$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6462/DAF435E0184311EAB0AF201DC4F9AE02/kaXm5XbDFcQxnu-f2jKHrSDDgDk.mft File: kaXm5XbDFcQxnu-f2jKHrSDDgDk.mft (raw, json) Hash identifier: pSzRQzjfhemHaPkKt54PTIqu+aBLZYnfawhv0JWCQhs= Subject key identifier: DA:60:3F:55:35:3B:AC:94:26:49:EA:03:77:D4:40:29:E2:DF:94:9B Authority key identifier: 91:A5:E6:E5:76:C3:15:C4:31:9E:EF:9F:DA:32:87:AD:20:C3:80:39 Certificate issuer: /CN=A91B6462/serialNumber=91A5E6E576C315C4319EEF9FDA3287AD20C38039 Certificate serial: 0B3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kaXm5XbDFcQxnu-f2jKHrSDDgDk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6462/DAF435E0184311EAB0AF201DC4F9AE02/kaXm5XbDFcQxnu-f2jKHrSDDgDk.mft Manifest number: 0B2B Signing time: Sat 18 May 2024 19:49:42 +0000 Manifest this update: Sat 18 May 2024 19:49:41 +0000 Manifest next update: Sat 25 May 2024 19:49:41 +0000 Files and hashes: 1: kaXm5XbDFcQxnu-f2jKHrSDDgDk.crl (hash: 4IPflJSa+PcmkwJtZ95dk3/jCE75+Rw6ohFsBwwx/3E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6462/DAF435E0184311EAB0AF201DC4F9AE02/kaXm5XbDFcQxnu-f2jKHrSDDgDk.crl rsync://rpki.apnic.net/member_repository/A91B6462/DAF435E0184311EAB0AF201DC4F9AE02/kaXm5XbDFcQxnu-f2jKHrSDDgDk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kaXm5XbDFcQxnu-f2jKHrSDDgDk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:49:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2875 (0xb3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6462/serialNumber=91A5E6E576C315C4319EEF9FDA3287AD20C38039 Validity Not Before: May 18 19:49:41 2024 GMT Not After : May 25 19:49:41 2024 GMT Subject: CN=66490656-e1b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:dd:a2:15:9a:df:2f:cc:3b:d6:a4:dd:00:a1: ac:5b:39:2a:5e:28:06:10:60:2b:3b:bc:ed:55:cc: f6:4c:e6:67:53:cb:40:27:aa:0a:4d:6b:57:d3:dd: 15:b1:c6:6f:f3:14:45:87:59:43:11:76:71:00:6f: 22:f8:34:bb:64:63:fd:27:70:dd:a4:ed:af:ca:c7: 7c:80:6f:01:62:7e:52:71:b7:35:fe:aa:70:31:eb: 6f:98:22:d8:bd:75:97:87:8a:11:96:68:a1:51:c0: c5:c4:91:24:4e:6f:7c:ae:02:6a:b7:08:2e:7d:4c: a2:75:a6:67:c2:59:2f:ea:1f:29:bb:71:d2:ae:62: a5:3e:bb:58:20:34:44:fd:4f:72:5e:02:2c:02:c2: f0:81:ab:86:ee:cb:d9:8b:eb:95:fa:98:63:9f:5e: 03:fe:3a:5e:c0:c5:2d:ac:27:3e:d7:23:81:68:8f: 9c:fd:5d:65:6f:56:25:6c:fa:6a:8b:3f:72:11:34: 81:82:84:4c:27:84:ad:fa:92:86:e3:28:92:72:37: 50:32:e0:da:e9:5f:06:fb:99:4b:83:06:dc:47:af: c1:70:76:c6:68:cc:98:77:ec:86:34:88:24:f7:6d: f9:69:a9:b8:88:2f:a9:cb:2a:0d:2c:cb:d0:12:cb: 29:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:60:3F:55:35:3B:AC:94:26:49:EA:03:77:D4:40:29:E2:DF:94:9B X509v3 Authority Key Identifier: keyid:91:A5:E6:E5:76:C3:15:C4:31:9E:EF:9F:DA:32:87:AD:20:C3:80:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6462/DAF435E0184311EAB0AF201DC4F9AE02/kaXm5XbDFcQxnu-f2jKHrSDDgDk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kaXm5XbDFcQxnu-f2jKHrSDDgDk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6462/DAF435E0184311EAB0AF201DC4F9AE02/kaXm5XbDFcQxnu-f2jKHrSDDgDk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:3f:64:70:43:a1:80:56:4d:90:05:4a:9c:0f:16:43:a0:21: ae:11:3b:3b:f5:a2:7a:15:dd:ce:bf:03:70:2a:20:3e:bb:86: 20:2e:f8:c9:c5:da:de:6c:e7:35:5f:a4:fe:73:ec:e7:e2:4f: 77:ef:d8:69:0d:f1:8b:15:07:a2:9d:28:67:bb:b3:46:ca:44: ad:f5:44:42:61:10:52:ea:c1:f9:54:f9:a1:2f:b2:6e:8b:b9: 4b:1a:57:c8:b7:66:09:1e:b6:7e:f3:b0:8a:f9:e7:c0:07:f2: 47:5f:ed:fe:99:51:68:41:7d:d4:bb:e3:f4:ac:e1:7f:30:d2: 58:44:35:a4:21:2e:11:f1:b8:73:cb:5a:6a:96:88:72:6c:70: 40:c7:10:d1:0a:59:ef:d8:69:36:a9:a0:f0:fe:8d:0d:a7:fe: 6b:76:29:a7:13:8d:ad:74:7d:90:2d:88:f7:55:b2:de:04:81: 3e:c8:95:96:9b:7e:0a:fd:a5:33:68:b1:02:9e:ee:92:71:87: 8a:8d:13:78:b8:ad:31:b1:0b:90:c9:97:3d:82:e2:f0:7b:26: 05:58:4f:b5:ae:9d:1c:bd:ce:4d:2a:9e:6e:95:26:bb:32:69: 60:80:fd:9d:37:23:8f:2d:6c:84:8f:6b:2e:c8:74:50:02:d1: 8f:3f:f3:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY0NjIxMTAvBgNVBAUTKDkxQTVFNkU1NzZDMzE1QzQzMTlFRUY5RkRBMzI4N0FE MjBDMzgwMzkwHhcNMjQwNTE4MTk0OTQxWhcNMjQwNTI1MTk0OTQxWjAYMRYwFAYD VQQDEw02NjQ5MDY1Ni1lMWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9d2iFZrfL8w71qTdAKGsWzkqXigGEGArO7ztVcz2TOZnU8tAJ6oKTWtX090V scZv8xRFh1lDEXZxAG8i+DS7ZGP9J3DdpO2vysd8gG8BYn5Scbc1/qpwMetvmCLY vXWXh4oRlmihUcDFxJEkTm98rgJqtwgufUyidaZnwlkv6h8pu3HSrmKlPrtYIDRE /U9yXgIsAsLwgauG7svZi+uV+phjn14D/jpewMUtrCc+1yOBaI+c/V1lb1YlbPpq iz9yETSBgoRMJ4St+pKG4yiScjdQMuDa6V8G+5lLgwbcR6/BcHbGaMyYd+yGNIgk 9235aam4iC+pyyoNLMvQEssp9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNpgP1U1 O6yUJknqA3fUQCni35SbMB8GA1UdIwQYMBaAFJGl5uV2wxXEMZ7vn9oyh60gw4A5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjQ2Mi9EQUY0MzVFMDE4 NDMxMUVBQjBBRjIwMURDNEY5QUUwMi9rYVhtNVhiREZjUXhudS1mMmpLSHJTRERn RGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2thWG01WGJERmNReG51LWYyaktIclNERGdEay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjQ2Mi9EQUY0MzVFMDE4NDMxMUVBQjBBRjIwMURDNEY5QUUwMi9rYVhtNVhiREZj UXhudS1mMmpLSHJTRERnRGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeP2RwQ6GAVk2QBUqcDxZDoCGuETs79aJ6Fd3OvwNwKiA+u4YgLvjJ xdrebOc1X6T+c+zn4k9379hpDfGLFQeinShnu7NGykSt9URCYRBS6sH5VPmhL7Ju i7lLGlfIt2YJHrZ+87CK+efAB/JHX+3+mVFoQX3Uu+P0rOF/MNJYRDWkIS4R8bhz y1pqlohybHBAxxDRClnv2Gk2qaDw/o0Np/5rdimnE42tdH2QLYj3VbLeBIE+yJWW m34K/aUzaLECnu6ScYeKjRN4uK0xsQuQyZc9guLweyYFWE+1rp0cvc5NKp5ulSa7 MmlggP2dNyOPLWyEj2suyHRQAtGPP/Pr -----END CERTIFICATE-----Generated at Sat May 18 20:48:21 2024 by rpki-client on console-fra.rpki-client.org