$ rpki-client -vvf rpki.apnic.net/member_repository/A911A4EF/DFC7C69E6B4F11E692315138C4F9AE02/kYwDAKqskerP1p2NeSXuqybpU0A.mft File: kYwDAKqskerP1p2NeSXuqybpU0A.mft (raw, json) Hash identifier: oXfV/+vvuEA8aAqgigHduxk3FieSCVgJ8fl1FPiUaiI= Subject key identifier: 21:0D:1A:CF:26:8C:03:34:63:AB:C1:D3:47:66:AF:35:9F:BF:62:7A Authority key identifier: 91:8C:03:00:AA:AC:91:EA:CF:D6:9D:8D:79:25:EE:AB:26:E9:53:40 Certificate issuer: /CN=A911A4EF/serialNumber=918C0300AAAC91EACFD69D8D7925EEAB26E95340 Certificate serial: 1DF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kYwDAKqskerP1p2NeSXuqybpU0A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A4EF/DFC7C69E6B4F11E692315138C4F9AE02/kYwDAKqskerP1p2NeSXuqybpU0A.mft Manifest number: 1DEB Signing time: Fri 14 Jun 2024 08:56:05 +0000 Manifest this update: Fri 14 Jun 2024 08:56:04 +0000 Manifest next update: Fri 21 Jun 2024 08:56:04 +0000 Files and hashes: 1: kYwDAKqskerP1p2NeSXuqybpU0A.crl (hash: M9Mi6eZTo1c5VEm9GQ7jG2F8H0Wxq8V4FViyCt7s6cM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A4EF/DFC7C69E6B4F11E692315138C4F9AE02/kYwDAKqskerP1p2NeSXuqybpU0A.crl rsync://rpki.apnic.net/member_repository/A911A4EF/DFC7C69E6B4F11E692315138C4F9AE02/kYwDAKqskerP1p2NeSXuqybpU0A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kYwDAKqskerP1p2NeSXuqybpU0A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 08:56:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7667 (0x1df3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A4EF/serialNumber=918C0300AAAC91EACFD69D8D7925EEAB26E95340 Validity Not Before: Jun 14 08:56:04 2024 GMT Not After : Jun 21 08:56:04 2024 GMT Subject: CN=666c05a4-5e93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ca:05:c0:f0:fe:cb:1e:fe:01:d8:43:32:d7: 8f:b9:e0:6e:8e:5a:28:d2:5d:28:57:44:08:66:38: de:7a:f6:43:b2:f0:cc:da:82:da:51:64:41:7e:57: f2:7f:85:a6:5b:58:3d:97:9b:66:89:24:37:9b:79: f4:6d:d1:bb:f2:21:94:fe:ac:84:30:9a:fd:f0:2e: 3c:de:1b:c1:1e:a6:8a:e6:b5:fb:8f:eb:22:e1:7e: 24:d6:95:c2:59:87:b9:37:85:54:24:3e:b3:c1:0b: 7b:bf:c3:f5:5c:58:28:d5:2b:ce:2f:a5:e4:c2:df: 9d:e9:80:2c:62:03:e4:c5:9f:68:67:e3:c4:50:87: 30:aa:fe:78:9e:23:62:2d:b3:e9:2b:9a:23:a0:39: 1c:03:7d:7b:88:94:36:f3:60:12:da:de:5c:c1:f2: 44:43:a6:ad:3a:fb:87:41:56:80:3b:f6:06:0d:b7: c5:19:0b:ce:28:ea:73:86:6a:f2:1a:20:5e:2f:0e: 6f:f9:98:bf:9a:6b:92:ec:2e:d7:f9:7f:21:16:22: 81:5c:71:4c:dd:4f:82:03:5f:5d:cb:5f:4f:c2:52: ef:18:4e:5c:e8:66:64:e1:24:ac:ae:8c:95:3b:69: 74:fe:8b:ae:1b:df:4e:e3:62:cc:00:c1:4c:c3:94: e6:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:0D:1A:CF:26:8C:03:34:63:AB:C1:D3:47:66:AF:35:9F:BF:62:7A X509v3 Authority Key Identifier: keyid:91:8C:03:00:AA:AC:91:EA:CF:D6:9D:8D:79:25:EE:AB:26:E9:53:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A4EF/DFC7C69E6B4F11E692315138C4F9AE02/kYwDAKqskerP1p2NeSXuqybpU0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kYwDAKqskerP1p2NeSXuqybpU0A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A4EF/DFC7C69E6B4F11E692315138C4F9AE02/kYwDAKqskerP1p2NeSXuqybpU0A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:70:75:64:43:37:43:fb:d6:06:96:91:31:a3:e9:ec:2c:16: f5:1a:d9:43:b1:19:c2:7d:d4:71:75:a7:f8:76:4e:69:fc:8b: cb:8b:06:98:e4:3a:03:45:c1:a8:24:ad:c6:7b:25:58:37:5c: 15:ba:0e:13:9b:4b:da:e8:79:93:82:93:72:aa:ed:d7:f0:94: 92:53:ce:88:a8:92:89:01:12:37:20:6e:a8:48:3d:98:dc:e2: 4f:93:1f:d0:78:48:a3:ad:c7:fb:77:0f:4c:96:0a:58:e9:73: b5:95:a3:1e:aa:c6:42:ba:1f:31:1c:21:60:da:47:5e:31:d6: 90:fc:31:17:10:fd:37:4e:fb:6e:3b:43:93:d6:a8:b0:00:8a: 7d:d2:03:b6:ed:34:b0:82:39:1c:4c:20:f1:c6:79:3a:9c:db: 6c:25:a2:fd:d7:bd:f5:c1:ee:b0:df:18:e6:08:cf:4b:48:ab: a3:2c:73:c7:a8:28:2f:f6:15:aa:cc:9a:2a:15:c3:8d:5a:c9: ad:1a:de:06:8b:13:89:cd:ae:1d:c8:4c:5b:17:7f:2d:7e:55: ad:d0:6f:c8:50:c6:df:81:b2:c4:2d:37:72:66:1f:cb:98:4a: 99:70:86:58:4f:e3:59:b8:56:5f:4d:3b:4f:6a:fa:40:68:0d: b8:c4:28:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE0RUYxMTAvBgNVBAUTKDkxOEMwMzAwQUFBQzkxRUFDRkQ2OUQ4RDc5MjVFRUFC MjZFOTUzNDAwHhcNMjQwNjE0MDg1NjA0WhcNMjQwNjIxMDg1NjA0WjAYMRYwFAYD VQQDEw02NjZjMDVhNC01ZTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8oFwPD+yx7+AdhDMtePueBujloo0l0oV0QIZjjeevZDsvDM2oLaUWRBflfy f4WmW1g9l5tmiSQ3m3n0bdG78iGU/qyEMJr98C483hvBHqaK5rX7j+si4X4k1pXC WYe5N4VUJD6zwQt7v8P1XFgo1SvOL6Xkwt+d6YAsYgPkxZ9oZ+PEUIcwqv54niNi LbPpK5ojoDkcA317iJQ282AS2t5cwfJEQ6atOvuHQVaAO/YGDbfFGQvOKOpzhmry GiBeLw5v+Zi/mmuS7C7X+X8hFiKBXHFM3U+CA19dy19PwlLvGE5c6GZk4SSsroyV O2l0/ouuG99O42LMAMFMw5TmfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCENGs8m jAM0Y6vB00dmrzWfv2J6MB8GA1UdIwQYMBaAFJGMAwCqrJHqz9adjXkl7qsm6VNA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTRFRi9ERkM3QzY5RTZC NEYxMUU2OTIzMTUxMzhDNEY5QUUwMi9rWXdEQUtxc2tlclAxcDJOZVNYdXF5YnBV MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZd0RBS3Fza2VyUDFwMk5lU1h1cXlicFUwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTRFRi9ERkM3QzY5RTZCNEYxMUU2OTIzMTUxMzhDNEY5QUUwMi9rWXdEQUtxc2tl clAxcDJOZVNYdXF5YnBVMEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAscHVkQzdD+9YGlpExo+nsLBb1GtlDsRnCfdRxdaf4dk5p/IvLiwaY 5DoDRcGoJK3GeyVYN1wVug4Tm0va6HmTgpNyqu3X8JSSU86IqJKJARI3IG6oSD2Y 3OJPkx/QeEijrcf7dw9MlgpY6XO1laMeqsZCuh8xHCFg2kdeMdaQ/DEXEP03Tvtu O0OT1qiwAIp90gO27TSwgjkcTCDxxnk6nNtsJaL91731we6w3xjmCM9LSKujLHPH qCgv9hWqzJoqFcONWsmtGt4GixOJza4dyExbF38tflWt0G/IUMbfgbLELTdyZh/L mEqZcIZYT+NZuFZfTTtPavpAaA24xCjA -----END CERTIFICATE-----Generated at Fri Jun 14 11:47:48 2024 by rpki-client on console-ams.rpki-client.org