$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft File: kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft (raw, json) Hash identifier: 7f4ogrm8HUsb0jAu+u21R3qi0Kt6BgbfBrhteVvjulg= Subject key identifier: 31:65:1D:D7:F2:03:D0:F7:08:23:F3:61:41:48:BA:77:87:A2:D5:05 Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 029F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft Manifest number: 0299 Signing time: Sun 19 May 2024 03:36:51 +0000 Manifest this update: Sun 19 May 2024 03:36:50 +0000 Manifest next update: Sun 26 May 2024 03:36:50 +0000 Files and hashes: 1: kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl (hash: KYL/oJNs9Da13aecZwbwm6b57DGnxf63qc2lkHUcKbQ=) 2: ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa (hash: lBledsUPQfpk+tssxnbGlzMMM3id5rxqk89XoR+ouo4=) 3: 0E9CF77EBA6811EC8058A213C4F9AE02.roa (hash: 5JX/NsZ2a+UHFDz6JI63xOnKLqLK3hbrFa/fbOl21LA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 671 (0x29f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Validity Not Before: May 19 03:36:50 2024 GMT Not After : May 26 03:36:50 2024 GMT Subject: CN=664973d2-c8d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6d:b3:8a:d4:a4:c0:f3:43:fe:2e:21:01:83: 34:d2:60:82:9a:a9:19:57:6a:0d:44:5f:36:8b:83: d9:c0:9f:33:b6:5c:a5:87:0d:2d:e8:2d:83:80:af: e6:c4:b3:f5:6e:e3:83:42:49:87:6c:dc:dd:25:6f: d2:e5:d9:88:9b:ee:71:49:a6:5b:7a:f3:be:e4:c6: b3:6f:dc:0d:2a:ab:5c:e7:f6:f3:69:71:ec:57:0c: 3c:a0:5a:f8:b5:7a:8a:d6:3b:8e:28:a6:73:61:e9: 2e:11:de:ad:01:5f:d9:48:13:3a:ab:ff:a5:6c:88: 62:66:fd:d2:f6:8f:25:d2:62:46:8c:0a:5e:2f:62: 72:66:0a:60:36:e4:8b:13:d9:b2:60:1f:af:bc:40: f7:84:d3:66:d2:40:b7:49:d8:84:54:a2:43:da:f1: 8a:a6:75:90:e1:7d:0a:a7:73:f1:97:0d:1f:e3:e7: 86:de:8e:46:d7:30:d1:93:e4:f9:df:6d:8c:63:90: dd:28:dc:42:16:a8:c9:a8:57:28:75:be:a8:55:c3: 40:03:5c:3f:6d:b5:46:ae:a5:5c:8d:31:36:18:be: b9:a3:ba:dd:6f:ce:22:47:37:e6:39:62:e3:1a:d0: c3:37:e3:34:e7:ee:67:d3:6b:f7:88:8f:e7:39:4b: a8:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:65:1D:D7:F2:03:D0:F7:08:23:F3:61:41:48:BA:77:87:A2:D5:05 X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:05:d4:3f:47:11:5d:fa:11:56:0b:64:23:cf:80:e6:83:75: 9f:98:b2:1a:09:8c:b8:69:d6:5d:9a:84:22:06:97:52:ce:c8: 24:32:6a:fa:a4:65:d0:dc:29:07:36:91:e3:6f:d6:74:cd:69: 81:72:10:4a:5d:b1:ab:75:e9:36:fd:74:9b:96:90:39:92:81: 3f:c7:81:8e:d3:67:d8:af:b0:0d:bf:48:57:06:5b:0b:58:27: db:68:60:5a:00:02:35:e1:95:0e:16:2f:34:e5:80:c8:22:eb: c4:2d:0d:c1:ba:b1:a9:9d:d4:91:1f:02:b5:a7:2f:18:17:bc: 17:15:c2:f5:93:15:ad:4c:33:2c:b6:46:e9:73:9c:0b:eb:dd: c3:0f:39:97:8a:4e:3f:7e:86:07:e2:1e:b7:b5:92:c9:29:95: 57:40:fa:4e:9a:b7:df:5a:db:d7:fd:70:1f:20:dd:1b:89:4c: bf:df:97:9a:d4:ca:c1:3b:38:d7:e3:00:c0:ab:26:79:2f:03: 36:09:8d:fa:2d:ec:94:41:58:9b:28:40:55:91:15:31:55:e5: e5:5f:11:9f:55:6f:9e:35:f0:e5:e9:1a:22:7d:4e:e1:31:0e: e6:3b:d6:53:6c:e9:9e:0c:e2:41:72:11:2d:c6:c5:0c:9e:dd: 98:f3:8a:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjQwNTE5MDMzNjUwWhcNMjQwNTI2MDMzNjUwWjAYMRYwFAYD VQQDEw02NjQ5NzNkMi1jOGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA022zitSkwPND/i4hAYM00mCCmqkZV2oNRF82i4PZwJ8ztlylhw0t6C2DgK/m xLP1buODQkmHbNzdJW/S5dmIm+5xSaZbevO+5Mazb9wNKqtc5/bzaXHsVww8oFr4 tXqK1juOKKZzYekuEd6tAV/ZSBM6q/+lbIhiZv3S9o8l0mJGjApeL2JyZgpgNuSL E9myYB+vvED3hNNm0kC3SdiEVKJD2vGKpnWQ4X0Kp3Pxlw0f4+eG3o5G1zDRk+T5 322MY5DdKNxCFqjJqFcodb6oVcNAA1w/bbVGrqVcjTE2GL65o7rdb84iRzfmOWLj GtDDN+M05+5n02v3iI/nOUuo5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDFlHdfy A9D3CCPzYUFIuneHotUFMB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mjg3NS9DMjVERTBFNkI0RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1V Q3ZycDdpdi12Tm8zdWh6U2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8BdQ/RxFd+hFWC2Qjz4Dmg3WfmLIaCYy4adZdmoQiBpdSzsgkMmr6 pGXQ3CkHNpHjb9Z0zWmBchBKXbGrdek2/XSblpA5koE/x4GO02fYr7ANv0hXBlsL WCfbaGBaAAI14ZUOFi805YDIIuvELQ3BurGpndSRHwK1py8YF7wXFcL1kxWtTDMs tkbpc5wL693DDzmXik4/foYH4h63tZLJKZVXQPpOmrffWtvX/XAfIN0biUy/35ea 1MrBOzjX4wDAqyZ5LwM2CY36LeyUQVibKEBVkRUxVeXlXxGfVW+eNfDl6RoifU7h MQ7mO9ZTbOmeDOJBchEtxsUMnt2Y84o/ -----END CERTIFICATE-----Generated at Sun May 19 04:20:43 2024 by rpki-client on console-ams.rpki-client.org