$ rpki-client -vvf rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft File: KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft (raw, json) Hash identifier: SyQXIBICpvECxjIxjgQQQ41FqQ/hyGivRsUELtwYWlY= Subject key identifier: F6:A4:10:98:4E:4C:A9:C2:0C:5B:5E:36:0B:99:CF:7D:10:4F:FA:5C Authority key identifier: 28:83:74:1B:0F:5B:CA:76:4F:4D:3C:83:D3:ED:6A:0F:27:CD:22:98 Certificate issuer: /CN=A91E04FE/serialNumber=2883741B0F5BCA764F4D3C83D3ED6A0F27CD2298 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KIN0Gw9bynZPTTyD0-1qDyfNIpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft Manifest number: 49 Signing time: Sat 01 Jun 2024 09:32:50 +0000 Manifest this update: Sat 01 Jun 2024 09:32:49 +0000 Manifest next update: Sat 08 Jun 2024 09:32:49 +0000 Files and hashes: 1: KIN0Gw9bynZPTTyD0-1qDyfNIpg.crl (hash: vQvIO4eNoW43npjc75NFTA+t2Oz6GbtnzEXSf7ZT1Us=) 2: 5EE215CCC33D11EE97B67979C4F9AE02.roa (hash: 8bgWpkcwwSpnHyrkYsdyUAYCC4K6G1edvEayFTb1/1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.crl rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KIN0Gw9bynZPTTyD0-1qDyfNIpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E04FE/serialNumber=2883741B0F5BCA764F4D3C83D3ED6A0F27CD2298 Validity Not Before: Jun 1 09:32:49 2024 GMT Not After : Jun 8 09:32:49 2024 GMT Subject: CN=665aeac1-2560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:26:17:1f:06:51:07:59:ab:ad:6e:73:1c:ba: 64:c2:66:28:f2:23:14:60:ea:58:41:94:df:44:2e: 11:b1:d0:b4:be:82:2c:fe:77:50:de:4a:f7:2d:a3: db:e7:2a:ac:f0:d6:6c:70:20:dd:db:8a:d3:8e:f1: 3a:0f:c2:b4:d9:ed:96:43:d9:0f:51:ca:d3:33:4b: e7:b9:f9:b9:32:29:5f:56:48:30:41:1f:6d:8d:a8: 62:f6:d7:71:cf:7f:16:5f:11:48:9a:f5:a3:c9:c6: d3:b1:7c:85:76:d8:79:8b:d4:45:49:12:cc:0b:c9: 58:8f:fd:93:25:93:ef:b0:cf:52:36:35:75:62:ac: 47:fa:b3:6e:46:95:8b:e8:dc:90:8d:0d:ff:65:a5: b1:05:fc:0e:55:77:9e:3e:d5:97:98:d7:11:3d:34: d8:f7:c2:65:0f:7c:7a:9f:87:35:e3:93:a5:66:23: df:40:c8:5d:67:00:85:fb:9b:ef:1f:5a:43:d3:7a: ef:64:30:10:3f:20:13:2f:ee:8d:f9:b4:cf:20:d0: f5:89:e9:e8:e8:ae:aa:ff:97:57:da:a3:3f:bc:a4: 37:b4:5f:38:1e:7b:20:b5:9c:88:37:92:52:7f:0c: fc:f8:7d:20:f5:b5:5f:87:15:0c:2d:73:e8:b8:02: 51:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:A4:10:98:4E:4C:A9:C2:0C:5B:5E:36:0B:99:CF:7D:10:4F:FA:5C X509v3 Authority Key Identifier: keyid:28:83:74:1B:0F:5B:CA:76:4F:4D:3C:83:D3:ED:6A:0F:27:CD:22:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KIN0Gw9bynZPTTyD0-1qDyfNIpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:72:2a:d7:49:53:75:9e:ee:25:24:ec:05:0b:5a:26:06:a2: 