$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft File: KHuwzWb71-W3qIumZ4kSTAsExXg.mft (raw, json) Hash identifier: gZyF0yqomFxm9Eghtl03ujdwowIsQbFXZJ36QealSRM= Subject key identifier: 86:4D:71:72:05:67:44:66:D2:9D:58:E8:73:F0:78:FF:E5:BB:05:68 Authority key identifier: 28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 Certificate issuer: /CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Certificate serial: 0AB3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft Manifest number: 0AAC Signing time: Thu 30 May 2024 20:34:06 +0000 Manifest this update: Thu 30 May 2024 20:34:06 +0000 Manifest next update: Thu 06 Jun 2024 20:34:06 +0000 Files and hashes: 1: KHuwzWb71-W3qIumZ4kSTAsExXg.crl (hash: VKyHwiJMJ1AxnNYEqP6E01vAUxph4FbJw73lCnDrl4Y=) 2: 2BA212DC306D11EA81D19B38C4F9AE02.roa (hash: rkLsb+deDCPqbk0gObiXfMhdhI5eY1I1eSaPovL0Epo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 20:34:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2739 (0xab3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Validity Not Before: May 30 20:34:06 2024 GMT Not After : Jun 6 20:34:06 2024 GMT Subject: CN=6658e2be-75a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:74:42:58:d3:eb:56:cb:9e:4b:46:36:2e:60: 98:2c:d3:c5:01:4a:ab:d1:8d:cd:f8:d1:00:99:a1: d1:36:47:a6:c1:56:dc:f1:3f:9c:be:a3:32:fa:66: 63:5a:c6:87:09:6c:5d:b0:5c:66:39:2b:6d:02:ac: da:42:ab:23:0f:e5:89:f2:8b:67:49:e7:49:b0:01: 66:83:7c:52:db:98:96:12:3c:4d:b9:ca:a7:b8:a6: 7a:91:05:86:18:3f:31:4b:c5:70:e5:ce:67:44:df: e3:8d:9a:97:5b:cd:f1:83:52:5b:82:32:55:25:43: 9a:20:9e:ac:a0:cf:1f:8b:4d:5c:b6:73:fe:6f:89: 18:e8:a3:35:8e:fe:b1:a2:be:5e:99:f8:1d:bb:ad: 22:5f:78:7b:71:82:1a:ac:c0:78:1e:4f:5f:db:d5: 3b:6f:07:a4:52:01:7f:05:52:a8:cf:5b:5f:3a:da: a0:06:1e:60:2d:4d:4f:b6:64:83:75:f3:0a:7d:94: e1:6a:c1:93:c5:a5:78:a7:51:a9:94:5c:25:e4:ab: c8:63:c8:39:17:9c:eb:75:84:fc:cf:11:4c:8c:ed: b7:f6:48:61:ed:63:47:56:73:b4:01:51:eb:5c:a5: 3d:8b:c0:56:d3:15:99:27:39:d7:68:d5:6b:b7:3c: da:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:4D:71:72:05:67:44:66:D2:9D:58:E8:73:F0:78:FF:E5:BB:05:68 X509v3 Authority Key Identifier: keyid:28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:8c:65:f1:ed:64:44:91:94:95:90:d0:c3:fd:44:c2:6b:c1: da:6f:ef:c0:2e:a5:72:47:e4:2f:87:88:96:e8:7b:94:8e:2d: 29:45:d1:a1:fa:f4:c5:32:78:79:db:eb:e0:4a:bf:f3:19:16: 1b:61:46:69:40:b5:63:92:b3:17:ce:32:94:5a:a9:33:27:ee: 40:f0:6d:1a:73:6c:37:0c:6b:db:ee:c1:9a:52:d7:28:fd:f3: 3f:40:bb:be:24:1f:c0:53:62:7a:23:e4:1c:e1:ca:66:3d:10: 99:7e:7b:24:d0:d4:a6:39:b7:fa:aa:cb:26:70:22:7a:79:92: 6c:1c:6c:41:99:43:75:24:d2:1e:ab:57:be:ee:df:bb:44:00: 77:2f:96:03:d6:33:71:35:36:10:9b:e7:a5:f8:91:36:24:25: e1:35:54:64:de:fe:2e:11:12:90:f0:de:17:a5:33:1a:a7:1f: f0:76:9b:be:76:78:11:3e:9a:c4:49:3b:f0:5e:7a:b4:50:71: 9f:84:8c:86:5d:aa:b9:ef:08:9d:94:c9:f7:93:20:da:7e:91: 26:69:af:78:b8:41:ed:05:a4:a2:b4:9c:62:00:c1:e8:cf:93: 05:05:6a:5c:b6:99:90:ab:57:46:96:3c:c4:41:34:29:cc:71: c3:a9:87:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFMjUxMTAvBgNVBAUTKDI4N0JCMENENjZGQkQ3RTVCN0E4OEJBNjY3ODkxMjRD MEIwNEM1NzgwHhcNMjQwNTMwMjAzNDA2WhcNMjQwNjA2MjAzNDA2WjAYMRYwFAYD VQQDEw02NjU4ZTJiZS03NWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsnRCWNPrVsueS0Y2LmCYLNPFAUqr0Y3N+NEAmaHRNkemwVbc8T+cvqMy+mZj WsaHCWxdsFxmOSttAqzaQqsjD+WJ8otnSedJsAFmg3xS25iWEjxNucqnuKZ6kQWG GD8xS8Vw5c5nRN/jjZqXW83xg1JbgjJVJUOaIJ6soM8fi01ctnP+b4kY6KM1jv6x or5emfgdu60iX3h7cYIarMB4Hk9f29U7bwekUgF/BVKoz1tfOtqgBh5gLU1PtmSD dfMKfZThasGTxaV4p1GplFwl5KvIY8g5F5zrdYT8zxFMjO239khh7WNHVnO0AVHr XKU9i8BW0xWZJznXaNVrtzzanwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIZNcXIF Z0Rm0p1Y6HPweP/luwVoMB8GA1UdIwQYMBaAFCh7sM1m+9flt6iLpmeJEkwLBMV4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUyNS82OEU1N0FFRTMw NjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEtVzNxSXVtWjRrU1RBc0V4 WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIdXd6V2I3MS1XM3FJdW1aNGtTVEFzRXhYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUyNS82OEU1N0FFRTMwNjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEt VzNxSXVtWjRrU1RBc0V4WGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZjGXx7WREkZSVkNDD/UTCa8Hab+/ALqVyR+Qvh4iW6HuUji0pRdGh +vTFMnh52+vgSr/zGRYbYUZpQLVjkrMXzjKUWqkzJ+5A8G0ac2w3DGvb7sGaUtco /fM/QLu+JB/AU2J6I+Qc4cpmPRCZfnsk0NSmObf6qssmcCJ6eZJsHGxBmUN1JNIe q1e+7t+7RAB3L5YD1jNxNTYQm+el+JE2JCXhNVRk3v4uERKQ8N4XpTMapx/wdpu+ dngRPprESTvwXnq0UHGfhIyGXaq57widlMn3kyDafpEmaa94uEHtBaSitJxiAMHo z5MFBWpctpmQq1dGljzEQTQpzHHDqYeF -----END CERTIFICATE-----Generated at Thu May 30 21:37:31 2024 by rpki-client on console-fra.rpki-client.org