$ rpki-client -vvf rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft File: kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft (raw, json) Hash identifier: Z6CFR5OBpGKLO2aZFGYws+4ZmT62g9MciWnCoUsKaz8= Subject key identifier: 1E:72:90:13:16:DA:C8:1B:FC:84:1C:C3:75:94:21:C2:F2:9E:43:D0 Authority key identifier: 91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 Certificate issuer: /CN=A9115CB5/serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Certificate serial: 0489 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft Manifest number: 047F Signing time: Sun 05 May 2024 01:48:17 +0000 Manifest this update: Sun 05 May 2024 01:48:17 +0000 Manifest next update: Sun 12 May 2024 01:48:17 +0000 Files and hashes: 1: kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl (hash: 5MuagCNgy+/jeo7QaZrUhqDzvdUNPEuHamRJEoYBsW8=) 2: C41538940B4711EC99840631C4F9AE02.roa (hash: xDOP2UJve02vyF5meHGaC2ZZRzQVk68R72yk6cvo904=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1161 (0x489) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115CB5/serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Validity Not Before: May 5 01:48:17 2024 GMT Not After : May 12 01:48:17 2024 GMT Subject: CN=6636e561-cf72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:34:34:d4:53:0d:9f:b1:b6:cd:60:e7:92:66: 1b:e7:62:26:ec:64:62:22:d0:82:11:64:8d:f5:30: 08:70:5c:35:8a:3d:9a:ce:8d:68:01:2d:61:da:4f: a2:ba:5f:32:40:f2:19:cf:e3:21:71:2a:28:5e:8d: 20:45:3d:91:64:4a:70:3f:67:6b:86:2b:60:51:0d: 80:a6:79:bf:be:4e:96:8f:50:10:83:31:41:13:55: 2a:2e:0d:63:6c:58:1c:63:21:a0:06:44:94:c5:9d: 12:8d:d6:a5:00:e1:7c:cc:8a:86:f6:ee:9b:29:80: 91:74:d8:04:2c:09:49:88:12:ba:74:83:4b:90:8b: 6a:e4:58:d1:17:ff:cd:c6:de:ae:95:93:cc:80:3e: c2:ca:1f:77:3f:2c:67:6e:f5:4f:3b:fb:03:d4:2e: 28:91:88:1b:22:4a:ab:20:a1:6b:92:20:3a:a7:64: ab:86:f4:94:34:c8:09:c2:6c:03:e2:72:00:b4:6a: fd:e5:c3:47:c5:44:e3:22:51:5d:ab:24:3d:fb:28: df:af:ec:69:a1:49:7c:10:13:7d:a6:ed:fa:45:2c: ee:3d:d8:9a:4a:7c:ec:f8:60:c8:e4:4c:10:87:b9: 00:4d:92:90:6a:5e:2e:22:ed:de:0c:4d:a3:a2:5e: ad:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:72:90:13:16:DA:C8:1B:FC:84:1C:C3:75:94:21:C2:F2:9E:43:D0 X509v3 Authority Key Identifier: keyid:91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:16:84:15:97:f6:92:2e:9c:ed:ae:94:a8:70:24:56:fc:53: cb:8c:58:18:8d:c8:70:fb:45:01:26:9b:f3:2b:04:5c:c8:4b: c9:04:e8:59:2b:6e:13:12:53:43:b2:c7:4e:7b:d5:86:4a:8e: c4:a3:c9:40:3f:4f:b8:72:9c:90:22:5a:13:13:78:df:83:e1: 2f:97:ea:f3:fd:ef:3a:ad:97:c1:5a:00:54:3d:a5:7f:71:d6: 06:01:f3:91:8a:c0:2d:43:af:65:5c:3f:a4:6b:3e:4c:e4:67: cb:ad:64:2b:60:7c:99:92:f5:d6:5a:ab:ff:99:21:7d:b5:2f: a9:61:2e:94:0a:7a:0a:38:1b:8f:4b:79:46:45:9f:11:39:cd: 10:0a:8a:07:39:f8:30:7e:34:c4:89:b2:7e:42:88:fb:19:20: 49:58:9d:86:1f:df:14:36:f3:b4:23:1a:f0:f2:2a:1e:1f:2d: 02:9d:42:b8:ab:b3:28:e5:55:f5:6f:c3:c2:a0:9f:b3:b7:4e: f7:84:b3:ad:1e:37:33:34:32:08:b4:bc:46:e3:8e:78:68:b2: 43:1a:c6:88:c1:7d:f2:28:a8:93:12:15:80:5d:23:f4:3b:57: ad:0a:7d:0f:0a:84:5e:09:59:5f:2b:5e:42:e8:a8:57:8f:dc: e0:3c:ca:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDQjUxMTAvBgNVBAUTKDkxRjQ5MzlBQkFFRDQwRkEzNjZFQ0M3NjM1OURDQTJC Q0I2OENFNDcwHhcNMjQwNTA1MDE0ODE3WhcNMjQwNTEyMDE0ODE3WjAYMRYwFAYD VQQDEw02NjM2ZTU2MS1jZjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjQ01FMNn7G2zWDnkmYb52Im7GRiItCCEWSN9TAIcFw1ij2azo1oAS1h2k+i ul8yQPIZz+MhcSooXo0gRT2RZEpwP2drhitgUQ2Apnm/vk6Wj1AQgzFBE1UqLg1j bFgcYyGgBkSUxZ0SjdalAOF8zIqG9u6bKYCRdNgELAlJiBK6dINLkItq5FjRF//N xt6ulZPMgD7Cyh93PyxnbvVPO/sD1C4okYgbIkqrIKFrkiA6p2SrhvSUNMgJwmwD 4nIAtGr95cNHxUTjIlFdqyQ9+yjfr+xpoUl8EBN9pu36RSzuPdiaSnzs+GDI5EwQ h7kATZKQal4uIu3eDE2jol6tcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5ykBMW 2sgb/IQcw3WUIcLynkPQMB8GA1UdIwQYMBaAFJH0k5q67UD6Nm7MdjWdyivLaM5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUNCNS9EOUZEMkRGRUYz N0YxMUVCQjI4M0U3NEFDNEY5QUUwMi9rZlNUbXJydFFQbzJic3gyTlozS0s4dG96 a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmU1RtcnJ0UVBvMmJzeDJOWjNLSzh0b3prYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NUNCNS9EOUZEMkRGRUYzN0YxMUVCQjI4M0U3NEFDNEY5QUUwMi9rZlNUbXJydFFQ bzJic3gyTlozS0s4dG96a2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXFoQVl/aSLpztrpSocCRW/FPLjFgYjchw+0UBJpvzKwRcyEvJBOhZ K24TElNDssdOe9WGSo7Eo8lAP0+4cpyQIloTE3jfg+Evl+rz/e86rZfBWgBUPaV/ cdYGAfORisAtQ69lXD+kaz5M5GfLrWQrYHyZkvXWWqv/mSF9tS+pYS6UCnoKOBuP S3lGRZ8ROc0QCooHOfgwfjTEibJ+Qoj7GSBJWJ2GH98UNvO0Ixrw8ioeHy0CnUK4 q7Mo5VX1b8PCoJ+zt073hLOtHjczNDIItLxG4454aLJDGsaIwX3yKKiTEhWAXSP0 O1etCn0PCoReCVlfK15C6KhXj9zgPMqv -----END CERTIFICATE-----Generated at Sun May 5 03:09:53 2024 by rpki-client on console-ams.rpki-client.org