$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft File: KdzyaXujSl1MV_LtlnGNAxu8VjA.mft (raw, json) Hash identifier: Qq7wldFW154Z88ghuw63Uj9vb+nKTazwx1OoEaBGi0g= Subject key identifier: 3E:72:D5:A1:B5:8C:E9:47:F3:44:9B:AC:23:21:35:0A:41:43:F8:F1 Authority key identifier: 29:DC:F2:69:7B:A3:4A:5D:4C:57:F2:ED:96:71:8D:03:1B:BC:56:30 Certificate issuer: /CN=A91A1103/serialNumber=29DCF2697BA34A5D4C57F2ED96718D031BBC5630 Certificate serial: 1549 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdzyaXujSl1MV_LtlnGNAxu8VjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft Manifest number: 1540 Signing time: Sat 18 May 2024 17:19:50 +0000 Manifest this update: Sat 18 May 2024 17:19:50 +0000 Manifest next update: Sat 25 May 2024 17:19:50 +0000 Files and hashes: 1: KdzyaXujSl1MV_LtlnGNAxu8VjA.crl (hash: m+r88t7BuY7JYR0AmHW+vaVEiNHSfo0nFR0QPU04y8I=) 2: 1C85059C1EB911E88533FA4EC4F9AE02.roa (hash: OL39VuRaTO6++N4sfRM3PA54REESO/zOJiR+TFOYEMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.crl rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdzyaXujSl1MV_LtlnGNAxu8VjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5449 (0x1549) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1103/serialNumber=29DCF2697BA34A5D4C57F2ED96718D031BBC5630 Validity Not Before: May 18 17:19:50 2024 GMT Not After : May 25 17:19:50 2024 GMT Subject: CN=6648e336-e239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:e6:88:08:4b:28:14:12:05:8c:2e:8e:fd:91: 2a:d9:90:18:3a:70:6b:de:15:68:41:bd:85:d2:d1: 60:e6:70:94:58:1e:78:33:60:99:96:ab:0d:18:59: 21:83:42:11:30:a8:ca:7e:5b:4f:e5:46:7b:1f:ee: 3a:c2:c6:3d:af:94:0d:9f:03:cd:d7:f1:2d:0c:a2: 10:06:35:f0:84:6e:75:71:5e:75:e7:40:1e:01:ba: 48:06:c7:ed:0e:19:e9:4b:43:81:bc:a2:5e:3c:11: 7a:37:a1:ac:a0:96:8f:dd:6f:94:1f:a8:5e:6b:70: 1b:a1:88:0c:22:8b:da:97:e5:7d:45:eb:ea:8c:2d: 41:cf:59:2e:33:61:4a:02:20:62:5a:4e:10:ff:1b: 87:05:51:4f:aa:69:48:69:3e:fb:af:c3:5b:6a:02: 0c:58:c5:f9:09:28:b6:b1:ad:f0:cc:a2:71:4c:4f: ea:d6:4c:94:33:4c:3b:90:97:a2:e9:9d:d3:a3:f3: e2:ff:2d:38:ed:ee:37:95:85:d5:74:d3:d2:7a:83: 10:c3:36:81:88:0e:9c:91:f0:56:52:bc:91:d9:f6: 79:39:c7:b3:8d:32:7f:df:1f:e4:f3:1d:b7:26:ca: f6:0c:ce:8c:d5:23:7b:48:81:aa:ce:43:a9:4b:39: bb:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:72:D5:A1:B5:8C:E9:47:F3:44:9B:AC:23:21:35:0A:41:43:F8:F1 X509v3 Authority Key Identifier: