$ rpki-client -vvf rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft File: KtUm39nH6QyjDDH8pOGCUBtwB1M.mft (raw, json) Hash identifier: LQJdGvQOYlisP8+LoZc1oewgUdLPfpptRRH/pKIzYV4= Subject key identifier: 90:C2:F1:B3:F4:08:0E:DB:9F:37:1D:74:37:45:2B:09:8E:6E:47:B2 Authority key identifier: 2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 Certificate issuer: /CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Certificate serial: 058A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft Manifest number: 0574 Signing time: Sun 05 May 2024 00:51:36 +0000 Manifest this update: Sun 05 May 2024 00:51:35 +0000 Manifest next update: Sun 12 May 2024 00:51:35 +0000 Files and hashes: 1: KtUm39nH6QyjDDH8pOGCUBtwB1M.crl (hash: yTc25oPZi7azPpBco1gFXhTkzER+qQI5dO64pRhk7is=) 2: 8D54D41CFF4A11EBB2CFB65CC4F9AE02.roa (hash: /oai9s0tO9R/CA92gLDGeelZejQBEg1k9ETT577pn5o=) 3: 5C75E87C95F511EBA6D31767C4F9AE02.roa (hash: faItfTXWER/JJzCTtl0b6vLL/MsAfJNd1RIcbd+oWIM=) 4: 176E1D3E961411EB80BD4E1DC4F9AE02.roa (hash: vegulIKBeHttwdRyvB/2WQ05g6xaaoUGb/GkmzarLJw=) 5: 6CFB0FFCF65711EB8988A924C4F9AE02.roa (hash: wMP9I/AdfA5A2Gu8f07TbNhehTZ7LymaxW1TkEKbA2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1418 (0x58a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Validity Not Before: May 5 00:51:35 2024 GMT Not After : May 12 00:51:35 2024 GMT Subject: CN=6636d818-e07a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ac:f5:13:13:37:ec:65:ba:97:cd:db:77:fa: 92:72:5a:34:c4:b7:71:fc:c8:10:aa:0c:44:68:ad: ab:68:e2:e8:cf:74:32:34:52:be:9b:36:44:bc:44: 4d:ed:55:80:12:85:e3:c0:e4:a0:a0:59:78:05:85: 5f:53:c6:ea:4f:f4:1a:a8:16:d5:13:92:c6:01:9f: b6:9e:d7:7e:d8:60:35:2d:00:c2:18:2b:cd:ca:60: c2:af:0c:75:63:dd:c5:a1:00:b2:b6:03:f4:ff:69: 48:2b:a6:c1:64:6e:38:81:77:82:0b:47:ef:6c:bb: 86:ac:d3:32:d9:c4:22:ec:3a:ff:37:13:89:94:24: 3f:5e:3d:fe:9b:a4:4f:9f:0d:2c:6a:f1:fe:13:99: c6:1c:e8:4a:7c:76:84:5a:77:b0:76:f2:3b:5f:55: 3b:33:e9:8e:01:59:d6:7f:44:7c:3f:71:b5:6d:b5: 16:da:5b:44:53:b5:e3:d2:17:b4:ae:bc:96:e2:5c: 51:62:84:8b:86:29:ea:b8:e9:c9:b3:4f:f5:cf:19: 8f:c1:70:96:b8:5c:a3:2f:f5:50:18:ee:2b:cd:b5: e9:cb:5d:39:48:08:6a:a5:03:07:b2:44:f0:82:7d: 89:cd:2c:37:56:8e:fb:c3:7c:06:dc:da:12:44:ed: 7c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:C2:F1:B3:F4:08:0E:DB:9F:37:1D:74:37:45:2B:09:8E:6E:47:B2 X509v3 Authority Key Identifier: keyid:2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:a0:5b:de:8b:96:82:20:ef:2c:c5:a8:b3:a1:50:71:e0:70: 7c:71:f1:b6:cc:76:5a:55:1a:07:76:ed:bc:58:ac:07:9f:6c: 62:15:12:59:f4:7b:18:04:15:99:f3:8e:45:a1:fe:a7:7a:ce: d4:81:d7:a2:4a:d4:ec:54:92:b7:3e:88:00:be:1c:c7:db:d2: 66:6d:a5:4b:21:d6:04:1a:b9:ed:21:0a:5b:ca:85:5d:7a:54: 92:0b:59:d0:64:e5:8f:de:2f:48:d1:3c:d4:8a:0a:2c:28:03: 9d:93:3c:1f:fb:ec:2d:fd:e8:89:72:b9:09:34:ec:c9:95:c6: f8:76:bc:c5:fe:2f:ab:78:1d:1d:96:2e:fc:11:c9:34:7e:81: 0f:62:5e:24:a7:44:0e:61:47:be:cb:2c:92:ef:72:4a:fc:c7: cd:c4:57:67:ff:91:04:77:aa:e1:06:2e:c5:3e:18:8b:d8:5f: 88:1d:ed:30:32:3f:c9:9e:ad:cf:6d:88:aa:45:66:17:88:00: 23:0d:dd:ae:5e:de:01:3b:b3:a6:24:7c:03:c6:cd:9a:57:9d: fe:2f:b0:5e:0b:53:27:a0:f9:36:28:e4:a2:a3:c0:c0:b5:97: d3:10:55:e4:2e:42:ed:b6:ee:8a:72:2e:9a:7f:70:c7:14:c5: 23:57:30:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFBQTAxMTAvBgNVBAUTKDJBRDUyNkRGRDlDN0U5MENBMzBDMzFGQ0E0RTE4MjUw MUI3MDA3NTMwHhcNMjQwNTA1MDA1MTM1WhcNMjQwNTEyMDA1MTM1WjAYMRYwFAYD VQQDEw02NjM2ZDgxOC1lMDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxaz1ExM37GW6l83bd/qSclo0xLdx/MgQqgxEaK2raOLoz3QyNFK+mzZEvERN 7VWAEoXjwOSgoFl4BYVfU8bqT/QaqBbVE5LGAZ+2ntd+2GA1LQDCGCvNymDCrwx1 Y93FoQCytgP0/2lIK6bBZG44gXeCC0fvbLuGrNMy2cQi7Dr/NxOJlCQ/Xj3+m6RP nw0savH+E5nGHOhKfHaEWnewdvI7X1U7M+mOAVnWf0R8P3G1bbUW2ltEU7Xj0he0 rryW4lxRYoSLhinquOnJs0/1zxmPwXCWuFyjL/VQGO4rzbXpy105SAhqpQMHskTw gn2JzSw3Vo77w3wG3NoSRO18EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJDC8bP0 CA7bnzcddDdFKwmObkeyMB8GA1UdIwQYMBaAFCrVJt/Zx+kMowwx/KThglAbcAdT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUFBMC8yMjgzOTZCQTk1 RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZReWpEREg4cE9HQ1VCdHdC MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0VW0zOW5INlF5akRESDhwT0dDVUJ0d0IxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUFBMC8yMjgzOTZCQTk1RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZR eWpEREg4cE9HQ1VCdHdCMU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRoFvei5aCIO8sxaizoVBx4HB8cfG2zHZaVRoHdu28WKwHn2xiFRJZ 9HsYBBWZ845Fof6nes7UgdeiStTsVJK3PogAvhzH29JmbaVLIdYEGrntIQpbyoVd elSSC1nQZOWP3i9I0TzUigosKAOdkzwf++wt/eiJcrkJNOzJlcb4drzF/i+reB0d li78Eck0foEPYl4kp0QOYUe+yyyS73JK/MfNxFdn/5EEd6rhBi7FPhiL2F+IHe0w Mj/Jnq3PbYiqRWYXiAAjDd2uXt4BO7OmJHwDxs2aV53+L7BeC1MnoPk2KOSio8DA tZfTEFXkLkLttu6Kci6af3DHFMUjVzDx -----END CERTIFICATE-----Generated at Sun May 5 01:22:23 2024 by rpki-client on console-fra.rpki-client.org