$ rpki-client -vvf rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft File: ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft (raw, json) Hash identifier: VnepJ5GrnHWUjaY8YJE0pnA1V/5uRbbW9vWe61Dgvew= Subject key identifier: 4A:57:FB:F1:16:8A:FC:5D:C6:3E:54:00:93:35:6D:24:52:34:88:10 Authority key identifier: 91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F Certificate issuer: /CN=A91128B5/serialNumber=91AEE960DC41FF98ED1B3723343173938126DC9F Certificate serial: 0518 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft Manifest number: 0515 Signing time: Sun 19 May 2024 01:03:54 +0000 Manifest this update: Sun 19 May 2024 01:03:53 +0000 Manifest next update: Sun 26 May 2024 01:03:53 +0000 Files and hashes: 1: ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl (hash: U/40XZaXeY2wZkMLJxyBqHhkAXQgQ+5YXJZJiACXp3k=) 2: 74BDB7D0B96C11EB956C1D2DC4F9AE02.roa (hash: duFZi6Q3XuqBf2Nz0a24WEfK0dRXBPa2XCTdnAEvoe0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1304 (0x518) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128B5/serialNumber=91AEE960DC41FF98ED1B3723343173938126DC9F Validity Not Before: May 19 01:03:53 2024 GMT Not After : May 26 01:03:53 2024 GMT Subject: CN=66494ff9-26fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:05:ed:5e:28:96:33:6b:e3:4d:97:86:0b:b4: 4a:3e:4c:dd:60:92:17:ca:61:31:1e:85:19:6f:e2: c2:a6:fb:60:f5:42:07:bb:36:95:be:3a:67:05:d0: e1:d2:e0:09:7b:22:ba:40:64:00:53:cb:86:cd:d3: 66:5a:4c:0e:7c:fc:14:6b:0a:c9:c4:52:3c:88:c0: bf:a1:be:05:8a:ed:cb:59:22:e8:c4:81:47:8e:54: 32:48:0c:31:68:24:84:44:f5:26:cd:be:a0:a6:75: 8b:69:48:82:dd:95:9a:38:42:79:21:23:67:08:5c: cb:67:e7:85:0f:15:38:07:31:ae:8f:16:3b:e5:84: 52:3c:70:79:2c:79:e6:64:ed:2a:53:81:e3:41:f5: 7d:c0:a2:f8:ea:f4:e0:f5:13:c1:1d:6c:c7:03:95: b6:77:20:86:0c:fe:f3:de:53:a2:c1:2e:51:f9:95: 23:2b:83:70:9e:bc:fb:c9:18:d0:5f:59:77:c2:fd: 66:6b:ca:e3:ff:d0:59:6c:8a:10:1e:2b:d9:e9:38: 1e:4a:f0:21:ef:55:47:13:22:7d:20:b6:96:7c:8b: 53:11:ce:67:af:c7:86:1a:10:b3:0d:66:84:86:64: b0:c5:0f:89:40:1d:82:38:7e:a8:74:a7:6f:bd:d6: af:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:57:FB:F1:16:8A:FC:5D:C6:3E:54:00:93:35:6D:24:52:34:88:10 X509v3 Authority Key Identifier: keyid:91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:a0:33:bf:0b:cc:8a:e1:13:bf:8a:63:9c:ca:61:27:ec:bb: e9:b8:26:43:d1:a7:45:90:50:28:6e:db:42:4a:86:e2:0d:ec: a5:c1:37:0b:47:33:1b:2a:55:04:73:80:0d:db:79:fb:b0:a4: b4:3a:80:92:49:7e:06:21:f5:3f:9f:9d:ac:82:dc:40:05:11: 39:17:d0:5a:11:05:fd:9e:d3:a9:2f:ee:b6:e8:5d:f8:c0:fc: e6:3e:53:57:5f:80:30:f8:41:d3:72:12:ed:f0:b9:f0:25:12: 3f:9b:47:66:62:91:b4:9c:90:56:b4:15:d5:6d:68:ce:bd:38: 23:06:e9:82:67:34:a8:d1:6f:07:34:7b:01:d3:39:98:0c:c4: 08:39:57:5f:5b:e7:71:d2:f1:23:fb:43:fd:0a:64:07:44:a5: 96:cd:62:8e:12:78:6d:fa:87:11:42:c7:b3:48:e6:38:a3:a1: da:0a:51:54:70:25:fd:a9:85:b1:83:f4:77:ce:01:ef:dc:b5: 3c:de:0d:fa:c4:3e:c5:75:15:93:6c:c9:cb:0a:a5:58:23:f6: 78:f1:73:ec:38:18:4a:ee:88:fc:2c:25:d2:43:26:2d:3a:e4: 46:93:d9:b3:d6:37:fc:50:28:ed:8b:21:dc:93:a4:8c:72:76: 9e:87:5b:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4QjUxMTAvBgNVBAUTKDkxQUVFOTYwREM0MUZGOThFRDFCMzcyMzM0MzE3Mzkz ODEyNkRDOUYwHhcNMjQwNTE5MDEwMzUzWhcNMjQwNTI2MDEwMzUzWjAYMRYwFAYD VQQDEw02NjQ5NGZmOS0yNmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1QXtXiiWM2vjTZeGC7RKPkzdYJIXymExHoUZb+LCpvtg9UIHuzaVvjpnBdDh 0uAJeyK6QGQAU8uGzdNmWkwOfPwUawrJxFI8iMC/ob4Fiu3LWSLoxIFHjlQySAwx aCSERPUmzb6gpnWLaUiC3ZWaOEJ5ISNnCFzLZ+eFDxU4BzGujxY75YRSPHB5LHnm ZO0qU4HjQfV9wKL46vTg9RPBHWzHA5W2dyCGDP7z3lOiwS5R+ZUjK4Nwnrz7yRjQ X1l3wv1ma8rj/9BZbIoQHivZ6TgeSvAh71VHEyJ9ILaWfItTEc5nr8eGGhCzDWaE hmSwxQ+JQB2COH6odKdvvdavywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEpX+/EW ivxdxj5UAJM1bSRSNIgQMB8GA1UdIwQYMBaAFJGu6WDcQf+Y7Rs3IzQxc5OBJtyf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhCNS8zRUJDRDFEQUI5 NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81anRHemNqTkRGems0RW0z SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2thN3BZTnhCXzVqdEd6Y2pOREZ6azRFbTNKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjhCNS8zRUJDRDFEQUI5NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81 anRHemNqTkRGems0RW0zSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAoDO/C8yK4RO/imOcymEn7LvpuCZD0adFkFAobttCSobiDeylwTcL RzMbKlUEc4AN23n7sKS0OoCSSX4GIfU/n52sgtxABRE5F9BaEQX9ntOpL+626F34 wPzmPlNXX4Aw+EHTchLt8LnwJRI/m0dmYpG0nJBWtBXVbWjOvTgjBumCZzSo0W8H NHsB0zmYDMQIOVdfW+dx0vEj+0P9CmQHRKWWzWKOEnht+ocRQsezSOY4o6HaClFU cCX9qYWxg/R3zgHv3LU83g36xD7FdRWTbMnLCqVYI/Z48XPsOBhK7oj8LCXSQyYt OuRGk9mz1jf8UCjtiyHck6SMcnaeh1sH -----END CERTIFICATE-----Generated at Sun May 19 01:47:12 2024 by rpki-client on console-fra.rpki-client.org