$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft File: Khx4XL6-fNe6tToSO2BVhg9gfxg.mft (raw, json) Hash identifier: QTacn3kKN/aN7zvDb/t4hMth+UIZ9WpgoTudqSlpkkw= Subject key identifier: 13:B1:1E:6F:92:F9:C9:46:60:42:A5:8A:87:EA:26:86:90:EE:A1:DA Authority key identifier: 2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 Certificate issuer: /CN=A91D6AB2/serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Certificate serial: 076C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft Manifest number: 0AB2 Signing time: Mon 06 May 2024 22:21:02 +0000 Manifest this update: Mon 06 May 2024 22:21:02 +0000 Manifest next update: Mon 13 May 2024 22:21:01 +0000 Files and hashes: 1: Khx4XL6-fNe6tToSO2BVhg9gfxg.crl (hash: rhvSy6hyiV8ZmolagqRAYIlUmaHecu2CL1OfX4XsrpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 22:21:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1900 (0x76c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2/serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Validity Not Before: May 6 22:21:02 2024 GMT Not After : May 13 22:21:01 2024 GMT Subject: CN=663957ce-612e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:23:17:06:35:ac:9c:58:05:53:fa:6a:03:f5: 56:c1:d2:24:55:b3:91:be:64:79:0c:5d:b1:81:25: 8d:d2:f5:1c:64:71:98:92:f4:bd:fd:d2:9f:a4:23: 08:dc:03:89:de:6f:3a:12:e1:ef:ce:3d:59:f7:cd: db:6f:e2:da:a5:6c:a0:f5:75:0e:d3:af:54:7d:e3: 3b:76:de:f1:23:68:40:1d:66:67:17:9d:21:0c:eb: 2e:e6:c2:7d:c4:d6:3c:82:bc:f3:e0:86:ac:f7:6b: eb:27:ea:8e:b9:94:bf:f1:bf:4b:a6:58:0a:7c:d7: 63:74:7c:07:4b:47:10:34:4e:c8:4d:28:cc:40:b6: e4:9a:b0:56:ca:71:44:f9:9a:e3:69:2c:c2:53:f1: 0c:ca:48:e3:35:12:b9:10:1c:5e:99:bc:6c:cf:7a: c6:5f:7a:78:c9:b3:5b:25:f6:8c:d5:af:f9:6a:dd: 57:f0:26:aa:f3:b7:b9:e1:4c:ee:a4:b1:04:74:ec: 55:9e:1d:61:e6:ae:f6:7e:2c:98:31:c7:8a:59:4b: 58:a6:63:4f:28:18:b1:6a:4f:b5:79:50:b8:9b:2b: 59:95:bf:49:4d:10:6f:03:61:ae:09:b5:64:5a:9e: c2:e5:cf:0c:c3:a1:f9:84:25:38:d1:55:e1:26:30: 01:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:B1:1E:6F:92:F9:C9:46:60:42:A5:8A:87:EA:26:86:90:EE:A1:DA X509v3 Authority Key Identifier: keyid:2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:56:96:3e:4e:84:fe:9b:73:a5:50:74:e8:d9:a2:ac:9d:86: 34:6c:a1:72:cf:61:73:bc:33:83:f3:59:f3:97:d8:db:42:98: 07:f8:e1:ae:15:88:1b:69:e2:f9:b8:a7:bb:39:dd:2a:16:84: 97:88:f2:7f:07:ee:bd:32:c5:a9:0e:de:1f:b7:0c:f1:f6:ac: 3e:54:38:95:41:68:e3:eb:ab:9e:bf:f3:a4:7a:2e:86:74:7e: 62:e0:e9:30:4b:05:21:5f:9d:69:97:93:48:73:02:79:2b:1f: e3:a6:5d:4c:c4:d1:91:6c:62:05:93:f1:a2:2c:96:b3:dc:09: eb:0b:70:76:4e:2f:ba:c9:52:dc:2b:50:64:02:48:81:00:fe: 1f:29:b7:bc:06:91:05:fd:1f:b1:00:3d:25:eb:aa:23:f8:00: 81:43:ad:bf:07:95:f1:9a:bd:24:d9:0f:f8:79:e7:00:41:40: 66:20:5b:42:66:55:3f:54:b5:71:94:7b:4d:2c:e5:09:c8:73: 60:6f:2b:90:aa:fa:9b:e5:37:5d:11:25:5a:a4:8f:a6:d1:aa: 10:03:90:9c:09:d3:d0:54:25:f1:0f:d2:c7:dc:0e:bb:72:c8: b5:e2:23:0c:c9:a4:46:a3:87:b4:96:29:43:e1:5d:0f:f2:bc: 1a:c0:4a:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDJBMUM3ODVDQkVCRTdDRDdCQUI1M0ExMjNCNjA1NTg2 MEY2MDdGMTgwHhcNMjQwNTA2MjIyMTAyWhcNMjQwNTEzMjIyMTAxWjAYMRYwFAYD VQQDEw02NjM5NTdjZS02MTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiMXBjWsnFgFU/pqA/VWwdIkVbORvmR5DF2xgSWN0vUcZHGYkvS9/dKfpCMI 3AOJ3m86EuHvzj1Z983bb+LapWyg9XUO069UfeM7dt7xI2hAHWZnF50hDOsu5sJ9 xNY8grzz4Ias92vrJ+qOuZS/8b9LplgKfNdjdHwHS0cQNE7ITSjMQLbkmrBWynFE +ZrjaSzCU/EMykjjNRK5EBxembxsz3rGX3p4ybNbJfaM1a/5at1X8Caq87e54Uzu pLEEdOxVnh1h5q72fiyYMceKWUtYpmNPKBixak+1eVC4mytZlb9JTRBvA2GuCbVk Wp7C5c8Mw6H5hCU40VXhJjABnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOxHm+S +clGYEKliofqJoaQ7qHaMB8GA1UdIwQYMBaAFCoceFy+vnzXurU6EjtgVYYPYH8Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZOZTZ0VG9TTzJCVmhnOWdm eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0toeDRYTDYtZk5lNnRUb1NPMkJWaGc5Z2Z4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZO ZTZ0VG9TTzJCVmhnOWdmeGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3VpY+ToT+m3OlUHTo2aKsnYY0bKFyz2FzvDOD81nzl9jbQpgH+OGu FYgbaeL5uKe7Od0qFoSXiPJ/B+69MsWpDt4ftwzx9qw+VDiVQWjj66uev/Okei6G dH5i4OkwSwUhX51pl5NIcwJ5Kx/jpl1MxNGRbGIFk/GiLJaz3AnrC3B2Ti+6yVLc K1BkAkiBAP4fKbe8BpEF/R+xAD0l66oj+ACBQ62/B5Xxmr0k2Q/4eecAQUBmIFtC ZlU/VLVxlHtNLOUJyHNgbyuQqvqb5TddESVapI+m0aoQA5CcCdPQVCXxD9LH3A67 csi14iMMyaRGo4e0lilD4V0P8rwawEog -----END CERTIFICATE-----Generated at Mon May 6 23:05:50 2024 by rpki-client on console-fra.rpki-client.org