$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft File: kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json) Hash identifier: VrrKK66pxS2u1CadtV70zYJ+084Z+JROq3W5NKhcQ9c= Subject key identifier: CE:D3:58:AD:C6:EC:6A:71:3C:D0:EE:0A:EB:D7:CB:AF:22:C7:EB:9D Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 Certificate issuer: /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Certificate serial: 031F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft Manifest number: 031C Signing time: Fri 03 May 2024 03:10:41 +0000 Manifest this update: Fri 03 May 2024 03:10:40 +0000 Manifest next update: Fri 10 May 2024 03:10:40 +0000 Files and hashes: 1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: 3QiqYz75XX3xplDBQk79gUTXih1ljxEQA2hNyt9t0XE=) 2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: pe1MGxSi7iPtvvfwzwELVkMkZPeh6VUSzbUEm+FXObk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 799 (0x31f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Validity Not Before: May 3 03:10:40 2024 GMT Not After : May 10 03:10:40 2024 GMT Subject: CN=663455b1-a182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6f:f7:f2:80:36:89:c8:1d:07:5e:f7:11:23: 66:cf:79:26:ae:51:f3:93:d6:f1:49:63:c7:2c:96: 6d:fb:dc:c7:f5:7a:6c:df:35:e1:12:64:52:6c:85: a1:2f:d4:0e:6c:1b:0f:10:0d:4f:53:29:78:8a:80: d6:4a:ee:f4:f4:2c:1e:e9:2c:d7:5c:5f:95:36:59: 9c:d8:2c:d6:c9:e2:ed:23:8e:8b:66:5d:82:fe:84: 06:34:a6:69:f6:e9:67:e3:d5:2a:05:db:c1:67:1c: 94:e7:c0:2f:06:e4:31:9c:93:56:11:1f:9f:05:67: 71:dc:a9:99:7d:0b:c7:65:6d:84:54:54:26:ad:7b: d6:06:4b:5f:c3:9c:6c:26:f9:b0:0c:0e:54:d1:ee: 06:f7:97:96:9c:30:e1:15:f8:3b:02:7d:22:44:42: 1d:34:15:c1:e1:17:e4:32:cd:71:33:b4:87:2d:6e: 4d:f0:7a:b6:86:7b:fc:51:35:67:f1:54:ee:92:86: d5:60:2d:05:73:fd:38:17:08:f1:42:ff:50:e8:a1: ee:40:53:60:7a:72:8b:d6:13:a4:cd:0e:98:e3:7a: 3c:7d:3b:b3:3e:4b:9f:44:d2:6e:0c:a0:c5:7e:99: da:1c:6f:cb:28:eb:82:00:cd:f3:ea:40:fd:fa:f7: 04:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:D3:58:AD:C6:EC:6A:71:3C:D0:EE:0A:EB:D7:CB:AF:22:C7:EB:9D X509v3 Authority Key Identifier: keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:45:68:33:e6:ce:a2:a6:ac:49:e4:91:9a:f7:85:bd:c1:a9: 9a:f6:7f:af:c1:b5:2f:dc:ac:47:51:bf:db:78:e7:33:53:09: a2:d4:4a:ce:5c:c9:5c:b2:bd:2a:2f:76:2c:19:cc:47:96:b2: ff:ba:b0:c1:bb:84:e9:58:7d:45:b2:10:01:89:b4:cd:bb:d5: de:e2:81:53:9a:75:5f:36:e9:a3:37:5d:c5:22:96:59:49:d0: 13:08:25:ad:f6:0a:f2:7e:de:19:48:79:09:5a:64:2d:a5:dd: 09:24:b6:7b:2a:ee:8f:0d:23:a0:8e:6e:aa:80:65:69:a8:14: 67:71:bd:c6:66:38:47:f8:7c:7c:d9:5f:72:70:2b:34:61:e9: e7:00:52:13:99:f0:32:7d:f1:03:1d:d8:42:a9:de:27:d7:69: a1:cf:1a:d1:b6:90:28:df:4a:1f:76:4f:c8:c6:03:6e:85:e6: df:9f:48:0e:a9:90:0e:14:6d:a1:56:95:1d:6e:4c:c7:8b:14: 1b:72:d0:09:ae:a1:6f:7f:bc:56:b3:50:a9:60:01:8a:b2:fd: 44:d5:ce:34:b8:dd:ff:bc:b0:17:09:70:cf:e3:3e:a4:d5:71: bd:52:c3:29:e0:df:d4:97:10:d2:16:c0:c3:f3:ef:b2:99:fa: 72:33:19:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEOTMxMTAvBgNVBAUTKDkwMUY5ODkxRkJGN0YyN0Q0MTZBMUVFMDZCMzFCMDE2 NUFBRTFEQzUwHhcNMjQwNTAzMDMxMDQwWhcNMjQwNTEwMDMxMDQwWjAYMRYwFAYD VQQDEw02NjM0NTViMS1hMTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyG/38oA2icgdB173ESNmz3kmrlHzk9bxSWPHLJZt+9zH9Xps3zXhEmRSbIWh L9QObBsPEA1PUyl4ioDWSu709Cwe6SzXXF+VNlmc2CzWyeLtI46LZl2C/oQGNKZp 9uln49UqBdvBZxyU58AvBuQxnJNWER+fBWdx3KmZfQvHZW2EVFQmrXvWBktfw5xs JvmwDA5U0e4G95eWnDDhFfg7An0iREIdNBXB4RfkMs1xM7SHLW5N8Hq2hnv8UTVn 8VTukobVYC0Fc/04FwjxQv9Q6KHuQFNgenKL1hOkzQ6Y43o8fTuzPkufRNJuDKDF fpnaHG/LKOuCAM3z6kD9+vcEfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM7TWK3G 7GpxPNDuCuvXy68ix+udMB8GA1UdIwQYMBaAFJAfmJH79/J9QWoe4GsxsBZarh3F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkQ5My8wRjg3NEE3NDdG M0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2MzhuMUJhaDdnYXpHd0ZscXVI Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCLVlrZnYzOG4xQmFoN2dhekd3RmxxdUhjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkQ5My8wRjg3NEE3NDdGM0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2Mzhu MUJhaDdnYXpHd0ZscXVIY1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKRWgz5s6ipqxJ5JGa94W9wama9n+vwbUv3KxHUb/beOczUwmi1ErO XMlcsr0qL3YsGcxHlrL/urDBu4TpWH1FshABibTNu9Xe4oFTmnVfNumjN13FIpZZ SdATCCWt9gryft4ZSHkJWmQtpd0JJLZ7Ku6PDSOgjm6qgGVpqBRncb3GZjhH+Hx8 2V9ycCs0YennAFITmfAyffEDHdhCqd4n12mhzxrRtpAo30ofdk/IxgNuhebfn0gO qZAOFG2hVpUdbkzHixQbctAJrqFvf7xWs1CpYAGKsv1E1c40uN3/vLAXCXDP4z6k 1XG9UsMp4N/UlxDSFsDD8++ymfpyMxmR -----END CERTIFICATE-----Generated at Fri May 3 04:45:10 2024 by rpki-client on console-fra.rpki-client.org