$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft File: kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft (raw, json) Hash identifier: Arf19qISTQ6lkPC4d5PnzKQNOhFxXwp8nJiSoAOk5xM= Subject key identifier: E0:C7:22:A9:B1:46:A7:5E:AB:CD:FC:85:32:F6:C2:66:76:2C:B8:05 Authority key identifier: 91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 Certificate issuer: /CN=A91BB6E3/serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft Manifest number: DF Signing time: Sun 19 May 2024 05:59:43 +0000 Manifest this update: Sun 19 May 2024 05:59:42 +0000 Manifest next update: Sun 26 May 2024 05:59:42 +0000 Files and hashes: 1: kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl (hash: yfZ9FynGmlzp6qTtPF3veYnWcQMJp0yqoMkI8fJWB58=) 2: F96174ECC27D11EDB8226F2DC4F9AE02.roa (hash: vKghqf3uyMxq7W/BIeNuSu7Pchmx3WrkN5kA6uCQZ+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB6E3/serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Validity Not Before: May 19 05:59:42 2024 GMT Not After : May 26 05:59:42 2024 GMT Subject: CN=6649954f-20cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2a:02:60:04:57:0f:78:5c:a4:d4:96:fb:8d: d4:1c:0f:99:fb:1d:04:d1:fb:18:d7:bf:c6:cb:e3: 10:70:7a:27:fc:80:42:28:a5:fa:e4:e0:27:53:04: fc:29:72:c6:a5:13:65:d0:d8:83:53:c2:f6:cb:49: c2:df:bb:22:7d:fa:78:51:90:21:bf:64:38:a4:3e: 06:f3:4e:ef:37:0e:0f:4c:f1:77:0f:51:b9:99:e7: 68:b0:c6:33:c6:8b:57:b6:15:e6:81:34:c9:e7:81: 4c:c8:92:31:f7:01:73:fb:e7:d2:a2:b9:00:bb:2a: d1:61:d4:24:df:d8:4d:75:fe:85:f5:85:29:b3:3f: e4:23:51:d6:66:58:e6:7c:db:86:9e:de:11:f5:93: 0a:28:01:66:19:ca:5c:14:0f:56:ec:60:89:6c:9d: d1:f0:3a:69:93:6e:b1:47:e8:4e:47:c3:ee:ac:3a: 84:bd:d8:cc:85:c5:0b:48:ce:13:c8:fb:d5:47:b9: 66:1c:1b:45:8a:dd:7c:b8:13:f0:13:8a:d9:e7:bd: ac:96:83:04:ea:d0:68:14:97:c8:dd:56:b2:eb:1f: 78:10:9d:46:bf:c5:21:ae:43:67:d8:cb:9e:45:a3: 91:21:b7:c7:6e:dd:2d:eb:d9:e9:5a:32:ce:5b:f0: 52:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:C7:22:A9:B1:46:A7:5E:AB:CD:FC:85:32:F6:C2:66:76:2C:B8:05 X509v3 Authority Key Identifier: keyid:91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:f0:45:b5:df:e6:86:fb:e6:2a:da:5c:22:9e:98:5b:1b:2d: 4e:de:8e:8b:5a:be:00:e5:ef:a4:e7:45:19:df:25:4d:80:cc: 6e:64:68:a5:e3:f5:2b:81:64:f5:ac:8e:1a:84:80:d1:50:16: ec:7b:99:01:86:fe:78:f1:0f:ba:c4:29:50:6d:b1:e8:9d:06: 4d:27:05:4a:2f:66:87:10:e2:1e:fd:3f:6c:a5:c0:98:a6:6e: f5:2f:18:07:46:db:0a:98:79:1e:77:0a:12:57:9d:65:fd:a4: 47:4a:1b:c7:54:4b:3d:b1:fb:5d:6c:62:af:f9:50:13:e1:36: 97:1c:31:d0:21:95:c2:c7:a6:7e:78:d1:23:03:22:d0:c0:47: 7a:3c:9e:22:45:0f:d3:12:7b:34:0f:ad:aa:e4:7e:15:ac:45: b7:07:c3:24:32:39:82:82:36:e6:51:95:92:94:d8:67:be:0b: 98:d0:c3:f2:78:cb:fe:a8:6c:51:f3:35:92:0c:82:a4:6b:04: f4:e9:0d:d2:df:c3:3b:19:cf:0f:2c:8a:4a:8d:1e:ec:a0:5d: 14:ce:b1:b0:a8:e6:e8:88:bc:a0:88:28:d2:69:4c:23:59:db: c5:9d:eb:7c:27:53:88:17:f1:a9:82:3c:a0:28:db:97:15:22: 8c:f6:d8:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2RTMxMTAvBgNVBAUTKDkxOUZBODE5QjJGRkYxNDU1MjFBRjY2NDAzNTI3OEU3 RTc5MTRBNDkwHhcNMjQwNTE5MDU1OTQyWhcNMjQwNTI2MDU1OTQyWjAYMRYwFAYD VQQDEw02NjQ5OTU0Zi0yMGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyoCYARXD3hcpNSW+43UHA+Z+x0E0fsY17/Gy+MQcHon/IBCKKX65OAnUwT8 KXLGpRNl0NiDU8L2y0nC37siffp4UZAhv2Q4pD4G807vNw4PTPF3D1G5medosMYz xotXthXmgTTJ54FMyJIx9wFz++fSorkAuyrRYdQk39hNdf6F9YUpsz/kI1HWZljm fNuGnt4R9ZMKKAFmGcpcFA9W7GCJbJ3R8Dppk26xR+hOR8PurDqEvdjMhcULSM4T yPvVR7lmHBtFit18uBPwE4rZ572sloME6tBoFJfI3Vay6x94EJ1Gv8UhrkNn2Mue RaORIbfHbt0t69npWjLOW/BSpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFODHIqmx Rqdeq838hTL2wmZ2LLgFMB8GA1UdIwQYMBaAFJGfqBmy//FFUhr2ZANSeOfnkUpJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjZFMy9BMjJDODE0Q0My NzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhVVlNHdlprQTFKNDUtZVJT a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2taLW9HYkxfOFVWU0d2WmtBMUo0NS1lUlNray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjZFMy9BMjJDODE0Q0MyNzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhV VlNHdlprQTFKNDUtZVJTa2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBm8EW13+aG++Yq2lwinphbGy1O3o6LWr4A5e+k50UZ3yVNgMxuZGil 4/UrgWT1rI4ahIDRUBbse5kBhv548Q+6xClQbbHonQZNJwVKL2aHEOIe/T9spcCY pm71LxgHRtsKmHkedwoSV51l/aRHShvHVEs9sftdbGKv+VAT4TaXHDHQIZXCx6Z+ eNEjAyLQwEd6PJ4iRQ/TEns0D62q5H4VrEW3B8MkMjmCgjbmUZWSlNhnvguY0MPy eMv+qGxR8zWSDIKkawT06Q3S38M7Gc8PLIpKjR7soF0UzrGwqOboiLygiCjSaUwj WdvFnet8J1OIF/GpgjygKNuXFSKM9tgE -----END CERTIFICATE-----Generated at Sun May 19 07:40:44 2024 by rpki-client on console-fra.rpki-client.org