76:67:af:23:2d:6d:9a:8f:69:fc:8d:1c:23:20:46:a1:d3:3a: bc:a3:89:86:66:6f:e9:be:af:0a:ff:13:b7:1b:c4:ec:48:8d: bb:38:6a:05:db:10:58:3a:24:de:64:a3:a9:ec:9f:88:01:3e: c5:17:e4:2d:aa:cb:90:4a:38:a1:fd:07:d2:e9:a1:47:fc:37: 0a:a6:31:c1:3a:99:52:b2:2e:ba:47:35:0b:43:e9:7b:71:4f: c6:c4:3f:45:5b:21:45:92:24:c3:9e:3a:79:ce:9f:05:b3:24: c3:63:6d:64:fa:7f:26:c5:ce:33:54:5c:8f:ea:b3:ea:7e:a9: 00:e5:4d:38:31:97:4c:4c:dc:e9:8d:9f:8f:87:2c:06:02:bc: 36:aa:cd:1f:ee:d7:fa:fa:bc:78:db:b5:e4:a9:08:48:92:aa: b9:e8:61:21:45:b1:c7:f9:b5:3d:ed:41:fc:3a:7e:e7:74:78: 9d:a2:1c:b5:37:7d:9f:b0:b6:00:10:6f:05:90:dd:49:d8:d5: 35:ad:8d:f6:66:35:29:34:18:f8:7c:5c:a6:41:b0:26:86:48: 99:71:65:01:59:cb:5c:97:97:14:53:b0:20:4f:2d:ae:b9:9c: 2b:33:13:00 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MDRGRTExMC8GA1UEBRMoMjg4Mzc0MUIwRjVCQ0E3NjRGNEQzQzgzRDNFRDZBMEYy N0NEMjI5ODAeFw0yNDA2MDEwOTMyNDlaFw0yNDA2MDgwOTMyNDlaMBgxFjAUBgNV BAMTDTY2NWFlYWMxLTI1NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGJhcfBlEHWautbnMcumTCZijyIxRg6lhBlN9ELhGx0LS+giz+d1DeSvcto9vn Kqzw1mxwIN3bitOO8ToPwrTZ7ZZD2Q9RytMzS+e5+bkyKV9WSDBBH22NqGL213HP fxZfEUia9aPJxtOxfIV22HmL1EVJEswLyViP/ZMlk++wz1I2NXVirEf6s25GlYvo 3JCNDf9lpbEF/A5Vd54+1ZeY1xE9NNj3wmUPfHqfhzXjk6VmI99AyF1nAIX7m+8f WkPTeu9kMBA/IBMv7o35tM8g0PWJ6ejorqr/l1faoz+8pDe0XzgeeyC1nIg3klJ/ DPz4fSD1tV+HFQwtc+i4AlHtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9qQQmE5M qcIMW142C5nPfRBP+lwwHwYDVR0jBBgwFoAUKIN0Gw9bynZPTTyD0+1qDyfNIpgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUwNEZFLzg2QTZGNjU0Qjcz RjExRUVBRjEyQjg3QkM0RjlBRTAyL0tJTjBHdzlieW5aUFRUeUQwLTFxRHlmTklw Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS0lOMEd3OWJ5blpQVFR5RDAtMXFEeWZOSXBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUw NEZFLzg2QTZGNjU0QjczRjExRUVBRjEyQjg3QkM0RjlBRTAyL0tJTjBHdzlieW5a UFRUeUQwLTFxRHlmTklwZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA1yKtdJU3We7iUk7AULWiYGonZnryMtbZqPafyNHCMgRqHTOryjiYZm b+m+rwr/E7cbxOxIjbs4agXbEFg6JN5ko6nsn4gBPsUX5C2qy5BKOKH9B9LpoUf8 NwqmMcE6mVKyLrpHNQtD6XtxT8bEP0VbIUWSJMOeOnnOnwWzJMNjbWT6fybFzjNU XI/qs+p+qQDlTTgxl0xM3OmNn4+HLAYCvDaqzR/u1/r6vHjbteSpCEiSqrnoYSFF scf5tT3tQfw6fud0eJ2iHLU3fZ+wtgAQbwWQ3UnY1TWtjfZmNSk0GPh8XKZBsCaG SJlxZQFZy1yXlxRTsCBPLa65nCszEwA= -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:35 2024 by rpki-client on console-ams.rpki-client.org