$ rpki-client -vvf rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft File: kDo4Q2eaCxBdykhcPWSPPREnL7c.mft (raw, json) Hash identifier: HiwnZvV2/AhEcnRezJxtZ1xOsfEsp2srxks3YrvlnDc= Subject key identifier: 77:EB:33:63:5F:C3:40:FC:2F:BE:69:95:A5:78:E0:43:38:23:6C:8D Authority key identifier: 90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 Certificate issuer: /CN=A914E488/serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft Manifest number: 0178 Signing time: Fri 03 May 2024 04:52:26 +0000 Manifest this update: Fri 03 May 2024 04:52:25 +0000 Manifest next update: Fri 10 May 2024 04:52:25 +0000 Files and hashes: 1: kDo4Q2eaCxBdykhcPWSPPREnL7c.crl (hash: 7Ch80prgMnwrVMQEB/Oomk2wJojXcnuC6AY7g00yhmE=) 2: 606EB6AE240911EDBFA59C27C4F9AE02.roa (hash: 0UV0yRwSr/VzYmy257JD3ubhqkS2cDn4vJ8Zt4cfw48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E488/serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Validity Not Before: May 3 04:52:25 2024 GMT Not After : May 10 04:52:25 2024 GMT Subject: CN=66346d8a-cca9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b8:cd:86:88:7f:37:47:41:c5:3b:8c:4c:ad: 16:a1:c5:20:6d:f8:ad:af:a5:1f:0c:04:4e:47:56: b3:e4:7d:f7:0d:45:f0:aa:d4:f9:36:74:6d:93:39: 4d:b0:66:45:84:f7:22:44:4e:5d:5f:27:dc:b5:96: b7:2b:b6:8b:e5:dd:08:bf:3e:7b:f3:ed:97:12:3b: 9a:72:d1:69:d3:fb:2d:f5:2d:91:a3:90:aa:bc:bc: e3:3d:58:85:cd:7c:b3:ea:49:7c:17:4c:9d:7b:72: 16:15:b1:eb:78:f2:64:eb:92:2e:d2:a5:46:f3:cd: c0:fa:ed:82:34:38:ba:29:3e:29:22:f9:48:7e:68: 97:3a:2d:e6:20:a2:6d:73:ad:c9:79:9f:3d:86:90: c2:dc:7d:ad:3e:b0:f5:62:93:64:62:4b:dd:70:aa: b3:28:a4:48:6e:ff:c1:77:91:0b:f8:69:1b:e0:22: ed:77:5f:62:3d:4c:0f:6d:d9:47:00:ac:c7:82:0d: da:f2:c4:c2:12:38:4c:5e:e2:8e:38:5f:17:8f:2d: 23:20:10:fc:a7:2d:06:9a:df:61:94:54:3a:6e:25: e5:ba:40:a0:a9:e8:c3:b2:a3:5a:7c:9e:26:1a:02: 36:f0:bd:24:25:62:7c:0d:7f:82:53:9e:45:b2:e4: 96:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:EB:33:63:5F:C3:40:FC:2F:BE:69:95:A5:78:E0:43:38:23:6C:8D X509v3 Authority Key Identifier: keyid:90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:e4:b5:0b:05:23:c2:06:87:f8:95:80:6d:b8:75:fd:a5:83: 10:4b:bd:37:83:15:f8:fc:03:ba:81:ae:24:b2:ea:70:65:b6: 1b:a5:8b:e1:e9:20:a2:ff:fd:6c:0d:3c:cb:b5:72:8a:92:d8: 00:a1:5e:3c:13:88:f4:06:c0:49:1e:5a:69:1d:af:cf:5e:71: 37:c1:05:6a:0d:e5:f2:f8:53:8b:b9:8a:38:7c:ea:d6:e4:8a: 3c:42:0d:c7:4c:27:6b:16:e1:8a:01:c1:ca:c0:ea:32:6c:3f: dc:88:d2:bb:0b:6e:36:2c:4c:4f:3d:f1:9c:2e:aa:95:c8:a4: 29:ae:61:da:69:6f:42:b3:aa:10:35:1b:6e:07:1c:7b:e3:a6: 24:fc:7a:0d:2a:cb:07:7e:1c:11:be:d1:18:d3:34:43:c9:7a: 08:de:1d:1e:2b:19:f2:ca:9b:58:7b:76:04:d6:2e:49:e8:93: 17:a7:0f:7f:b6:1d:be:eb:89:33:38:b2:21:3d:c1:18:88:65: 0c:80:ba:45:f5:35:d5:33:aa:03:33:df:47:d0:03:dd:ef:4f: 48:13:15:63:25:c8:75:cf:aa:17:96:3b:4f:30:e1:69:cc:ad: 53:2c:69:ae:ff:ac:9d:7e:a5:a1:b8:ce:f2:10:c6:a8:99:ec: 8a:85:0c:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU0ODgxMTAvBgNVBAUTKDkwM0EzODQzNjc5QTBCMTA1RENBNDg1QzNENjQ4RjNE MTEyNzJGQjcwHhcNMjQwNTAzMDQ1MjI1WhcNMjQwNTEwMDQ1MjI1WjAYMRYwFAYD VQQDEw02NjM0NmQ4YS1jY2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLjNhoh/N0dBxTuMTK0WocUgbfitr6UfDAROR1az5H33DUXwqtT5NnRtkzlN sGZFhPciRE5dXyfctZa3K7aL5d0Ivz578+2XEjuactFp0/st9S2Ro5CqvLzjPViF zXyz6kl8F0yde3IWFbHrePJk65Iu0qVG883A+u2CNDi6KT4pIvlIfmiXOi3mIKJt c63JeZ89hpDC3H2tPrD1YpNkYkvdcKqzKKRIbv/Bd5EL+Gkb4CLtd19iPUwPbdlH AKzHgg3a8sTCEjhMXuKOOF8Xjy0jIBD8py0Gmt9hlFQ6biXlukCgqejDsqNafJ4m GgI28L0kJWJ8DX+CU55FsuSWhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHfrM2Nf w0D8L75plaV44EM4I2yNMB8GA1UdIwQYMBaAFJA6OENnmgsQXcpIXD1kjz0RJy+3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTQ4OC9GODg2OThDQTI0 MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4QmR5a2hjUFdTUFBSRW5M N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEbzRRMmVhQ3hCZHlraGNQV1NQUFJFbkw3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTQ4OC9GODg2OThDQTI0MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4 QmR5a2hjUFdTUFBSRW5MN2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCp5LULBSPCBof4lYBtuHX9pYMQS703gxX4/AO6ga4ksupwZbYbpYvh 6SCi//1sDTzLtXKKktgAoV48E4j0BsBJHlppHa/PXnE3wQVqDeXy+FOLuYo4fOrW 5Io8Qg3HTCdrFuGKAcHKwOoybD/ciNK7C242LExPPfGcLqqVyKQprmHaaW9Cs6oQ NRtuBxx746Yk/HoNKssHfhwRvtEY0zRDyXoI3h0eKxnyyptYe3YE1i5J6JMXpw9/ th2+64kzOLIhPcEYiGUMgLpF9TXVM6oDM99H0APd709IExVjJch1z6oXljtPMOFp zK1TLGmu/6ydfqWhuM7yEMaomeyKhQwM -----END CERTIFICATE-----Generated at Fri May 3 06:28:38 2024 by rpki-client on console-fra.rpki-client.org