$ rpki-client -vvf rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft File: KUrNCNoZE4w376-ydKHndXceRT4.mft (raw, json) Hash identifier: jw0I4o/LDUPvH9xh1Cc5nFp5Kcrxb3ZcvuTwDrr6abU= Subject key identifier: 0E:89:F3:5B:76:53:6D:10:2E:9C:EB:9C:82:83:76:71:53:06:1A:13 Authority key identifier: 29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E Certificate issuer: /CN=A919C8F9/serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Certificate serial: 0463 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft Manifest number: 045E Signing time: Wed 01 May 2024 02:06:52 +0000 Manifest this update: Wed 01 May 2024 02:06:51 +0000 Manifest next update: Wed 08 May 2024 02:06:51 +0000 Files and hashes: 1: KUrNCNoZE4w376-ydKHndXceRT4.crl (hash: p/iWMMRWUhQeKBz8tVJl8rc/aRP6y5C21eHpXp6IyrY=) 2: 2D7BD4EA03DD11ECA448405BC4F9AE02.roa (hash: YSc5boVMKwRMhn/M8zXGpxfF3jaAcCONXN+5+B53UcY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 02:06:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1123 (0x463) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C8F9/serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Validity Not Before: May 1 02:06:51 2024 GMT Not After : May 8 02:06:51 2024 GMT Subject: CN=6631a3bb-13d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:e6:0f:8d:43:e0:ac:25:b7:78:52:69:a1:a4: d9:a1:f2:e2:a9:4b:1d:35:78:33:ea:e3:ff:8d:2f: 70:ef:1e:33:c5:16:09:4b:72:25:61:34:9b:e8:1e: 13:b4:03:2b:2e:a1:d1:1b:16:9b:41:f0:1f:e0:4d: 45:59:cf:66:cd:93:07:d2:7d:99:44:fc:b9:aa:48: 6c:13:89:78:7b:ff:9f:9a:b0:3e:6a:15:7d:35:fc: 55:5b:33:5a:94:73:41:71:cb:1c:49:01:1a:91:57: 2f:33:83:ba:7b:da:b8:e8:87:b5:28:47:56:06:90: cc:65:75:5a:df:93:c8:50:93:f1:56:e9:d3:e3:96: b3:63:ed:a6:6e:66:ca:27:de:a7:63:25:fc:a7:a7: 9a:7b:e2:57:de:85:de:88:1d:dc:2d:ab:19:52:e2: b6:8a:9a:85:59:3a:45:6b:f9:ab:28:44:81:b2:0a: ce:ee:4f:81:35:c2:05:f8:55:d4:8f:51:98:ac:48: 95:c0:5f:a1:1f:ec:00:ac:2b:0b:d5:63:de:90:10: d8:3f:c3:5e:3a:47:7c:52:ce:ad:30:a4:2b:da:24: 71:1f:f7:96:00:fc:f9:9f:dd:49:64:09:90:9c:9e: 7e:bf:10:83:85:bc:f6:d3:8b:02:c0:a6:3d:93:ea: 22:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:89:F3:5B:76:53:6D:10:2E:9C:EB:9C:82:83:76:71:53:06:1A:13 X509v3 Authority Key Identifier: keyid:29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:e3:cb:1e:c7:ec:9d:74:aa:4c:08:3a:ab:e7:df:67:11:a5: ae:00:a3:23:4a:11:0e:bb:81:30:ff:82:28:25:87:97:ae:d5: b0:04:0b:ec:de:13:29:98:93:d3:70:23:f0:72:93:5f:86:c8: be:5a:b6:3c:e8:33:58:4e:88:01:8e:47:41:7b:d1:a7:89:cc: 0a:90:0f:10:04:60:72:63:d3:cd:8f:06:46:cc:60:c9:23:9f: ae:4c:f2:da:a4:1a:39:bd:93:1d:96:d0:3c:f7:f3:67:e8:6c: 1e:fe:ba:79:8d:e3:0b:47:f6:59:bd:f2:1a:87:12:44:97:dc: 01:75:fa:f8:a4:38:fe:dd:48:c1:44:59:55:b8:d7:90:30:e9: 55:96:b4:10:10:c5:eb:14:5e:08:24:aa:f9:e9:4e:45:58:f3: 24:fc:47:12:dc:bb:84:c5:c8:84:b7:61:10:5f:2e:50:75:51: e5:63:10:60:bb:f3:78:c0:a8:88:e3:0e:e6:50:6d:a6:48:bf: 87:f4:6c:48:13:eb:ac:21:b4:3e:50:ed:d9:63:5a:b7:74:b5: 30:b6:b8:06:c9:3c:99:bd:2c:7f:aa:b6:b0:8a:e7:f6:f1:06: 90:d5:dc:00:fa:68:55:6e:07:93:32:ca:fb:8f:31:6b:3b:dc: 99:38:8b:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM4RjkxMTAvBgNVBAUTKDI5NEFDRDA4REExOTEzOEMzN0VGQUZCMjc0QTFFNzc1 NzcxRTQ1M0UwHhcNMjQwNTAxMDIwNjUxWhcNMjQwNTA4MDIwNjUxWjAYMRYwFAYD VQQDEw02NjMxYTNiYi0xM2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8eYPjUPgrCW3eFJpoaTZofLiqUsdNXgz6uP/jS9w7x4zxRYJS3IlYTSb6B4T tAMrLqHRGxabQfAf4E1FWc9mzZMH0n2ZRPy5qkhsE4l4e/+fmrA+ahV9NfxVWzNa lHNBccscSQEakVcvM4O6e9q46Ie1KEdWBpDMZXVa35PIUJPxVunT45azY+2mbmbK J96nYyX8p6eae+JX3oXeiB3cLasZUuK2ipqFWTpFa/mrKESBsgrO7k+BNcIF+FXU j1GYrEiVwF+hH+wArCsL1WPekBDYP8NeOkd8Us6tMKQr2iRxH/eWAPz5n91JZAmQ nJ5+vxCDhbz204sCwKY9k+oi4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA6J81t2 U20QLpzrnIKDdnFTBhoTMB8GA1UdIwQYMBaAFClKzQjaGROMN++vsnSh53V3HkU+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzhGOS9EQzZCMzYxNEZF NkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0dzM3Ni15ZEtIbmRYY2VS VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVck5DTm9aRTR3Mzc2LXlkS0huZFhjZVJUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzhGOS9EQzZCMzYxNEZFNkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0 dzM3Ni15ZEtIbmRYY2VSVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU48sex+yddKpMCDqr599nEaWuAKMjShEOu4Ew/4IoJYeXrtWwBAvs 3hMpmJPTcCPwcpNfhsi+WrY86DNYTogBjkdBe9GnicwKkA8QBGByY9PNjwZGzGDJ I5+uTPLapBo5vZMdltA89/Nn6Gwe/rp5jeMLR/ZZvfIahxJEl9wBdfr4pDj+3UjB RFlVuNeQMOlVlrQQEMXrFF4IJKr56U5FWPMk/EcS3LuExciEt2EQXy5QdVHlYxBg u/N4wKiI4w7mUG2mSL+H9GxIE+usIbQ+UO3ZY1q3dLUwtrgGyTyZvSx/qrawiuf2 8QaQ1dwA+mhVbgeTMsr7jzFrO9yZOItB -----END CERTIFICATE-----Generated at Wed May 1 03:20:34 2024 by rpki-client on console-fra.rpki-client.org