$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft File: K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft (raw, json) Hash identifier: jJxpBb7LyaGXs+017SA8xuAKEJ15SVCU3SZGWcFSD8A= Subject key identifier: 96:2B:2F:43:91:77:E8:1B:B2:0B:01:40:7D:67:9D:C7:85:7A:E2:D9 Authority key identifier: 2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 Certificate issuer: /CN=A91AE25A/serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft Manifest number: 8B Signing time: Fri 17 May 2024 07:08:43 +0000 Manifest this update: Fri 17 May 2024 07:08:43 +0000 Manifest next update: Fri 24 May 2024 07:08:42 +0000 Files and hashes: 1: K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl (hash: iIWewp6so6ciDkm+bkoHLUVnseNFg2c+cMLJlsm/Xuc=) 2: AB366D1C409611EE92C55F40C4F9AE02.roa (hash: MvTwSfCy02b4ipjFSwnP8x5tbmPej7nVg/IrL4PajxQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE25A/serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Validity Not Before: May 17 07:08:43 2024 GMT Not After : May 24 07:08:42 2024 GMT Subject: CN=6647027b-ca07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:af:61:89:2a:87:36:26:c5:50:cb:7e:06:16: d4:84:4f:4d:a0:26:aa:8c:ab:a1:cd:44:80:fa:ac: 29:36:8d:37:f2:21:f5:da:e0:ee:83:43:37:80:37: b8:63:ef:a1:ac:59:45:c6:46:ce:5c:95:db:5f:05: e0:3d:e1:ab:94:9e:d3:a9:9b:a0:42:3e:b1:56:40: 98:f4:11:1c:9b:7b:f3:a8:4f:92:33:a6:66:7d:e3: ef:b4:52:1b:06:80:af:41:ed:3d:8d:92:fb:45:fc: db:ed:9f:1a:7a:e3:50:c8:ea:fb:b6:ee:ad:e3:95: 61:57:94:f5:d7:6f:8a:e1:08:4b:50:41:f7:c9:37: 38:14:17:11:66:f2:c1:bb:f4:d5:65:cb:b1:c8:24: 68:37:f7:2f:19:6c:f4:d0:67:d5:fa:31:9a:dd:b0: b3:8b:cd:94:14:10:89:67:ea:24:70:e5:9e:0a:30: b1:af:d9:d0:73:4a:39:81:ba:a9:3a:29:dd:ea:80: 21:01:ec:7d:86:82:93:0c:74:3e:b6:66:42:42:49: 10:0c:43:e3:98:f2:5f:ba:60:5c:95:60:a9:13:d9: a4:86:a2:fc:b2:c9:7c:b7:c2:1b:a3:8c:b5:63:4f: 58:f2:d6:a5:68:98:07:c7:69:a1:34:2d:1a:a3:e8: 92:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:2B:2F:43:91:77:E8:1B:B2:0B:01:40:7D:67:9D:C7:85:7A:E2:D9 X509v3 Authority Key Identifier: keyid:2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:21:96:09:ce:b4:e7:be:ff:28:02:55:c3:cd:0e:fc:1a:4a: 61:6b:fe:6e:d4:80:83:48:65:96:4c:62:db:cb:73:ea:4f:30: 5d:a8:40:16:75:33:86:64:af:1a:e3:ad:7e:ee:19:51:53:65: 31:43:47:d5:8c:1c:81:1e:d5:52:db:06:81:56:f4:24:85:f8: 94:b5:bb:cd:d2:f5:af:30:3f:cd:ec:82:d7:22:b7:a9:7e:82: c4:5e:5b:74:e0:a6:d4:3e:18:6c:f6:89:09:84:37:5f:f8:46: 58:17:ba:75:7f:1d:98:dd:bc:0c:66:b7:d4:e0:5d:d6:76:44: 95:c6:2a:fb:4a:46:53:ea:27:ef:5e:82:c7:3e:57:b8:26:68: e7:58:ac:ee:4e:00:8f:a3:be:e0:6f:1b:3f:55:2e:3b:9a:26: aa:22:13:95:95:bd:68:10:7f:67:0e:4d:62:e9:09:97:a8:5f: 46:ac:b2:bc:06:0c:9c:1a:9b:16:e7:44:d1:a3:02:77:4c:d9: 86:75:02:c6:f4:95:5f:a2:df:2e:bc:a1:ce:a0:54:cd:ba:85: e0:72:3f:57:b7:fb:ce:bc:da:f8:e7:43:29:e1:93:1b:aa:9b: 16:2b:ce:3a:6a:38:4a:b8:97:08:5b:af:df:69:c7:2b:30:2e: 0e:3c:00:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUyNUExMTAvBgNVBAUTKDJCQ0ExMkQ0NkQ0NjExRUQ2RUYxODg2RjM2NDQ2OERG M0QwMkVERTUwHhcNMjQwNTE3MDcwODQzWhcNMjQwNTI0MDcwODQyWjAYMRYwFAYD VQQDEw02NjQ3MDI3Yi1jYTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyq9hiSqHNibFUMt+BhbUhE9NoCaqjKuhzUSA+qwpNo038iH12uDug0M3gDe4 Y++hrFlFxkbOXJXbXwXgPeGrlJ7TqZugQj6xVkCY9BEcm3vzqE+SM6ZmfePvtFIb BoCvQe09jZL7Rfzb7Z8aeuNQyOr7tu6t45VhV5T112+K4QhLUEH3yTc4FBcRZvLB u/TVZcuxyCRoN/cvGWz00GfV+jGa3bCzi82UFBCJZ+okcOWeCjCxr9nQc0o5gbqp Oind6oAhAex9hoKTDHQ+tmZCQkkQDEPjmPJfumBclWCpE9mkhqL8ssl8t8Ibo4y1 Y09Y8talaJgHx2mhNC0ao+iSMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJYrL0OR d+gbsgsBQH1nnceFeuLZMB8GA1UdIwQYMBaAFCvKEtRtRhHtbvGIbzZEaN89Au3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTI1QS8yQzk2RjUwODQw OTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0VlMXU4WWh2TmtSbzN6MEM3 ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4b1MxRzFHRWUxdThZaHZOa1JvM3owQzdlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTI1QS8yQzk2RjUwODQwOTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0Vl MXU4WWh2TmtSbzN6MEM3ZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkIZYJzrTnvv8oAlXDzQ78Gkpha/5u1ICDSGWWTGLby3PqTzBdqEAW dTOGZK8a461+7hlRU2UxQ0fVjByBHtVS2waBVvQkhfiUtbvN0vWvMD/N7ILXIrep foLEXlt04KbUPhhs9okJhDdf+EZYF7p1fx2Y3bwMZrfU4F3WdkSVxir7SkZT6ifv XoLHPle4JmjnWKzuTgCPo77gbxs/VS47miaqIhOVlb1oEH9nDk1i6QmXqF9GrLK8 BgycGpsW50TRowJ3TNmGdQLG9JVfot8uvKHOoFTNuoXgcj9Xt/vOvNr450Mp4ZMb qpsWK846ajhKuJcIW6/faccrMC4OPABE -----END CERTIFICATE-----Generated at Fri May 17 08:52:52 2024 by rpki-client on console-ams.rpki-client.org