$ rpki-client -vvf rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft File: KxuyStzbFPbix7uy2Iq62x3diY0.mft (raw, json) Hash identifier: RFG/7zAaORiZxC3SqkzGbfjrSPC1JWbOZPXskXdtLjY= Subject key identifier: A8:30:90:28:DE:48:8F:61:E9:31:0B:3E:B7:D9:00:2D:D6:E0:7B:95 Authority key identifier: 2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D Certificate issuer: /CN=A91A80D2/serialNumber=2B1BB24ADCDB14F6E2C7BBB2D88ABADB1DDD898D Certificate serial: 0234 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft Manifest number: 0231 Signing time: Fri 03 May 2024 04:07:18 +0000 Manifest this update: Fri 03 May 2024 04:07:18 +0000 Manifest next update: Fri 10 May 2024 04:07:18 +0000 Files and hashes: 1: KxuyStzbFPbix7uy2Iq62x3diY0.crl (hash: LWf3eSTV2JloXd8niEVrO1SfOXx9hynIEJAmpkw9LfA=) 2: 95CA439CDAE211ECA14A8254C4F9AE02.roa (hash: OECkIlj17co6mkQPfqLaCAPspTHEJP8pYNRcO1GHXvE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 564 (0x234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A80D2/serialNumber=2B1BB24ADCDB14F6E2C7BBB2D88ABADB1DDD898D Validity Not Before: May 3 04:07:18 2024 GMT Not After : May 10 04:07:18 2024 GMT Subject: CN=663462f6-24aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b9:b8:82:3a:0a:6d:97:b3:1d:3e:94:5a:da: a2:7f:83:17:4d:ed:a5:ca:77:85:12:5b:2f:ee:28: bc:b8:e9:21:05:d6:bc:bd:e6:2e:80:f0:06:63:a0: 45:e4:29:87:4d:80:c6:0c:3f:98:d9:20:07:55:c1: 73:81:37:83:d8:e4:db:01:46:2c:cf:18:08:a0:cf: 0d:fe:2c:b2:c9:b7:89:be:3b:10:a1:28:46:85:1d: 6b:ac:cc:6d:02:80:cd:43:4b:5c:31:00:0a:12:f9: 06:86:92:37:ca:f3:96:36:af:7f:86:84:55:25:83: 9f:9d:9d:39:7a:d2:43:67:a9:7c:89:29:41:1f:21: c6:b0:4f:f9:f3:c1:7a:85:df:c8:3f:ab:33:ef:c1: 4a:7b:92:2e:8d:0b:a4:87:00:6d:db:36:f3:f0:61: 3f:f3:65:b5:d5:db:aa:90:52:63:84:0e:a0:eb:fe: eb:ca:6c:b4:3c:24:79:dd:39:ad:fa:dd:de:39:1d: 3e:d4:5b:79:94:4f:2b:64:9e:17:71:7c:a2:19:d7: 2e:f8:6d:e7:90:6d:de:91:cf:67:ee:3a:41:79:0c: c0:7a:37:26:8b:61:c3:2c:36:6f:4c:5e:0f:fc:4d: 9c:20:9d:81:cb:73:ac:8d:a9:b9:8f:db:f7:01:0b: 25:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:30:90:28:DE:48:8F:61:E9:31:0B:3E:B7:D9:00:2D:D6:E0:7B:95 X509v3 Authority Key Identifier: keyid:2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:4d:73:eb:cb:9d:43:85:2b:30:72:e3:8a:cc:d2:fb:da:91: 66:cb:14:c7:8a:5b:1d:16:70:7c:7b:2d:52:e2:67:99:7e:9f: