$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft File: KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft (raw, json) Hash identifier: 6+bxJYd4aSgn6iU7r6RwjmWpl56ha7XfPTYIl6R8B9U= Subject key identifier: 5A:AB:25:29:09:63:49:4F:5C:F8:0A:81:EA:DE:17:D6:19:FC:8A:E2 Authority key identifier: 28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 Certificate issuer: /CN=A91C5AEE/serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft Manifest number: 85 Signing time: Fri 31 May 2024 08:01:03 +0000 Manifest this update: Fri 31 May 2024 08:01:02 +0000 Manifest next update: Fri 07 Jun 2024 08:01:02 +0000 Files and hashes: 1: KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl (hash: 6zBzMEUJlk7Af6miTk/zGwYIThWlsdTTSGyroBa9bqE=) 2: 21525A1C520B11EE8B79021AC4F9AE02.roa (hash: jL0xKd4lahRRT3auwPuJ+cZTDIcKc8m7R6bkczIhonM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5AEE/serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Validity Not Before: May 31 08:01:02 2024 GMT Not After : Jun 7 08:01:02 2024 GMT Subject: CN=665983bf-fed2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5c:69:c5:72:74:e1:d6:e4:39:af:f2:87:7e: 4e:1f:30:1b:0c:8d:6a:2f:1b:c5:c4:f1:85:12:6e: 49:04:96:44:65:da:d8:83:6c:79:2b:b4:7c:b9:f3: 97:0b:e2:77:0a:e6:d6:80:5c:94:98:3d:e9:e7:52: 72:23:2a:3d:15:f9:18:f0:b8:b2:ac:15:ac:e9:29: 2e:58:65:4e:9c:5d:fd:b1:7c:b9:66:1c:54:fa:ef: 25:03:b9:f6:f2:ce:e5:12:c0:1c:6c:11:9d:7b:f0: 95:3c:56:29:66:c0:2c:de:07:51:eb:64:7f:1e:e7: ba:b7:ce:bc:a4:2f:06:6a:ae:2f:f9:c9:dc:0c:14: 5f:55:86:0a:70:df:97:bb:c1:77:c0:82:06:e3:c5: 35:7f:04:51:93:9a:26:3c:5a:8c:3c:b1:86:11:d0: 36:c4:02:94:9c:d6:e3:0c:d0:d5:88:8b:23:2e:fe: 42:c6:bf:39:f8:ec:ad:7b:f5:ae:dc:a4:a5:f1:ae: 32:32:78:be:76:eb:6b:c0:bf:ed:3a:c1:50:42:3f: 34:73:4b:93:48:9f:76:03:02:10:41:d6:00:60:9e: 9c:c6:d0:c8:ff:8f:ae:37:24:6d:37:f7:d8:20:b1: 31:5a:2f:c9:3e:c6:8c:18:59:78:45:28:3f:b2:be: a2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:AB:25:29:09:63:49:4F:5C:F8:0A:81:EA:DE:17:D6:19:FC:8A:E2 X509v3 Authority Key Identifier: keyid:28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:e7:02:0d:a4:a6:1e:5e:c7:02:48:0f:6e:3c:12:19:c3:27: 11:83:6e:17:fe:27:af:60:50:c6:49:09:88:da:eb:b4:bd:b4: d4:54:29:8d:d7:e6:9c:0a:56:be:30:d5:09:dc:29:c5:e9:8c: 8d:fe:d3:83:71:41:b2:17:dc:e8:98:ee:c1:e3:57:52:21:d7: 03:db:93:5a:11:90:ad:b6:9a:84:0f:1c:5e:0b:2b:2f:37:4b: e4:02:f3:c2:18:28:12:46:bd:70:37:07:0f:55:da:8b:b7:56: 68:52:4b:5a:01:91:83:67:bd:1a:d0:ce:57:1e:3c:59:1a:78: d2:3c:f7:ab:6f:e2:be:32:ae:7a:f6:3d:ec:74:ac:11:4a:8b: d2:9b:33:10:2c:2f:ec:07:99:09:c4:28:49:ee:0c:30:4d:0d: 9e:82:f4:64:fb:d4:12:30:2f:e0:01:7a:1f:64:08:74:fd:61: 96:94:7d:cf:0b:4d:8b:fd:cf:6a:a8:b6:4e:79:b4:e8:11:1d: e7:03:1a:fe:e3:be:ac:50:3e:f7:d6:62:e7:f4:64:44:b4:e3: 61:8f:0f:fe:a5:3b:0a:d3:04:ee:d7:23:07:18:b6:1e:ca:13: 79:b7:41:54:27:c8:6c:b1:9b:4d:a8:df:a7:41:39:05:fb:93: 4c:d6:ff:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVBRUUxMTAvBgNVBAUTKDI4QzA2MDdEOTY4MzFBM0QxODA5MzM0NUIzNzI1OEVF M0JEN0YzRTcwHhcNMjQwNTMxMDgwMTAyWhcNMjQwNjA3MDgwMTAyWjAYMRYwFAYD VQQDEw02NjU5ODNiZi1mZWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1xpxXJ04dbkOa/yh35OHzAbDI1qLxvFxPGFEm5JBJZEZdrYg2x5K7R8ufOX C+J3CubWgFyUmD3p51JyIyo9FfkY8LiyrBWs6SkuWGVOnF39sXy5ZhxU+u8lA7n2 8s7lEsAcbBGde/CVPFYpZsAs3gdR62R/Hue6t868pC8Gaq4v+cncDBRfVYYKcN+X u8F3wIIG48U1fwRRk5omPFqMPLGGEdA2xAKUnNbjDNDViIsjLv5Cxr85+Oyte/Wu 3KSl8a4yMni+dutrwL/tOsFQQj80c0uTSJ92AwIQQdYAYJ6cxtDI/4+uNyRtN/fY ILExWi/JPsaMGFl4RSg/sr6iRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqrJSkJ Y0lPXPgKgereF9YZ/IriMB8GA1UdIwQYMBaAFCjAYH2Wgxo9GAkzRbNyWO471/Pn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUFFRS8zRTM5MDFGMjUy MDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdqMFlDVE5GczNKWTdqdlg4 LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tNQmdmWmFER2owWUNUTkZzM0pZN2p2WDgtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUFFRS8zRTM5MDFGMjUyMDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdq MFlDVE5GczNKWTdqdlg4LWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCO5wINpKYeXscCSA9uPBIZwycRg24X/ievYFDGSQmI2uu0vbTUVCmN 1+acCla+MNUJ3CnF6YyN/tODcUGyF9zomO7B41dSIdcD25NaEZCttpqEDxxeCysv N0vkAvPCGCgSRr1wNwcPVdqLt1ZoUktaAZGDZ70a0M5XHjxZGnjSPPerb+K+Mq56 9j3sdKwRSovSmzMQLC/sB5kJxChJ7gwwTQ2egvRk+9QSMC/gAXofZAh0/WGWlH3P C02L/c9qqLZOebToER3nAxr+476sUD731mLn9GREtONhjw/+pTsK0wTu1yMHGLYe yhN5t0FUJ8hssZtNqN+nQTkF+5NM1v9m -----END CERTIFICATE-----Generated at Fri May 31 08:39:00 2024 by rpki-client on console-fra.rpki-client.org