$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft File: keKklwM5j7IArA6fpHZpFddL-eU.mft (raw, json) Hash identifier: /ydQqlNav4Ey6d7h1dP42Fahv4KZ2HS1yIdvq30bM6M= Subject key identifier: EB:90:89:EC:4E:35:FF:BF:7F:4D:34:CB:E8:80:9E:C4:0C:E1:35:FB Authority key identifier: 91:E2:A4:97:03:39:8F:B2:00:AC:0E:9F:A4:76:69:15:D7:4B:F9:E5 Certificate issuer: /CN=A91FD6E4/serialNumber=91E2A49703398FB200AC0E9FA4766915D74BF9E5 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keKklwM5j7IArA6fpHZpFddL-eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft Manifest number: A4 Signing time: Sun 19 May 2024 06:44:27 +0000 Manifest this update: Sun 19 May 2024 06:44:26 +0000 Manifest next update: Sun 26 May 2024 06:44:26 +0000 Files and hashes: 1: keKklwM5j7IArA6fpHZpFddL-eU.crl (hash: Dfb9s0KO2/hokWjXtRU08y/SLA3KhxGd1b45zLOpC1s=) 2: 345AD30E1E1311EE846A3261C4F9AE02.roa (hash: Q/zkqn9Ahvj8jRgsey5cqwVrShO1nICWtCueoU7xyC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.crl rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keKklwM5j7IArA6fpHZpFddL-eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD6E4/serialNumber=91E2A49703398FB200AC0E9FA4766915D74BF9E5 Validity Not Before: May 19 06:44:26 2024 GMT Not After : May 26 06:44:26 2024 GMT Subject: CN=66499fcb-6b9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d3:1a:04:c4:e3:7e:31:f8:a1:b2:3b:0c:8c: fc:7a:98:f8:f0:5b:e0:98:43:db:8e:e5:fb:c9:31: 44:76:70:46:cd:a3:5e:8a:ca:5e:d3:74:f3:4c:0c: 29:4d:25:c1:fa:fe:55:1d:90:f3:08:c0:92:3e:94: 84:a2:31:24:6d:b8:29:8d:1f:68:0f:bb:d6:3f:f8: c6:17:86:59:84:4c:8f:9b:fe:15:b9:f7:fe:e7:08: 54:41:90:64:c2:07:cf:11:30:e5:ee:a0:90:e4:19: 16:e7:22:a0:c6:d8:bc:f0:d2:34:a3:cf:f4:30:e6: d8:36:c1:18:4b:66:9f:d4:de:ac:7b:4f:9b:65:fd: e8:8a:75:7f:6d:05:37:0c:82:11:ca:3d:a7:fc:bf: fc:5c:91:ac:5d:9e:0c:99:8e:a4:38:df:3d:70:d0: 7f:9f:08:ed:39:47:7e:0d:b1:b7:45:93:da:2c:e1: 9d:64:68:c2:70:ca:34:50:b7:8d:0b:38:84:fb:79: 9a:6a:10:8d:be:33:f2:4a:1f:18:a7:11:a0:c5:cb: f0:d6:8e:87:1a:10:3e:54:87:ea:92:4a:c7:35:37: 4c:e1:f7:5b:c8:d8:0c:b6:fd:b9:6c:29:8e:dd:ed: e4:30:26:7d:3d:55:f6:b9:e7:16:21:45:47:f6:d6: b6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:90:89:EC:4E:35:FF:BF:7F:4D:34:CB:E8:80:9E:C4:0C:E1:35:FB X509v3 Authority Key Identifier: keyid:91:E2:A4:97:03:39:8F:B2:00:AC:0E:9F:A4:76:69:15:D7:4B:F9:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keKklwM5j7IArA6fpHZpFddL-eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:28:6d:33:49:2d:7e:b2:fd:d1:41:41:d2:d2:16:7c:11:4d: 