$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft File: KtPYi16OCwUUGjvJL4XkJzoFYqE.mft (raw, json) Hash identifier: uvVTmV7KfO8V90uevJfJdkIaXZbKgvFO7L3p3NVMnLI= Subject key identifier: C1:06:C4:30:CD:A9:85:E9:77:15:0B:68:34:6F:F5:3A:0C:EB:20:72 Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 Certificate issuer: /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft Manifest number: 3B Signing time: Fri 17 May 2024 08:20:54 +0000 Manifest this update: Fri 17 May 2024 08:20:53 +0000 Manifest next update: Fri 24 May 2024 08:20:53 +0000 Files and hashes: 1: KtPYi16OCwUUGjvJL4XkJzoFYqE.crl (hash: H6aSyji/FK51Il7+yXFEFOqjbAZy7na+3d0lDwbl614=) 2: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (hash: drim/D+h+Xt+p+pnKr4+ojkoccz6AyP57BUNn870PPc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Validity Not Before: May 17 08:20:53 2024 GMT Not After : May 24 08:20:53 2024 GMT Subject: CN=66471366-d73c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:24:17:2d:ae:76:79:30:23:b0:d4:21:90:04: 01:60:4f:ae:4b:44:f3:8c:d2:e9:d0:05:1f:b7:23: dc:5a:3f:7d:c5:e2:72:d0:ae:89:80:e8:46:e9:e7: 03:26:b8:4d:d1:71:69:99:44:a5:07:cb:20:22:d7: 40:0c:cb:19:52:25:ec:d0:a7:d8:54:e8:c0:60:9a: d3:14:4b:00:f3:04:fb:e9:37:67:4f:a0:64:ac:d5: f0:5f:8f:ba:82:09:46:f2:61:ec:42:eb:c0:91:14: 93:85:d9:be:5d:ef:cf:cf:74:56:1a:bb:73:3e:47: 3c:a1:39:a7:3e:2c:8b:d2:ed:47:38:e7:a7:06:55: ce:dd:9c:80:34:d2:33:7c:65:40:59:d9:32:e6:c9: 1c:25:cb:33:a4:18:8d:09:e5:72:0f:4a:23:5b:25: 25:b5:6e:55:71:75:38:db:9f:48:56:da:9b:aa:1a: 90:13:9e:7f:7e:30:0d:b6:7c:f8:c8:df:35:10:7a: 6b:4f:88:65:55:be:de:82:b0:6d:d2:1d:57:65:16: 64:69:85:29:6f:55:77:2c:7b:5a:0b:59:f4:d4:50: ec:33:7c:12:5c:51:2a:26:45:29:36:cf:c4:6c:6e: 98:e4:f3:14:b1:ea:4f:ee:c0:83:91:c5:d2:20:c0: f7:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:06:C4:30:CD:A9:85:E9:77:15:0B:68:34:6F:F5:3A:0C:EB:20:72 X509v3 Authority Key Identifier: keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:62:f9:81:fd:ad:0c:92:02:ab:c8:ec:a3:92:1e:55:36:57: 6a:cb:bd:35:fe:8a:a3:0a:23:02:4e:05:23:8c:e6:9d:4b:e3: cf:3d:18:68:e5:e5:4d:1f:79:1d:d7:f7:e5:42:9c:a1:30:b4: 3c:db:1b:f8:69:d3:00:79:e6:a2:38:5d:1d:8e:3f:a0:be:81: 94:36:89:cc:1e:ff:de:27:d7:b9:9f:82:7e:ca:67:4f:cd:2c: 7a:be:f9:a6:17:6b:5a:2c:ee:33:66:ef:68:ea:21:04:f2:b2: 85:0f:94:e0:7d:ea:7d:16:8a:a7:4e:f2:45:5c:80:a4:93:dd: 62:18:de:1d:59:f8:24:ba:3f:74:ba:05:ca:19:27:6e:4d:08: c7:00:0b:b3:af:bb:ef:d0:2c:3d:f6:30:5f:23:8b:d8:d3:76: 43:53:d9:8f:86:93:61:90:b2:88:fb:ec:8d:4a:19:b1:ed:1a: b1:e5:81:78:5c:c6:9b:0b:07:0e:5e:5b:a7:c9:53:f5:ce:5e: 80:a0:6d:c3:8c:e3:5a:92:2f:37:32:0d:d8:a2:6d:28:77:da: 3e:ec:47:85:9b:b2:84:68:93:aa:c7:f0:9e:e5:0d:b9:70:fb: 1b:c9:e1:30:a7:42:7f:32:cb:23:f4:d5:fa:f1:f0:53:ff:4d: 3c:a7:b2:37 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MkYyNzExMC8GA1UEBRMoMkFEM0Q4OEI1RThFMEIwNTE0MUEzQkM5MkY4NUU0Mjcz QTA1NjJBMTAeFw0yNDA1MTcwODIwNTNaFw0yNDA1MjQwODIwNTNaMBgxFjAUBgNV BAMTDTY2NDcxMzY2LWQ3M2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5JBctrnZ5MCOw1CGQBAFgT65LRPOM0unQBR+3I9xaP33F4nLQromA6Ebp5wMm uE3RcWmZRKUHyyAi10AMyxlSJezQp9hU6MBgmtMUSwDzBPvpN2dPoGSs1fBfj7qC CUbyYexC68CRFJOF2b5d78/PdFYau3M+RzyhOac+LIvS7Uc456cGVc7dnIA00jN8 ZUBZ2TLmyRwlyzOkGI0J5XIPSiNbJSW1blVxdTjbn0hW2puqGpATnn9+MA22fPjI 3zUQemtPiGVVvt6CsG3SHVdlFmRphSlvVXcse1oLWfTUUOwzfBJcUSomRSk2z8Rs bpjk8xSx6k/uwIORxdIgwPc5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwQbEMM2p hel3FQtoNG/1OgzrIHIwHwYDVR0jBBgwFoAUKtPYi16OCwUUGjvJL4XkJzoFYqEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMyRjI3LzdBQ0RGOUFBQkI2 QzExRUVBNjgwQUU2REM0RjlBRTAyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllx RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS3RQWWkxNk9Dd1VVR2p2Skw0WGtKem9GWXFFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMy RjI3LzdBQ0RGOUFBQkI2QzExRUVBNjgwQUU2REM0RjlBRTAyL0t0UFlpMTZPQ3dV VUdqdkpMNFhrSnpvRllxRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALhi+YH9rQySAqvI7KOSHlU2V2rLvTX+iqMKIwJOBSOM5p1L4889GGjl 5U0feR3X9+VCnKEwtDzbG/hp0wB55qI4XR2OP6C+gZQ2icwe/94n17mfgn7KZ0/N LHq++aYXa1os7jNm72jqIQTysoUPlOB96n0WiqdO8kVcgKST3WIY3h1Z+CS6P3S6 BcoZJ25NCMcAC7Ovu+/QLD32MF8ji9jTdkNT2Y+Gk2GQsoj77I1KGbHtGrHlgXhc xpsLBw5eW6fJU/XOXoCgbcOM41qSLzcyDdiibSh32j7sR4WbsoRok6rH8J7lDblw +xvJ4TCnQn8yyyP01frx8FP/TTynsjc= -----END CERTIFICATE-----Generated at Fri May 17 10:10:49 2024 by rpki-client on console-fra.rpki-client.org