$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft File: kBUoySF5F9lWch0caFZlNFvrVv0.mft (raw, json) Hash identifier: jAEut0x1rqV011EiGPBAvTNvqW7k2y5/HcQnZeJdTDE= Subject key identifier: F9:62:5E:7C:AA:7A:01:99:BD:0C:E6:D9:29:31:3F:3F:32:83:20:53 Authority key identifier: 90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD Certificate issuer: /CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Certificate serial: 0274 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft Manifest number: 0271 Signing time: Fri 31 May 2024 04:00:14 +0000 Manifest this update: Fri 31 May 2024 04:00:14 +0000 Manifest next update: Fri 07 Jun 2024 04:00:14 +0000 Files and hashes: 1: kBUoySF5F9lWch0caFZlNFvrVv0.crl (hash: 2cEPSVuS5qTn0zdSPMJxbAT3BHO1pldQRAYq5t0ZTks=) 2: 39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa (hash: FD8mMbLhsLGNWUTDqXS2ge1jhJLxbO0CzgruTSg9Row=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 628 (0x274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Validity Not Before: May 31 04:00:14 2024 GMT Not After : Jun 7 04:00:14 2024 GMT Subject: CN=66594b4e-3bf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:9e:04:ae:f3:5c:3e:2e:8b:00:ac:e3:45:09: 16:4e:cc:3a:71:46:a6:f8:00:80:17:7f:fe:a0:cb: 11:77:3a:9f:2b:46:7e:dd:15:bd:c9:26:5a:e4:ec: 96:50:f9:15:45:03:b8:bb:de:24:44:99:9c:23:20: 43:39:08:8a:d4:f4:38:cb:d6:6d:23:e4:aa:a7:a6: e6:f4:8b:ab:ae:57:f8:c8:43:c7:12:33:76:db:5b: 64:22:04:be:c9:24:be:ac:4f:fb:8b:bb:71:dc:c8: 61:cd:f5:29:87:e6:c0:ac:a3:79:42:87:ac:38:64: 2a:1f:fc:41:51:cc:5e:91:00:e6:e4:85:a5:79:e5: 8e:0c:a1:d5:b2:3e:59:e2:4b:37:45:e4:a3:4d:e6: da:9f:4c:60:fe:65:7a:bf:a9:5f:57:fc:a0:8e:5e: e7:54:b3:82:96:ad:d5:35:d7:77:6e:2f:b1:f7:6a: 4c:77:fe:6c:6d:5f:b4:6c:f6:5b:9d:cb:6f:a9:43: 20:c3:48:c4:b1:be:11:9f:8d:c5:1c:14:9f:42:da: a2:49:07:a9:b6:9e:18:f0:c8:f1:01:f1:c8:ad:a1: 26:1e:72:3c:da:b4:29:18:89:73:96:70:0e:2b:c1: 4b:fa:48:2f:17:1b:05:70:1a:9b:3f:9e:4a:d3:56: 16:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:62:5E:7C:AA:7A:01:99:BD:0C:E6:D9:29:31:3F:3F:32:83:20:53 X509v3 Authority Key Identifier: keyid:90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:f2:8d:7d:8e:4a:ef:f4:34:e6:bc:3c:95:11:b1:39:43:8e: 6b:ee:9c:e5:7d:83:1e:4c:c0:b5:b7:26:c0:3b:51:ec:bb:4e: 8c:c8:12:66:1e:79:1c:3f:f7:dc:35:56:9f:67:bc:78:40:e7: 1f:dd:0e:d7:67:8b:6f:52:ed:d9:1d:81:90:4d:d9:27:b6:d3: 8e:99:ec:4d:8d:98:8d:11:19:eb:bd:11:3f:fa:22:29:a2:6b: 5d:12:42:b7:d4:74:15:16:23:61:63:b8:4e:3f:fc:93:20:e6: e3:ee:7e:3c:46:68:7f:2d:e7:f8:50:e5:7f:8d:b1:c5:3a:5a: 93:04:29:7a:46:38:c1:3f:48:ad:1a:ea:95:cd:bd:5f:d5:78: b5:93:05:86:ca:7a:d9:a6:b4:82:ed:3d:98:f6:97:6f:3e:5b: d9:8b:17:08:d0:70:9f:51:5c:de:e9:67:c4:27:28:a9:c2:06: ae:ca:18:e8:96:69:05:94:60:f5:97:70:6f:47:13:45:14:63: 41:7d:4d:7d:3d:d0:41:f3:6f:0e:0e:e1:06:cf:54:00:1b:88: 2e:fa:f9:91:0e:99:46:d3:56:f1:2b:7c:16:e1:d3:d6:46:fa: 89:f5:cb:af:9f:23:02:47:2e:cb:94:d9:52:25:89:8e:9d:66: 7d:44:6c:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKDkwMTUyOEM5MjE3OTE3RDk1NjcyMUQxQzY4NTY2NTM0 NUJFQjU2RkQwHhcNMjQwNTMxMDQwMDE0WhcNMjQwNjA3MDQwMDE0WjAYMRYwFAYD VQQDEw02NjU5NGI0ZS0zYmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlp4ErvNcPi6LAKzjRQkWTsw6cUam+ACAF3/+oMsRdzqfK0Z+3RW9ySZa5OyW UPkVRQO4u94kRJmcIyBDOQiK1PQ4y9ZtI+Sqp6bm9Iurrlf4yEPHEjN221tkIgS+ ySS+rE/7i7tx3MhhzfUph+bArKN5QoesOGQqH/xBUcxekQDm5IWleeWODKHVsj5Z 4ks3ReSjTeban0xg/mV6v6lfV/ygjl7nVLOClq3VNdd3bi+x92pMd/5sbV+0bPZb nctvqUMgw0jEsb4Rn43FHBSfQtqiSQeptp4Y8MjxAfHIraEmHnI82rQpGIlzlnAO K8FL+kgvFxsFcBqbP55K01YW+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPliXnyq egGZvQzm2SkxPz8ygyBTMB8GA1UdIwQYMBaAFJAVKMkheRfZVnIdHGhWZTRb61b9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS8xQ0Q0NEY5RUM3 N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5bFdjaDBjYUZabE5GdnJW djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tCVW95U0Y1RjlsV2NoMGNhRlpsTkZ2clZ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkFCOS8xQ0Q0NEY5RUM3N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5 bFdjaDBjYUZabE5GdnJWdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL8o19jkrv9DTmvDyVEbE5Q45r7pzlfYMeTMC1tybAO1Hsu06MyBJm HnkcP/fcNVafZ7x4QOcf3Q7XZ4tvUu3ZHYGQTdknttOOmexNjZiNERnrvRE/+iIp omtdEkK31HQVFiNhY7hOP/yTIObj7n48Rmh/Lef4UOV/jbHFOlqTBCl6RjjBP0it GuqVzb1f1Xi1kwWGynrZprSC7T2Y9pdvPlvZixcI0HCfUVze6WfEJyipwgauyhjo lmkFlGD1l3BvRxNFFGNBfU19PdBB828ODuEGz1QAG4gu+vmRDplG01bxK3wW4dPW RvqJ9cuvnyMCRy7LlNlSJYmOnWZ9RGxq -----END CERTIFICATE-----Generated at Fri May 31 04:54:03 2024 by rpki-client on console-fra.rpki-client.org