$ rpki-client -vvf rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft File: KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft (raw, json) Hash identifier: YEbngRY2eO5k0NvR5tigsEW/wBoNPF7argEQC5Drj6I= Subject key identifier: AD:61:C9:75:8C:FC:51:B0:A3:A9:8A:6C:9D:69:8B:BF:F0:AE:93:FE Authority key identifier: 2A:90:07:34:C5:E3:B9:3A:CA:94:70:E3:F5:AD:DA:DC:2F:21:5B:31 Certificate issuer: /CN=A9190960/serialNumber=2A900734C5E3B93ACA9470E3F5ADDADC2F215B31 Certificate serial: 05F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpAHNMXjuTrKlHDj9a3a3C8hWzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft Manifest number: 05EA Signing time: Fri 03 May 2024 00:09:00 +0000 Manifest this update: Fri 03 May 2024 00:08:59 +0000 Manifest next update: Fri 10 May 2024 00:08:59 +0000 Files and hashes: 1: KpAHNMXjuTrKlHDj9a3a3C8hWzE.crl (hash: biDyoyUyDYow2ygbW5UG7NyHLCBtpiTmyPiMuxTvXtA=) 2: ED534930C8B511ED9A1D817EC4F9AE02.roa (hash: EnSThUNLj3duMs+PFwL69aE2lyuNuJnZvXcjZaqpLLI=) 3: 9398F508619611EBA485B448C4F9AE02.roa (hash: aZpG2PubXQXBfPTPfuluIVdJmVtmOjsZn+iE18XtJvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.crl rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpAHNMXjuTrKlHDj9a3a3C8hWzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:08:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1521 (0x5f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190960/serialNumber=2A900734C5E3B93ACA9470E3F5ADDADC2F215B31 Validity Not Before: May 3 00:08:59 2024 GMT Not After : May 10 00:08:59 2024 GMT Subject: CN=66342b1c-7111 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f6:60:ad:49:bf:98:37:73:5c:08:ae:e2:c1: 3f:2b:74:8a:d3:d2:6d:3b:19:cf:38:fc:83:3f:ab: a3:94:0c:b3:93:9f:3c:3b:c4:a0:c2:cb:82:09:2b: 61:8d:ed:32:10:db:d5:b3:41:aa:78:e2:6c:ac:90: 4a:38:43:f6:f4:1c:1b:9d:74:65:b2:24:3a:0b:39: 67:5e:50:ce:2f:8a:86:1a:c1:11:eb:01:29:40:b5: 83:39:22:9c:6f:b1:fb:77:49:52:b5:8c:3f:c0:93: 33:5c:dc:c1:2b:0b:a1:55:e9:f1:b6:7a:bd:ce:1e: c4:46:25:34:78:41:9f:58:2f:bc:db:ec:7d:e1:ba: 8c:0e:a6:29:dc:22:bd:14:54:ab:57:45:6f:b3:86: 74:a2:ee:0d:d0:c8:b9:8e:7a:22:34:f4:0b:3b:32: 08:9b:75:3d:2b:e1:86:78:c7:1a:f2:4f:03:7f:1d: ab:d9:a4:11:43:47:f6:a7:75:77:76:3d:48:0b:49: e5:82:c1:7f:21:93:ba:dd:33:66:1f:04:70:ce:a7: 39:3a:80:66:d6:b6:77:fb:5b:ca:9f:ea:65:63:8d: f5:68:37:56:a4:2e:0b:90:0e:77:80:22:95:bc:c1: 69:18:96:02:d6:bb:96:46:c3:21:72:ab:dc:1c:ae: be:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:61:C9:75:8C:FC:51:B0:A3:A9:8A:6C:9D:69:8B:BF:F0:AE:93:FE X509v3 Authority Key Identifier: keyid:2A:90:07:34:C5:E3:B9:3A:CA:94:70:E3:F5:AD:DA:DC:2F:21:5B:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpAHNMXjuTrKlHDj9a3a3C8hWzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:86:c1:93:20:90:fe:9c:83:f5:ff:ac:19:1b:8d:09:fe:55: 78:89:8f:f4:6a:cd:4e:f2:2f:d7:ee:65:29:80:ff:e6:f4:74: 33:ac:79:69:65:63:79:4a:05:df:e1:ed:b8:c0:ee:6a:82:d7: 41:95:53:d5:89:b0:18:1c:4d:47:c5:ca:b7:b0:5e:a7:1f:fd: b5:ff:4c:23:79:3d:f1:cc:a7:50:a6:35:6e:c5:35:bf:e9:69: 22:1c:57:9f:d6:ea:0c:01:1f:e5:47:8a:0d:74:28:a7:52:d0: a4:bf:18:00:0d:dc:e0:f9:6f:f2:48:0a:24:74:ed:9e:37:e3: 7a:41:37:6e:a6:52:a1:91:9e:60:66:fc:47:ab:2d:d6:9f:f6: be:a7:3c:b4:87:21:95:67:d3:a4:0d:27:67:b4:5b:04:29:98: dc:b4:a3:a3:e3:2e:88:17:4b:dd:01:fd:c4:34:34:47:a5:bb: a5:6a:ea:e4:a1:aa:2c:f5:18:98:85:3b:3e:50:5a:71:c9:99: 39:b9:25:6e:94:d1:c2:db:49:3c:9b:d9:f1:7d:b2:82:24:bb: f9:0f:14:d4:3b:ba:7b:88:de:21:9c:8c:eb:21:e4:3f:c4:81: c9:a7:e5:ea:a9:21:09:f9:35:c4:b4:93:f9:89:66:0d:5d:e2: cd:01:c1:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTA5NjAxMTAvBgNVBAUTKDJBOTAwNzM0QzVFM0I5M0FDQTk0NzBFM0Y1QUREQURD MkYyMTVCMzEwHhcNMjQwNTAzMDAwODU5WhcNMjQwNTEwMDAwODU5WjAYMRYwFAYD VQQDEw02NjM0MmIxYy03MTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPZgrUm/mDdzXAiu4sE/K3SK09JtOxnPOPyDP6ujlAyzk588O8SgwsuCCSth je0yENvVs0GqeOJsrJBKOEP29BwbnXRlsiQ6CzlnXlDOL4qGGsER6wEpQLWDOSKc b7H7d0lStYw/wJMzXNzBKwuhVenxtnq9zh7ERiU0eEGfWC+82+x94bqMDqYp3CK9 FFSrV0Vvs4Z0ou4N0Mi5jnoiNPQLOzIIm3U9K+GGeMca8k8Dfx2r2aQRQ0f2p3V3 dj1IC0nlgsF/IZO63TNmHwRwzqc5OoBm1rZ3+1vKn+plY431aDdWpC4LkA53gCKV vMFpGJYC1ruWRsMhcqvcHK6+vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1hyXWM /FGwo6mKbJ1pi7/wrpP+MB8GA1UdIwQYMBaAFCqQBzTF47k6ypRw4/Wt2twvIVsx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDk2MC85QzZGN0JFQTYx OTQxMUVCQkZEMkFBMkFDNEY5QUUwMi9LcEFITk1YanVUcktsSERqOWEzYTNDOGhX ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0twQUhOTVhqdVRyS2xIRGo5YTNhM0M4aFd6RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MDk2MC85QzZGN0JFQTYxOTQxMUVCQkZEMkFBMkFDNEY5QUUwMi9LcEFITk1YanVU cktsSERqOWEzYTNDOGhXekUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKhsGTIJD+nIP1/6wZG40J/lV4iY/0as1O8i/X7mUpgP/m9HQzrHlp ZWN5SgXf4e24wO5qgtdBlVPVibAYHE1Hxcq3sF6nH/21/0wjeT3xzKdQpjVuxTW/ 6WkiHFef1uoMAR/lR4oNdCinUtCkvxgADdzg+W/ySAokdO2eN+N6QTduplKhkZ5g ZvxHqy3Wn/a+pzy0hyGVZ9OkDSdntFsEKZjctKOj4y6IF0vdAf3ENDRHpbulaurk oaos9RiYhTs+UFpxyZk5uSVulNHC20k8m9nxfbKCJLv5DxTUO7p7iN4hnIzrIeQ/ xIHJp+XqqSEJ+TXEtJP5iWYNXeLNAcE4 -----END CERTIFICATE-----Generated at Fri May 3 01:30:26 2024 by rpki-client on console-fra.rpki-client.org