$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft File: KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft (raw, json) Hash identifier: jiNkqyY1VnUHeH56tn0ViFpWOSY07U8zgSy6c9kAeDo= Subject key identifier: B9:3B:51:22:CB:AF:BC:46:E9:7F:D6:1C:4C:5D:5F:94:18:0F:11:DE Authority key identifier: 2A:A2:78:94:4B:41:0F:A2:C8:3B:7C:2A:F3:2C:66:AF:A2:0C:12:7B Certificate issuer: /CN=A91B7897/serialNumber=2AA278944B410FA2C83B7C2AF32C66AFA20C127B Certificate serial: 019F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft Manifest number: 0195 Signing time: Sun 19 May 2024 04:42:31 +0000 Manifest this update: Sun 19 May 2024 04:42:30 +0000 Manifest next update: Sun 26 May 2024 04:42:30 +0000 Files and hashes: 1: KqJ4lEtBD6LIO3wq8yxmr6IMEns.crl (hash: f42O1fyncw5MhQWxrqfCOeC4b/VGt2oZKoDy9Fa904I=) 2: 6C83604E1E2711EDAA33DF76C4F9AE02.roa (hash: yeoU/7S6ECE1FsIs/tuQEH5KU0kq0eT4uZ5SzeSmkvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.crl rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 415 (0x19f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7897/serialNumber=2AA278944B410FA2C83B7C2AF32C66AFA20C127B Validity Not Before: May 19 04:42:30 2024 GMT Not After : May 26 04:42:30 2024 GMT Subject: CN=66498336-0d96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9e:a5:c1:f9:18:21:ea:36:1d:52:72:ed:6f: 1b:36:9e:14:46:19:d7:0d:ee:7a:94:85:18:b2:65: 07:69:a1:55:3f:17:42:db:06:f3:56:ba:2e:a8:b4: b6:72:87:73:0f:16:3a:53:ee:a4:9c:0f:c5:1d:7c: 0f:df:a8:63:fd:d8:ba:de:1a:97:16:f3:c6:ff:5a: b8:6c:99:55:ac:bf:ae:a4:c1:ec:16:d1:14:5d:33: c5:b6:3f:5b:9c:da:1a:b5:b4:4c:06:e5:eb:98:af: ae:df:cb:2d:21:1f:d5:93:fe:ca:f0:97:c8:65:1c: ae:09:ab:90:6a:11:61:6b:ad:c2:a5:c8:ae:ac:bf: 16:9b:c7:63:27:23:c8:d7:f7:4a:c1:34:75:29:f6: 61:56:6e:fa:85:34:ba:3b:98:52:66:4d:8c:1a:20: f0:13:66:7a:e3:61:c8:f1:5e:d9:fb:e4:3a:0b:5e: 51:8b:dc:20:93:7a:6b:96:5f:c1:39:7a:69:2a:3a: 8a:b0:b2:88:f0:8e:2f:35:55:d8:98:ca:de:78:d0: 61:05:6b:33:af:1f:0e:e9:c8:c1:d5:1b:9e:cd:a0: 06:d6:b0:4c:ff:cb:b6:32:0d:1c:86:2b:64:3e:c8: 0d:a1:eb:6d:4e:fe:b9:25:ad:f6:af:9b:b8:e3:89: 0a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:3B:51:22:CB:AF:BC:46:E9:7F:D6:1C:4C:5D:5F:94:18:0F:11:DE X509v3 Authority Key Identifier: keyid:2A:A2:78:94:4B:41:0F:A2:C8:3B:7C:2A:F3:2C:66:AF:A2:0C:12:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:a0:a1:39:0d:d8:96:ec:60:e5:9f:f3:90:59:b1:f5:ab:8b: 