$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: xHK7WR535U3CbtblyFqJOS+vOkws0/Fb371LHvfXd/Q= Subject key identifier: A7:C7:30:83:92:FC:ED:FC:05:EE:D5:3A:57:11:C0:D2:18:27:EC:8F Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 0621 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 0619 Signing time: Sat 04 May 2024 23:58:14 +0000 Manifest this update: Sat 04 May 2024 23:58:14 +0000 Manifest next update: Sat 11 May 2024 23:58:14 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: UJeVnHpKfcPSUzU1xbbyzbY/0nqGxAeGIOv1sErGKU4=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: Iuvg3/7830UsRgOZFEh+qPoBWe8+HToEhKCpSn7OwW4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1569 (0x621) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: May 4 23:58:14 2024 GMT Not After : May 11 23:58:14 2024 GMT Subject: CN=6636cb96-0ce2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6a:f8:79:9e:03:2d:c3:c4:53:b6:97:3f:c7: d8:f7:f8:78:82:90:be:dc:0f:78:cb:23:20:2c:68: b2:59:fa:b0:42:52:1a:b8:44:03:93:d3:2b:bf:df: 02:ed:4b:c3:e9:3c:b2:fe:57:09:ba:de:81:81:f7: c0:81:a7:21:86:9d:88:0a:02:88:08:c9:a7:60:50: 3a:8d:b5:fd:f7:36:78:40:fc:d0:21:99:8a:6b:53: f5:9c:8f:d2:dd:61:45:54:21:76:09:d9:ce:b6:b0: 12:52:86:d7:9d:f3:e9:2c:9f:20:a2:22:6a:c3:55: e0:c6:68:84:7b:71:ba:d0:03:b3:44:7c:f7:f4:07: 65:ae:00:43:aa:5c:58:87:93:b5:bf:3f:7f:24:23: 7e:77:07:46:12:e1:80:33:1f:7d:e9:cf:50:27:73: c8:25:4c:5f:5c:83:40:e2:82:6b:94:9c:88:b7:df: 21:4f:78:84:d2:9c:fb:08:50:eb:45:4a:2a:71:eb: dd:f6:a7:49:18:89:df:05:e5:47:38:ff:b5:79:43: 39:d7:56:2f:00:81:5d:ff:66:14:9e:81:40:d6:6a: d3:fd:c8:a8:15:4d:29:a3:86:01:63:34:22:5d:b8: d9:82:8c:94:19:1e:94:1c:4b:c9:2c:af:d8:b2:c2: fb:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:C7:30:83:92:FC:ED:FC:05:EE:D5:3A:57:11:C0:D2:18:27:EC:8F X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:eb:b7:58:2b:04:91:40:db:4f:b5:7d:70:2b:c6:31:d7:5e: 51:17:7d:11:9d:4e:b4:30:38:13:9f:36:c5:86:d8:ea:00:77: df:fd:8f:60:f5:c2:73:45:90:a6:60:98:09:8a:14:c8:b0:7f: a4:eb:a0:c3:f2:d2:11:bd:47:9f:2f:fa:32:ce:70:c1:1f:b4: 48:7d:4e:28:23:9a:96:6d:38:55:a3:ee:ad:3a:d5:4b:ea:f8: 62:9a:05:cc:5c:27:c8:c4:d7:a7:de:ca:45:0c:14:b4:8c:79: 70:f2:7a:80:be:df:64:9a:54:39:3f:52:8c:fe:ee:0d:d8:07: 22:57:cd:bd:fa:a1:79:64:bc:52:98:df:ac:07:43:08:18:fb: ea:db:47:2f:67:bb:73:7c:0b:42:fb:ed:38:96:52:13:fa:08: c8:49:04:d4:14:1c:18:bc:1e:cd:a2:0c:b8:39:48:12:b7:3a: 79:f0:45:f3:da:4d:41:dd:69:62:28:ee:bd:a6:05:c7:e0:02: 5c:14:16:eb:9c:e7:a5:97:e9:5c:50:02:de:78:0b:9b:5a:94: 62:22:f1:01:f2:15:ea:74:dd:87:f7:17:47:5c:45:6d:84:ac: 98:b8:70:56:c3:68:72:46:af:db:2f:66:fa:e2:c5:f2:d9:9a: 5a:18:d5:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjQwNTA0MjM1ODE0WhcNMjQwNTExMjM1ODE0WjAYMRYwFAYD VQQDEw02NjM2Y2I5Ni0wY2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGr4eZ4DLcPEU7aXP8fY9/h4gpC+3A94yyMgLGiyWfqwQlIauEQDk9Mrv98C 7UvD6Tyy/lcJut6BgffAgachhp2ICgKICMmnYFA6jbX99zZ4QPzQIZmKa1P1nI/S 3WFFVCF2CdnOtrASUobXnfPpLJ8goiJqw1XgxmiEe3G60AOzRHz39AdlrgBDqlxY h5O1vz9/JCN+dwdGEuGAMx996c9QJ3PIJUxfXINA4oJrlJyIt98hT3iE0pz7CFDr RUoqcevd9qdJGInfBeVHOP+1eUM511YvAIFd/2YUnoFA1mrT/cioFU0po4YBYzQi XbjZgoyUGR6UHEvJLK/YssL7kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKfHMIOS /O38Be7VOlcRwNIYJ+yPMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC767dYKwSRQNtPtX1wK8Yx115RF30RnU60MDgTnzbFhtjqAHff/Y9g 9cJzRZCmYJgJihTIsH+k66DD8tIRvUefL/oyznDBH7RIfU4oI5qWbThVo+6tOtVL 6vhimgXMXCfIxNen3spFDBS0jHlw8nqAvt9kmlQ5P1KM/u4N2AciV829+qF5ZLxS mN+sB0MIGPvq20cvZ7tzfAtC++04llIT+gjISQTUFBwYvB7Nogy4OUgStzp58EXz 2k1B3WliKO69pgXH4AJcFBbrnOell+lcUALeeAubWpRiIvEB8hXqdN2H9xdHXEVt hKyYuHBWw2hyRq/bL2b64sXy2ZpaGNXS -----END CERTIFICATE-----Generated at Sun May 5 01:22:18 2024 by rpki-client on console-fra.rpki-client.org