$ rpki-client -vvf rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft File: KJYksuALd009OQ9aCtELW8NfVtg.mft (raw, json) Hash identifier: QOsjPjkUW4myou1gUD2cNH0eU65XqMyZA5DqcJz/Gc8= Subject key identifier: 88:50:1B:E1:F0:66:64:3D:EB:46:AA:3E:38:12:41:26:ED:B9:07:BC Authority key identifier: 28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 Certificate issuer: /CN=A918748C/serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Certificate serial: 09B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft Manifest number: 099B Signing time: Thu 02 May 2024 21:01:20 +0000 Manifest this update: Thu 02 May 2024 21:01:20 +0000 Manifest next update: Thu 09 May 2024 21:01:20 +0000 Files and hashes: 1: KJYksuALd009OQ9aCtELW8NfVtg.crl (hash: BUf4AcIYk+2jUo3NlRte9T7Bd6Uoq9EGCA50fzvAu9E=) 2: DCE066622C7811EC97C8D979C4F9AE02.roa (hash: XeMJrNAHzwtH700102pLfUhxaHgV7f1vlB5mTcEKGII=) 3: DE137C362C7811EC97C8D979C4F9AE02.roa (hash: TQB7jU8Zhr/8/76VoHIxf8fALMt9zFnstg4O3Nba8g0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2483 (0x9b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918748C/serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Validity Not Before: May 2 21:01:20 2024 GMT Not After : May 9 21:01:20 2024 GMT Subject: CN=6633ff20-4e79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:fd:e5:a3:4d:a7:63:b0:01:7e:b0:29:77:57: 4f:cd:ee:2e:a3:e2:ff:0d:09:19:ba:f2:a9:41:ea: b0:3e:31:3e:1b:71:9b:93:8f:3e:73:f4:0a:eb:80: 7b:ae:59:30:71:f1:8c:de:59:d5:a3:03:e3:18:98: b0:54:69:14:de:cd:91:11:44:bd:43:a0:07:d0:15: fa:c8:e4:d8:b2:92:01:b9:5c:fa:ba:76:2e:85:43: 28:f2:ac:d9:a6:d8:f8:b6:c9:be:76:55:38:f1:83: f4:fd:6d:30:83:d4:df:2c:6f:bc:d3:ec:9d:e2:b5: d0:14:cd:40:e1:fa:e2:fd:69:84:a9:33:47:ce:57: 01:54:43:c0:29:62:28:d8:01:98:69:2f:07:0d:85: 8b:d8:5b:9a:40:b4:de:58:12:2f:4d:bc:81:8f:99: f7:c8:20:41:b7:7d:18:95:de:bd:34:4d:c3:e3:b0: 2f:79:df:39:80:a2:a6:ef:2b:f8:98:be:f7:bb:b8: 40:cb:a9:2f:5e:ad:99:1d:62:43:9d:b4:29:83:51: 9c:fe:ff:73:e9:7c:4f:83:e4:0d:5b:bf:35:13:fb: c5:c7:cc:1d:0c:98:22:79:a1:ee:58:07:e9:1d:bb: 5e:d2:34:ee:97:73:5c:cd:20:68:4e:37:c4:55:00: 23:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:50:1B:E1:F0:66:64:3D:EB:46:AA:3E:38:12:41:26:ED:B9:07:BC X509v3 Authority Key Identifier: keyid:28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:9c:50:c5:f3:ca:89:3d:d0:46:67:a7:b5:6a:5f:68:ea:14: f3:44:6f:81:3a:44:23:0c:02:ae:29:0c:61:7c:2c:d4:38:63: 55:ed:05:1c:69:b0:b9:0d:42:2e:2f:a1:21:11:93:01:2d:51: b2:31:c3:ee:6b:30:21:14:18:89:c2:5e:c9:a0:c6:2d:7f:07: 7c:c7:aa:ef:f0:98:ef:c7:fe:17:f1:a1:2f:72:80:70:4b:cb: 58:55:17:db:1a:80:c1:7e:15:c9:2c:f9:27:51:d3:93:6b:2d: cf:59:a7:1c:1b:e1:d2:4f:47:e4:db:f4:3b:d9:97:11:2b:c1: f3:9e:29:1b:41:fa:13:47:2e:dd:3c:c5:ad:17:cd:83:30:8a: 5b:0e:f2:44:17:a2:6b:3c:5d:1d:fb:e1:8a:44:60:b3:da:00: 03:35:6e:ba:d8:3b:e5:42:0b:73:5d:6d:8f:00:8c:ba:7c:f5: 04:da:42:7b:1e:c4:59:ca:27:e0:5e:98:a0:1b:2f:15:92:4a: 21:3e:db:26:95:3a:95:06:4b:9a:b7:92:35:6e:a3:ae:44:ce: 7a:37:6a:68:2a:d8:67:1d:35:0b:d0:38:1d:16:e4:c7:ff:d1: f7:d6:5f:26:3a:8f:f3:06:e6:bc:4b:e1:2d:fc:8c:3f:96:1b: 6a:e4:66:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0OEMxMTAvBgNVBAUTKDI4OTYyNEIyRTAwQjc3NEQzRDM5MEY1QTBBRDEwQjVC QzM1RjU2RDgwHhcNMjQwNTAyMjEwMTIwWhcNMjQwNTA5MjEwMTIwWjAYMRYwFAYD VQQDEw02NjMzZmYyMC00ZTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwv3lo02nY7ABfrApd1dPze4uo+L/DQkZuvKpQeqwPjE+G3Gbk48+c/QK64B7 rlkwcfGM3lnVowPjGJiwVGkU3s2REUS9Q6AH0BX6yOTYspIBuVz6unYuhUMo8qzZ ptj4tsm+dlU48YP0/W0wg9TfLG+80+yd4rXQFM1A4fri/WmEqTNHzlcBVEPAKWIo 2AGYaS8HDYWL2FuaQLTeWBIvTbyBj5n3yCBBt30Yld69NE3D47Aved85gKKm7yv4 mL73u7hAy6kvXq2ZHWJDnbQpg1Gc/v9z6XxPg+QNW781E/vFx8wdDJgieaHuWAfp Hbte0jTul3NczSBoTjfEVQAjDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIhQG+Hw ZmQ960aqPjgSQSbtuQe8MB8GA1UdIwQYMBaAFCiWJLLgC3dNPTkPWgrRC1vDX1bY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ4Qy9BNzREQTc3MjY0 QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQwMDlPUTlhQ3RFTFc4TmZW dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tKWWtzdUFMZDAwOU9ROWFDdEVMVzhOZlZ0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQ4Qy9BNzREQTc3MjY0QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQw MDlPUTlhQ3RFTFc4TmZWdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfnFDF88qJPdBGZ6e1al9o6hTzRG+BOkQjDAKuKQxhfCzUOGNV7QUc abC5DUIuL6EhEZMBLVGyMcPuazAhFBiJwl7JoMYtfwd8x6rv8Jjvx/4X8aEvcoBw S8tYVRfbGoDBfhXJLPknUdOTay3PWaccG+HST0fk2/Q72ZcRK8HznikbQfoTRy7d PMWtF82DMIpbDvJEF6JrPF0d++GKRGCz2gADNW662DvlQgtzXW2PAIy6fPUE2kJ7 HsRZyifgXpigGy8VkkohPtsmlTqVBkuat5I1bqOuRM56N2poKthnHTUL0DgdFuTH /9H31l8mOo/zBua8S+Et/Iw/lhtq5Gb3 -----END CERTIFICATE-----Generated at Thu May 2 22:13:19 2024 by rpki-client on console-fra.rpki-client.org