1d:26:ce:18:4e:09:bb:bb:99:d3:36:2b:1a:de:e1:a8:70:9b: ed:d0:8b:07:b5:a2:29:40:1e:32:02:0c:f4:14:80:42:33:d7: c9:0d:2f:a1:26:5b:72:e3:7e:c2:18:bf:cc:e7:e0:b9:6e:25: 2f:6d:c1:e4:ee:77:4b:f2:e8:82:9a:e0:47:77:1b:07:74:4b: 41:b5:b6:c2:a7:7a:e5:4e:4d:14:22:6e:6f:76:c1:c4:74:ed: 06:9a:a3:02:bd:2e:81:23:1f:43:4d:8b:39:13:55:8c:7b:ce: 45:a8:fc:3c:20:87:a9:17:f9:10:66:7d:61:dc:ce:bd:c0:4f: e4:35:46:9a:c5:00:60:76:af:e2:dc:ee:e7:0b:c5:69:69:7d: 34:48:99:dc:96:cb:3c:e5:ff:20:2b:2c:cd:2f:80:e9:3e:df: 0f:6c:e6:0d:12:0b:42:56:65:95:4d:70:5a:05:7e:a9:30:f3: e9:9f:4b:de:fc:35:fe:61:b3:3d:c3:d7:2f:8d:c4:19:de:a7: 85:6a:30:ca:87:b0:77:17:d2:60:78:6f:61:53:39:8b:61:fc: f7:07:85:3f:72:d2:f4:41:82:40:c0:f3:57:60:b4:9b:6e:47: 85:a9:22:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2RTQxMTAvBgNVBAUTKDkxRTJBNDk3MDMzOThGQjIwMEFDMEU5RkE0NzY2OTE1 RDc0QkY5RTUwHhcNMjQwNTE5MDY0NDI2WhcNMjQwNTI2MDY0NDI2WjAYMRYwFAYD VQQDEw02NjQ5OWZjYi02YjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9MaBMTjfjH4obI7DIz8epj48FvgmEPbjuX7yTFEdnBGzaNeispe03TzTAwp TSXB+v5VHZDzCMCSPpSEojEkbbgpjR9oD7vWP/jGF4ZZhEyPm/4Vuff+5whUQZBk wgfPETDl7qCQ5BkW5yKgxti88NI0o8/0MObYNsEYS2af1N6se0+bZf3oinV/bQU3 DIIRyj2n/L/8XJGsXZ4MmY6kON89cNB/nwjtOUd+DbG3RZPaLOGdZGjCcMo0ULeN CziE+3maahCNvjPySh8YpxGgxcvw1o6HGhA+VIfqkkrHNTdM4fdbyNgMtv25bCmO 3e3kMCZ9PVX2uecWIUVH9ta2mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOuQiexO Nf+/f000y+iAnsQM4TX7MB8GA1UdIwQYMBaAFJHipJcDOY+yAKwOn6R2aRXXS/nl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDZFNC9BQkU3RTA1NjFF MEUxMUVFOTE3MEY0MjlDNEY5QUUwMi9rZUtrbHdNNWo3SUFyQTZmcEhacEZkZEwt ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlS2tsd001ajdJQXJBNmZwSFpwRmRkTC1lVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDZFNC9BQkU3RTA1NjFFMEUxMUVFOTE3MEY0MjlDNEY5QUUwMi9rZUtrbHdNNWo3 SUFyQTZmcEhacEZkZEwtZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBKG0zSS1+sv3RQUHS0hZ8EU0dJs4YTgm7u5nTNisa3uGocJvt0IsH taIpQB4yAgz0FIBCM9fJDS+hJlty437CGL/M5+C5biUvbcHk7ndL8uiCmuBHdxsH dEtBtbbCp3rlTk0UIm5vdsHEdO0GmqMCvS6BIx9DTYs5E1WMe85FqPw8IIepF/kQ Zn1h3M69wE/kNUaaxQBgdq/i3O7nC8VpaX00SJnclss85f8gKyzNL4DpPt8PbOYN EgtCVmWVTXBaBX6pMPPpn0ve/DX+YbM9w9cvjcQZ3qeFajDKh7B3F9JgeG9hUzmL Yfz3B4U/ctL0QYJAwPNXYLSbbkeFqSJ7 -----END CERTIFICATE-----Generated at Sun May 19 08:25:12 2024 by rpki-client on console-ams.rpki-client.org