$ rpki-client -vvf rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft File: kakyPLNEJvPZyJDjl4Ag1BezWfU.mft (raw, json) Hash identifier: U6wBZ48dkyYuZ27nIgIxiCSamgoVr3ztx8ZhIMODhV0= Subject key identifier: 8F:39:A1:A4:10:6F:33:61:C6:06:E8:79:9B:51:38:2A:86:0E:64:DC Authority key identifier: 91:A9:32:3C:B3:44:26:F3:D9:C8:90:E3:97:80:20:D4:17:B3:59:F5 Certificate issuer: /CN=A9151265/serialNumber=91A9323CB34426F3D9C890E3978020D417B359F5 Certificate serial: 0390 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kakyPLNEJvPZyJDjl4Ag1BezWfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft Manifest number: 038C Signing time: Sat 27 Apr 2024 02:34:40 +0000 Manifest this update: Sat 27 Apr 2024 02:34:39 +0000 Manifest next update: Sat 04 May 2024 02:34:39 +0000 Files and hashes: 1: kakyPLNEJvPZyJDjl4Ag1BezWfU.crl (hash: Btqp+JeURiD7RgQT9APzkWJgYIE8UqnM+hu4SbA6akI=) 2: B1334FD4522011ECB0594C2BC4F9AE02.roa (hash: AdqmHcdVFHUJYvm1cm6+jhO3q3DYpUc6FI5IG6Qk0Vs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.crl rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kakyPLNEJvPZyJDjl4Ag1BezWfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 02:34:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 912 (0x390) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151265/serialNumber=91A9323CB34426F3D9C890E3978020D417B359F5 Validity Not Before: Apr 27 02:34:39 2024 GMT Not After : May 4 02:34:39 2024 GMT Subject: CN=662c6440-5621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:47:2c:b6:ef:9e:75:f8:89:10:ea:91:5c:71: 8b:d4:64:6a:6c:3b:07:a7:3f:7b:c2:55:d8:be:8d: 4e:50:4b:0f:d9:9d:83:87:5b:20:50:39:e0:44:98: 11:ff:66:92:0f:0f:ca:28:63:30:db:d7:2d:fa:ac: 4d:cc:d6:41:6e:74:8d:f5:ef:37:8f:ac:6c:49:40: fa:34:12:14:d4:24:a6:28:2b:3a:7d:18:eb:32:5c: df:98:48:5f:bb:c8:51:f4:8a:51:c1:bc:c3:1e:aa: 7e:0a:97:f5:40:f1:e3:23:5c:1b:88:83:ae:a6:a2: df:63:3d:c4:a5:d7:0d:7c:2c:cd:0f:cf:ba:88:73: e7:18:97:cc:a6:ac:b8:37:72:7e:83:d0:86:23:7e: c8:d2:f0:7b:a2:a5:fa:cc:97:f7:45:d6:d4:73:86: 35:1e:ea:f1:2e:24:5e:aa:6d:7c:00:c3:db:3a:68: 3b:af:53:ca:ac:f2:70:81:ae:36:0e:b3:3e:02:8c: 52:44:c5:65:86:8d:a6:93:12:4f:ff:31:84:c3:e0: 45:06:f1:13:a6:93:10:f6:b7:23:11:ac:b0:03:95: 9c:f4:3e:d0:cb:55:fc:b9:f6:65:81:4b:61:56:6e: ee:1f:d2:59:c7:73:16:77:8f:94:0c:ba:9f:f4:47: cc:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:39:A1:A4:10:6F:33:61:C6:06:E8:79:9B:51:38:2A:86:0E:64:DC X509v3 Authority Key Identifier: