$ rpki-client -vvf rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft File: kSlbu3W_quuVMbObNux1Id3jDWM.mft (raw, json) Hash identifier: dsLKFDYqiKCVTQ/93ShfiHUMtMAcffZk/4v2uhNN58Q= Subject key identifier: D7:F0:22:A1:E8:D6:0C:B7:37:29:7D:3C:60:F1:BF:48:0B:83:5D:71 Authority key identifier: 91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 Certificate issuer: /CN=A911D9B2/serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft Manifest number: 5D Signing time: Wed 15 May 2024 07:55:25 +0000 Manifest this update: Wed 15 May 2024 07:55:24 +0000 Manifest next update: Wed 22 May 2024 07:55:24 +0000 Files and hashes: 1: kSlbu3W_quuVMbObNux1Id3jDWM.crl (hash: 8vAEuGU84+CuFfTqQR9aUCV+2qbcFdF/QUK96+20M7Q=) 2: 11A28878915611EE83F61C41C4F9AE02.roa (hash: RfTnQKCPkCkXu+cLDzDjeZUnPvrVkAuWPJkazJXC7kc=) 3: 59962840D01911EE96596B16C4F9AE02.roa (hash: fYQUl3M9uMnZ4l0aWX4ltk29AzdRDyZ5gevO1DSEIvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:55:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D9B2/serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Validity Not Before: May 15 07:55:24 2024 GMT Not After : May 22 07:55:24 2024 GMT Subject: CN=66446a6c-09ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bf:ec:4f:91:91:5e:5d:57:d4:d5:92:37:04: fe:14:4c:33:6a:cf:95:5c:ea:68:c8:4c:05:4e:83: 64:bb:75:95:e7:ca:1a:64:be:13:7c:2a:73:c1:13: e7:b2:25:3c:66:77:b9:43:35:08:92:aa:e3:4b:3d: 5a:5b:1e:66:e6:2a:78:c3:45:ff:2c:37:68:43:9e: 2e:05:1f:a7:16:c8:b1:86:9d:d7:82:ee:08:11:d8: 15:8b:86:5c:0a:6e:cc:c4:1b:e8:c2:b4:3e:ee:8b: 19:e8:2e:4f:fe:32:7b:0d:45:03:05:3b:ed:b4:91: 2e:0d:d8:b8:5b:65:bc:d2:e2:89:a5:a4:5a:af:0b: 3b:25:9a:9f:07:24:9d:58:1a:6e:9e:80:ff:29:44: 9a:ab:a8:59:e8:4d:8b:7e:fb:27:60:31:a0:d0:ce: 01:b6:ae:f8:67:f6:f7:6a:46:7d:6c:09:ef:6d:b9: 80:b3:8d:2b:2b:58:ed:f7:ef:76:49:6f:41:d6:ca: 97:a0:ec:3b:c6:07:33:c7:60:9a:5b:05:f0:01:1c: 10:02:8d:04:c9:d2:14:d1:1f:59:cb:a2:9b:5b:f7: 5b:7b:29:61:d1:b0:b0:59:b3:74:2a:1e:dd:fb:85: a0:36:84:34:7f:54:e1:7b:b4:bf:1a:e5:10:f9:ce: 3c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:F0:22:A1:E8:D6:0C:B7:37:29:7D:3C:60:F1:BF:48:0B:83:5D:71 X509v3 Authority Key Identifier: keyid:91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:34:f1:c4:b3:16:16:2f:ab:30:6d:8e:49:1a:45:65:3d:06: 34:c7:65:29:ff:9a:47:26:9d:b1:5e:da:05:50:6c:55:a7:f0: ad:a5:f4:66:91:55:fd:76:a5:f0:ba:ef:3d:c0:ab:85:43:65: 4b:a6:e8:b1:3a:a9:0e:1f:93:f0:6e:79:9a:c6:5a:a8:79:ec: 31:b0:38:24:e1:8f:f6:8b:47:b0:da:cc:41:66:58:87:d8:4c: 71:f1:72:3d:44:f3:7a:d8:24:9b:08:bb:ea:1a:85:89:6e:29: 3f:c1:ab:06:da:ad:9d:94:10:da:55:3c:d9:d0:0c:92:b8:7e: 08:e9:27:f4:68:a3:7e:1c:a5:3e:ff:4e:e4:48:c4:5c:bf:02: 4a:8c:4c:fb:03:f8:b4:3f:7b:b5:88:31:77:3c:ee:fb:00:c6: 9e:ca:81:a8:97:49:e6:7a:95:d2:c6:15:d8:ed:0b:46:56:c5: 39:fb:ac:45:60:16:91:9a:85:a4:4f:22:0b:71:9d:57:3c:b5: a4:fa:6d:14:e2:62:18:40:19:19:af:1a:3a:1b:f0:b2:0a:ae: af:66:a9:29:67:1d:29:e1:07:e5:0e:b1:eb:91:41:67:6b:b9: aa:16:95:92:c0:36:19:04:29:45:27:5b:57:f1:9a:4c:c7:fa: a6:ea:e3:8d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RDlCMjExMC8GA1UEBRMoOTEyOTVCQkI3NUJGQUFFQjk1MzFCMzlCMzZFQzc1MjFE REUzMEQ2MzAeFw0yNDA1MTUwNzU1MjRaFw0yNDA1MjIwNzU1MjRaMBgxFjAUBgNV BAMTDTY2NDQ2YTZjLTA5ZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6v+xPkZFeXVfU1ZI3BP4UTDNqz5Vc6mjITAVOg2S7dZXnyhpkvhN8KnPBE+ey JTxmd7lDNQiSquNLPVpbHmbmKnjDRf8sN2hDni4FH6cWyLGGndeC7ggR2BWLhlwK bszEG+jCtD7uixnoLk/+MnsNRQMFO+20kS4N2LhbZbzS4omlpFqvCzslmp8HJJ1Y Gm6egP8pRJqrqFnoTYt++ydgMaDQzgG2rvhn9vdqRn1sCe9tuYCzjSsrWO3373ZJ b0HWypeg7DvGBzPHYJpbBfABHBACjQTJ0hTRH1nLoptb91t7KWHRsLBZs3QqHt37 haA2hDR/VOF7tL8a5RD5zjwlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1/AioejW DLc3KX08YPG/SAuDXXEwHwYDVR0jBBgwFoAUkSlbu3W/quuVMbObNux1Id3jDWMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFEOUIyLzBBNkYzQjQyOTE1 NTExRUVBNEMwRjY2OEM0RjlBRTAyL2tTbGJ1M1dfcXV1Vk1iT2JOdXgxSWQzakRX TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1NsYnUzV19xdXVWTWJPYk51eDFJZDNqRFdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFE OUIyLzBBNkYzQjQyOTE1NTExRUVBNEMwRjY2OEM0RjlBRTAyL2tTbGJ1M1dfcXV1 Vk1iT2JOdXgxSWQzakRXTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABU08cSzFhYvqzBtjkkaRWU9BjTHZSn/mkcmnbFe2gVQbFWn8K2l9GaR Vf12pfC67z3Aq4VDZUum6LE6qQ4fk/BueZrGWqh57DGwOCThj/aLR7DazEFmWIfY THHxcj1E83rYJJsIu+oahYluKT/BqwbarZ2UENpVPNnQDJK4fgjpJ/Roo34cpT7/ TuRIxFy/AkqMTPsD+LQ/e7WIMXc87vsAxp7KgaiXSeZ6ldLGFdjtC0ZWxTn7rEVg FpGahaRPIgtxnVc8taT6bRTiYhhAGRmvGjob8LIKrq9mqSlnHSnhB+UOseuRQWdr uaoWlZLANhkEKUUnW1fxmkzH+qbq440= -----END CERTIFICATE-----Generated at Wed May 15 09:27:28 2024 by rpki-client on console-fra.rpki-client.org