4ookRkw4Cv ldheb2SH3zCqTPbyNO27NBXALyXTvQvvx6xsyXujb3O8nS1rMKQcikd2lOM2oIGW bUn7pSuRWd6S+brneAnDu8ahA2If60URtvd2fqFwNuCjH4eRHU9JsLhONEg5Fwjq GhgDONNBrZ5C5rViggl93/YbZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPtsV7V GJ5dcum52N/u35gXIRM/MB8GA1UdIwQYMBaAFCpvEgQS2CD5/yTNBdXs9J5mLZnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjQwQi81QjczNkQ5MjQz MzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQbl9KTTBGMWV6MG5tWXRt Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttOFNCQkxZSVBuX0pNMEYxZXowbm1ZdG1jby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjQwQi81QjczNkQ5MjQzMzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQ bl9KTTBGMWV6MG5tWXRtY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACAcm8cn62PTAnSvp2AAsVGljEr7rEHXks1A4cTL46cyGc+Se785IM dScxkUSBqt8ZuumRkdprFEVdgtqV6wicpLtojmdyDKnrDq8LL8ojC8Wce1MLib1T /7NzvBzjTDvuvqmD8zbAVyE5GTMy4DoFnrI5CiMpxALOOg8f6W80sIoecisTEOaN hMcy7iSZTYt0XOXDyllSEYZMFuvevKWeILc/kBo/YTRAgH9K/uPqqRzqddk+/N4X U/4eHvVGhBILdhQrnO0UsDndhrUv2IBT7a3ORfXxPgUTV+mD5kBmLTA1eQYJS9IQ oP0wPpxMXxVLvXvHUGijMgh1seQICYYw -----END CERTIFICATE-----Generated at Sat May 18 16:57:55 2024 by rpki-client on console-fra.rpki-client.org