$ rpki-client -vvf rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft File: kzrtfDoGQianFEt0eMdAPazdgAU.mft (raw, json) Hash identifier: e6dR7ziPCx9aRdvGw2sW0/vBBBsu6fuTC+wGXiw+zvc= Subject key identifier: 6C:3D:2E:8E:41:B4:54:EA:66:32:07:44:79:B2:1F:2E:63:B0:AC:75 Authority key identifier: 93:3A:ED:7C:3A:06:42:26:A7:14:4B:74:78:C7:40:3D:AC:DD:80:05 Certificate issuer: /CN=A91A81F7/serialNumber=933AED7C3A064226A7144B7478C7403DACDD8005 Certificate serial: 02D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft Manifest number: 02CF Signing time: Sun 19 May 2024 03:26:34 +0000 Manifest this update: Sun 19 May 2024 03:26:34 +0000 Manifest next update: Sun 26 May 2024 03:26:34 +0000 Files and hashes: 1: kzrtfDoGQianFEt0eMdAPazdgAU.crl (hash: TLQwSLRRxIdeXC4rjuG1fwfp8MxFM53xj1cJYKlJCoY=) 2: 4D7F18D69F8911EC8270CE39C4F9AE02.roa (hash: sKrR8nyrA9k2Fu4OXZ5KA+PbUQPwuN9zY9d0wSDVkS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.crl rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 722 (0x2d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A81F7/serialNumber=933AED7C3A064226A7144B7478C7403DACDD8005 Validity Not Before: May 19 03:26:34 2024 GMT Not After : May 26 03:26:34 2024 GMT Subject: CN=6649716a-49f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0f:fe:46:77:a0:a6:c7:ae:86:d0:45:61:eb: ed:0a:fb:5f:b7:f4:7b:b9:47:74:cb:46:bb:58:3b: ec:ce:7b:31:72:a6:5b:dd:58:46:34:77:ed:ec:23: 05:22:01:f0:a9:d3:cf:ca:d8:05:6f:76:58:f3:0b: d8:53:3e:0b:99:64:e5:99:1f:69:54:2c:60:30:91: 34:75:3f:75:b6:57:ad:57:96:d9:21:f9:e7:60:b5: df:b5:3d:9b:cd:4e:42:78:f8:81:65:82:dc:5f:0b: 46:a5:0d:f2:66:23:4a:5b:67:cc:9f:8f:e7:41:62: cf:32:19:79:19:d7:38:f6:1a:dd:9a:2d:41:96:13: 3f:19:21:7f:2a:9b:8b:db:4c:34:b7:2d:15:b1:83: 67:a7:fd:0e:1c:72:e6:59:31:c8:a2:c6:97:3b:8b: 53:e8:8a:66:ee:98:31:9b:aa:c9:7c:50:d8:c2:2f: 25:3a:e6:c3:17:dd:01:cc:b8:76:61:1e:a8:35:c7: f2:33:e9:5c:55:27:8e:21:3b:3d:a4:62:b3:5a:61: b8:c6:4f:1b:12:2b:e4:1d:d7:75:1e:c3:f3:e6:99: 55:f3:7a:9f:24:92:7c:f8:3e:5c:08:63:a3:e9:74: 69:62:1e:d0:8f:85:63:4c:d5:de:06:fc:c9:08:e6: 37:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:3D:2E:8E:41:B4:54:EA:66:32:07:44:79:B2:1F:2E:63:B0:AC:75 X509v3 Authority Key Identifier: keyid:93:3A:ED:7C:3A:06:42:26:A7:14:4B:74:78:C7:40:3D:AC:DD:80:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:fd:f2:12:c4:34:dd:dd:f8:dd:20:97:b6:02:44:59:ec:70: 