$ rpki-client -vvf rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft File: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft (raw, json) Hash identifier: mRkNVdbQ+5yw0MfmpDoUD4AA/F3YVtvo8urBriEH2NU= Subject key identifier: C7:39:DD:3D:A5:AE:5F:A2:8B:B6:2A:F6:E7:65:62:51:B9:4E:C6:B0 Authority key identifier: 28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 Certificate issuer: /CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft Manifest number: 7D Signing time: Fri 17 May 2024 07:21:56 +0000 Manifest this update: Fri 17 May 2024 07:21:56 +0000 Manifest next update: Fri 24 May 2024 07:21:56 +0000 Files and hashes: 1: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl (hash: bKrqcEVYcFasmwuUOS+mhLi/k2uziX32sZ2jA7pnp7w=) 2: 759C16DC577711EE96F5F775C4F9AE02.roa (hash: mxInePc0EsNB/w6RHuFLVmwbMb6GCPHoDumOqKPz2kA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:21:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Validity Not Before: May 17 07:21:56 2024 GMT Not After : May 24 07:21:56 2024 GMT Subject: CN=66470594-7ded Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:61:07:d3:2e:f5:e5:ec:19:d2:45:bc:2f:3f: dc:7d:c6:8b:c4:3e:1e:d8:ca:03:20:a7:11:29:a8: 5c:15:ce:5d:b8:c0:c4:7d:74:63:09:e2:7e:aa:70: bd:15:14:8b:af:4b:20:f7:41:83:12:d5:26:96:76: 9f:ac:8a:8c:b2:cc:46:d0:e1:3d:d0:ab:1b:2f:7e: 6e:f8:1a:01:ad:20:57:ea:38:a0:a0:a1:83:e7:69: 00:5c:b0:0f:e5:9d:6e:a7:72:30:6b:33:5a:34:73: cd:e4:95:78:cf:5e:75:6f:41:ec:46:86:8a:33:bb: 24:aa:c1:55:84:82:cb:9a:d3:1f:e0:5e:38:b4:3c: d1:ec:8d:cb:d5:a9:a1:a6:5c:e9:e5:a9:ba:cc:ee: a4:e4:b2:61:68:34:2d:79:20:a2:6b:f7:1f:9f:e3: bd:9a:6e:cc:7a:56:c4:6f:ea:00:dc:1f:b8:a0:d3: fb:67:12:2b:37:f9:19:34:54:5b:f0:86:06:cf:2d: 0b:ae:6a:62:f1:b1:c4:e0:7b:3e:39:de:5c:ee:be: e2:f1:33:fd:21:52:5d:2c:1e:0b:44:4f:1d:1f:f5: a1:45:5c:f7:26:55:7b:d4:44:b3:1d:14:42:4c:af: ea:68:06:b3:38:ad:9d:e2:12:2d:e9:b0:49:9f:dc: 8e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:39:DD:3D:A5:AE:5F:A2:8B:B6:2A:F6:E7:65:62:51:B9:4E:C6:B0 X509v3 Authority Key Identifier: keyid:28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:cf:21:76:84:f7:4b:63:40:25:c7:d4:3b:4a:cf:dc:fa:a9: cc:a8:c0:59:83:05:9e:ee:c3:96:7e:62:24:a8:af:44:b4:e2: 39:3b:d5:83:22:1c:6a:83:c5:bd:f7:d6:1f:64:32:0f:4f:9d: c9:31:53:47:6b:8f:ae:e4:33:dc:30:7c:3e:29:02:7f:01:aa: ab:4b:1c:59:e6:80:a4:d6:97:f8:3f:cc:91:ec:b3:bd:1a:83: 90:78:4a:de:49:89:bd:bb:1e:3b:e0:fa:99:8b:3e:9d:10:0f: c5:92:e6:c4:de:20:35:7c:6a:bd:dd:83:55:8b:a9:1a:b2:7b: ef:3a:30:73:82:51:04:fd:c0:78:e8:e4:9a:1f:0f:23:85:62: 0b:a6:b4:5c:ae:28:6c:f5:b6:f0:a1:57:2d:18:8d:05:c5:d1: a0:4c:76:ad:c8:d8:dc:9d:2a:9c:fe:2c:fc:38:8b:67:8e:14: 5b:84:cf:e2:40:5a:fd:31:21:69:8a:7a:7d:5b:1d:64:35:75: 7b:eb:84:37:44:91:f1:e2:c7:c1:15:4d:01:5a:40:85:b4:c5: 24:9f:ea:52:c3:02:32:09:37:b6:5e:a7:cf:e6:f3:e4:0f:8f: 7e:59:10:47:45:7f:c3:85:af:fa:1d:e3:fe:b2:e6:d2:19:bb: 3f:73:47:68 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NDY3NzExMC8GA1UEBRMoMjg3NjgyNUY3N0MyNEExNjdEQzQxMjE1MzUwRjY4ODc5 Mjk4MUE2NzAeFw0yNDA1MTcwNzIxNTZaFw0yNDA1MjQwNzIxNTZaMBgxFjAUBgNV BAMTDTY2NDcwNTk0LTdkZWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfYQfTLvXl7BnSRbwvP9x9xovEPh7YygMgpxEpqFwVzl24wMR9dGMJ4n6qcL0V FIuvSyD3QYMS1SaWdp+sioyyzEbQ4T3Qqxsvfm74GgGtIFfqOKCgoYPnaQBcsA/l nW6ncjBrM1o0c83klXjPXnVvQexGhoozuySqwVWEgsua0x/gXji0PNHsjcvVqaGm XOnlqbrM7qTksmFoNC15IKJr9x+f472absx6VsRv6gDcH7ig0/tnEis3+Rk0VFvw hgbPLQuuamLxscTgez453lzuvuLxM/0hUl0sHgtETx0f9aFFXPcmVXvURLMdFEJM r+poBrM4rZ3iEi3psEmf3I51AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxzndPaWu X6KLtir252ViUblOxrAwHwYDVR0jBBgwFoAUKHaCX3fCShZ9xBIVNQ9oh5KYGmcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk0Njc3LzAyMjdGNzg2NTc3 NTExRUU5MkFDQTc1OUM0RjlBRTAyL0tIYUNYM2ZDU2haOXhCSVZOUTlvaDVLWUdt Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS0hhQ1gzZkNTaFo5eEJJVk5ROW9oNUtZR21jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk0 Njc3LzAyMjdGNzg2NTc3NTExRUU5MkFDQTc1OUM0RjlBRTAyL0tIYUNYM2ZDU2ha OXhCSVZOUTlvaDVLWUdtYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAnPIXaE90tjQCXH1DtKz9z6qcyowFmDBZ7uw5Z+YiSor0S04jk71YMi HGqDxb331h9kMg9PnckxU0drj67kM9wwfD4pAn8BqqtLHFnmgKTWl/g/zJHss70a g5B4St5Jib27Hjvg+pmLPp0QD8WS5sTeIDV8ar3dg1WLqRqye+86MHOCUQT9wHjo 5JofDyOFYgumtFyuKGz1tvChVy0YjQXF0aBMdq3I2NydKpz+LPw4i2eOFFuEz+JA Wv0xIWmKen1bHWQ1dXvrhDdEkfHix8EVTQFaQIW0xSSf6lLDAjIJN7Zep8/m8+QP j35ZEEdFf8OFr/od4/6y5tIZuz9zR2g= -----END CERTIFICATE-----Generated at Fri May 17 08:13:52 2024 by rpki-client on console-fra.rpki-client.org