$ rpki-client -vvf rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft File: KN1yVzxbraKIuDKzmB_0yYsvjFE.mft (raw, json) Hash identifier: 1htxkyMtKEd/SSWsJ2uKwF+zIpXDLnOHHum9p4V4zEk= Subject key identifier: DB:40:22:45:23:8A:7D:42:19:59:58:C6:74:41:49:FE:C1:21:EB:AB Authority key identifier: 28:DD:72:57:3C:5B:AD:A2:88:B8:32:B3:98:1F:F4:C9:8B:2F:8C:51 Certificate issuer: /CN=A9180174/serialNumber=28DD72573C5BADA288B832B3981FF4C98B2F8C51 Certificate serial: 042C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft Manifest number: 0427 Signing time: Wed 01 May 2024 02:21:15 +0000 Manifest this update: Wed 01 May 2024 02:21:14 +0000 Manifest next update: Wed 08 May 2024 02:21:14 +0000 Files and hashes: 1: KN1yVzxbraKIuDKzmB_0yYsvjFE.crl (hash: cOlQd7H0mfBobEInCsAvkuWTVKq0BpJPxNuJWY8jU4w=) 2: F6750B60168D11EC89C9CB5DC4F9AE02.roa (hash: l4t676C4vecu5rLc7rgaIRSUaMfSKmg5WMwQZnfD8tg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.crl rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 02:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1068 (0x42c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180174/serialNumber=28DD72573C5BADA288B832B3981FF4C98B2F8C51 Validity Not Before: May 1 02:21:14 2024 GMT Not After : May 8 02:21:14 2024 GMT Subject: CN=6631a71b-1b00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:06:e5:03:38:45:9d:66:0a:50:3a:88:3a:40: d8:a5:12:0c:2e:e4:d1:93:3d:55:bd:d4:04:06:e9: a0:33:cb:fa:9d:92:24:29:af:cf:3a:e2:07:24:3f: 54:6b:18:93:12:92:99:48:99:01:3c:ad:ab:c2:9c: cb:48:fb:ca:e0:8e:b0:4b:5f:17:51:d5:d9:f5:8e: 5c:9e:5d:29:bc:cc:1c:ce:71:e4:cd:f8:be:f8:24: bc:58:c0:58:1a:cb:d5:63:b5:78:3b:38:9f:1a:35: d9:63:f2:f4:fc:5f:68:af:29:22:9c:6b:82:e1:de: 57:84:e5:89:94:3a:6d:dc:27:d5:0a:e8:41:fa:75: b6:70:d2:79:42:c0:3d:b5:45:98:7e:d1:e0:9f:4d: 8d:af:cc:a3:9b:f8:ab:59:ac:5a:38:8a:f1:0e:f2: 47:7c:25:e2:ea:61:84:1c:9e:87:a7:21:c6:50:7a: 23:f7:dc:d5:1b:b7:17:f2:63:b3:fe:ab:7b:6a:b5: 5b:65:4f:6c:85:5c:eb:b6:46:a7:1b:87:bf:7e:b1: 39:25:cb:06:8a:cc:44:b8:78:61:92:5d:80:8e:6b: c3:98:0d:8d:04:93:0d:c8:a7:e4:8b:99:b0:71:6f: 8e:55:c4:75:fb:e0:be:33:49:20:95:b2:32:0d:5f: 63:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:40:22:45:23:8A:7D:42:19:59:58:C6:74:41:49:FE:C1:21:EB:AB X509v3 Authority Key Identifier: keyid:28:DD:72:57:3C:5B:AD:A2:88:B8:32:B3:98:1F:F4:C9:8B:2F:8C:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:12:12:6b:75:f5:84:58:6c:28:65:de:e9:db:53:9d:60:11: 