fe:e0:6e:d5:be:a3:b2:42:96:e9:6e:90:95:de:9a:bd:c8:57: 51:90:13:a1:5a:94:d2:76:c9:9b:0a:46:f7:89:6c:24:86:2a: 35:de:5d:3b:92:6d:ce:31:3a:e8:ab:51:f0:c6:2c:a1:ed:60: f0:69:c0:ee:11:67:36:74:ac:92:3c:77:42:2d:67:54:64:f9: 43:7e:55:c2:b3:62:26:3c:b0:28:ce:68:06:04:37:60:6e:99: e0:1b:0e:97:a6:e9:3c:3d:e2:74:54:e6:ad:0a:a7:c6:3a:62: 60:42:1d:ae:02:d5:6e:43:1b:a8:fa:e2:ee:7e:75:e1:c1:65: c9:21:b0:db:97:b5:ab:55:96:d8:73:80:52:12:39:67:d5:8a: c8:3f:8f:9a:92:2b:76:a8:9e:8e:e8:be:18:34:57:9c:09:76: cd:7f:66:58:df:f9:7a:46:cf:79:7d:03:f4:a2:fc:69:3b:97: 80:cc:08:82:d1:23:46:a6:ad:76:59:be:f7:a6:0a:de:1f:dd: bd:f9:5f:00:eb:8f:4c:59:47:be:db:7f:d6:f3:f2:63:b8:cd: 9a:6b:f7:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgwRDIxMTAvBgNVBAUTKDJCMUJCMjRBRENEQjE0RjZFMkM3QkJCMkQ4OEFCQURC MURERDg5OEQwHhcNMjQwNTAzMDQwNzE4WhcNMjQwNTEwMDQwNzE4WjAYMRYwFAYD VQQDEw02NjM0NjJmNi0yNGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7m4gjoKbZezHT6UWtqif4MXTe2lyneFElsv7ii8uOkhBda8veYugPAGY6BF 5CmHTYDGDD+Y2SAHVcFzgTeD2OTbAUYszxgIoM8N/iyyybeJvjsQoShGhR1rrMxt AoDNQ0tcMQAKEvkGhpI3yvOWNq9/hoRVJYOfnZ05etJDZ6l8iSlBHyHGsE/588F6 hd/IP6sz78FKe5IujQukhwBt2zbz8GE/82W11duqkFJjhA6g6/7rymy0PCR53Tmt +t3eOR0+1Ft5lE8rZJ4XcXyiGdcu+G3nkG3ekc9n7jpBeQzAejcmi2HDLDZvTF4P /E2cIJ2By3Osjam5j9v3AQslLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKgwkCje SI9h6TELPrfZAC3W4HuVMB8GA1UdIwQYMBaAFCsbskrc2xT24se7stiKutsd3YmN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODBEMi9ENDI4RDBDNkRB REUxMUVDODc3MTE0NTBDNEY5QUUwMi9LeHV5U3R6YkZQYml4N3V5MklxNjJ4M2Rp WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4dXlTdHpiRlBiaXg3dXkySXE2MngzZGlZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODBEMi9ENDI4RDBDNkRBREUxMUVDODc3MTE0NTBDNEY5QUUwMi9LeHV5U3R6YkZQ Yml4N3V5MklxNjJ4M2RpWTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxTXPry51DhSswcuOKzNL72pFmyxTHilsdFnB8ey1S4meZfp/+4G7V vqOyQpbpbpCV3pq9yFdRkBOhWpTSdsmbCkb3iWwkhio13l07km3OMTroq1Hwxiyh 7WDwacDuEWc2dKySPHdCLWdUZPlDflXCs2ImPLAozmgGBDdgbpngGw6Xpuk8PeJ0 VOatCqfGOmJgQh2uAtVuQxuo+uLufnXhwWXJIbDbl7WrVZbYc4BSEjln1YrIP4+a kit2qJ6O6L4YNFecCXbNf2ZY3/l6Rs95fQP0ovxpO5eAzAiC0SNGpq12Wb73pgre H929+V8A649MWUe+23/W8/JjuM2aa/fS -----END CERTIFICATE-----Generated at Fri May 3 06:29:21 2024 by rpki-client on console-fra.rpki-client.org