keyid:91:A9:32:3C:B3:44:26:F3:D9:C8:90:E3:97:80:20:D4:17:B3:59:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kakyPLNEJvPZyJDjl4Ag1BezWfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:ff:a8:da:6a:70:2b:6f:01:a4:f7:f8:28:e3:e4:9c:47:dc: 6b:c7:07:3d:10:ac:72:ff:92:7e:4c:99:b2:23:0d:cd:ab:d6: 0b:d3:b4:7f:f8:1f:24:3e:32:5e:71:75:42:21:c1:f5:f3:e6: af:8e:9c:49:82:76:20:43:0a:4a:5a:ba:a3:66:8a:9a:10:53: 6b:91:52:b1:fc:75:5a:24:9c:76:4e:9c:ab:a7:2d:ef:29:5f: a5:0d:8e:9c:d2:39:f0:ab:af:64:63:74:50:a0:56:06:ae:52: 42:76:8f:fe:91:c1:35:30:cc:1e:ef:59:e7:5c:5b:b6:79:1e: 57:5d:3e:52:eb:ca:e1:e4:ae:6b:8d:c8:62:73:26:b0:c0:fc: 5a:54:2f:a9:f1:25:14:c6:07:1b:03:ec:cd:d7:5e:16:82:1a: 18:c8:ed:e1:e5:59:95:65:ab:78:8b:6c:c7:7d:fa:3b:7b:a8: 49:19:10:e5:b3:42:45:92:74:50:e1:f2:41:2b:6c:c9:e8:b8: 61:4a:13:93:45:bb:ca:14:0a:f5:8f:66:2d:3d:74:4c:75:4e: ea:2b:c4:8b:bc:96:3e:ca:34:68:93:77:a4:4c:17:18:4b:1e: e8:54:b5:84:55:f7:cf:86:6f:e8:b0:b1:96:b0:6b:1f:e5:9a: 81:2c:5f:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEyNjUxMTAvBgNVBAUTKDkxQTkzMjNDQjM0NDI2RjNEOUM4OTBFMzk3ODAyMEQ0 MTdCMzU5RjUwHhcNMjQwNDI3MDIzNDM5WhcNMjQwNTA0MDIzNDM5WjAYMRYwFAYD VQQDEw02NjJjNjQ0MC01NjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEcstu+edfiJEOqRXHGL1GRqbDsHpz97wlXYvo1OUEsP2Z2Dh1sgUDngRJgR /2aSDw/KKGMw29ct+qxNzNZBbnSN9e83j6xsSUD6NBIU1CSmKCs6fRjrMlzfmEhf u8hR9IpRwbzDHqp+Cpf1QPHjI1wbiIOupqLfYz3EpdcNfCzND8+6iHPnGJfMpqy4 N3J+g9CGI37I0vB7oqX6zJf3RdbUc4Y1HurxLiReqm18AMPbOmg7r1PKrPJwga42 DrM+AoxSRMVlho2mkxJP/zGEw+BFBvETppMQ9rcjEaywA5Wc9D7Qy1X8ufZlgUth Vm7uH9JZx3MWd4+UDLqf9EfMkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI85oaQQ bzNhxgboeZtROCqGDmTcMB8GA1UdIwQYMBaAFJGpMjyzRCbz2ciQ45eAINQXs1n1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTI2NS8wNTcwOUFFQTUy MUYxMUVDQjNEMDE5MkJDNEY5QUUwMi9rYWt5UExORUp2UFp5SkRqbDRBZzFCZXpX ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tha3lQTE5FSnZQWnlKRGpsNEFnMUJleldmVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTI2NS8wNTcwOUFFQTUyMUYxMUVDQjNEMDE5MkJDNEY5QUUwMi9rYWt5UExORUp2 UFp5SkRqbDRBZzFCZXpXZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR/6jaanArbwGk9/go4+ScR9xrxwc9EKxy/5J+TJmyIw3Nq9YL07R/ +B8kPjJecXVCIcH18+avjpxJgnYgQwpKWrqjZoqaEFNrkVKx/HVaJJx2Tpyrpy3v KV+lDY6c0jnwq69kY3RQoFYGrlJCdo/+kcE1MMwe71nnXFu2eR5XXT5S68rh5K5r jchicyawwPxaVC+p8SUUxgcbA+zN114WghoYyO3h5VmVZat4i2zHffo7e6hJGRDl s0JFknRQ4fJBK2zJ6LhhShOTRbvKFAr1j2YtPXRMdU7qK8SLvJY+yjRok3ekTBcY Sx7oVLWEVffPhm/osLGWsGsf5ZqBLF86 -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:54 2024 by rpki-client on console-ams.rpki-client.org