$ rpki-client -vvf rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.mft File: kKR_PGWbNxj9yC0wB6nTQknMyPQ.mft (raw, json) Hash identifier: 6UdSRmuAnCEwjTJY4MDtb4IuKkjqVXCTN6HrOplZWpQ= Subject key identifier: 9F:1D:92:23:1D:BB:52:4A:9C:B7:78:C5:32:F4:82:D8:6F:A6:45:06 Authority key identifier: 90:A4:7F:3C:65:9B:37:18:FD:C8:2D:30:07:A9:D3:42:49:CC:C8:F4 Certificate issuer: /CN=A9167A72/serialNumber=90A47F3C659B3718FDC82D3007A9D34249CCC8F4 Certificate serial: 29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKR_PGWbNxj9yC0wB6nTQknMyPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.mft Manifest number: 27 Signing time: Sun 19 May 2024 08:30:43 +0000 Manifest this update: Sun 19 May 2024 08:30:43 +0000 Manifest next update: Sun 26 May 2024 08:30:43 +0000 Files and hashes: 1: kKR_PGWbNxj9yC0wB6nTQknMyPQ.crl (hash: w0rMxDSv5l+rei31bfUSerzOuJjhdJafOGD5S9wyZQQ=) 2: F81F7E0EE2A111EEA2DD9E18C4F9AE02.roa (hash: i2LHA/EgGtTBeHKNnFlyuCR2kaAk5AeCjXfpxJn/gu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.crl rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKR_PGWbNxj9yC0wB6nTQknMyPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167A72/serialNumber=90A47F3C659B3718FDC82D3007A9D34249CCC8F4 Validity Not Before: May 19 08:30:43 2024 GMT Not After : May 26 08:30:43 2024 GMT Subject: CN=6649b8b3-1f3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0c:26:7e:6e:93:ff:6f:8c:6d:0a:0e:8d:16: 93:a2:c5:7e:c9:8c:14:3a:7b:e8:1e:43:75:4c:58: d7:c3:6e:80:a0:42:03:54:dd:d5:0e:4e:36:77:9d: 44:08:26:26:6e:fb:9c:ad:03:33:38:55:32:fa:1b: ea:1a:c1:f5:55:fe:0f:0e:9f:47:b3:c7:c5:78:95: c2:8c:9c:8f:6c:01:d8:e5:45:df:d0:f1:82:61:34: 85:fc:c8:09:7e:8f:41:1a:56:68:2f:8f:00:dd:ce: 96:12:00:64:2f:b4:2a:ec:a2:cd:62:cd:c3:d3:4e: c6:e4:f4:48:82:f7:ab:52:1e:2d:8d:ef:62:47:bd: 5b:e2:2d:76:11:8e:62:d4:8c:7e:b1:65:2b:11:20: f6:63:af:32:00:43:f7:e4:02:51:73:c1:4e:29:b4: 3e:97:c5:b9:6d:fe:1d:ac:07:2a:c3:7c:1a:a2:73: 40:68:0d:83:a8:71:a8:39:75:e8:b9:bd:26:a8:a4: 75:ea:0f:f7:ae:15:9a:fb:d7:04:5d:a7:b5:ef:f6: 5a:9b:1a:bc:56:b7:5a:b4:bc:9f:6f:bb:15:90:41: 1e:54:af:92:94:3a:bb:9b:50:3a:c9:52:ee:d3:c4: 55:a7:07:4d:29:47:c2:ce:87:b2:0f:48:8e:e5:33: f9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:1D:92:23:1D:BB:52:4A:9C:B7:78:C5:32:F4:82:D8:6F:A6:45:06 X509v3 Authority Key Identifier: keyid:90:A4:7F:3C:65:9B:37:18:FD:C8:2D:30:07:A9:D3:42:49:CC:C8:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKR_PGWbNxj9yC0wB6nTQknMyPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:5c:d9:6a:d7:76:b6:eb:71:86:ac:e5:19:7f:91:51:d9:42: 