$ rpki-client -vvf rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft File: KQX7MhK9YWRvt69jPqGiV7w6Pew.mft (raw, json) Hash identifier: xZGElxpdKCwIZtnIX9UdSO4iZ7QcvQ+ttrESFBCiL60= Subject key identifier: C3:01:2B:36:0A:C5:4A:51:9A:E9:54:FB:99:A1:5B:31:B2:D4:7B:13 Authority key identifier: 29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC Certificate issuer: /CN=A9156971/serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Certificate serial: 33BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft Manifest number: 33BC Signing time: Thu 02 May 2024 14:50:02 +0000 Manifest this update: Thu 02 May 2024 14:50:01 +0000 Manifest next update: Thu 09 May 2024 14:50:01 +0000 Files and hashes: 1: KQX7MhK9YWRvt69jPqGiV7w6Pew.crl (hash: Tc8sratK7RHbRQ5AsC79wSTwbl/qa4jJMi65EV5SFGQ=) 2: 362219222CA111ED86813324C4F9AE02.roa (hash: EmByI/hEDGbR7l0yLVunkRdjktgi7lvL3op9RMavJr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 14:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13246 (0x33be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156971/serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Validity Not Before: May 2 14:50:01 2024 GMT Not After : May 9 14:50:01 2024 GMT Subject: CN=6633a819-579e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c0:eb:79:80:ca:6e:e0:89:b9:e8:b1:24:8e: a5:af:9d:d8:3e:ce:7b:cf:f7:9a:78:93:51:8a:44: 33:7f:9a:b2:4a:81:cb:6b:0c:47:4f:6b:72:6a:d4: 3e:24:8d:a2:53:ca:3e:3c:bb:90:d4:db:8b:70:be: 3f:ea:be:c4:8f:03:b8:22:6b:36:ac:50:5c:13:56: a8:ea:00:c4:b6:b8:c1:c9:bf:69:68:20:1d:64:36: 5f:58:a2:5c:b8:05:f2:ab:4f:07:49:92:29:46:23: 0b:0b:3e:64:2f:ed:22:e5:3d:05:ef:9d:0b:61:60: 80:8c:93:dc:6e:98:6d:a5:b9:77:c7:73:22:c7:0b: 4e:c1:7b:a1:56:51:ad:45:4d:21:0b:f2:90:eb:7d: a0:a8:cc:af:58:f6:fe:ef:1f:e1:c6:22:e4:66:c9: 86:a7:65:19:75:bb:ed:a8:90:4f:80:a4:aa:de:96: 03:65:30:e4:c9:4f:8b:93:c7:8f:a7:2d:bb:a2:75: a5:6a:69:b6:68:f5:90:d9:d2:5e:8b:17:64:c0:b6: d1:8e:61:db:05:eb:2b:15:9c:39:b7:a5:8c:4f:0f: a1:55:d6:21:1a:fb:87:c9:df:68:40:43:a8:3d:3f: a7:0f:92:70:db:de:be:14:d3:bd:06:bb:57:3d:e7: a7:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:01:2B:36:0A:C5:4A:51:9A:E9:54:FB:99:A1:5B:31:B2:D4:7B:13 X509v3 Authority Key Identifier: keyid:29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:6e:01:95:f6:18:1e:30:2a:44:a6:b9:02:89:54:39:f0:ad: d9:a9:95:e9:5c:5f:39:c4:ff:d5:06:30:ff:cd:5d:05:b5:90: be:b3:2a:f2:a2:aa:2c:73:e2:b8:ed:d4:41:2f:93:5d:96:dc: 1f:27:1d:3a:51:d1:7b:3f:f3:07:c9:70:51:cb:0f:cc:ae:e2: e6:8c:2d:08:a3:d2:8f:ef:c6:79:87:d9:37:6e:bb:7a:d9:51: 9d:d1:c8:d7:b5:e4:e5:f1:f7:39:2e:2c:3f:fc:c3:10:51:2b: e8:4a:37:16:02:0f:e5:55:2b:6a:37:5d:56:2c:b9:68:81:b7: 7c:a9:fc:57:cc:15:fc:db:84:ec:27:f6:4c:65:3d:84:66:bb: 5f:27:62:11:e9:99:2d:dc:c1:46:15:bb:39:76:f6:95:ab:da: 88:20:74:2d:48:a1:df:09:37:cf:0d:98:c4:57:5f:c6:23:63: 6c:6f:0f:4c:4e:fe:9e:12:8f:66:98:dd:68:f3:d0:a5:08:a3: ee:03:18:9b:6f:e1:62:4f:45:48:3f:09:74:55:8d:50:89:9d: e8:de:d5:eb:81:7f:7a:04:f6:2e:29:77:3c:5e:e2:b4:d3:47: ac:7b:61:7f:81:a2:a8:8d:9d:02:e9:78:40:6c:00:9e:10:ca: 18:a9:6f:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5NzExMTAvBgNVBAUTKDI5MDVGQjMyMTJCRDYxNjQ2RkI3QUY2MzNFQTFBMjU3 QkMzQTNERUMwHhcNMjQwNTAyMTQ1MDAxWhcNMjQwNTA5MTQ1MDAxWjAYMRYwFAYD VQQDEw02NjMzYTgxOS01NzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA28DreYDKbuCJueixJI6lr53YPs57z/eaeJNRikQzf5qySoHLawxHT2tyatQ+ JI2iU8o+PLuQ1NuLcL4/6r7EjwO4Ims2rFBcE1ao6gDEtrjByb9paCAdZDZfWKJc uAXyq08HSZIpRiMLCz5kL+0i5T0F750LYWCAjJPcbphtpbl3x3MixwtOwXuhVlGt RU0hC/KQ632gqMyvWPb+7x/hxiLkZsmGp2UZdbvtqJBPgKSq3pYDZTDkyU+Lk8eP py27onWlamm2aPWQ2dJeixdkwLbRjmHbBesrFZw5t6WMTw+hVdYhGvuHyd9oQEOo PT+nD5Jw296+FNO9BrtXPeenXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMMBKzYK xUpRmulU+5mhWzGy1HsTMB8GA1UdIwQYMBaAFCkF+zISvWFkb7evYz6hole8Oj3s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njk3MS80OEMyMjE4NjFE OTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlXUnZ0NjlqUHFHaVY3dzZQ ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRWDdNaEs5WVdSdnQ2OWpQcUdpVjd3NlBldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Njk3MS80OEMyMjE4NjFEOTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlX UnZ0NjlqUHFHaVY3dzZQZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYbgGV9hgeMCpEprkCiVQ58K3ZqZXpXF85xP/VBjD/zV0FtZC+syry oqosc+K47dRBL5NdltwfJx06UdF7P/MHyXBRyw/MruLmjC0Io9KP78Z5h9k3brt6 2VGd0cjXteTl8fc5Liw//MMQUSvoSjcWAg/lVStqN11WLLlogbd8qfxXzBX824Ts J/ZMZT2EZrtfJ2IR6Zkt3MFGFbs5dvaVq9qIIHQtSKHfCTfPDZjEV1/GI2Nsbw9M Tv6eEo9mmN1o89ClCKPuAxibb+FiT0VIPwl0VY1QiZ3o3tXrgX96BPYuKXc8XuK0 00ese2F/gaKojZ0C6XhAbACeEMoYqW+5 -----END CERTIFICATE-----Generated at Thu May 2 17:18:28 2024 by rpki-client on console-ams.rpki-client.org