$ rpki-client -vvf rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft File: kDfAsp43CSqDhSzkuIW3dqfB47Y.mft (raw, json) Hash identifier: doa3AKbj+aA523R8zVBl+F04KEp6sM60KXmjkGeEgN4= Subject key identifier: 18:9C:05:1A:E4:E0:89:A9:07:0D:68:5F:65:D6:30:D4:2F:56:0B:D7 Authority key identifier: 90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 Certificate issuer: /CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft Manifest number: 57 Signing time: Sun 19 May 2024 07:51:55 +0000 Manifest this update: Sun 19 May 2024 07:51:55 +0000 Manifest next update: Sun 26 May 2024 07:51:55 +0000 Files and hashes: 1: kDfAsp43CSqDhSzkuIW3dqfB47Y.crl (hash: 8kQ0OvrpwOlbDYuTBz9sNIhcK7/mm5KdFePLMmzf8uE=) 2: 72CE4D80958411EEB3748B58C4F9AE02.roa (hash: YAnxHaIeKZEumyXB5ZH6jAWRmeNdE6YCfGy+a33vJQk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Validity Not Before: May 19 07:51:55 2024 GMT Not After : May 26 07:51:55 2024 GMT Subject: CN=6649af9b-9003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:78:62:8c:5d:99:52:69:aa:c5:92:f8:0d:0b: 36:13:9a:99:e1:22:5d:42:28:04:3f:9e:46:d1:eb: 5a:f3:d3:57:b6:2b:19:bb:f7:20:45:37:94:5f:ab: f2:b3:08:23:88:e1:ec:dd:84:05:91:5b:80:e2:c6: 91:eb:af:bf:99:c2:23:16:81:e5:ee:17:85:d4:3e: a0:3f:81:14:d7:b5:11:53:e1:be:9d:32:83:ec:7a: 73:f8:0c:ff:55:ec:7d:f7:83:33:e2:b2:ef:ad:c7: 6a:5b:0a:28:5e:6e:0d:0e:3a:bd:19:d9:19:71:80: 1f:f7:4b:db:a2:d2:f1:41:8c:07:9f:a1:41:d0:84: 06:06:8c:21:70:61:3b:c0:8b:e8:8a:f1:57:df:6a: 41:18:68:79:1a:76:b1:88:a5:50:3c:c6:63:1c:b7: 23:33:05:55:ba:3d:1c:3d:a3:17:87:ac:bf:14:87: 01:94:8b:43:f5:9c:c1:45:1c:b4:2e:09:77:7e:ec: e9:44:d3:86:7e:18:35:89:fb:cb:9a:ff:d3:c7:d5: f4:e8:ea:37:61:a2:25:7c:24:eb:5f:74:f6:2e:55: e2:be:3c:2b:d7:64:99:e5:0a:b4:c3:6e:12:4b:10: f1:ca:02:ec:b2:5b:cf:13:2c:ca:b7:98:54:0c:bb: 9e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:9C:05:1A:E4:E0:89:A9:07:0D:68:5F:65:D6:30:D4:2F:56:0B:D7 X509v3 Authority Key Identifier: keyid:90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:07:3c:16:46:d6:28:b8:88:62:6c:62:68:4d:73:dd:82:f3: fc:d3:f9:c0:99:35:10:cf:e9:c6:4f:87:1c:09:e9:16:6d:e7: ee:fa:cb:3f:cd:05:de:6f:2a:a3:f5:c9:8f:8b:29:80:c9:e0: 14:18:67:03:fb:3f:ae:17:86:67:03:a3:4a:cd:a0:79:4f:a2: 64:50:3f:66:70:62:34:ce:05:39:a7:03:73:a2:a1:30:0b:86: e7:0b:9f:ae:cc:46:da:0f:65:f3:cd:25:e0:0d:8b:f5:ff:c4: fb:cb:42:d3:b4:93:2d:13:63:0c:89:ca:1c:c7:0c:9e:e1:a2: 99:ba:65:43:bb:cd:36:a9:b9:37:4f:96:80:30:93:8d:5e:f3: 02:d0:91:45:12:e6:a2:87:7e:84:37:e2:10:1f:f8:dd:89:4d: d1:80:c5:b8:f9:e0:a8:38:02:2c:32:c1:f6:b7:84:15:e0:64: 73:fb:90:2e:16:05:f5:fd:84:5d:9a:24:c9:22:78:65:cd:9e: 0c:d6:fd:e2:a7:56:74:74:cf:a4:fa:58:61:c4:46:cc:38:a7: eb:40:55:b0:56:e8:23:23:57:c2:ba:c0:13:ee:9e:b5:76:2f: d6:8b:15:68:4d:05:10:1b:aa:d8:2c:9b:05:01:bd:d2:c3:ab: 15:04:08:2d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NTdEMTExMC8GA1UEBRMoOTAzN0MwQjI5RTM3MDkyQTgzODUyQ0U0Qjg4NUI3NzZB N0MxRTNCNjAeFw0yNDA1MTkwNzUxNTVaFw0yNDA1MjYwNzUxNTVaMBgxFjAUBgNV BAMTDTY2NDlhZjliLTkwMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDheGKMXZlSaarFkvgNCzYTmpnhIl1CKAQ/nkbR61rz01e2Kxm79yBFN5Rfq/Kz CCOI4ezdhAWRW4DixpHrr7+ZwiMWgeXuF4XUPqA/gRTXtRFT4b6dMoPsenP4DP9V 7H33gzPisu+tx2pbCihebg0OOr0Z2RlxgB/3S9ui0vFBjAefoUHQhAYGjCFwYTvA i+iK8VffakEYaHkadrGIpVA8xmMctyMzBVW6PRw9oxeHrL8UhwGUi0P1nMFFHLQu CXd+7OlE04Z+GDWJ+8ua/9PH1fTo6jdhoiV8JOtfdPYuVeK+PCvXZJnlCrTDbhJL EPHKAuyyW88TLMq3mFQMu54zAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGJwFGuTg iakHDWhfZdYw1C9WC9cwHwYDVR0jBBgwFoAUkDfAsp43CSqDhSzkuIW3dqfB47Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1N0QxL0YwNTM3Nzk0OTNC RDExRUU4MUY4MEE1MkM0RjlBRTAyL2tEZkFzcDQzQ1NxRGhTemt1SVczZHFmQjQ3 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0RmQXNwNDNDU3FEaFN6a3VJVzNkcWZCNDdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1 N0QxL0YwNTM3Nzk0OTNCRDExRUU4MUY4MEE1MkM0RjlBRTAyL2tEZkFzcDQzQ1Nx RGhTemt1SVczZHFmQjQ3WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALcHPBZG1ii4iGJsYmhNc92C8/zT+cCZNRDP6cZPhxwJ6RZt5+76yz/N Bd5vKqP1yY+LKYDJ4BQYZwP7P64XhmcDo0rNoHlPomRQP2ZwYjTOBTmnA3OioTAL hucLn67MRtoPZfPNJeANi/X/xPvLQtO0ky0TYwyJyhzHDJ7hopm6ZUO7zTapuTdP loAwk41e8wLQkUUS5qKHfoQ34hAf+N2JTdGAxbj54Kg4Aiwywfa3hBXgZHP7kC4W BfX9hF2aJMkieGXNngzW/eKnVnR0z6T6WGHERsw4p+tAVbBW6CMjV8K6wBPunrV2 L9aLFWhNBRAbqtgsmwUBvdLDqxUECC0= -----END CERTIFICATE-----Generated at Sun May 19 08:26:44 2024 by rpki-client on console-fra.rpki-client.org