$ rpki-client -vvf rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft File: khdBhFmoypIuDWajy6pAZyDLSJA.mft (raw, json) Hash identifier: zt4ojXh8hdBw2XWS2MIkDA1uztAwTRvG+E300BVQdZQ= Subject key identifier: 25:E3:7D:DC:CE:8E:14:9E:BC:BB:01:2E:24:B3:3E:64:3F:36:01:67 Authority key identifier: 92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 Certificate issuer: /CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Certificate serial: 02CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft Manifest number: 02C9 Signing time: Fri 03 May 2024 03:33:36 +0000 Manifest this update: Fri 03 May 2024 03:33:36 +0000 Manifest next update: Fri 10 May 2024 03:33:36 +0000 Files and hashes: 1: khdBhFmoypIuDWajy6pAZyDLSJA.crl (hash: vgPa0dZCs9KosR+emYoRQvbU2CkI/Trq/EcIYSfkxMo=) 2: 44FBB466A03911EC9AD2F840C4F9AE02.roa (hash: WXao9tq9qETCFpXi8EL5tTh8uxUSfPglIGLC1Om7Rfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:33:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 717 (0x2cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Validity Not Before: May 3 03:33:36 2024 GMT Not After : May 10 03:33:36 2024 GMT Subject: CN=66345b10-29cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f9:3e:a2:57:07:56:15:fa:d6:39:db:c8:84: 99:fa:41:6a:26:e1:35:f8:f5:1f:1f:2c:20:89:79: 20:a8:2f:d4:5a:02:5a:9a:b5:d3:3b:c5:7f:ac:c3: ae:a7:5f:0e:6d:ea:72:d9:e5:ce:4a:0f:15:62:23: 71:1b:7e:f4:32:c2:98:14:68:37:1d:be:94:18:b9: 63:e6:69:1a:62:5f:fe:ae:2b:f3:74:fa:47:c3:1f: cc:c9:eb:81:dd:3f:7b:55:ee:19:b7:a4:3a:a3:91: cb:d1:36:60:0a:af:37:d9:f0:cf:97:e8:45:3c:df: 3d:55:5f:67:77:43:d4:ba:f6:dd:17:19:30:da:30: 7f:e1:76:01:04:43:34:76:5a:87:45:95:8e:07:f9: 32:57:f3:aa:cc:bb:54:74:25:47:f7:3e:7d:10:a3: 07:87:33:69:87:a3:c5:81:69:bc:89:2d:f7:ca:1d: 3c:dd:4c:21:76:a5:11:13:48:a2:79:42:0e:d1:b0: 68:4f:0e:09:f5:8c:4e:81:0b:2e:4d:ec:88:f7:0c: d6:b5:13:0a:21:2a:d3:0a:3f:b1:35:9b:f8:ef:6f: 0d:ce:4c:7a:ec:72:fe:8e:00:fc:a9:ec:aa:2b:2d: af:68:bb:0d:c6:c6:99:a7:90:8a:5e:8e:90:fe:dc: 03:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:E3:7D:DC:CE:8E:14:9E:BC:BB:01:2E:24:B3:3E:64:3F:36:01:67 X509v3 Authority Key Identifier: keyid:92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:a5:00:7f:20:db:db:8f:0b:24:97:74:8f:4a:fc:01:37:b8: 61:e6:9b:51:21:15:a8:c4:c1:e1:8e:88:66:12:64:fc:b0:e0: d0:d3:4e:42:f1:0b:a7:aa:30:de:91:19:c7:33:2b:11:33:17: 5e:bd:9b:42:3f:0e:0c:42:16:b9:12:ee:b6:1b:85:d5:8f:27: 0e:49:90:58:c0:62:79:86:b3:1d:2d:59:88:e1:85:d7:1f:96: eb:79:47:9a:74:28:9b:d9:e1:ca:05:bf:69:b0:52:85:8c:86: fa:fb:37:f3:ca:08:62:76:9d:ef:32:ea:a2:d5:70:64:a0:5a: 3e:b5:96:77:f5:26:98:eb:ca:ef:ed:a7:a2:20:03:c5:83:fb: 2b:ab:3c:15:ae:87:ba:c1:b7:0f:6a:f6:2e:f2:c1:8a:9b:d2: cd:b1:91:c9:22:48:7b:fc:46:c6:4b:a5:80:71:7e:2d:4b:b8: 3b:65:41:3b:67:b9:b0:ff:86:d6:74:17:76:a1:7a:bd:02:15: 1e:7a:07:dd:45:b9:24:f8:31:1a:d7:4f:22:5d:0f:b4:38:9d: 3c:94:58:b3:12:22:af:16:5b:57:e4:0a:52:dc:b8:06:1f:8b: 9b:12:6e:5f:2d:32:26:26:ab:23:7f:7f:da:36:1b:f0:bf:5b: f3:d7:96:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdCMzkxMTAvBgNVBAUTKDkyMTc0MTg0NTlBOENBOTIyRTBENjZBM0NCQUE0MDY3 MjBDQjQ4OTAwHhcNMjQwNTAzMDMzMzM2WhcNMjQwNTEwMDMzMzM2WjAYMRYwFAYD VQQDEw02NjM0NWIxMC0yOWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPk+olcHVhX61jnbyISZ+kFqJuE1+PUfHywgiXkgqC/UWgJamrXTO8V/rMOu p18Obepy2eXOSg8VYiNxG370MsKYFGg3Hb6UGLlj5mkaYl/+rivzdPpHwx/MyeuB 3T97Ve4Zt6Q6o5HL0TZgCq832fDPl+hFPN89VV9nd0PUuvbdFxkw2jB/4XYBBEM0 dlqHRZWOB/kyV/OqzLtUdCVH9z59EKMHhzNph6PFgWm8iS33yh083UwhdqURE0ii eUIO0bBoTw4J9YxOgQsuTeyI9wzWtRMKISrTCj+xNZv4728Nzkx67HL+jgD8qeyq Ky2vaLsNxsaZp5CKXo6Q/twDPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCXjfdzO jhSevLsBLiSzPmQ/NgFnMB8GA1UdIwQYMBaAFJIXQYRZqMqSLg1mo8uqQGcgy0iQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0IzOS9BNzU5OUQ3QUEw MzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lwSXVEV2FqeTZwQVp5RExT SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toZEJoRm1veXBJdURXYWp5NnBBWnlETFNKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0IzOS9BNzU5OUQ3QUEwMzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lw SXVEV2FqeTZwQVp5RExTSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3pQB/INvbjwskl3SPSvwBN7hh5ptRIRWoxMHhjohmEmT8sODQ005C 8QunqjDekRnHMysRMxdevZtCPw4MQha5Eu62G4XVjycOSZBYwGJ5hrMdLVmI4YXX H5breUeadCib2eHKBb9psFKFjIb6+zfzyghidp3vMuqi1XBkoFo+tZZ39SaY68rv 7aeiIAPFg/srqzwVroe6wbcPavYu8sGKm9LNsZHJIkh7/EbGS6WAcX4tS7g7ZUE7 Z7mw/4bWdBd2oXq9AhUeegfdRbkk+DEa108iXQ+0OJ08lFizEiKvFltX5ApS3LgG H4ubEm5fLTImJqsjf3/aNhvwv1vz15YK -----END CERTIFICATE-----Generated at Fri May 3 04:36:46 2024 by rpki-client on console-ams.rpki-client.org