$ rpki-client -vvf rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft File: _-KgNynzLTIiepnJJRWMgspUuVc.mft (raw, json) Hash identifier: wjjAiCvgT73/kf2/+BZceaR48T7r3KMZfvSuT9rH89Q= Subject key identifier: 19:3E:0C:C3:51:9C:2A:7D:07:AA:5D:7E:08:FD:D4:93:C3:E1:BD:02 Authority key identifier: FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 Certificate issuer: /CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Certificate serial: 33EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft Manifest number: 33DF Signing time: Fri 24 May 2024 14:25:28 +0000 Manifest this update: Fri 24 May 2024 14:25:28 +0000 Manifest next update: Fri 31 May 2024 14:25:28 +0000 Files and hashes: 1: _-KgNynzLTIiepnJJRWMgspUuVc.crl (hash: 8Z5tmWfSAmEzPQtUvmxSRut/2XNFGqKunLk7WSUv5Bk=) 2: A0121BD4871711EA924C6626C4F9AE02.roa (hash: 0+s+PL2T/t5/liZYenC9VRNOA7AWjKpWCtVdFdUbyQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 14:25:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13295 (0x33ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Validity Not Before: May 24 14:25:28 2024 GMT Not After : May 31 14:25:28 2024 GMT Subject: CN=6650a358-a191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d3:ce:50:05:69:5f:3f:6d:48:87:2a:a3:e9: 38:a3:0c:56:d3:22:6e:b7:9e:31:3b:ee:60:3b:2e: 34:9f:f3:b4:05:1e:78:dc:fb:8c:e9:31:ba:63:59: 84:a9:fc:e3:9d:4b:0f:40:9c:33:50:0d:b3:be:78: 37:ce:a4:1f:f7:ee:1d:71:3f:ce:fd:f6:8a:5b:87: 06:83:c7:2a:20:2b:c0:b4:a7:2d:48:85:a0:be:8c: c0:85:4f:2c:8c:d5:4b:a6:f9:d0:14:78:5d:07:20: ad:1e:21:b8:1e:ee:6f:eb:01:a6:f9:8c:94:ec:0a: 22:db:46:90:85:c9:c6:40:2a:77:cb:04:79:f2:cc: 94:c3:51:6a:45:85:52:90:e6:5e:fd:92:a9:54:07: 87:22:3a:c3:d8:f3:f1:c9:a6:b2:5b:ef:06:b7:36: 0d:26:dc:5d:84:ff:19:3c:d5:2d:2b:0b:24:5c:db: f9:42:5b:9b:02:8e:b9:80:16:00:99:db:e0:bd:96: 1b:f5:cb:06:0f:be:65:1b:5c:a3:8e:7e:f8:d6:0b: 4e:9a:ca:e4:6b:d3:b7:e7:a7:b3:c2:ac:80:50:55: d7:d4:a9:54:ba:8f:66:a4:25:17:47:ad:a4:bb:5a: 40:f9:65:b7:ce:5a:c7:bf:2e:b3:ab:83:bb:c2:3c: d0:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:3E:0C:C3:51:9C:2A:7D:07:AA:5D:7E:08:FD:D4:93:C3:E1:BD:02 X509v3 Authority Key Identifier: keyid:FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:66:3e:6d:e1:a2:31:8e:68:af:40:a8:9f:5a:90:e3:66:ff: 34:25:42:38:70:3e:4c:cf:64:38:05:8b:c9:c1:cf:54:1f:48: d4:55:8a:8f:ef:d5:d5:6b:82:6b:b6:b4:4b:8a:7d:89:21:1e: 5e:fa:32:c2:9d:92:97:5d:20:41:9c:90:a6:75:18:36:c6:56: ae:32:bc:af:5e:0c:7c:31:5a:48:3d:6d:a2:47:c1:b9:93:b0: ce:ed:64:c6:94:7e:70:3c:20:c1:8c:49:7a:0c:a0:61:de:93: f1:ff:23:1d:14:e3:4b:f3:a0:bf:68:78:23:6a:20:d5:26:e3: 75:bf:b6:de:f6:51:69:07:e2:98:8b:44:92:e1:f0:cf:8c:d9: 28:bb:6b:ec:89:10:04:30:ed:b9:93:cc:a3:79:ce:02:53:59: fd:ee:51:eb:57:1b:19:08:e1:c8:0c:32:19:fb:13:4b:91:e2: 6f:39:7f:5a:75:4a:b8:aa:92:1f:8c:5f:a6:aa:be:cc:b0:88: 5f:1f:e8:10:a6:60:c7:b1:25:39:62:96:a0:63:83:8f:f0:66: 34:5e:31:b6:c1:f0:bb:03:a8:34:08:02:14:59:4e:4d:1e:dd: 59:58:2d:14:16:e5:7a:07:ff:ad:4e:d9:0e:c7:d6:1c:05:fe: 9c:13:87:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyNUQxMTAvBgNVBAUTKEZGRTJBMDM3MjlGMzJEMzIyMjdBOTlDOTI1MTU4Qzgy Q0E1NEI5NTcwHhcNMjQwNTI0MTQyNTI4WhcNMjQwNTMxMTQyNTI4WjAYMRYwFAYD VQQDEw02NjUwYTM1OC1hMTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9POUAVpXz9tSIcqo+k4owxW0yJut54xO+5gOy40n/O0BR543PuM6TG6Y1mE qfzjnUsPQJwzUA2zvng3zqQf9+4dcT/O/faKW4cGg8cqICvAtKctSIWgvozAhU8s jNVLpvnQFHhdByCtHiG4Hu5v6wGm+YyU7Aoi20aQhcnGQCp3ywR58syUw1FqRYVS kOZe/ZKpVAeHIjrD2PPxyaayW+8GtzYNJtxdhP8ZPNUtKwskXNv5QlubAo65gBYA mdvgvZYb9csGD75lG1yjjn741gtOmsrka9O356ezwqyAUFXX1KlUuo9mpCUXR62k u1pA+WW3zlrHvy6zq4O7wjzQJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBk+DMNR nCp9B6pdfgj91JPD4b0CMB8GA1UdIwQYMBaAFP/ioDcp8y0yInqZySUVjILKVLlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjI1RC8xRjU1MDgzMDFE ODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxUSWllcG5KSlJXTWdzcFV1 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18tS2dOeW56TFRJaWVwbkpKUldNZ3NwVXVWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjI1RC8xRjU1MDgzMDFEODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxU SWllcG5KSlJXTWdzcFV1VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGZj5t4aIxjmivQKifWpDjZv80JUI4cD5Mz2Q4BYvJwc9UH0jUVYqP 79XVa4JrtrRLin2JIR5e+jLCnZKXXSBBnJCmdRg2xlauMryvXgx8MVpIPW2iR8G5 k7DO7WTGlH5wPCDBjEl6DKBh3pPx/yMdFONL86C/aHgjaiDVJuN1v7be9lFpB+KY i0SS4fDPjNkou2vsiRAEMO25k8yjec4CU1n97lHrVxsZCOHIDDIZ+xNLkeJvOX9a dUq4qpIfjF+mqr7MsIhfH+gQpmDHsSU5YpagY4OP8GY0XjG2wfC7A6g0CAIUWU5N Ht1ZWC0UFuV6B/+tTtkOx9YcBf6cE4fP -----END CERTIFICATE-----Generated at Fri May 24 18:23:01 2024 by rpki-client on console-ams.rpki-client.org