$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: ZJ7A1iKXtaPOv6j8VyXIFJ9DT8vV67U3hyUfGq3pD1Q= Subject key identifier: 04:2A:54:5A:A3:70:B4:15:F4:ED:24:F5:E8:FA:85:6D:9B:19:F9:12 Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: D8 Signing time: Sat 01 Jun 2024 07:27:13 +0000 Manifest this update: Sat 01 Jun 2024 07:27:12 +0000 Manifest next update: Sat 08 Jun 2024 07:27:12 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: YMeCxtl83GmMnPQ0qdXpRGtjg94V3IfmaMEO1BEK9n4=) 2: 424F4EB0D86111ED8E82F133C4F9AE02.roa (hash: voqPTk/BPJnQxJLLWHMyZQvm7AMsagIexzISeaCE3BQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: Jun 1 07:27:12 2024 GMT Not After : Jun 8 07:27:12 2024 GMT Subject: CN=665acd51-f6e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:32:14:81:4a:46:53:09:b4:f9:87:08:fc:04: 83:cb:be:25:16:b3:8b:fc:c9:7b:e1:b1:e7:e9:e9: 8b:3b:cb:87:98:45:7b:19:04:05:35:66:49:0c:de: c2:0c:8f:e8:16:8e:31:14:13:54:92:28:8a:20:ba: b4:60:d9:86:7a:3a:db:dd:16:4b:da:d0:38:87:c9: 80:e6:5e:a5:28:3d:c4:12:e3:a9:c3:c0:1e:07:75: 99:0d:61:7d:64:41:96:1b:8e:82:f0:a0:7f:1b:d8: 3b:b8:0c:c8:b8:0d:77:a6:7b:10:5f:da:41:e0:3c: 88:c3:80:c5:2c:e3:af:ae:65:6a:41:9d:56:66:6b: 41:d9:2e:df:5a:a9:d3:c4:e9:df:5c:89:59:1d:fe: 9c:d5:26:d9:3e:0f:04:fa:ea:3d:3c:86:1d:73:dd: ff:84:29:76:b3:70:2d:91:a0:43:c5:76:71:05:e0: 00:39:82:91:34:54:0e:a2:9e:0c:95:d1:32:b3:4a: 96:48:b3:77:70:7c:50:67:0f:5c:ac:b6:39:11:db: cc:62:c7:f3:fd:d9:6f:9e:93:25:0b:d2:0a:d3:6d: e4:30:89:83:8d:af:8a:90:ea:25:36:32:10:52:3f: 4e:52:c9:aa:29:c1:64:f9:64:4f:17:17:b2:09:0b: 80:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:2A:54:5A:A3:70:B4:15:F4:ED:24:F5:E8:FA:85:6D:9B:19:F9:12 X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:c3:17:eb:7c:3b:4b:ae:be:f2:f5:2c:8a:09:da:97:06:4d: 00:25:29:bc:8f:7f:87:6a:68:f7:61:31:2b:f4:47:4f:55:5a: 67:db:8a:1c:16:39:72:29:e0:ec:af:0d:e7:d0:4a:0a:c4:ae: cb:f4:b1:9f:20:7b:76:e4:34:66:38:51:6b:7f:0d:ee:e3:89: 4e:61:1b:ff:94:c8:09:55:0a:86:71:76:1a:d2:6e:3d:75:6a: 85:89:be:79:f2:61:f8:51:7f:65:eb:46:d2:35:10:2e:41:a3: c1:6b:69:1a:09:4d:5b:00:ba:cf:ac:f6:11:94:10:d0:08:7d: d2:3e:d9:2a:dc:7a:7a:ab:4d:de:8a:ac:17:36:b9:4a:02:98: f6:e4:19:8f:ea:5e:8a:21:d2:0a:8b:0d:c8:38:57:d5:dd:5e: ec:3f:dc:e9:76:a2:08:55:ad:64:62:f0:c6:c1:2f:12:f4:38: 14:b4:ad:0f:09:43:af:da:a0:74:a7:54:cb:e7:d4:17:8a:b2: 64:25:e1:b3:5e:13:99:91:78:ce:be:93:c5:55:4c:b2:44:0d: c9:77:be:98:f3:fc:b0:74:82:cc:80:b0:2a:ac:ff:17:58:5b: da:54:e4:93:3d:cf:6f:b1:f7:f6:1c:12:64:0c:8e:17:e5:28: a0:56:2d:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjQwNjAxMDcyNzEyWhcNMjQwNjA4MDcyNzEyWjAYMRYwFAYD VQQDEw02NjVhY2Q1MS1mNmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDIUgUpGUwm0+YcI/ASDy74lFrOL/Ml74bHn6emLO8uHmEV7GQQFNWZJDN7C DI/oFo4xFBNUkiiKILq0YNmGejrb3RZL2tA4h8mA5l6lKD3EEuOpw8AeB3WZDWF9 ZEGWG46C8KB/G9g7uAzIuA13pnsQX9pB4DyIw4DFLOOvrmVqQZ1WZmtB2S7fWqnT xOnfXIlZHf6c1SbZPg8E+uo9PIYdc93/hCl2s3AtkaBDxXZxBeAAOYKRNFQOop4M ldEys0qWSLN3cHxQZw9crLY5EdvMYsfz/dlvnpMlC9IK023kMImDja+KkOolNjIQ Uj9OUsmqKcFk+WRPFxeyCQuAmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQqVFqj cLQV9O0k9ej6hW2bGfkSMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtwxfrfDtLrr7y9SyKCdqXBk0AJSm8j3+Hamj3YTEr9EdPVVpn24oc FjlyKeDsrw3n0EoKxK7L9LGfIHt25DRmOFFrfw3u44lOYRv/lMgJVQqGcXYa0m49 dWqFib558mH4UX9l60bSNRAuQaPBa2kaCU1bALrPrPYRlBDQCH3SPtkq3Hp6q03e iqwXNrlKApj25BmP6l6KIdIKiw3IOFfV3V7sP9zpdqIIVa1kYvDGwS8S9DgUtK0P CUOv2qB0p1TL59QXirJkJeGzXhOZkXjOvpPFVUyyRA3Jd76Y8/ywdILMgLAqrP8X WFvaVOSTPc9vsff2HBJkDI4X5SigVi3t -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:33 2024 by rpki-client on console-fra.rpki-client.org