$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft File: Ktu3GxFSPKM5Ll832dx2shHb4IM.mft (raw, json) Hash identifier: XI+5u52Ql/hTHBCfce5bxpaknJouxXNNsx6yzGAu8QA= Subject key identifier: EC:BF:4D:75:64:AD:81:A1:99:A9:D1:94:11:4F:CF:A2:5D:F1:46:F3 Authority key identifier: 2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 Certificate issuer: /CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft Manifest number: 18 Signing time: Fri 17 May 2024 08:56:46 +0000 Manifest this update: Fri 17 May 2024 08:56:46 +0000 Manifest next update: Fri 24 May 2024 08:56:46 +0000 Files and hashes: 1: Ktu3GxFSPKM5Ll832dx2shHb4IM.crl (hash: MCuyYMBKuAL7iHbU1ly48xlFGTl1FISR9NPkuZloU4E=) 2: 34C7EB4010F411EFB4CD9614C4F9AE02.roa (hash: HQVBp5krW/zWsMNVmonE+C1EZrAA3t7C0+n3mvRWkOE=) 3: 6A14D330F9AC11EEABC2273CC4F9AE02.roa (hash: 9vyxV5N8Vtczvs3g0ENVtn8rIBFHBSN2Hftwdo1KcBQ=) 4: A9C850AC11FC11EF839D777EC4F9AE02.roa (hash: TsGpdccWVX09RUbqU4JV/2qtrLp4pgx5JTlXuFyTU1A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Validity Not Before: May 17 08:56:46 2024 GMT Not After : May 24 08:56:46 2024 GMT Subject: CN=66471bce-ab5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:4f:93:a8:da:ac:47:46:67:11:3f:5f:65:4d: 7b:ee:4b:c5:5f:05:67:2c:37:44:65:a1:ec:b3:c4: ea:bf:41:27:3b:ca:78:c9:c5:65:ba:36:5f:fd:04: f0:2d:e3:65:3f:f2:e5:6f:66:18:2b:b2:7f:b5:8f: 84:36:77:32:ed:46:85:1b:00:21:91:e8:8d:80:09: cd:ee:6d:49:ad:a4:91:b3:91:3a:e5:b8:d8:27:88: 82:b5:ee:22:e1:77:31:8c:c2:8c:eb:4e:4c:0d:d5: 2c:2b:ee:cd:15:33:f1:25:16:ba:f5:cb:d5:7f:f5: db:a3:18:19:17:98:bd:df:2b:90:f3:75:61:1d:ff: 5d:21:7e:bc:2b:75:0d:04:4d:74:aa:5c:14:78:19: 6d:a3:fb:a8:31:b7:64:71:6f:78:8d:63:b0:05:55: 82:32:d8:37:19:2b:3f:ac:b1:ea:b4:60:14:95:d1: f3:05:fa:a9:de:2c:41:58:4f:a8:73:95:2d:7b:84: 4e:8e:15:74:51:f0:6a:ce:10:8a:ee:f3:6d:39:a2: e6:59:a6:ab:65:8a:0b:43:23:14:30:0d:e0:71:c3: 78:0b:2b:7c:09:78:8e:e9:1e:76:67:d0:61:5a:8e: ef:43:89:70:89:ec:ed:c1:d8:c2:ed:bb:c2:4d:69: 02:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:BF:4D:75:64:AD:81:A1:99:A9:D1:94:11:4F:CF:A2:5D:F1:46:F3 X509v3 Authority Key Identifier: keyid:2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:ab:2c:a1:2b:5a:41:a6:4d:05:f6:d3:ff:23:f4:aa:e0:95: c7:dd:b1:41:af:49:d3:8b:60:22:2a:bf:f3:63:dd:a8:92:a4: 