$ rpki-client -vvf rpki.apnic.net/member_repository/A914669D/BF6E20A68DAE11EBB298B51FC4F9AE02/kRJuhvGMYJQE0ZDymMMs1gn8-nk.mft File: kRJuhvGMYJQE0ZDymMMs1gn8-nk.mft (raw, json) Hash identifier: AY0sM0UO6N/v2AIFKMPOuw3eYEo2ZuSZsf0H90rhJPw= Subject key identifier: A0:A0:5B:00:20:C6:66:E5:2E:33:A5:97:16:D9:66:89:A6:98:E8:E9 Authority key identifier: 91:12:6E:86:F1:8C:60:94:04:D1:90:F2:98:C3:2C:D6:09:FC:FA:79 Certificate issuer: /CN=A914669D/serialNumber=91126E86F18C609404D190F298C32CD609FCFA79 Certificate serial: 0589 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRJuhvGMYJQE0ZDymMMs1gn8-nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914669D/BF6E20A68DAE11EBB298B51FC4F9AE02/kRJuhvGMYJQE0ZDymMMs1gn8-nk.mft Manifest number: 0585 Signing time: Sun 19 May 2024 00:33:15 +0000 Manifest this update: Sun 19 May 2024 00:33:14 +0000 Manifest next update: Sun 26 May 2024 00:33:14 +0000 Files and hashes: 1: kRJuhvGMYJQE0ZDymMMs1gn8-nk.crl (hash: ZTsrR3tzMmvrzrh9vjifNwTEdawZAHjWwmCO9I9trpg=) 2: E521C8BE8DB011EBBA0A3723C4F9AE02.roa (hash: ZLBQwoFaRukWv9aOywOcnWZp1yTbxt94Pox2P4xUQ7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914669D/BF6E20A68DAE11EBB298B51FC4F9AE02/kRJuhvGMYJQE0ZDymMMs1gn8-nk.crl rsync://rpki.apnic.net/member_repository/A914669D/BF6E20A68DAE11EBB298B51FC4F9AE02/kRJuhvGMYJQE0ZDymMMs1gn8-nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRJuhvGMYJQE0ZDymMMs1gn8-nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1417 (0x589) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914669D/serialNumber=91126E86F18C609404D190F298C32CD609FCFA79 Validity Not Before: May 19 00:33:14 2024 GMT Not After : May 26 00:33:14 2024 GMT Subject: CN=664948cb-af2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:91:7c:2d:1e:d8:5a:2b:65:3d:af:27:87:ca: f2:34:f6:0d:20:5b:d0:9d:62:b1:d3:3c:3c:ab:70: 9c:a5:92:c6:ba:48:df:cb:28:4a:1b:1c:5b:4f:4a: 40:f3:ac:ac:5b:4a:fb:83:ab:9b:f3:19:93:d0:57: 0a:84:8b:a9:be:ee:f0:4c:c5:55:e4:45:65:32:46: cf:71:59:ab:50:e3:29:dd:06:80:08:90:66:aa:b0: 38:fd:99:6d:21:7b:47:c2:7b:2f:91:a1:95:58:eb: db:85:01:89:1e:6a:57:d4:e5:ad:e3:b5:9f:5f:42: 21:f2:27:5d:4b:fe:a0:d7:9c:01:83:34:38:56:1f: 2f:c2:30:b2:e1:1c:4e:3c:95:69:25:20:2a:73:05: e5:f3:b2:98:48:18:d5:da:2f:0d:b8:18:33:0b:9d: b5:05:ba:77:dc:86:7a:e7:81:f0:11:ae:aa:9f:42: 71:41:0a:e3:f4:41:6d:00:01:5b:fa:3f:62:24:78: 42:1c:d3:fe:f2:66:32:95:ff:15:79:ed:2d:e4:f9: 37:e6:18:be:13:03:0e:08:8c:bf:46:47:aa:92:d6: d6:28:22:ae:a4:96:d5:2f:8a:40:f0:79:e5:d1:a7: 73:a2:eb:cf:44:96:2e:8b:d6:53:d1:da:44:62:e2: a4:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:A0:5B:00:20:C6:66:E5:2E:33:A5:97:16:D9:66:89:A6:98:E8:E9 X509v3 Authority Key Identifier: keyid:91:12:6E:86:F1:8C:60:94:04:D1:90:F2:98:C3:2C:D6:09:FC:FA:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914669D/BF6E20A68DAE11EBB298B51FC4F9AE02/kRJuhvGMYJQE0ZDymMMs1gn8-nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRJuhvGMYJQE0ZDymMMs1gn8-nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914669D/BF6E20A68DAE11EBB298B51FC4F9AE02/kRJuhvGMYJQE0ZDymMMs1gn8-nk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:7e:e9:17:0f:d3:5c:83:f9:82:ef:73:46:a3:29:f6:bf:77: 9c:54:93:60:aa:ac:3d:85:ab:7c:5f:ed:3f:6d:a9:44:ed:ef: da:1a:57:9b:eb:c4:34:78:d0:d6:e0:c6:1a:a5:0f:e2:51:90: ea:0e:74:45:a8:be:5f:68:cd:1f:c4:bc:5a:cd:6d:0f:9b:27: c4:17:9e:44:f3:73:b0:50:ba:fa:4b:66:3e:c9:be:54:87:25: b2:fc:c2:51:9f:1d:61:09:98:5d:53:6f:b7:cd:ee:4b:e6:80: b8:df:84:09:a4:a5:45:92:65:28:7a:ba:64:65:7a:04:32:94: 47:53:5a:fd:68:cf:9b:79:70:29:66:f1:21:9f:4e:db:57:8e: d2:f4:60:e8:8f:9b:77:e4:ba:47:7a:94:98:58:69:b9:4a:36: 9a:71:ef:a5:38:ce:ef:95:94:2c:7b:24:fb:97:c1:c8:2c:f3: 0a:1d:9f:a4:47:57:2c:f1:63:a9:39:aa:2f:ab:6d:85:b8:82: 66:45:dc:32:5f:63:45:5b:5e:76:8e:f6:e5:3a:5f:67:33:32: 04:12:99:c5:e1:9b:63:d7:67:ca:aa:17:71:2c:0c:5a:2b:eb: 47:5d:41:82:41:a0:8c:f1:41:41:3e:cb:9f:8c:45:6e:a4:46: a7:85:9b:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY2OUQxMTAvBgNVBAUTKDkxMTI2RTg2RjE4QzYwOTQwNEQxOTBGMjk4QzMyQ0Q2 MDlGQ0ZBNzkwHhcNMjQwNTE5MDAzMzE0WhcNMjQwNTI2MDAzMzE0WjAYMRYwFAYD VQQDEw02NjQ5NDhjYi1hZjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypF8LR7YWitlPa8nh8ryNPYNIFvQnWKx0zw8q3CcpZLGukjfyyhKGxxbT0pA 86ysW0r7g6ub8xmT0FcKhIupvu7wTMVV5EVlMkbPcVmrUOMp3QaACJBmqrA4/Zlt IXtHwnsvkaGVWOvbhQGJHmpX1OWt47WfX0Ih8iddS/6g15wBgzQ4Vh8vwjCy4RxO PJVpJSAqcwXl87KYSBjV2i8NuBgzC521Bbp33IZ654HwEa6qn0JxQQrj9EFtAAFb +j9iJHhCHNP+8mYylf8Vee0t5Pk35hi+EwMOCIy/RkeqktbWKCKupJbVL4pA8Hnl 0adzouvPRJYui9ZT0dpEYuKkoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKCgWwAg xmblLjOllxbZZommmOjpMB8GA1UdIwQYMBaAFJESbobxjGCUBNGQ8pjDLNYJ/Pp5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjY5RC9CRjZFMjBBNjhE QUUxMUVCQjI5OEI1MUZDNEY5QUUwMi9rUkp1aHZHTVlKUUUwWkR5bU1NczFnbjgt bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tSSnVodkdNWUpRRTBaRHltTU1zMWduOC1uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjY5RC9CRjZFMjBBNjhEQUUxMUVCQjI5OEI1MUZDNEY5QUUwMi9rUkp1aHZHTVlK UUUwWkR5bU1NczFnbjgtbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCifukXD9Ncg/mC73NGoyn2v3ecVJNgqqw9hat8X+0/balE7e/aGleb 68Q0eNDW4MYapQ/iUZDqDnRFqL5faM0fxLxazW0PmyfEF55E83OwULr6S2Y+yb5U hyWy/MJRnx1hCZhdU2+3ze5L5oC434QJpKVFkmUoerpkZXoEMpRHU1r9aM+beXAp ZvEhn07bV47S9GDoj5t35LpHepSYWGm5Sjaace+lOM7vlZQseyT7l8HILPMKHZ+k R1cs8WOpOaovq22FuIJmRdwyX2NFW152jvblOl9nMzIEEpnF4Ztj12fKqhdxLAxa K+tHXUGCQaCM8UFBPsufjEVupEanhZsN -----END CERTIFICATE-----Generated at Sun May 19 01:47:09 2024 by rpki-client on console-ams.rpki-client.org