$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft File: K5XY2CKKiRR9gBk9l3DrUK7du2s.mft (raw, json) Hash identifier: NNJ4KhGI/n6jNRCS/h7hkcqhKwTU0uPgrVKQr1tEO3s= Subject key identifier: 2E:B9:1D:AB:E7:E1:D5:03:27:75:17:E1:9E:0C:7B:E6:AF:F8:6F:45 Authority key identifier: 2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B Certificate issuer: /CN=A91FF5A9/serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Certificate serial: 15F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft Manifest number: 15DA Signing time: Fri 26 Apr 2024 17:12:31 +0000 Manifest this update: Fri 26 Apr 2024 17:12:31 +0000 Manifest next update: Fri 03 May 2024 17:12:31 +0000 Files and hashes: 1: K5XY2CKKiRR9gBk9l3DrUK7du2s.crl (hash: 9W2hstBtefWhLpylb9wJAWVQ6PmCSf6kXdb5qigCLok=) 2: 07D665E0862711EBAC147872C4F9AE02.roa (hash: ous1E0oLiCs3r+HQiFOj64dMFKdW/gP7r3rj77Prx3Y=) 3: F9E21144D90F11EDB2DBEA49C4F9AE02.roa (hash: iTzoakUoaVNdTqGJxVmIzhqLbUwoGqXoPnqROEzOhSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 17:12:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5617 (0x15f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5A9/serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Validity Not Before: Apr 26 17:12:31 2024 GMT Not After : May 3 17:12:31 2024 GMT Subject: CN=662be07f-fee1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:42:95:22:6f:19:29:58:1e:90:7a:15:d6:a6: 0f:e0:68:98:53:39:1b:c2:9f:21:c7:92:63:dc:8d: e7:a1:10:fa:45:35:1e:35:fc:44:d9:b0:f2:3e:42: 53:da:bc:f0:b9:ff:5b:b3:02:cb:53:2f:20:ee:11: e8:e7:0c:3e:7d:b2:5e:6b:1a:58:43:bd:67:70:43: 88:c3:68:18:90:e3:03:e2:24:ec:a8:19:14:e4:16: 02:8e:63:06:f6:59:56:0e:74:cf:4d:f6:4e:74:ba: 9e:3f:b3:33:d7:fa:83:04:1d:10:42:ef:35:15:5f: 07:f1:a5:e4:d3:70:61:ff:6f:c1:1c:55:2f:51:9b: 24:b8:7d:e8:56:5c:6e:87:61:6a:4e:2f:91:d6:ec: 43:f5:b9:9b:2b:62:02:77:61:69:9f:7a:c2:6c:a9: bd:ed:f1:cf:20:63:cb:8e:77:e4:84:ae:4c:67:25: f2:ea:71:ed:cc:6e:82:2a:ef:53:c8:d4:40:20:6e: ad:9f:90:6e:9c:46:1e:05:48:5d:95:d8:8c:d4:8a: 47:7a:6f:0a:85:86:bf:aa:a8:42:b7:83:d4:c7:5d: 56:ea:7c:d6:13:ea:97:42:e3:d5:83:5b:15:1c:29: 4b:ba:92:e1:6e:3c:17:b5:ea:31:99:53:ec:da:84: 43:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:B9:1D:AB:E7:E1:D5:03:27:75:17:E1:9E:0C:7B:E6:AF:F8:6F:45 X509v3 Authority Key Identifier: keyid:2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:47:a4:5f:c7:67:0b:4c:28:e2:c8:e4:48:c9:5f:b6:2b:05: cc:a8:42:55:0e:a2:1f:2d:73:42:95:5a:c6:98:d6:2a:29:8b: 34:04:e1:9d:35:51:6e:b4:e3:85:22:08:6f:39:99:8c:2a:22: 56:e5:a0:9f:06:ca:cb:47:d2:b5:ed:f2:4f:18:b4:3b:7e:d3: 9c:f4:15:7a:c8:a1:24:84:9a:ba:e0:8f:40:56:29:d0:48:2b: 67:f1:10:6b:f8:3f:42:6e:07:2c:71:96:e4:d5:ef:3b:7a:21: 8e:1d:dd:e0:50:9f:6d:70:8f:c2:77:cf:a1:e8:88:68:87:36: 95:20:36:6a:97:dc:41:f6:05:a5:55:fd:6e:4b:18:8c:4b:fc: 2a:88:d8:03:35:6f:fb:7a:8c:48:9e:b2:59:96:77:b3:12:fc: 35:9f:e0:6b:2e:15:78:30:1a:ca:c6:30:1c:10:4f:32:ce:44: 81:51:f9:8c:38:34:e6:39:0f:df:66:e1:88:87:1a:a8:b0:21: 25:87:2d:07:8a:70:1c:6c:0c:ea:93:53:07:8d:10:fb:34:29: 38:f0:0d:93:27:25:9c:a7:95:91:b5:b1:da:0b:cb:75:17:3c: e9:06:ed:a2:85:6a:48:8a:c3:88:ad:0e:6d:c4:ee:18:df:76: d8:d1:e2:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1QTkxMTAvBgNVBAUTKDJCOTVEOEQ4MjI4QTg5MTQ3RDgwMTkzRDk3NzBFQjUw QUVEREJCNkIwHhcNMjQwNDI2MTcxMjMxWhcNMjQwNTAzMTcxMjMxWjAYMRYwFAYD VQQDEw02NjJiZTA3Zi1mZWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUKVIm8ZKVgekHoV1qYP4GiYUzkbwp8hx5Jj3I3noRD6RTUeNfxE2bDyPkJT 2rzwuf9bswLLUy8g7hHo5ww+fbJeaxpYQ71ncEOIw2gYkOMD4iTsqBkU5BYCjmMG 9llWDnTPTfZOdLqeP7Mz1/qDBB0QQu81FV8H8aXk03Bh/2/BHFUvUZskuH3oVlxu h2FqTi+R1uxD9bmbK2ICd2Fpn3rCbKm97fHPIGPLjnfkhK5MZyXy6nHtzG6CKu9T yNRAIG6tn5BunEYeBUhdldiM1IpHem8KhYa/qqhCt4PUx11W6nzWE+qXQuPVg1sV HClLupLhbjwXteoxmVPs2oRDlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC65Havn 4dUDJ3UX4Z4Me+av+G9FMB8GA1UdIwQYMBaAFCuV2NgiiokUfYAZPZdw61Cu3btr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVBOS8wMEI3MTUxQ0ZE MDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lSUjlnQms5bDNEclVLN2R1 MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1WFkyQ0tLaVJSOWdCazlsM0RyVUs3ZHUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVBOS8wMEI3MTUxQ0ZEMDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lS UjlnQms5bDNEclVLN2R1MnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6R6Rfx2cLTCjiyORIyV+2KwXMqEJVDqIfLXNClVrGmNYqKYs0BOGd NVFutOOFIghvOZmMKiJW5aCfBsrLR9K17fJPGLQ7ftOc9BV6yKEkhJq64I9AVinQ SCtn8RBr+D9CbgcscZbk1e87eiGOHd3gUJ9tcI/Cd8+h6IhohzaVIDZql9xB9gWl Vf1uSxiMS/wqiNgDNW/7eoxInrJZlnezEvw1n+BrLhV4MBrKxjAcEE8yzkSBUfmM ODTmOQ/fZuGIhxqosCElhy0HinAcbAzqk1MHjRD7NCk48A2TJyWcp5WRtbHaC8t1 FzzpBu2ihWpIisOIrQ5txO4Y33bY0eL6 -----END CERTIFICATE-----Generated at Sat Apr 27 10:21:02 2024 by rpki-client on console-ams.rpki-client.org