$ rpki-client -vvf rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft File: kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft (raw, json) Hash identifier: KYTWCUgu4tOgMXc6CrJvaReJ6dRY7tgZ7lgA5Dyn40E= Subject key identifier: CF:B6:02:07:E2:71:F5:D6:CF:81:80:39:1F:E3:52:E3:B0:5C:07:A1 Authority key identifier: 91:2A:B3:9F:C7:BB:CB:EF:1C:F2:67:E9:D3:F7:19:C9:A4:F0:A1:14 Certificate issuer: /CN=A91478C3/serialNumber=912AB39FC7BBCBEF1CF267E9D3F719C9A4F0A114 Certificate serial: 0D97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft Manifest number: 0D90 Signing time: Sat 18 May 2024 18:32:18 +0000 Manifest this update: Sat 18 May 2024 18:32:17 +0000 Manifest next update: Sat 25 May 2024 18:32:17 +0000 Files and hashes: 1: kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl (hash: UJ6Em8QlQe2VJFEMgOuCo6TYVnYMqgILhBDlEcsOXdY=) 2: 36477FF69D2E11E99A95DC2AC4F9AE02.roa (hash: 3ATWfniZagbwXrzzSjogNdEqrQHRXjVZAQ8fSZkSCBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3479 (0xd97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91478C3/serialNumber=912AB39FC7BBCBEF1CF267E9D3F719C9A4F0A114 Validity Not Before: May 18 18:32:17 2024 GMT Not After : May 25 18:32:17 2024 GMT Subject: CN=6648f431-d99a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c0:a2:9b:70:ae:20:7a:21:9f:9d:64:4e:99: ba:6a:f6:5c:a8:3e:4e:27:2a:6e:4a:57:05:7c:18: 93:e0:f9:75:19:60:3f:f3:31:00:9f:77:5d:64:00: 36:6d:1f:66:d8:72:87:35:f3:bc:a7:58:e0:4d:87: 5e:29:29:62:de:d5:bf:20:20:f0:ea:bb:bd:78:fa: 1f:4e:5d:e9:c0:f9:97:e7:6b:6f:fd:e0:a2:38:e9: 6e:17:46:fe:79:6c:9e:be:16:2c:4e:64:37:57:6b: 5a:ea:7a:0d:18:3b:8a:ec:7a:7f:0d:2e:c7:2f:c4: 9e:ba:ad:9b:84:e8:0f:f7:d0:5f:51:ae:dd:fe:9e: 3c:d8:58:20:6a:57:a2:6e:d1:5e:c9:25:7c:b3:bc: f1:9e:88:cc:a1:51:4b:aa:75:59:f1:50:3f:57:e5: d6:10:31:d2:86:d8:c8:95:5a:cb:50:93:6c:0b:30: 8b:2c:9f:98:6b:6b:7c:a1:3e:8e:ea:06:d8:9f:76: 11:40:5a:dd:b0:22:b6:be:f8:7c:cc:d6:f3:4c:0e: b9:4d:7d:79:99:53:25:9b:65:f3:05:2d:d2:68:9b: 72:41:ab:3d:02:2f:0d:f9:1a:6b:2d:5d:45:1c:df: b9:da:c3:b1:1a:ec:26:14:c1:04:96:38:3e:ea:8a: e0:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:B6:02:07:E2:71:F5:D6:CF:81:80:39:1F:E3:52:E3:B0:5C:07:A1 X509v3 Authority Key Identifier: keyid:91:2A:B3:9F:C7:BB:CB:EF:1C:F2:67:E9:D3:F7:19:C9:A4:F0:A1:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:14:e7:dd:49:95:93:64:dd:f0:f9:c5:e1:0a:f8:df:1b:78: 