$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft File: K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft (raw, json) Hash identifier: RrzKRmUmv8Z6nwv8V3SqDhBQArHGjZmEGNIYn45YreI= Subject key identifier: 9D:FC:A9:41:2B:65:2A:E6:01:98:83:E1:72:E3:B2:B6:B1:1B:7A:E7 Authority key identifier: 2B:94:EB:A4:78:E9:D1:12:B1:E5:0A:0D:E3:30:D2:AD:85:8E:1C:D0 Certificate issuer: /CN=A9140E40/serialNumber=2B94EBA478E9D112B1E50A0DE330D2AD858E1CD0 Certificate serial: 20D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft Manifest number: 20D5 Signing time: Tue 14 May 2024 16:19:46 +0000 Manifest this update: Tue 14 May 2024 16:19:45 +0000 Manifest next update: Tue 21 May 2024 16:19:45 +0000 Files and hashes: 1: K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl (hash: m8B7AVY3Knxl9NcOhVDypFSK8YFOQdSwG0zkvnA+PSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 16:19:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8405 (0x20d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E40/serialNumber=2B94EBA478E9D112B1E50A0DE330D2AD858E1CD0 Validity Not Before: May 14 16:19:45 2024 GMT Not After : May 21 16:19:45 2024 GMT Subject: CN=66438f22-0775 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2b:0d:43:1d:8c:82:26:63:1e:92:7a:88:eb: 2f:9c:67:5f:a5:33:be:d9:2c:83:58:75:e3:58:f7: 2b:2e:f0:1c:a2:ca:aa:72:db:23:3a:55:15:5c:5e: f7:ad:91:12:f3:fc:a3:f9:46:77:e8:6f:82:d8:99: fd:e4:54:1f:94:0c:b5:fd:6f:57:54:ba:92:10:eb: a0:a6:2a:85:16:8a:f6:14:24:69:6f:72:a8:6b:38: bc:28:d6:13:14:82:27:33:20:db:d9:4e:9a:93:66: 0a:c3:c8:02:3e:e0:56:ca:f1:60:b4:92:30:a9:ec: 5a:99:c1:cd:99:96:be:40:e5:64:25:90:c4:26:df: ea:7a:14:a0:24:3c:87:64:f5:13:8e:43:83:a2:c3: ed:ad:85:63:f2:dc:bd:eb:d9:dd:2f:79:07:16:42: 64:09:f0:29:f3:1c:84:64:66:ab:b9:04:bf:04:be: 67:59:59:c3:b2:79:26:54:03:5c:b4:ad:5b:1d:53: 29:80:f8:c8:ac:3b:db:c0:a4:75:0d:84:54:a4:f1: 09:91:49:c4:7c:82:be:f0:e2:33:d5:e5:59:3c:ef: f6:b1:ca:da:2d:93:6e:fa:51:50:e8:50:c8:9f:b7: 7e:e3:97:38:08:c8:33:6a:fd:2a:99:4d:18:ec:51: 20:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:FC:A9:41:2B:65:2A:E6:01:98:83:E1:72:E3:B2:B6:B1:1B:7A:E7 X509v3 Authority Key Identifier: keyid:2B:94:EB:A4:78:E9:D1:12:B1:E5:0A:0D:E3:30:D2:AD:85:8E:1C:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:20:9a:3c:d7:d1:cc:e1:77:25:8f:9a:3f:b1:52:c7:0d:0e: e6:70:7c:d4:41:bc:0e:d3:d6:fc:d0:b0:fc:d8:37:3d:eb:d8: 