keyid:29:DC:F2:69:7B:A3:4A:5D:4C:57:F2:ED:96:71:8D:03:1B:BC:56:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdzyaXujSl1MV_LtlnGNAxu8VjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:6c:da:50:c2:4a:28:8f:d9:3e:18:8f:8d:ad:09:c1:38:58: 6e:ac:1a:15:5a:b2:58:b2:26:cd:ed:6e:47:4b:0d:a1:41:10: d6:af:75:3a:7c:2f:f5:7b:cb:69:d5:da:91:e4:4f:2d:b9:6e: 57:40:55:b4:c7:c3:56:77:92:21:64:1d:5b:54:c9:80:59:46: f6:f9:90:93:3d:3e:12:40:dd:e0:05:8a:2e:20:5e:a2:99:d8: 1c:d2:7a:b3:68:90:5d:34:93:fc:43:5b:f9:38:b0:4f:17:dc: 9b:ce:0c:18:bf:9a:6d:00:eb:9e:8a:28:81:35:06:c7:b0:77: 9b:66:1a:b2:7c:a3:6d:e7:18:ee:d2:9e:69:98:b0:18:38:bf: 9b:66:48:ad:a8:f4:da:b5:82:53:db:08:f9:9b:9a:a7:e1:6f: b5:2f:33:5e:37:62:e1:54:c3:50:10:21:af:fe:ba:99:18:57: df:39:a0:2b:64:6c:b5:30:3b:95:86:86:d7:0d:d1:38:f5:5a: f6:85:a3:44:f9:0e:ca:9c:fd:11:6f:31:42:06:61:cd:12:83: 67:fe:b5:9f:bf:77:89:17:88:9a:07:dc:14:d9:6e:24:73:6c: 73:dd:1e:74:b6:9d:b2:72:91:7b:27:e3:8e:9d:82:d6:4e:6b: ed:dc:b5:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTExMDMxMTAvBgNVBAUTKDI5RENGMjY5N0JBMzRBNUQ0QzU3RjJFRDk2NzE4RDAz MUJCQzU2MzAwHhcNMjQwNTE4MTcxOTUwWhcNMjQwNTI1MTcxOTUwWjAYMRYwFAYD VQQDEw02NjQ4ZTMzNi1lMjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8OaICEsoFBIFjC6O/ZEq2ZAYOnBr3hVoQb2F0tFg5nCUWB54M2CZlqsNGFkh g0IRMKjKfltP5UZ7H+46wsY9r5QNnwPN1/EtDKIQBjXwhG51cV5150AeAbpIBsft DhnpS0OBvKJePBF6N6GsoJaP3W+UH6hea3AboYgMIoval+V9RevqjC1Bz1kuM2FK AiBiWk4Q/xuHBVFPqmlIaT77r8NbagIMWMX5CSi2sa3wzKJxTE/q1kyUM0w7kJei 6Z3To/Pi/y047e43lYXVdNPSeoMQwzaBiA6ckfBWUryR2fZ5OcezjTJ/3x/k8x23 Jsr2DM6M1SN7SIGqzkOpSzm7oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5y1aG1 jOlH80SbrCMhNQpBQ/jxMB8GA1UdIwQYMBaAFCnc8ml7o0pdTFfy7ZZxjQMbvFYw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTEwMy8yMDk1QUE2MjFB MDcxMUU4QkUyNEE1NThDNEY5QUUwMi9LZHp5YVh1alNsMU1WX0x0bG5HTkF4dThW akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkenlhWHVqU2wxTVZfTHRsbkdOQXh1OFZqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTEwMy8yMDk1QUE2MjFBMDcxMUU4QkUyNEE1NThDNEY5QUUwMi9LZHp5YVh1alNs MU1WX0x0bG5HTkF4dThWakEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAibNpQwkooj9k+GI+NrQnBOFhurBoVWrJYsibN7W5HSw2hQRDWr3U6 fC/1e8tp1dqR5E8tuW5XQFW0x8NWd5IhZB1bVMmAWUb2+ZCTPT4SQN3gBYouIF6i mdgc0nqzaJBdNJP8Q1v5OLBPF9ybzgwYv5ptAOueiiiBNQbHsHebZhqyfKNt5xju 0p5pmLAYOL+bZkitqPTatYJT2wj5m5qn4W+1LzNeN2LhVMNQECGv/rqZGFffOaAr ZGy1MDuVhobXDdE49Vr2haNE+Q7KnP0RbzFCBmHNEoNn/rWfv3eJF4iaB9wU2W4k c2xz3R50tp2ycpF7J+OOnYLWTmvt3LWW -----END CERTIFICATE-----Generated at Sat May 18 18:21:38 2024 by rpki-client on console-ams.rpki-client.org