0c:41:70:40:17:77:41:6d:e9:a5:ab:1d:98:2f:c5:d5:55:8e: 69:9c:d7:fc:39:38:a8:81:41:29:ff:97:40:f1:05:00:10:fa: 31:75:e5:5d:c3:c7:d5:99:c3:12:ab:b9:e2:80:a7:27:ee:ad: 14:4b:23:40:fd:57:f4:32:dd:77:3e:1e:07:79:45:0a:8d:89: eb:7e:0d:85:ef:62:81:87:67:a4:a3:b9:d8:f8:07:70:34:1f: 6d:02:aa:fa:d2:f1:75:ac:47:55:df:07:70:a4:b0:fc:ab:24: e0:d8:5a:2a:54:ea:37:25:86:e6:50:9a:52:e4:f2:f5:34:8b: 84:55:e3:e8:02:e7:a3:51:f7:79:a8:0d:62:d2:dd:13:eb:b9: 5e:2e:ba:b1:39:e6:2d:d9:2f:f1:93:c6:8e:52:a0:4f:6f:ce: 23:df:2c:6b:7d:63:c7:b3:be:91:13:0b:ff:81:4b:8a:c2:70: 82:12:80:84:9e:d1:14:cc:4c:68:79:84:65:a3:63:52:35:3c: 7c:4f:eb:31:64:8a:9e:40:4b:0b:18:b8:68:2c:e6:7a:64:73: a4:f5:28:21:06:f2:ae:81:ea:49:7d:1c:ac:62:ed:32:f6:c2: 0a:fb:45:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc4OTcxMTAvBgNVBAUTKDJBQTI3ODk0NEI0MTBGQTJDODNCN0MyQUYzMkM2NkFG QTIwQzEyN0IwHhcNMjQwNTE5MDQ0MjMwWhcNMjQwNTI2MDQ0MjMwWjAYMRYwFAYD VQQDEw02NjQ5ODMzNi0wZDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0p6lwfkYIeo2HVJy7W8bNp4URhnXDe56lIUYsmUHaaFVPxdC2wbzVrouqLS2 codzDxY6U+6knA/FHXwP36hj/di63hqXFvPG/1q4bJlVrL+upMHsFtEUXTPFtj9b nNoatbRMBuXrmK+u38stIR/Vk/7K8JfIZRyuCauQahFha63CpciurL8Wm8djJyPI 1/dKwTR1KfZhVm76hTS6O5hSZk2MGiDwE2Z642HI8V7Z++Q6C15Ri9wgk3prll/B OXppKjqKsLKI8I4vNVXYmMreeNBhBWszrx8O6cjB1RuezaAG1rBM/8u2Mg0chitk PsgNoettTv65Ja32r5u444kKLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLk7USLL r7xG6X/WHExdX5QYDxHeMB8GA1UdIwQYMBaAFCqieJRLQQ+iyDt8KvMsZq+iDBJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzg5Ny9CNkM1OTQxQzFE MzUxMUVEQTVFNjMwN0RDNEY5QUUwMi9LcUo0bEV0QkQ2TElPM3dxOHl4bXI2SU1F bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0txSjRsRXRCRDZMSU8zd3E4eXhtcjZJTUVucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzg5Ny9CNkM1OTQxQzFEMzUxMUVEQTVFNjMwN0RDNEY5QUUwMi9LcUo0bEV0QkQ2 TElPM3dxOHl4bXI2SU1FbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzoKE5DdiW7GDln/OQWbH1q4sMQXBAF3dBbemlqx2YL8XVVY5pnNf8 OTiogUEp/5dA8QUAEPoxdeVdw8fVmcMSq7nigKcn7q0USyNA/Vf0Mt13Ph4HeUUK jYnrfg2F72KBh2eko7nY+AdwNB9tAqr60vF1rEdV3wdwpLD8qyTg2FoqVOo3JYbm UJpS5PL1NIuEVePoAuejUfd5qA1i0t0T67leLrqxOeYt2S/xk8aOUqBPb84j3yxr fWPHs76REwv/gUuKwnCCEoCEntEUzExoeYRlo2NSNTx8T+sxZIqeQEsLGLhoLOZ6 ZHOk9SghBvKugepJfRysYu0y9sIK+0V0 -----END CERTIFICATE-----Generated at Sun May 19 05:48:51 2024 by rpki-client on console-fra.rpki-client.org