$ rpki-client -vvf rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft File: KOAXfHClckcH27FJ7VV8D4FW4Ok.mft (raw, json) Hash identifier: VoKkRJ9+HSgQO6wDzTGRQ49IlXngm6PC7jVBk45U7vw= Subject key identifier: 3C:6D:05:44:B7:B6:67:3F:53:7F:AA:A3:65:45:7E:35:B9:AC:B5:04 Authority key identifier: 28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 Certificate issuer: /CN=A9136109/serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Certificate serial: 050E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft Manifest number: 0501 Signing time: Wed 01 May 2024 01:34:08 +0000 Manifest this update: Wed 01 May 2024 01:34:08 +0000 Manifest next update: Wed 08 May 2024 01:34:08 +0000 Files and hashes: 1: KOAXfHClckcH27FJ7VV8D4FW4Ok.crl (hash: yfOZXT42nG2ot/zS3BUyTP0FvTMcM/j2DHiSt0bBaUA=) 2: 590697D6465611EE8128031BC4F9AE02.roa (hash: GjMNzKAU9vUedZERFscZm/kqyfvILrLHW9BkAqVu3Ew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1294 (0x50e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136109/serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Validity Not Before: May 1 01:34:08 2024 GMT Not After : May 8 01:34:08 2024 GMT Subject: CN=66319c10-118d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:cb:31:7e:26:b8:72:63:80:c5:31:a5:6f:9a: 32:55:c7:fc:31:37:a9:df:56:e7:07:57:69:41:61: 79:1c:a1:5e:5e:32:57:a8:be:44:d7:cc:75:5b:97: 3b:b4:57:40:b6:3a:ce:4b:44:b9:e3:7b:d2:57:89: 08:d1:05:a0:87:3e:bc:ca:b2:40:ee:ce:21:7d:b7: ac:96:2e:29:79:00:8f:77:af:23:94:7b:fe:f0:ea: 01:88:f7:35:6e:b3:f1:bd:e1:39:cc:c3:b6:18:14: 70:a9:5b:9d:9b:2b:18:d7:2d:86:d7:0d:7d:2c:f5: 28:c8:ac:8e:8b:98:5c:9c:b2:d2:6e:a7:c5:c5:fd: 7c:78:58:91:ab:64:d1:01:c4:55:6f:56:fe:79:fa: 48:47:8a:1a:98:c5:ea:02:40:d0:a8:e2:42:95:2d: 74:d1:e2:3c:31:da:2b:a8:37:6c:4f:f5:28:9b:7e: 45:ce:a3:c9:ec:11:f2:0d:ce:2c:0d:a4:69:23:41: b2:b8:50:8b:93:fb:28:63:22:94:29:56:c3:0f:98: 85:50:4b:75:3c:6f:eb:e3:1b:9a:ab:6b:ee:5b:72: 02:a9:26:08:16:51:c8:12:cf:d0:f0:2d:41:35:5f: 1b:a2:2a:b5:2e:d1:ec:33:3e:1d:b2:63:76:ea:40: 86:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:6D:05:44:B7:B6:67:3F:53:7F:AA:A3:65:45:7E:35:B9:AC:B5:04 X509v3 Authority Key Identifier: keyid:28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:10:d2:1a:aa:d6:fa:0e:04:0d:3c:65:db:ee:48:1c:20:54: b7:7d:d8:6e:ea:95:87:d2:25:e1:b2:b8:23:8e:9b:d1:de:d0: 56:24:bb:56:c5:c6:ef:65:4b:1a:ed:86:f1:c7:40:0d:93:99: 7e:b9:37:98:d9:bd:16:30:98:b0:c5:df:95:be:d1:a7:2a:77: fd:36:c7:59:8f:bd:00:17:28:62:b8:f5:f4:5d:ad:1a:a5:a6: d3:74:4b:78:4c:a3:65:28:a8:36:b2:54:43:42:19:43:b7:3e: 15:84:4e:2b:04:cc:27:98:66:ac:6c:13:cc:12:23:3c:fb:99: bf:4e:67:03:2d:36:a2:6d:c6:a2:15:77:18:1a:5a:aa:9f:42: a9:a9:a1:18:f1:49:f7:93:de:23:f2:d2:5f:5e:cc:4e:2b:1c: 5d:b8:c7:03:85:28:28:b3:94:d7:46:53:cf:e3:87:fa:c3:e9: 93:a4:ba:b1:9f:b1:82:fd:35:d8:0f:a8:2a:7c:64:72:e8:1e: 10:0f:40:db:41:fb:1e:8d:0d:d7:69:b0:d6:c3:14:82:95:7b: e8:21:1b:d2:bd:0b:c5:37:3e:54:d1:a3:1b:9c:bc:fe:12:58: 22:cd:ac:d9:cb:15:fa:a9:23:9e:57:bc:5d:58:14:f8:35:cd: 72:d6:2c:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYxMDkxMTAvBgNVBAUTKDI4RTAxNzdDNzBBNTcyNDcwN0RCQjE0OUVENTU3QzBG ODE1NkUwRTkwHhcNMjQwNTAxMDEzNDA4WhcNMjQwNTA4MDEzNDA4WjAYMRYwFAYD VQQDEw02NjMxOWMxMC0xMThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ssxfia4cmOAxTGlb5oyVcf8MTep31bnB1dpQWF5HKFeXjJXqL5E18x1W5c7 tFdAtjrOS0S543vSV4kI0QWghz68yrJA7s4hfbesli4peQCPd68jlHv+8OoBiPc1 brPxveE5zMO2GBRwqVudmysY1y2G1w19LPUoyKyOi5hcnLLSbqfFxf18eFiRq2TR AcRVb1b+efpIR4oamMXqAkDQqOJClS100eI8MdorqDdsT/Uom35FzqPJ7BHyDc4s DaRpI0GyuFCLk/soYyKUKVbDD5iFUEt1PG/r4xuaq2vuW3ICqSYIFlHIEs/Q8C1B NV8boiq1LtHsMz4dsmN26kCGUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDxtBUS3 tmc/U3+qo2VFfjW5rLUEMB8GA1UdIwQYMBaAFCjgF3xwpXJHB9uxSe1VfA+BVuDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjEwOS9DODIwNzIxMkM1 MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNrY0gyN0ZKN1ZWOEQ0Rlc0 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPQVhmSENsY2tjSDI3Rko3VlY4RDRGVzRPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjEwOS9DODIwNzIxMkM1MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNr Y0gyN0ZKN1ZWOEQ0Rlc0T2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/ENIaqtb6DgQNPGXb7kgcIFS3fdhu6pWH0iXhsrgjjpvR3tBWJLtW xcbvZUsa7Ybxx0ANk5l+uTeY2b0WMJiwxd+VvtGnKnf9NsdZj70AFyhiuPX0Xa0a pabTdEt4TKNlKKg2slRDQhlDtz4VhE4rBMwnmGasbBPMEiM8+5m/TmcDLTaibcai FXcYGlqqn0KpqaEY8Un3k94j8tJfXsxOKxxduMcDhSgos5TXRlPP44f6w+mTpLqx n7GC/TXYD6gqfGRy6B4QD0DbQfsejQ3XabDWwxSClXvoIRvSvQvFNz5U0aMbnLz+ ElgizazZyxX6qSOeV7xdWBT4Nc1y1izO -----END CERTIFICATE-----Generated at Wed May 1 02:08:02 2024 by rpki-client on console-fra.rpki-client.org