$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft File: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft (raw, json) Hash identifier: 1JyCbnav1lTC+o97NSRCdV3RBSR2dhx9VKMLR/YL1s8= Subject key identifier: 53:76:46:88:D1:BB:48:2E:48:D4:03:1B:6C:CD:56:1F:FF:12:A4:E4 Authority key identifier: 28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD Certificate issuer: /CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Certificate serial: 0F41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft Manifest number: 0F32 Signing time: Sat 18 May 2024 18:12:05 +0000 Manifest this update: Sat 18 May 2024 18:12:05 +0000 Manifest next update: Sat 25 May 2024 18:12:04 +0000 Files and hashes: 1: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl (hash: QeehNtC1VL5W6jBU7UcIjYiy3QTwqClBZjc3JV3em9g=) 2: 2A3D8B5EA97D11EABA31B843C4F9AE02.roa (hash: mlji510395Oygfniyac8KKWq0dtqfkqm0EekbIqX4BU=) 3: EF66DDE4E46A11EB9552D31BC4F9AE02.roa (hash: 5O8DYgHc79V6KcmKNVHeX4W4dMmoUEhQnrmExgSqPEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3905 (0xf41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Validity Not Before: May 18 18:12:05 2024 GMT Not After : May 25 18:12:04 2024 GMT Subject: CN=6648ef75-7b2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:22:8c:06:32:ae:b9:1b:7f:06:c2:e7:6e:6f: ba:bf:c4:2e:91:4b:8d:33:37:81:77:a6:cb:8e:18: bf:15:ed:f8:b6:32:84:d9:d0:d7:5a:5b:cf:d8:26: 13:26:a9:39:d5:69:20:9a:10:01:f2:ed:86:5f:b2: 60:e7:71:c5:54:08:0a:d3:80:3c:5b:98:69:6c:00: 02:f4:a7:d1:c9:04:2a:2e:87:e5:38:5c:c1:f4:32: 9e:30:94:c6:92:62:45:ac:80:28:ae:2d:75:f4:33: 3a:48:40:35:cc:d7:b4:55:09:68:2c:bb:64:4c:09: 3e:3c:c2:da:e8:81:c2:9f:da:b6:45:5f:87:47:29: 8f:8d:a4:a7:32:51:bc:1f:4b:9f:ce:c0:07:53:12: 31:a4:e0:d6:14:a5:55:cf:ae:b4:90:ad:5a:e3:47: fa:7c:e5:0c:e2:d7:03:86:02:2f:1a:44:99:e1:40: e2:e1:8f:6a:5d:a5:8b:e2:d2:2b:5d:02:4f:a5:5a: de:56:28:8c:d6:88:01:39:17:8d:bd:14:51:9f:ed: c4:31:45:0f:4f:f9:d0:ca:ae:73:44:53:0d:37:a8: 11:2d:f6:ea:dd:d6:4a:1f:60:a8:7b:20:11:96:88: 34:44:40:f3:b7:e9:46:1a:46:1b:00:16:2e:16:bb: 0e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:76:46:88:D1:BB:48:2E:48:D4:03:1B:6C:CD:56:1F:FF:12:A4:E4 X509v3 Authority Key Identifier: keyid:28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:2e:87:be:0e:0b:47:40:ed:f7:cd:28:a1:4f:9a:e9:da:9b: ee:b0:21:57:71:45:b0:26:37:d5:b3:ed:71:0d:df:41:1f:4a: e8:cd:69:b0:80:d2:74:80:2f:94:81:14:91:71:d8:bb:3c:a1: 2d:3a:e1:6b:be:1e:2a:fc:99:0c:cd:e6:ea:83:51:e8:70:fa: 9f:44:48:b0:28:ca:91:7b:35:55:22:e5:91:78:b9:81:bf:27: 4f:7f:6c:90:e9:8f:89:b8:bf:dd:f0:18:e3:af:3d:7e:da:84: 28:42:a0:4a:9c:8d:d8:2e:3a:63:07:4a:bb:e3:c8:f8:e5:fb: c4:26:06:b3:c9:19:6d:50:6c:a6:8d:6c:6e:3a:23:29:d0:8b: 91:11:64:8d:e8:46:a5:18:19:bb:76:4a:3f:c5:92:93:2a:d1: b1:da:22:5c:a4:60:3b:5c:4b:27:ac:10:c5:59:7e:40:25:a5: bf:ee:cf:07:69:27:eb:f3:aa:66:6b:51:eb:a6:8b:7b:6e:08: 7d:5e:00:7c:6f:62:d5:35:fb:ca:2f:fd:36:91:c8:ba:b0:64: b7:4a:97:b0:23:02:cd:ff:c4:fd:59:97:57:3c:bd:5f:dd:fd: 51:43:52:31:9e:71:ed:96:eb:a4:fd:e8:dd:de:51:03:43:f8: a9:de:e4:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNDMjIxMTAvBgNVBAUTKDI4RjVFNjVENzUwNTk2MURDNTUwQTk0OTI0REJDRUZC QjY3Njk0QkQwHhcNMjQwNTE4MTgxMjA1WhcNMjQwNTI1MTgxMjA0WjAYMRYwFAYD VQQDEw02NjQ4ZWY3NS03YjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5yKMBjKuuRt/BsLnbm+6v8QukUuNMzeBd6bLjhi/Fe34tjKE2dDXWlvP2CYT Jqk51WkgmhAB8u2GX7Jg53HFVAgK04A8W5hpbAAC9KfRyQQqLoflOFzB9DKeMJTG kmJFrIAori119DM6SEA1zNe0VQloLLtkTAk+PMLa6IHCn9q2RV+HRymPjaSnMlG8 H0ufzsAHUxIxpODWFKVVz660kK1a40f6fOUM4tcDhgIvGkSZ4UDi4Y9qXaWL4tIr XQJPpVreViiM1ogBOReNvRRRn+3EMUUPT/nQyq5zRFMNN6gRLfbq3dZKH2CoeyAR log0REDzt+lGGkYbABYuFrsOKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFN2RojR u0guSNQDG2zNVh//EqTkMB8GA1UdIwQYMBaAFCj15l11BZYdxVCpSSTbzvu2dpS9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0MyMi82OTA2QzZGQTRD NzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxoM0ZVS2xKSk52Ty03WjJs TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQWG1YWFVGbGgzRlVLbEpKTnZPLTdaMmxMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0MyMi82OTA2QzZGQTRDNzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxo M0ZVS2xKSk52Ty03WjJsTDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjLoe+DgtHQO33zSihT5rp2pvusCFXcUWwJjfVs+1xDd9BH0rozWmw gNJ0gC+UgRSRcdi7PKEtOuFrvh4q/JkMzebqg1HocPqfREiwKMqRezVVIuWReLmB vydPf2yQ6Y+JuL/d8Bjjrz1+2oQoQqBKnI3YLjpjB0q748j45fvEJgazyRltUGym jWxuOiMp0IuREWSN6EalGBm7dko/xZKTKtGx2iJcpGA7XEsnrBDFWX5AJaW/7s8H aSfr86pma1Hrpot7bgh9XgB8b2LVNfvKL/02kci6sGS3SpewIwLN/8T9WZdXPL1f 3f1RQ1IxnnHtluuk/ejd3lEDQ/ip3uQ2 -----END CERTIFICATE-----Generated at Sat May 18 18:46:46 2024 by rpki-client on console-fra.rpki-client.org