25:1f:04:02:63:5e:3f:ef:3c:a9:32:6d:f1:5f:f7:e4:9e:0e: e3:93:24:c9:fa:d1:45:60:9e:80:d1:e4:0c:2c:56:0d:81:49: 51:ed:da:c3:2d:d4:89:85:2e:38:9f:54:c9:c4:ee:7a:26:3f: 2b:69:27:8c:66:71:66:c2:04:41:ea:70:f0:b2:fc:26:95:7b: e8:c3:0f:70:e1:e2:98:71:75:fe:86:92:f6:c1:a8:e9:9f:36: 50:de:11:26:fe:c1:8e:60:cc:9e:d5:d5:79:77:16:89:a7:cb: ec:75:da:90:8b:b0:e6:58:e5:65:60:52:e9:53:ba:64:88:91: 35:ab:57:e1:bb:66:53:64:46:23:67:9b:b3:85:a3:28:50:ab: 23:b9:b0:f3:ba:24:b2:38:13:a4:38:53:47:56:9a:10:78:8b: e4:b7:d4:3c:b8:f4:92:ba:22:7a:b4:81:4c:2a:92:c1:0d:5c: 98:c0:cb:a1:76:ea:d6:56:f4:0e:d6:5c:7d:11:ae:26:f8:f9: cf:f3:d0:21:59:54:5a:1e:1c:fa:fc:cf:1d:82:b4:86:3b:75: ba:75:68:1a:73:79:d9:63:9e:b9:0d:6a:54:88:a6:5b:34:71: 22:2e:af:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxRjcxMTAvBgNVBAUTKDkzM0FFRDdDM0EwNjQyMjZBNzE0NEI3NDc4Qzc0MDNE QUNERDgwMDUwHhcNMjQwNTE5MDMyNjM0WhcNMjQwNTI2MDMyNjM0WjAYMRYwFAYD VQQDEw02NjQ5NzE2YS00OWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQ/+RnegpseuhtBFYevtCvtft/R7uUd0y0a7WDvsznsxcqZb3VhGNHft7CMF IgHwqdPPytgFb3ZY8wvYUz4LmWTlmR9pVCxgMJE0dT91tletV5bZIfnnYLXftT2b zU5CePiBZYLcXwtGpQ3yZiNKW2fMn4/nQWLPMhl5Gdc49hrdmi1BlhM/GSF/KpuL 20w0ty0VsYNnp/0OHHLmWTHIosaXO4tT6Ipm7pgxm6rJfFDYwi8lOubDF90BzLh2 YR6oNcfyM+lcVSeOITs9pGKzWmG4xk8bEivkHdd1HsPz5plV83qfJJJ8+D5cCGOj 6XRpYh7Qj4VjTNXeBvzJCOY36QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGw9Lo5B tFTqZjIHRHmyHy5jsKx1MB8GA1UdIwQYMBaAFJM67Xw6BkImpxRLdHjHQD2s3YAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODFGNy8zMEY0NkVFRTlG ODYxMUVDOEQ5RjNGMzRDNEY5QUUwMi9renJ0ZkRvR1FpYW5GRXQwZU1kQVBhemRn QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6cnRmRG9HUWlhbkZFdDBlTWRBUGF6ZGdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODFGNy8zMEY0NkVFRTlGODYxMUVDOEQ5RjNGMzRDNEY5QUUwMi9renJ0ZkRvR1Fp YW5GRXQwZU1kQVBhemRnQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDe/fISxDTd3fjdIJe2AkRZ7HAlHwQCY14/7zypMm3xX/fkng7jkyTJ +tFFYJ6A0eQMLFYNgUlR7drDLdSJhS44n1TJxO56Jj8raSeMZnFmwgRB6nDwsvwm lXvoww9w4eKYcXX+hpL2wajpnzZQ3hEm/sGOYMye1dV5dxaJp8vsddqQi7DmWOVl YFLpU7pkiJE1q1fhu2ZTZEYjZ5uzhaMoUKsjubDzuiSyOBOkOFNHVpoQeIvkt9Q8 uPSSuiJ6tIFMKpLBDVyYwMuhdurWVvQO1lx9Ea4m+PnP89AhWVRaHhz6/M8dgrSG O3W6dWgac3nZY565DWpUiKZbNHEiLq8r -----END CERTIFICATE-----Generated at Sun May 19 04:20:43 2024 by rpki-client on console-ams.rpki-client.org