$ rpki-client -vvf rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft File: klUgH_qh5mcsBsLfbovhFYLML64.mft (raw, json) Hash identifier: yaLMfK8UBMGi4TEh2MXULzW3BPpuushsXNzQkcBgqLQ= Subject key identifier: D3:D7:33:9A:A4:CE:3A:38:3C:EE:70:80:05:11:0F:62:13:C1:F5:9A Authority key identifier: 92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE Certificate issuer: /CN=A9112A7D/serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Certificate serial: 0174 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft Manifest number: 0172 Signing time: Sat 27 Apr 2024 04:43:09 +0000 Manifest this update: Sat 27 Apr 2024 04:43:09 +0000 Manifest next update: Sat 04 May 2024 04:43:09 +0000 Files and hashes: 1: klUgH_qh5mcsBsLfbovhFYLML64.crl (hash: sU56EAmTRVSvJXP6YLHRirk335N/XkRpXXx+TabDba0=) 2: 6DE1A436246811ED82556323C4F9AE02.roa (hash: W+6IpaXFr5YBfsdhkiPj4CEvAOLvCx+9bSgI1khGFtc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 372 (0x174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112A7D/serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Validity Not Before: Apr 27 04:43:09 2024 GMT Not After : May 4 04:43:09 2024 GMT Subject: CN=662c825d-fe74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:54:cd:26:2b:2c:5d:fc:92:2f:84:39:1a:a3: 2f:f9:74:50:b8:d5:ab:9e:9a:15:22:9b:bf:8f:f2: 3c:54:eb:a8:68:94:b4:cc:c7:08:5f:09:65:42:60: 34:a9:9e:7d:2f:45:db:31:30:52:60:93:57:11:28: 6b:71:32:08:e1:bd:31:cd:d7:c0:fa:00:37:97:8d: 06:3d:41:23:be:eb:fa:73:8b:0d:70:10:14:3d:9d: c9:ac:d5:45:79:60:a3:bd:bb:df:2c:5e:08:38:6e: 22:37:14:dd:21:09:41:0a:47:0f:70:b7:65:46:fc: 0e:0d:cb:d1:8d:d6:54:b6:19:78:9e:1d:24:60:bd: 3a:e7:8e:fc:ff:d0:70:30:bd:23:d7:26:ca:9b:39: 98:31:47:3b:e0:08:75:01:1a:49:60:53:70:20:3d: 79:7a:4b:d6:76:c2:48:5a:c8:4c:9c:d4:f7:e9:86: 60:81:64:de:e0:84:d5:f7:de:fc:e0:9c:34:2c:e8: f4:c7:6b:48:44:b4:9c:30:f6:a4:99:d5:5d:70:83: 57:3d:1d:ef:d6:87:b4:27:e2:89:fe:22:86:7c:c3: bf:d7:7d:03:d7:7d:07:79:0f:99:b7:0e:ef:95:d7: 5e:8a:13:c9:9f:fa:2e:f3:7d:f5:b2:34:19:49:83: 06:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:D7:33:9A:A4:CE:3A:38:3C:EE:70:80:05:11:0F:62:13:C1:F5:9A X509v3 Authority Key Identifier: keyid:92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:f9:97:3b:4a:5a:b9:8b:dd:bf:80:49:aa:3c:10:ca:57:a5: 5b:ad:3a:7c:a8:5e:29:ba:6b:9f:2d:8c:8d:11:b3:6f:de:57: ae:c5:24:ef:5c:fd:72:c8:6b:0b:33:13:04:36:86:61:6d:ce: a8:13:4d:94:2f:e9:6d:2d:e0:fa:18:bf:97:66:66:4f:2f:ea: 7b:8e:7f:14:99:ee:b4:00:a2:d1:a9:72:da:17:c3:36:8b:4d: 8e:39:aa:80:61:97:5c:e2:07:99:d4:9f:72:4d:4a:7a:1b:48: 3a:9a:03:6d:c5:fb:c0:a0:fa:d0:ec:0b:13:05:57:79:39:30: 44:34:d1:37:91:f5:df:48:3b:80:fd:0f:4c:e8:93:31:27:bd: 1d:da:1a:c6:cd:f1:11:e4:9d:44:11:bd:4f:86:e5:30:48:20: 39:28:11:c3:eb:99:0b:65:7b:0e:c3:72:8e:43:ff:23:c3:f7: d9:1e:bd:6f:29:76:04:0a:f3:55:56:e1:8b:f0:b6:57:4a:60: 93:9b:d4:b0:1b:28:c9:ad:c2:e6:2d:5e:c2:cc:a3:f0:fc:e9: e7:75:52:d6:70:69:ea:5a:96:00:42:3f:26:b0:21:4f:6c:62: f1:b6:9e:ae:f3:01:c8:e1:06:95:91:c3:6a:da:ca:e5:5d:97: 6d:66:99:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJBN0QxMTAvBgNVBAUTKDkyNTUyMDFGRkFBMUU2NjcyQzA2QzJERjZFOEJFMTE1 ODJDQzJGQUUwHhcNMjQwNDI3MDQ0MzA5WhcNMjQwNTA0MDQ0MzA5WjAYMRYwFAYD VQQDEw02NjJjODI1ZC1mZTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/VTNJissXfySL4Q5GqMv+XRQuNWrnpoVIpu/j/I8VOuoaJS0zMcIXwllQmA0 qZ59L0XbMTBSYJNXEShrcTII4b0xzdfA+gA3l40GPUEjvuv6c4sNcBAUPZ3JrNVF eWCjvbvfLF4IOG4iNxTdIQlBCkcPcLdlRvwODcvRjdZUthl4nh0kYL065478/9Bw ML0j1ybKmzmYMUc74Ah1ARpJYFNwID15ekvWdsJIWshMnNT36YZggWTe4ITV9978 4Jw0LOj0x2tIRLScMPakmdVdcINXPR3v1oe0J+KJ/iKGfMO/130D130HeQ+Ztw7v lddeihPJn/ou8331sjQZSYMG9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNPXM5qk zjo4PO5wgAURD2ITwfWaMB8GA1UdIwQYMBaAFJJVIB/6oeZnLAbC326L4RWCzC+u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkE3RC9BMDRBNjBCNDI0 NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVtY3NCc0xmYm92aEZZTE1M NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tsVWdIX3FoNW1jc0JzTGZib3ZoRllMTUw2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkE3RC9BMDRBNjBCNDI0NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVt Y3NCc0xmYm92aEZZTE1MNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2+Zc7Slq5i92/gEmqPBDKV6VbrTp8qF4pumufLYyNEbNv3leuxSTv XP1yyGsLMxMENoZhbc6oE02UL+ltLeD6GL+XZmZPL+p7jn8Ume60AKLRqXLaF8M2 i02OOaqAYZdc4geZ1J9yTUp6G0g6mgNtxfvAoPrQ7AsTBVd5OTBENNE3kfXfSDuA /Q9M6JMxJ70d2hrGzfER5J1EEb1PhuUwSCA5KBHD65kLZXsOw3KOQ/8jw/fZHr1v KXYECvNVVuGL8LZXSmCTm9SwGyjJrcLmLV7CzKPw/OnndVLWcGnqWpYAQj8msCFP bGLxtp6u8wHI4QaVkcNq2srlXZdtZpkE -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:23 2024 by rpki-client on console-ams.rpki-client.org