$ rpki-client -vvf rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft File: Km8SBBLYIPn_JM0F1ez0nmYtmco.mft (raw, json) Hash identifier: DNjNKPXXbUIkaNWQf+Fb1m2M8vkF3c3gItVng7HkP2E= Subject key identifier: F1:9C:7C:DD:10:4D:BB:94:CB:5C:61:94:B7:C0:80:51:02:89:FE:8B Authority key identifier: 2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA Certificate issuer: /CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Certificate serial: 1EB3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft Manifest number: 1EA7 Signing time: Mon 06 May 2024 16:27:53 +0000 Manifest this update: Mon 06 May 2024 16:27:52 +0000 Manifest next update: Mon 13 May 2024 16:27:52 +0000 Files and hashes: 1: Km8SBBLYIPn_JM0F1ez0nmYtmco.crl (hash: Fm9Bn8yVUSWGAs9g/+0ICbl8T4H2gtCp6qjzT36I4EU=) 2: E352E0A2896F11E7BBF2923CC4F9AE02.roa (hash: yxUON/PNfYDClPxawdylAN7htBrSqPl3AH4sRpx8OwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 16:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7859 (0x1eb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Validity Not Before: May 6 16:27:52 2024 GMT Not After : May 13 16:27:52 2024 GMT Subject: CN=66390509-88e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6e:1f:11:97:65:5b:08:7c:4e:54:3d:07:1b: 1d:3f:e5:69:38:62:2b:0e:0f:c7:a7:49:3b:61:e5: 54:4b:00:d2:78:2c:7a:63:9a:6c:fd:c7:ed:7d:88: 56:7c:05:6c:55:af:f0:88:0b:d3:f2:ca:96:86:bc: a8:b6:ad:92:01:3c:3c:82:b0:76:dd:3d:02:ed:83: b9:ad:48:3c:ba:12:62:47:6e:7b:19:1d:f5:b1:d2: 35:37:dc:30:58:2c:c4:e3:ba:0d:82:38:d2:65:8b: 68:7e:31:28:af:58:22:d1:55:50:64:01:ba:85:a8: de:d8:f6:ab:88:93:7c:c0:d7:cc:c5:63:c5:50:1b: 75:35:11:4b:77:60:df:6e:02:8d:80:ca:79:ea:93: 99:4f:c1:43:b4:ca:ed:1d:9e:ed:df:ca:3d:c5:e4: c1:6b:3f:b0:ab:a3:90:8c:bc:03:67:8d:d6:37:5a: f3:3d:a5:f5:b8:a9:3c:a3:66:af:4c:a5:ca:ca:68: c5:d6:cc:9c:fd:76:3e:53:ad:37:54:a3:48:61:b5: c4:ca:7e:24:f3:eb:23:94:f8:e5:ce:77:9f:50:e3: fe:c0:b4:e4:b3:ef:89:d4:21:52:bf:b2:b3:2c:a8: 11:be:ef:63:3d:cf:ed:ab:c9:07:58:ff:74:ab:40: 73:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:9C:7C:DD:10:4D:BB:94:CB:5C:61:94:B7:C0:80:51:02:89:FE:8B X509v3 Authority Key Identifier: keyid:2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:95:c4:6b:2c:1a:91:0d:b6:35:11:fd:41:cd:b7:65:15:36: ab:b7:66:6d:7a:ce:d1:b1:97:2a:29:dd:df:75:c6:e2:d5:1e: ba:46:c6:a9:1e:9b:3c:05:2a:73:05:cf:d5:25:1c:65:a4:4b: a5:34:5e:bc:d2:88:e2:a7:92:d4:cd:60:a9:a3:d2:22:17:21: 71:0f:b2:7f:c4:b2:5b:6c:42:f9:57:b5:9f:51:cc:f3:b1:70: 76:b0:d7:48:70:91:f7:29:b3:b8:fd:0e:d6:4c:1b:76:8d:09: bd:79:a4:42:f8:51:12:c2:fe:57:7d:32:19:57:eb:b4:f2:a5: f3:f5:e2:65:e5:2a:86:51:87:5c:0e:0b:fd:7d:c5:04:3d:5f: e9:f8:92:1e:82:87:f7:6f:c3:f5:38:c7:d4:71:2c:af:21:d9: 37:bb:bb:6d:5c:1b:50:c3:1a:f6:68:86:24:57:ac:e4:10:20: 1b:a9:ba:9a:60:8a:02:fe:db:73:25:0c:49:c7:ad:2c:55:2a: 62:b9:8d:27:c7:62:e3:85:31:d1:82:60:ec:a5:2c:99:3f:cd: 39:0a:16:a8:06:ef:d3:9f:ad:43:f8:49:5a:a5:74:6e:10:1f: 0b:9b:18:e6:50:63:84:95:21:ea:10:76:e0:75:27:ef:07:05: 1f:b9:1e:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHrMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI0MEIxMTAvBgNVBAUTKDJBNkYxMjA0MTJEODIwRjlGRjI0Q0QwNUQ1RUNGNDlF NjYyRDk5Q0EwHhcNMjQwNTA2MTYyNzUyWhcNMjQwNTEzMTYyNzUyWjAYMRYwFAYD VQQDEw02NjM5MDUwOS04OGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApW4fEZdlWwh8TlQ9BxsdP+VpOGIrDg/Hp0k7YeVUSwDSeCx6Y5ps/cftfYhW fAVsVa/wiAvT8sqWhryotq2SATw8grB23T0C7YO5rUg8uhJiR257GR31sdI1N9ww WCzE47oNgjjSZYtofjEor1gi0VVQZAG6haje2PariJN8wNfMxWPFUBt1NRFLd2Df bgKNgMp56pOZT8FDtMrtHZ7t38o9xeTBaz+wq6OQjLwDZ43WN1rzPaX1uKk8o2av TKXKymjF1syc/XY+U603VKNIYbXEyn4k8+sjlPjlznefUOP+wLTks++J1CFSv7Kz LKgRvu9jPc/tq8kHWP90q0BzJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPGcfN0Q TbuUy1xhlLfAgFECif6LMB8GA1UdIwQYMBaAFCpvEgQS2CD5/yTNBdXs9J5mLZnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjQwQi81QjczNkQ5MjQz MzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQbl9KTTBGMWV6MG5tWXRt Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttOFNCQkxZSVBuX0pNMEYxZXowbm1ZdG1jby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjQwQi81QjczNkQ5MjQzMzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQ bl9KTTBGMWV6MG5tWXRtY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRlcRrLBqRDbY1Ef1BzbdlFTart2Ztes7RsZcqKd3fdcbi1R66Rsap Hps8BSpzBc/VJRxlpEulNF680ojip5LUzWCpo9IiFyFxD7J/xLJbbEL5V7WfUczz sXB2sNdIcJH3KbO4/Q7WTBt2jQm9eaRC+FESwv5XfTIZV+u08qXz9eJl5SqGUYdc Dgv9fcUEPV/p+JIegof3b8P1OMfUcSyvIdk3u7ttXBtQwxr2aIYkV6zkECAbqbqa YIoC/ttzJQxJx60sVSpiuY0nx2LjhTHRgmDspSyZP805ChaoBu/Tn61D+ElapXRu EB8LmxjmUGOElSHqEHbgdSfvBwUfuR4b -----END CERTIFICATE-----Generated at Mon May 6 17:36:23 2024 by rpki-client on console-fra.rpki-client.org