88:6d:53:0c:aa:3e:93:c0:e9:d2:bc:a6:e9:54:1f:13:0e:c3: d6:8a:60:10:41:3d:72:11:b7:80:f1:1b:4b:71:09:20:be:d3: c0:6e:41:21:fa:3c:df:c2:ac:d5:a1:eb:fa:51:79:c5:8e:eb: 9a:80:5b:6b:d9:d2:32:b8:37:aa:9f:c6:cc:6f:93:54:73:26: 79:47:99:25:05:5d:23:0a:63:b7:2c:b0:23:ce:04:32:cb:22: db:9f:ae:5b:5c:5a:ba:3e:7f:17:f2:7a:d2:ef:74:0d:f9:b0: b4:24:62:0e:5d:70:07:7c:f1:52:ba:b2:cd:17:17:47:54:58: 65:69:22:9f:4b:b5:69:b2:04:03:b7:d5:a2:31:4c:50:bd:00: 29:6b:4c:f9:27:30:e1:67:14:38:2f:38:e2:58:17:76:eb:b9: d0:a7:5a:94:5b:a5:fb:78:4b:7a:b2:2a:78:a2:22:be:1c:ea: f2:f2:de:ee:bf:7d:14:9e:0d:c3:3a:af:5b:4f:77:33:2b:a2: 71:48:52:7b:4d:a7:4d:06:85:5e:ff:d5:3f:d9:fc:16:b6:2c: 5b:6c:23:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICINUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNDAxMTAvBgNVBAUTKDJCOTRFQkE0NzhFOUQxMTJCMUU1MEEwREUzMzBEMkFE ODU4RTFDRDAwHhcNMjQwNTE0MTYxOTQ1WhcNMjQwNTIxMTYxOTQ1WjAYMRYwFAYD VQQDEw02NjQzOGYyMi0wNzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3SsNQx2MgiZjHpJ6iOsvnGdfpTO+2SyDWHXjWPcrLvAcosqqctsjOlUVXF73 rZES8/yj+UZ36G+C2Jn95FQflAy1/W9XVLqSEOugpiqFFor2FCRpb3Koazi8KNYT FIInMyDb2U6ak2YKw8gCPuBWyvFgtJIwqexamcHNmZa+QOVkJZDEJt/qehSgJDyH ZPUTjkODosPtrYVj8ty969ndL3kHFkJkCfAp8xyEZGaruQS/BL5nWVnDsnkmVANc tK1bHVMpgPjIrDvbwKR1DYRUpPEJkUnEfIK+8OIz1eVZPO/2scraLZNu+lFQ6FDI n7d+45c4CMgzav0qmU0Y7FEgeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ38qUEr ZSrmAZiD4XLjsraxG3rnMB8GA1UdIwQYMBaAFCuU66R46dESseUKDeMw0q2FjhzQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU0MC9FMzYxMUJENkQz OEIxMUU1ODM5MkY1NERDNEY5QUUwMi9LNVRycEhqcDBSS3g1UW9ONHpEU3JZV09I TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1VHJwSGpwMFJLeDVRb040ekRTcllXT0hOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU0MC9FMzYxMUJENkQzOEIxMUU1ODM5MkY1NERDNEY5QUUwMi9LNVRycEhqcDBS S3g1UW9ONHpEU3JZV09ITkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuIJo819HM4Xclj5o/sVLHDQ7mcHzUQbwO09b80LD82Dc969iIbVMM qj6TwOnSvKbpVB8TDsPWimAQQT1yEbeA8RtLcQkgvtPAbkEh+jzfwqzVoev6UXnF juuagFtr2dIyuDeqn8bMb5NUcyZ5R5klBV0jCmO3LLAjzgQyyyLbn65bXFq6Pn8X 8nrS73QN+bC0JGIOXXAHfPFSurLNFxdHVFhlaSKfS7VpsgQDt9WiMUxQvQApa0z5 JzDhZxQ4LzjiWBd267nQp1qUW6X7eEt6sip4oiK+HOry8t7uv30Ung3DOq9bT3cz K6JxSFJ7TadNBoVe/9U/2fwWtixbbCMy -----END CERTIFICATE-----Generated at Tue May 14 19:10:13 2024 by rpki-client on console-ams.rpki-client.org