4c:ca:2d:1d:80:9c:3c:64:12:cd:90:55:5a:55:49:ed:5c:d3: 2f:c2:ae:00:b4:61:e4:80:eb:80:b1:50:27:2e:03:8b:eb:07: 01:99:94:23:47:a6:7d:ef:01:c2:7e:0b:ff:65:10:ac:a2:90: f4:d1:d1:d0:b6:9d:0b:f7:d1:3e:1f:b3:7f:03:39:44:e5:45: 50:e8:47:bb:3a:44:16:04:0b:b7:cc:5a:cc:df:64:5d:f7:08: 4d:3c:33:a9:cf:69:1d:cd:11:ca:f8:a8:d9:d4:76:49:95:68: 5d:be:61:a1:6a:18:5b:6b:50:f0:17:4d:f8:e1:c4:58:67:2c: 41:1a:46:22:f5:ec:c7:7d:25:ad:08:a4:e6:39:9f:5a:bf:30: 80:2f:3b:b6:39:2e:de:b3:4c:45:25:5a:7e:03:ad:0a:78:48: 18:24:48:d8:a0:9f:4c:e9:d1:19:6b:5a:69:38:43:09:6e:50: 8d:79:d9:4b:fc:e9:22:93:1f:7c:9c:fc:9b:cd:d1:2f:ba:1f: f7:66:a7:71:85:9e:8d:f2:02:36:23:56:0e:e1:b6:85:77:1d: cf:67:83:c2:e2:2e:70:42:ce:07:4d:1b:08:b4:22:6e:2d:7f: 39:a8:bd:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc4QzMxMTAvBgNVBAUTKDkxMkFCMzlGQzdCQkNCRUYxQ0YyNjdFOUQzRjcxOUM5 QTRGMEExMTQwHhcNMjQwNTE4MTgzMjE3WhcNMjQwNTI1MTgzMjE3WjAYMRYwFAYD VQQDEw02NjQ4ZjQzMS1kOTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMCim3CuIHohn51kTpm6avZcqD5OJypuSlcFfBiT4Pl1GWA/8zEAn3ddZAA2 bR9m2HKHNfO8p1jgTYdeKSli3tW/ICDw6ru9ePofTl3pwPmX52tv/eCiOOluF0b+ eWyevhYsTmQ3V2ta6noNGDuK7Hp/DS7HL8Seuq2bhOgP99BfUa7d/p482Fggalei btFeySV8s7zxnojMoVFLqnVZ8VA/V+XWEDHShtjIlVrLUJNsCzCLLJ+Ya2t8oT6O 6gbYn3YRQFrdsCK2vvh8zNbzTA65TX15mVMlm2XzBS3SaJtyQas9Ai8N+RprLV1F HN+52sOxGuwmFMEEljg+6orgWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+2Agfi cfXWz4GAOR/jUuOwXAehMB8GA1UdIwQYMBaAFJEqs5/Hu8vvHPJn6dP3Gcmk8KEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzhDMy9FM0Q5MTk0QzlE MkMxMUU5ODAyMjE4MjlDNEY5QUUwMi9rU3F6bjhlN3ktOGM4bWZwMF9jWnlhVHdv UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTcXpuOGU3eS04YzhtZnAwX2NaeWFUd29SUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzhDMy9FM0Q5MTk0QzlEMkMxMUU5ODAyMjE4MjlDNEY5QUUwMi9rU3F6bjhlN3kt OGM4bWZwMF9jWnlhVHdvUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/FOfdSZWTZN3w+cXhCvjfG3hMyi0dgJw8ZBLNkFVaVUntXNMvwq4A tGHkgOuAsVAnLgOL6wcBmZQjR6Z97wHCfgv/ZRCsopD00dHQtp0L99E+H7N/AzlE 5UVQ6Ee7OkQWBAu3zFrM32Rd9whNPDOpz2kdzRHK+KjZ1HZJlWhdvmGhahhba1Dw F0344cRYZyxBGkYi9ezHfSWtCKTmOZ9avzCALzu2OS7es0xFJVp+A60KeEgYJEjY oJ9M6dEZa1ppOEMJblCNedlL/Okikx98nPybzdEvuh/3ZqdxhZ6N8gI2I1YO4baF dx3PZ4PC4i5wQs4HTRsItCJuLX85qL2a -----END CERTIFICATE-----Generated at Sat May 18 19:15:24 2024 by rpki-client on console-ams.rpki-client.org