$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft File: kXkVGVyXGrRB_d7eb_PNNy51TLU.mft (raw, json) Hash identifier: XVkkGMcez3a2tq8ixSjV7l7Mac3jVudlAlAsqpZZlCw= Subject key identifier: AB:BF:EA:4F:1A:1F:F0:B7:41:E1:EB:71:47:01:09:B8:A9:E2:6C:72 Authority key identifier: 91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 Certificate issuer: /CN=A91795CA/serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Certificate serial: 0579 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft Manifest number: 0574 Signing time: Mon 03 Jun 2024 00:49:25 +0000 Manifest this update: Mon 03 Jun 2024 00:49:25 +0000 Manifest next update: Mon 10 Jun 2024 00:49:25 +0000 Files and hashes: 1: kXkVGVyXGrRB_d7eb_PNNy51TLU.crl (hash: n/P7rDKpbmwdOrHmyOoa8P8v9semkeBXJcI3+Oh0O1Y=) 2: 2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa (hash: GBv0Bwrza6PzeZcBlfUxDT4tM9xuaZtoH+l5x8EcaKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 14:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1401 (0x579) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA/serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Validity Not Before: Jun 3 00:49:25 2024 GMT Not After : Jun 10 00:49:25 2024 GMT Subject: CN=665d1315-43c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e3:c0:b5:18:6b:4e:67:3f:e9:6d:04:fd:69: db:de:d6:e5:5d:61:ec:64:fa:40:26:e3:0e:28:24: 8b:ec:37:84:6b:36:ca:08:fa:e7:ab:70:e8:f0:d9: fd:58:46:36:91:24:1f:a7:63:18:4f:79:c6:1a:49: 78:a2:d2:8f:c5:17:80:0e:e1:18:db:cc:c3:29:6f: c5:f9:4a:06:37:e1:ae:9f:fb:c1:d3:da:c1:a6:89: 7c:11:b8:a4:d3:ef:61:df:39:19:44:e2:0b:a3:9e: f5:de:66:59:4c:24:32:ce:58:ac:9d:34:df:b8:95: 5e:eb:6c:6d:c7:49:8a:f8:65:c7:88:a1:51:ef:eb: c7:15:84:ba:9d:e6:b9:51:03:06:52:5e:23:22:9c: 4f:3b:13:10:4f:9d:99:28:43:ad:ef:15:1c:54:01: 3c:f8:4b:34:f1:b0:ae:2e:4f:30:ea:34:34:b9:8d: d8:b6:f8:4f:44:8f:0f:8a:c3:bf:b3:0f:fb:0e:17: cb:d8:9f:9a:e3:16:6c:f4:9f:20:30:1e:a1:be:92: 57:ad:4e:70:f7:3e:f7:6a:21:a3:62:d1:e4:03:7a: 2e:75:41:55:a1:83:ff:0d:d2:f4:99:72:14:33:19: 81:53:f5:34:44:c6:16:53:1c:a7:bd:7e:e4:fd:07: 38:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:BF:EA:4F:1A:1F:F0:B7:41:E1:EB:71:47:01:09:B8:A9:E2:6C:72 X509v3 Authority Key Identifier: keyid:91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:a0:e7:5e:63:6f:a3:a4:30:b3:1a:67:c8:b3:70:ac:bd:06: 8c:6a:63:3d:22:e6:98:a1:4a:5f:c8:a6:28:e7:ca:80:f3:05: e2:2f:0e:2a:8f:3d:9e:78:ba:73:d0:85:f7:40:03:b3:c2:0b: 05:1c:df:22:88:b3:b4:57:d9:d2:36:2a:4a:a6:fb:32:a6:69: f5:54:96:22:b7:bf:82:a2:0b:ad:f8:f4:29:d8:12:17:3e:fa: 36:23:4e:a6:d6:fa:11:7c:f6:53:d8:d2:18:b0:2f:43:61:c6: 5d:ec:80:7e:b5:25:4e:42:68:03:0c:dc:de:a3:65:fc:c4:ac: d0:45:76:48:89:57:76:c3:d4:d4:6d:2c:3e:27:e4:e8:20:6c: 9d:d3:ec:ad:3f:d1:5b:a8:24:2d:39:12:76:e3:c2:b2:22:d3: b1:dc:46:eb:77:f0:c5:17:12:8c:a4:f1:bc:08:b6:6c:99:30: 2d:38:db:db:e3:d7:34:cb:67:26:e0:13:13:fc:e1:b9:90:58: 27:3a:f0:a6:8b:47:e4:6a:fd:27:81:72:e6:24:c8:89:05:5d: fb:48:85:af:35:f4:8d:5e:90:4d:d6:05:dd:61:27:db:d9:26: f8:e2:21:34:21:8a:0c:7c:af:dc:7c:c1:cc:61:83:ff:33:cc: 47:0b:ae:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKDkxNzkxNTE5NUM5NzFBQjQ0MUZEREVERTZGRjNDRDM3 MkU3NTRDQjUwHhcNMjQwNjAzMDA0OTI1WhcNMjQwNjEwMDA0OTI1WjAYMRYwFAYD VQQDEw02NjVkMTMxNS00M2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+PAtRhrTmc/6W0E/Wnb3tblXWHsZPpAJuMOKCSL7DeEazbKCPrnq3Do8Nn9 WEY2kSQfp2MYT3nGGkl4otKPxReADuEY28zDKW/F+UoGN+Gun/vB09rBpol8Ebik 0+9h3zkZROILo5713mZZTCQyzlisnTTfuJVe62xtx0mK+GXHiKFR7+vHFYS6nea5 UQMGUl4jIpxPOxMQT52ZKEOt7xUcVAE8+Es08bCuLk8w6jQ0uY3YtvhPRI8PisO/ sw/7DhfL2J+a4xZs9J8gMB6hvpJXrU5w9z73aiGjYtHkA3oudUFVoYP/DdL0mXIU MxmBU/U0RMYWUxynvX7k/Qc4VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKu/6k8a H/C3QeHrcUcBCbip4mxyMB8GA1UdIwQYMBaAFJF5FRlclxq0Qf3e3m/zzTcudUy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS82MzQ3Mzc1Njk4 MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdyUkJfZDdlYl9QTk55NTFU TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2tYa1ZHVnlYR3JSQl9kN2ViX1BOTnk1MVRMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS82MzQ3Mzc1Njk4MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdy UkJfZDdlYl9QTk55NTFUTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRoOdeY2+jpDCzGmfIs3CsvQaMamM9IuaYoUpfyKYo58qA8wXiLw4q jz2eeLpz0IX3QAOzwgsFHN8iiLO0V9nSNipKpvsypmn1VJYit7+Cogut+PQp2BIX Pvo2I06m1voRfPZT2NIYsC9DYcZd7IB+tSVOQmgDDNzeo2X8xKzQRXZIiVd2w9TU bSw+J+ToIGyd0+ytP9FbqCQtORJ248KyItOx3Ebrd/DFFxKMpPG8CLZsmTAtONvb 49c0y2cm4BMT/OG5kFgnOvCmi0fkav0ngXLmJMiJBV37SIWvNfSNXpBN1gXdYSfb 2Sb44iE0IYoMfK/cfMHMYYP/M8xHC64p -----END CERTIFICATE-----Generated at Mon Jun 3 02:23:44 2024 by rpki-client on console-fra.rpki-client.org