$ rpki-client -vvf rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft File: kGA-NU21aLPKQpAOcDAR55ZiiS4.mft (raw, json) Hash identifier: 2KrOeoN+0QwrtevAvLcFIXZTlh4r9ejQ86an3qirMAM= Subject key identifier: 12:F1:AB:9C:80:BD:51:90:1E:73:0A:8D:03:7C:6E:96:26:A6:5D:A9 Authority key identifier: 90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E Certificate issuer: /CN=A91F731E/serialNumber=90603E354DB568B3CA42900E703011E79662892E Certificate serial: 053A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft Manifest number: 0532 Signing time: Sat 18 May 2024 16:26:08 +0000 Manifest this update: Sat 18 May 2024 16:26:08 +0000 Manifest next update: Sat 25 May 2024 16:26:08 +0000 Files and hashes: 1: kGA-NU21aLPKQpAOcDAR55ZiiS4.crl (hash: 2X9zSqri4a7s08SOZt46rFn0K+VAOVbng3Pi8dW7mrI=) 2: 8CD64094BDFE11EBBBB16A42C4F9AE02.roa (hash: yA8CM+8H6xwJ9pHyZOsdjkVreDkVa8Z4fxWdAhNQOeQ=) 3: 30857DB6CBA211ECAE233133C4F9AE02.roa (hash: 11JUyeS619BZBLeVnX8WZB3KLzR+wUBPMH71l/dsZsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1338 (0x53a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F731E/serialNumber=90603E354DB568B3CA42900E703011E79662892E Validity Not Before: May 18 16:26:08 2024 GMT Not After : May 25 16:26:08 2024 GMT Subject: CN=6648d6a0-03e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:db:e5:e3:15:b1:7f:a8:6c:b5:fa:44:e1:50: 31:08:2f:1f:a4:db:e0:5a:39:d6:e1:96:c7:11:23: fc:67:c6:a5:34:f4:28:55:f0:a6:55:ca:61:ed:fd: 4f:40:87:7e:0b:f8:b8:5e:25:0d:18:5c:f3:57:89: c7:d2:6c:2f:7a:a4:b5:49:a6:fd:d1:65:99:87:f2: b7:c7:56:b0:32:7c:58:e7:4b:58:4f:09:53:9d:1e: ea:3f:b4:3a:94:53:3f:7c:3b:51:19:15:b0:c2:a9: ad:40:88:8f:c6:0e:0d:b8:37:70:8d:a5:9c:ed:f2: 35:48:eb:4d:ed:34:bd:a2:06:46:a1:80:4f:43:5a: c8:8a:ea:21:4e:84:2a:13:fe:e5:95:ba:b2:10:fc: a5:4a:c2:db:60:c6:96:6e:cc:bd:70:90:bf:fa:b6: 53:27:0a:e9:34:9a:ec:ff:fc:5d:f9:a6:dc:2f:0b: 2d:3a:23:34:31:b1:cb:be:d7:b7:e6:a9:3c:9d:08: f1:42:97:15:2c:aa:b3:ce:f5:af:94:92:06:7a:ea: 04:03:b0:9f:33:3e:27:3f:88:c8:ae:65:6f:6d:72: fe:1c:c2:72:3c:83:d8:29:be:78:62:99:48:88:c4: 2c:c6:d3:c1:f4:f3:5d:9a:1b:f5:b8:85:0b:8e:8d: dd:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:F1:AB:9C:80:BD:51:90:1E:73:0A:8D:03:7C:6E:96:26:A6:5D:A9 X509v3 Authority Key Identifier: keyid:90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:49:be:31:3d:a1:55:49:20:c9:79:30:11:46:3b:d1:eb:80: e4:e9:05:31:57:8e:db:ab:b6:2b:91:e4:ff:5d:0e:68:82:95: 72:76:c8:9c:96:d9:fe:5b:c3:eb:7c:d9:fd:44:01:a2:ee:63: 36:93:36:be:79:bc:ef:9c:93:7b:c1:ec:f5:12:f2:dd:91:d7: dd:ab:cf:c7:76:2b:42:64:4b:cf:58:ac:1b:34:9e:dd:16:18: fe:b0:1e:19:58:ed:16:fd:91:82:a2:4c:4c:73:26:8a:fa:74: 77:e4:f5:4f:a8:70:b6:52:1f:79:d9:bd:7a:57:ff:66:7d:24: e2:cd:8a:7f:87:9f:7c:1e:71:9d:e7:fa:39:08:80:8e:83:b7: c1:79:9e:64:0c:95:86:1c:56:00:41:57:0c:85:0f:91:06:a9: cd:ac:ab:da:2b:d0:ad:e3:b8:36:e1:df:4d:5b:f1:89:3b:63: 21:a1:e6:f3:15:a4:3d:72:07:16:bc:73:89:f6:cc:c4:58:90: 42:da:db:d9:df:26:04:ed:e8:00:c0:75:4d:af:da:00:8a:17: 51:ea:26:5d:b6:fe:64:f1:dd:87:b7:12:b4:7b:ca:77:2f:0b: 87:99:60:35:b9:28:38:a6:6c:66:7d:51:9f:35:65:38:2e:27: a7:9b:e1:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMUUxMTAvBgNVBAUTKDkwNjAzRTM1NERCNTY4QjNDQTQyOTAwRTcwMzAxMUU3 OTY2Mjg5MkUwHhcNMjQwNTE4MTYyNjA4WhcNMjQwNTI1MTYyNjA4WjAYMRYwFAYD VQQDEw02NjQ4ZDZhMC0wM2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA59vl4xWxf6hstfpE4VAxCC8fpNvgWjnW4ZbHESP8Z8alNPQoVfCmVcph7f1P QId+C/i4XiUNGFzzV4nH0mwveqS1Sab90WWZh/K3x1awMnxY50tYTwlTnR7qP7Q6 lFM/fDtRGRWwwqmtQIiPxg4NuDdwjaWc7fI1SOtN7TS9ogZGoYBPQ1rIiuohToQq E/7llbqyEPylSsLbYMaWbsy9cJC/+rZTJwrpNJrs//xd+abcLwstOiM0MbHLvte3 5qk8nQjxQpcVLKqzzvWvlJIGeuoEA7CfMz4nP4jIrmVvbXL+HMJyPIPYKb54YplI iMQsxtPB9PNdmhv1uIULjo3dMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBLxq5yA vVGQHnMKjQN8bpYmpl2pMB8GA1UdIwQYMBaAFJBgPjVNtWizykKQDnAwEeeWYoku MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxRS9FQUExOUNCNEIy REMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFMUEtRcEFPY0RBUjU1Wmlp UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tHQS1OVTIxYUxQS1FwQU9jREFSNTVaaWlTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxRS9FQUExOUNCNEIyREMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFM UEtRcEFPY0RBUjU1WmlpUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdSb4xPaFVSSDJeTARRjvR64Dk6QUxV47bq7YrkeT/XQ5ogpVydsic ltn+W8PrfNn9RAGi7mM2kza+ebzvnJN7wez1EvLdkdfdq8/HditCZEvPWKwbNJ7d Fhj+sB4ZWO0W/ZGCokxMcyaK+nR35PVPqHC2Uh952b16V/9mfSTizYp/h598HnGd 5/o5CICOg7fBeZ5kDJWGHFYAQVcMhQ+RBqnNrKvaK9Ct47g24d9NW/GJO2Mhoebz FaQ9cgcWvHOJ9szEWJBC2tvZ3yYE7egAwHVNr9oAihdR6iZdtv5k8d2HtxK0e8p3 LwuHmWA1uSg4pmxmfVGfNWU4Lienm+G+ -----END CERTIFICATE-----Generated at Sat May 18 16:57:55 2024 by rpki-client on console-fra.rpki-client.org