$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft File: kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft (raw, json) Hash identifier: m6Gdg+JjKAV6MiflpMS1wec7JA4RYc+/dODZoTN2yco= Subject key identifier: 3D:04:F3:2A:CB:9C:20:1D:0A:CD:6D:3D:F8:01:BC:02:19:D8:5A:20 Authority key identifier: 90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23 Certificate issuer: /CN=A91EC4DD/serialNumber=90C3D8351726A8B91DE26D46811283435CC52623 Certificate serial: 0617 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft Manifest number: 0612 Signing time: Sat 18 May 2024 23:51:18 +0000 Manifest this update: Sat 18 May 2024 23:51:18 +0000 Manifest next update: Sat 25 May 2024 23:51:18 +0000 Files and hashes: 1: kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl (hash: uAuebioUJUk6FyoBp10QKvHFa5PlkcbWNkoJ1tohORE=) 2: AFCD8352557E11EBACB5CE3BC4F9AE02.roa (hash: wglThLfIXyQfKwluHMXUowgJMi2IuZWgRZX/TjV84sY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1559 (0x617) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC4DD/serialNumber=90C3D8351726A8B91DE26D46811283435CC52623 Validity Not Before: May 18 23:51:18 2024 GMT Not After : May 25 23:51:18 2024 GMT Subject: CN=66493ef6-98d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2f:88:7f:1d:65:55:57:2d:3e:7f:ba:67:20: 8c:3e:27:86:73:ee:ae:14:73:4f:98:eb:4a:87:c7: 8c:a5:3f:9e:24:42:4c:fc:03:64:63:a8:9c:5e:a5: ed:41:12:a3:c6:93:d0:e5:d6:e5:a7:00:07:cf:db: 50:f2:38:89:8e:f2:b6:f9:1c:21:c4:8a:8c:f3:b6: 4e:3b:38:1a:68:ef:3f:a4:eb:68:31:d4:51:9c:66: 01:ba:c9:8f:12:5f:b0:c2:f7:ea:48:9e:69:2d:a1: b9:76:84:22:95:c7:c0:f1:86:6f:32:8f:3f:f4:3e: 4f:2a:fc:3a:9a:c9:f4:4a:8f:59:f5:a3:be:33:4f: a0:7e:2c:a0:44:06:12:57:3c:6e:76:c8:33:42:70: 98:75:34:23:ed:9b:26:18:b4:a1:10:8c:24:9d:5c: ce:37:08:21:9a:92:e6:1c:f2:86:03:ed:fb:40:5e: fa:25:49:80:73:59:69:70:c6:ad:13:b8:67:a6:6f: 50:bf:64:bf:64:90:cd:49:66:5c:e8:17:3c:6d:a7: e7:e5:8f:c3:d0:97:02:0b:07:27:0b:a9:79:68:fb: a5:3d:52:3c:e3:6c:a9:10:c8:8b:b3:02:01:74:2e: eb:2d:86:09:a7:ca:74:b3:0d:70:3e:97:b6:32:7c: fb:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:04:F3:2A:CB:9C:20:1D:0A:CD:6D:3D:F8:01:BC:02:19:D8:5A:20 X509v3 Authority Key Identifier: keyid:90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:40:dc:7a:1a:d1:2e:a9:41:29:48:7c:39:bd:05:d4:52:41: 88:96:b5:23:59:b1:30:0b:62:47:a7:15:39:b8:2e:fa:6b:a4: 99:5a:2d:06:6b:32:2c:12:34:9a:ee:e7:be:b2:0f:09:68:ae: f7:e4:d6:56:3f:7b:cb:05:c7:91:e7:24:50:8b:39:30:7c:af: 89:f9:4d:ba:dd:85:52:be:17:3e:dc:1e:e0:b2:2e:a5:32:22: 60:a8:79:0d:de:99:68:50:47:63:58:55:f5:15:92:a6:17:fe: d3:29:3a:e1:e6:75:d7:2d:25:b5:1e:79:0a:68:8c:ce:e0:ca: 14:da:f1:2b:23:53:fc:11:c3:9f:f2:10:19:13:9e:59:49:02: 89:9e:7e:59:b9:e5:e8:f8:d0:e6:4a:b3:cd:a2:c0:e6:08:9a: 71:d8:1c:02:76:97:06:26:2a:dd:fc:61:9f:2c:2f:42:4a:32: 6a:cb:13:de:bd:3f:7e:c9:b8:80:47:43:e8:97:76:17:8a:18: 53:6a:c9:c4:27:15:ec:bd:d9:7f:95:c7:4d:35:ad:7f:9d:35: b8:72:b3:ad:a5:33:c7:c8:36:c1:bd:b5:49:21:35:dd:76:ae: 2a:2a:18:c1:2f:01:13:1e:dc:f3:79:16:1b:3f:79:ea:f2:57: 93:21:92:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM0REQxMTAvBgNVBAUTKDkwQzNEODM1MTcyNkE4QjkxREUyNkQ0NjgxMTI4MzQz NUNDNTI2MjMwHhcNMjQwNTE4MjM1MTE4WhcNMjQwNTI1MjM1MTE4WjAYMRYwFAYD VQQDEw02NjQ5M2VmNi05OGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAui+Ifx1lVVctPn+6ZyCMPieGc+6uFHNPmOtKh8eMpT+eJEJM/ANkY6icXqXt QRKjxpPQ5dblpwAHz9tQ8jiJjvK2+RwhxIqM87ZOOzgaaO8/pOtoMdRRnGYBusmP El+wwvfqSJ5pLaG5doQilcfA8YZvMo8/9D5PKvw6msn0So9Z9aO+M0+gfiygRAYS VzxudsgzQnCYdTQj7ZsmGLShEIwknVzONwghmpLmHPKGA+37QF76JUmAc1lpcMat E7hnpm9Qv2S/ZJDNSWZc6Bc8bafn5Y/D0JcCCwcnC6l5aPulPVI842ypEMiLswIB dC7rLYYJp8p0sw1wPpe2Mnz7YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD0E8yrL nCAdCs1tPfgBvAIZ2FogMB8GA1UdIwQYMBaAFJDD2DUXJqi5HeJtRoESg0NcxSYj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzRERC9CODhDMjI0QzU1 N0QxMUVCQjQ5MEI1M0JDNEY5QUUwMi9rTVBZTlJjbXFMa2Q0bTFHZ1JLRFExekZK aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNUFlOUmNtcUxrZDRtMUdnUktEUTF6RkppTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzRERC9CODhDMjI0QzU1N0QxMUVCQjQ5MEI1M0JDNEY5QUUwMi9rTVBZTlJjbXFM a2Q0bTFHZ1JLRFExekZKaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiQNx6GtEuqUEpSHw5vQXUUkGIlrUjWbEwC2JHpxU5uC76a6SZWi0G azIsEjSa7ue+sg8JaK735NZWP3vLBceR5yRQizkwfK+J+U263YVSvhc+3B7gsi6l MiJgqHkN3ploUEdjWFX1FZKmF/7TKTrh5nXXLSW1HnkKaIzO4MoU2vErI1P8EcOf 8hAZE55ZSQKJnn5ZueXo+NDmSrPNosDmCJpx2BwCdpcGJird/GGfLC9CSjJqyxPe vT9+ybiAR0Pol3YXihhTasnEJxXsvdl/lcdNNa1/nTW4crOtpTPHyDbBvbVJITXd dq4qKhjBLwETHtzzeRYbP3nq8leTIZK2 -----END CERTIFICATE-----Generated at Sun May 19 00:59:43 2024 by rpki-client on console-fra.rpki-client.org