49:55:0b:26:8c:75:1c:20:f6:29:b3:5c:2e:78:2b:31:34:21: b7:31:1c:01:f8:8c:bd:03:df:ef:c8:16:c7:6f:db:47:d8:6e: 33:aa:1d:4f:6d:36:1e:fd:73:85:46:61:b8:bc:2a:c1:0a:e4: 1e:9c:b1:ea:27:b0:01:8d:82:18:d7:85:a5:57:4e:f5:5a:67: ca:0d:82:f3:6e:cd:d0:6d:fc:c7:69:11:4d:64:41:ca:e2:77: 41:3c:d8:35:b2:8a:b2:7c:2f:cd:ed:2d:90:1a:fb:25:17:b7: f7:b9:7e:89:f8:dc:ad:81:30:64:88:53:40:0b:31:a5:7e:bd: 93:fc:e4:b6:47:95:d6:75:45:b6:07:e9:f9:24:c1:b3:25:b9: 8d:0b:ae:9a:c8:23:82:10:db:1d:ec:34:2f:53:23:40:d0:68: 57:fe:98:b7:09:45:b3:63:5c:1f:e8:8c:3e:d1:a2:2f:b1:05: dd:3c:3f:b7:5d:fa:f0:97:02:d6:bf:99:53:44:23:77:27:b7: 90:d4:76:22:69:ad:31:0c:a3:05:28:8b:5f:81:48:51:3d:1c: cd:74:3a:09:27:d0:bd:bf:bf:b3:36:4b:85:c7:f0:30:08:be: 4e:40:ac:bd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0E3MjExMC8GA1UEBRMoOTBBNDdGM0M2NTlCMzcxOEZEQzgyRDMwMDdBOUQzNDI0 OUNDQzhGNDAeFw0yNDA1MTkwODMwNDNaFw0yNDA1MjYwODMwNDNaMBgxFjAUBgNV BAMTDTY2NDliOGIzLTFmM2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQDCZ+bpP/b4xtCg6NFpOixX7JjBQ6e+geQ3VMWNfDboCgQgNU3dUOTjZ3nUQI JiZu+5ytAzM4VTL6G+oawfVV/g8On0ezx8V4lcKMnI9sAdjlRd/Q8YJhNIX8yAl+ j0EaVmgvjwDdzpYSAGQvtCrsos1izcPTTsbk9EiC96tSHi2N72JHvVviLXYRjmLU jH6xZSsRIPZjrzIAQ/fkAlFzwU4ptD6Xxblt/h2sByrDfBqic0BoDYOocag5dei5 vSaopHXqD/euFZr71wRdp7Xv9lqbGrxWt1q0vJ9vuxWQQR5Ur5KUOrubUDrJUu7T xFWnB00pR8LOh7IPSI7lM/k1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnx2SIx27 Ukqct3jFMvSC2G+mRQYwHwYDVR0jBBgwFoAUkKR/PGWbNxj9yC0wB6nTQknMyPQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3QTcyLzIyRkQxMjFBRENG MDExRUVCQzkwMzExRUM0RjlBRTAyL2tLUl9QR1diTnhqOXlDMHdCNm5UUWtuTXlQ US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0tSX1BHV2JOeGo5eUMwd0I2blRRa25NeVBRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 QTcyLzIyRkQxMjFBRENGMDExRUVCQzkwMzExRUM0RjlBRTAyL2tLUl9QR1diTnhq OXlDMHdCNm5UUWtuTXlQUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACxc2WrXdrbrcYas5Rl/kVHZQklVCyaMdRwg9imzXC54KzE0IbcxHAH4 jL0D3+/IFsdv20fYbjOqHU9tNh79c4VGYbi8KsEK5B6cseonsAGNghjXhaVXTvVa Z8oNgvNuzdBt/MdpEU1kQcrid0E82DWyirJ8L83tLZAa+yUXt/e5fon43K2BMGSI U0ALMaV+vZP85LZHldZ1RbYH6fkkwbMluY0LrprII4IQ2x3sNC9TI0DQaFf+mLcJ RbNjXB/ojD7Roi+xBd08P7dd+vCXAta/mVNEI3cnt5DUdiJprTEMowUoi1+BSFE9 HM10Ogkn0L2/v7M2S4XH8DAIvk5ArL0= -----END CERTIFICATE-----Generated at Sun May 19 09:32:16 2024 by rpki-client on console-ams.rpki-client.org