$ rpki-client -vvf rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft File: k0_yOzjsbVimyqtwe3lVUcicMf0.mft (raw, json) Hash identifier: JZ3vSTEaVqLODBdWEXjoFXpPgzRcGlvAkwXMZaGn1TE= Subject key identifier: 25:3D:F1:63:60:E7:10:A9:AF:55:1F:E5:BA:E8:34:60:FC:0E:57:C3 Authority key identifier: 93:4F:F2:3B:38:EC:6D:58:A6:CA:AB:70:7B:79:55:51:C8:9C:31:FD Certificate issuer: /CN=A917392B/serialNumber=934FF23B38EC6D58A6CAAB707B795551C89C31FD Certificate serial: 03AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft Manifest number: 03A9 Signing time: Tue 07 May 2024 02:29:59 +0000 Manifest this update: Tue 07 May 2024 02:29:59 +0000 Manifest next update: Tue 14 May 2024 02:29:59 +0000 Files and hashes: 1: k0_yOzjsbVimyqtwe3lVUcicMf0.crl (hash: poTW8ozlcB7yDiUvN+9DMt5arH1mvCBz6bmbVPpSbsA=) 2: B7BE1DAC482511ECA1A68F13C4F9AE02.roa (hash: nAVVz7XCp8kb1Zn4B/S5gZqnI7fJ2efBd8meLTE0nao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.crl rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 02:29:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 940 (0x3ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917392B/serialNumber=934FF23B38EC6D58A6CAAB707B795551C89C31FD Validity Not Before: May 7 02:29:59 2024 GMT Not After : May 14 02:29:59 2024 GMT Subject: CN=66399227-4553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:db:7a:1c:f7:df:40:e8:8d:7f:74:73:aa:a6: 45:f3:ee:15:e8:90:fa:f7:7e:e3:c4:d0:c3:fa:34: 4c:ac:01:5d:a0:75:52:cc:5a:76:9f:16:d4:9b:3e: e5:a9:2a:d0:e2:3e:f7:09:77:b7:50:fd:59:4d:fe: d4:38:79:f9:69:71:54:e9:f1:c3:95:e5:eb:0b:e3: 44:b0:36:92:2a:57:83:b3:d1:f2:50:b8:6e:35:1d: 0c:5c:27:71:c3:d3:37:4b:59:ae:43:cc:c9:81:20: 93:17:d2:a2:8c:3b:3d:3e:b6:d5:90:c0:17:df:8e: 78:d4:3a:e1:a8:96:c3:c1:8c:02:27:1d:00:cc:85: 72:77:0b:50:70:bd:4d:f6:30:de:5c:03:68:12:c6: eb:4e:0c:c2:9a:62:86:10:c3:cd:e2:ec:96:63:37: e4:a4:d3:a1:a4:08:5f:dd:40:0e:5c:4a:f7:07:ac: 1a:2d:3c:e2:5d:ab:62:43:27:52:89:57:2a:8d:d1: 1e:af:a8:ce:cc:a7:5d:08:e4:ee:30:16:6f:1e:ef: ea:13:8f:9b:37:5e:50:84:83:f8:7b:cc:d9:1a:72: fc:ca:9d:a1:41:77:a1:ec:09:9e:2b:2e:ca:61:ca: a9:1e:88:e5:30:13:a0:5a:ed:f2:22:13:51:22:7e: 5e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:3D:F1:63:60:E7:10:A9:AF:55:1F:E5:BA:E8:34:60:FC:0E:57:C3 X509v3 Authority Key Identifier: keyid:93:4F:F2:3B:38:EC:6D:58:A6:CA:AB:70:7B:79:55:51:C8:9C:31:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:1d:ef:48:c4:c7:0d:8e:cf:fc:6e:07:d2:ae:d5:eb:91:67: c6:83:ab:fb:58:47:d6:7e:07:a7:6c:1e:99:5b:36:84:57:d8: b9:3e:b6:13:0f:fb:c2:f2:54:6a:cf:49:f8:0a:85:ff:13:e5: 84:71:0e:3b:59:c9:80:1d:e1:60:ee:01:f5:3a:9b:ad:57:97: 0f:11:f3:c2:97:5a:ea:2e:70:d8:ce:a9:5c:95:8f:97:7e:3b: c4:93:f4:48:54:a7:a2:cb:3f:20:83:51:99:1a:dc:44:1c:81: e1:52:29:da:a8:33:58:66:ab:cc:db:77:26:15:54:09:2a:1d: e9:19:7e:44:ce:a8:4f:0a:ae:5f:ca:46:84:19:8b:1f:7b:b7: 72:1f:14:df:4a:f0:ed:75:f4:e5:15:c4:3b:c0:cd:d0:a2:4e: 9c:b8:8c:bb:f1:af:ef:60:02:c0:21:b1:3e:09:65:c1:24:89: 6c:51:0c:6f:77:f6:9b:4f:cf:f2:68:4a:a2:d7:b9:c1:17:9a: 14:d4:04:58:c1:97:10:cd:21:6a:46:b3:28:54:b3:71:9a:24: 92:bd:08:ca:6a:1b:db:62:29:90:68:4d:af:8c:f5:40:92:03: 6c:e8:57:88:83:98:58:24:a9:ce:45:c5:23:5d:ec:d2:e2:b1: 61:21:87:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM5MkIxMTAvBgNVBAUTKDkzNEZGMjNCMzhFQzZENThBNkNBQUI3MDdCNzk1NTUx Qzg5QzMxRkQwHhcNMjQwNTA3MDIyOTU5WhcNMjQwNTE0MDIyOTU5WjAYMRYwFAYD VQQDEw02NjM5OTIyNy00NTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmtt6HPffQOiNf3RzqqZF8+4V6JD6937jxNDD+jRMrAFdoHVSzFp2nxbUmz7l qSrQ4j73CXe3UP1ZTf7UOHn5aXFU6fHDleXrC+NEsDaSKleDs9HyULhuNR0MXCdx w9M3S1muQ8zJgSCTF9KijDs9PrbVkMAX34541DrhqJbDwYwCJx0AzIVydwtQcL1N 9jDeXANoEsbrTgzCmmKGEMPN4uyWYzfkpNOhpAhf3UAOXEr3B6waLTziXatiQydS iVcqjdEer6jOzKddCOTuMBZvHu/qE4+bN15QhIP4e8zZGnL8yp2hQXeh7AmeKy7K YcqpHojlMBOgWu3yIhNRIn5eeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCU98WNg 5xCpr1Uf5broNGD8DlfDMB8GA1UdIwQYMBaAFJNP8js47G1YpsqrcHt5VVHInDH9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzkyQi9CMjBEQUQ2NjQ4 MjMxMUVDOTM3NjgzMTJDNEY5QUUwMi9rMF95T3pqc2JWaW15cXR3ZTNsVlVjaWNN ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2swX3lPempzYlZpbXlxdHdlM2xWVWNpY01mMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzkyQi9CMjBEQUQ2NjQ4MjMxMUVDOTM3NjgzMTJDNEY5QUUwMi9rMF95T3pqc2JW aW15cXR3ZTNsVlVjaWNNZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZHe9IxMcNjs/8bgfSrtXrkWfGg6v7WEfWfgenbB6ZWzaEV9i5PrYT D/vC8lRqz0n4CoX/E+WEcQ47WcmAHeFg7gH1OputV5cPEfPCl1rqLnDYzqlclY+X fjvEk/RIVKeiyz8gg1GZGtxEHIHhUinaqDNYZqvM23cmFVQJKh3pGX5EzqhPCq5f ykaEGYsfe7dyHxTfSvDtdfTlFcQ7wM3Qok6cuIy78a/vYALAIbE+CWXBJIlsUQxv d/abT8/yaEqi17nBF5oU1ARYwZcQzSFqRrMoVLNxmiSSvQjKahvbYimQaE2vjPVA kgNs6FeIg5hYJKnORcUjXezS4rFhIYdi -----END CERTIFICATE-----Generated at Tue May 7 03:12:19 2024 by rpki-client on console-fra.rpki-client.org