87:59:97:46:86:c8:ec:ef:fa:39:50:58:bd:4f:07:f9:69:80: 26:5c:4a:f9:43:36:7b:63:40:60:60:87:7b:f4:cb:fb:62:99: b5:b2:c0:4b:ff:16:89:79:13:36:f6:bd:2d:61:cc:0d:26:0a: 96:1d:6a:03:8c:f7:39:69:a2:ef:38:7e:a3:4e:e5:b0:a8:30: 1b:e4:fc:7c:e3:48:df:29:11:1c:57:32:eb:24:08:0b:2d:37: e0:e4:ca:a4:c9:ab:a3:eb:0d:4d:a2:58:81:9b:65:c2:df:13: 82:1e:f5:81:44:9d:b7:d6:b2:60:de:c7:ae:8b:b7:1f:77:63: 59:a5:ad:ad:28:5d:45:63:d1:ad:d6:d5:d2:31:86:69:36:27: da:3e:cc:d1:d1:ba:f0:f4:b3:49:77:c5:23:21:7b:8e:3b:9b: af:6b:6a:16:7a:82:9a:32:ec:92:41:ce:f2:d6:95:a9:4b:99: eb:ef:25:5c:b6:db:ed:b2:4d:7b:b9:03:c3:98:bb:85:26:de: 25:a9:99:c5:d9:7e:d3:a6:4f:83:54:c2:c5:0e:ac:48:4c:a5: 0f:70:93:8e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD ODM0NzExMC8GA1UEBRMoMkFEQkI3MUIxMTUyM0NBMzM5MkU1RjM3RDlEQzc2QjIx MURCRTA4MzAeFw0yNDA1MTcwODU2NDZaFw0yNDA1MjQwODU2NDZaMBgxFjAUBgNV BAMTDTY2NDcxYmNlLWFiNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD8T5Oo2qxHRmcRP19lTXvuS8VfBWcsN0RloeyzxOq/QSc7ynjJxWW6Nl/9BPAt 42U/8uVvZhgrsn+1j4Q2dzLtRoUbACGR6I2ACc3ubUmtpJGzkTrluNgniIK17iLh dzGMwozrTkwN1Swr7s0VM/ElFrr1y9V/9dujGBkXmL3fK5DzdWEd/10hfrwrdQ0E TXSqXBR4GW2j+6gxt2Rxb3iNY7AFVYIy2DcZKz+sseq0YBSV0fMF+qneLEFYT6hz lS17hE6OFXRR8GrOEIru8205ouZZpqtligtDIxQwDeBxw3gLK3wJeI7pHnZn0GFa ju9DiXCJ7O3B2MLtu8JNaQIHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7L9NdWSt gaGZqdGUEU/Pol3xRvMwHwYDVR0jBBgwFoAUKtu3GxFSPKM5Ll832dx2shHb4IMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4MzQ3L0MzRTcyMTkwRjlB OTExRUVBODJBNzkxQUM0RjlBRTAyL0t0dTNHeEZTUEtNNUxsODMyZHgyc2hIYjRJ TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS3R1M0d4RlNQS001TGw4MzJkeDJzaEhiNElNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4 MzQ3L0MzRTcyMTkwRjlBOTExRUVBODJBNzkxQUM0RjlBRTAyL0t0dTNHeEZTUEtN NUxsODMyZHgyc2hIYjRJTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABqrLKErWkGmTQX20/8j9KrglcfdsUGvSdOLYCIqv/Nj3aiSpIdZl0aG yOzv+jlQWL1PB/lpgCZcSvlDNntjQGBgh3v0y/timbWywEv/Fol5Ezb2vS1hzA0m CpYdagOM9zlpou84fqNO5bCoMBvk/HzjSN8pERxXMuskCAstN+DkyqTJq6PrDU2i WIGbZcLfE4Ie9YFEnbfWsmDex66Ltx93Y1mlra0oXUVj0a3W1dIxhmk2J9o+zNHR uvD0s0l3xSMhe447m69rahZ6gpoy7JJBzvLWlalLmevvJVy22+2yTXu5A8OYu4Um 3iWpmcXZftOmT4NUwsUOrEhMpQ9wk44= -----END CERTIFICATE-----Generated at Fri May 17 10:59:14 2024 by rpki-client on console-ams.rpki-client.org