1f:b8:19:68:73:03:a0:41:07:bc:59:d3:f7:d3:f1:71:c4:53: 75:72:92:dc:3a:fa:16:d2:50:b9:6f:f4:c7:e0:9d:f2:98:2d: a7:3d:d0:80:0b:c9:1e:2e:11:42:e6:d5:4c:39:6a:d2:ca:f7: a2:58:50:e6:2b:b8:e1:70:ed:09:9a:16:bb:7a:4b:32:5d:c1: 50:f2:c9:ee:e0:a8:3e:5b:54:1c:34:63:82:38:2c:66:55:9c: 19:2a:8e:ac:73:f2:2a:d6:71:24:f3:0d:fe:8b:05:ad:25:60: c1:e4:bf:0f:bc:ca:3a:d0:7e:a2:b1:f3:45:66:b6:fa:dd:dc: cf:ef:1f:fd:07:ef:c3:31:46:34:46:b9:68:65:5a:13:13:1f: 98:35:f8:47:eb:ad:af:72:ed:4e:cb:eb:8a:0b:c7:ac:42:8a: b9:ca:e8:6a:f5:ba:f7:33:28:7d:e5:56:7b:87:df:f2:9b:89: 26:34:64:c3:7e:cd:9b:94:9c:7f:50:24:ad:a2:d9:a7:f4:b3: f7:d6:ad:44:08:7a:8b:13:e8:7f:32:c9:bd:f5:a6:fb:e7:b0: ef:c2:37:5a:43:81:7e:e5:07:73:f7:6e:79:23:92:ef:9c:c0: 68:5c:e0:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAxNzQxMTAvBgNVBAUTKDI4REQ3MjU3M0M1QkFEQTI4OEI4MzJCMzk4MUZGNEM5 OEIyRjhDNTEwHhcNMjQwNTAxMDIyMTE0WhcNMjQwNTA4MDIyMTE0WjAYMRYwFAYD VQQDEw02NjMxYTcxYi0xYjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAblAzhFnWYKUDqIOkDYpRIMLuTRkz1VvdQEBumgM8v6nZIkKa/POuIHJD9U axiTEpKZSJkBPK2rwpzLSPvK4I6wS18XUdXZ9Y5cnl0pvMwcznHkzfi++CS8WMBY GsvVY7V4OzifGjXZY/L0/F9orykinGuC4d5XhOWJlDpt3CfVCuhB+nW2cNJ5QsA9 tUWYftHgn02Nr8yjm/irWaxaOIrxDvJHfCXi6mGEHJ6HpyHGUHoj99zVG7cX8mOz /qt7arVbZU9shVzrtkanG4e/frE5JcsGisxEuHhhkl2AjmvDmA2NBJMNyKfki5mw cW+OVcR1++C+M0kglbIyDV9jDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtAIkUj in1CGVlYxnRBSf7BIeurMB8GA1UdIwQYMBaAFCjdclc8W62iiLgys5gf9MmLL4xR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDE3NC83OUQ2NjYyQTE2 ODkxMUVDODE2MjU4MENDNEY5QUUwMi9LTjF5Vnp4YnJhS0l1REt6bUJfMHlZc3Zq RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tOMXlWenhicmFLSXVES3ptQl8weVlzdmpGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDE3NC83OUQ2NjYyQTE2ODkxMUVDODE2MjU4MENDNEY5QUUwMi9LTjF5Vnp4YnJh S0l1REt6bUJfMHlZc3ZqRkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTEhJrdfWEWGwoZd7p21OdYBEfuBlocwOgQQe8WdP30/FxxFN1cpLc OvoW0lC5b/TH4J3ymC2nPdCAC8keLhFC5tVMOWrSyveiWFDmK7jhcO0Jmha7eksy XcFQ8snu4Kg+W1QcNGOCOCxmVZwZKo6sc/Iq1nEk8w3+iwWtJWDB5L8PvMo60H6i sfNFZrb63dzP7x/9B+/DMUY0RrloZVoTEx+YNfhH662vcu1Oy+uKC8esQoq5yuhq 9br3Myh95VZ7h9/ym4kmNGTDfs2blJx/UCStotmn9LP31q1ECHqLE+h/Msm99ab7 57DvwjdaQ4F+5Qdz9255I5LvnMBoXODZ -----END CERTIFICATE-----Generated at Wed May 1 03:20:33 2024 by rpki-client on console-fra.rpki-client.org