$ rpki-client -vvf rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft File: kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft (raw, json) Hash identifier: U/TjdoptlJSqO2jM69aM51V9CvEXQ2TI+/3hbZ5WaD0= Subject key identifier: B5:53:BA:D2:2F:68:77:8B:B3:88:4A:74:17:E8:3D:DA:15:88:83:12 Authority key identifier: 91:2A:B3:9F:C7:BB:CB:EF:1C:F2:67:E9:D3:F7:19:C9:A4:F0:A1:14 Certificate issuer: /CN=A91478C3/serialNumber=912AB39FC7BBCBEF1CF267E9D3F719C9A4F0A114 Certificate serial: 0D8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft Manifest number: 0D85 Signing time: Fri 26 Apr 2024 18:32:29 +0000 Manifest this update: Fri 26 Apr 2024 18:32:28 +0000 Manifest next update: Fri 03 May 2024 18:32:28 +0000 Files and hashes: 1: kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl (hash: Xg6R583wN89tAI7GjYrsJJEFWmzXFEwlm+B7xRZACbI=) 2: 36477FF69D2E11E99A95DC2AC4F9AE02.roa (hash: 3ATWfniZagbwXrzzSjogNdEqrQHRXjVZAQ8fSZkSCBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 18:32:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3468 (0xd8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91478C3/serialNumber=912AB39FC7BBCBEF1CF267E9D3F719C9A4F0A114 Validity Not Before: Apr 26 18:32:28 2024 GMT Not After : May 3 18:32:28 2024 GMT Subject: CN=662bf33c-53d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:43:b4:30:a8:c3:8f:29:f9:fc:d4:52:cc:93: 6f:9d:f5:59:4c:b4:82:5c:95:3c:4d:a9:0e:ed:98: 7d:e9:32:05:15:e2:20:14:18:4d:5d:f6:f6:d0:4f: 3f:dd:e2:2d:13:fb:af:b1:36:14:29:0e:d8:3a:cc: f6:4b:f0:8d:71:91:24:88:1e:73:bd:8b:87:e3:13: 7a:88:37:1c:60:af:95:cf:88:70:b6:a7:12:44:ab: a9:12:17:e7:df:a1:8b:8d:d3:02:0a:23:b2:4b:82: 40:74:b4:3b:3a:6e:f0:c6:57:fd:25:45:69:61:a9: fa:13:da:c7:ed:30:95:55:4e:50:dc:10:b4:9f:16: 8c:53:95:ed:cf:ce:d8:d2:be:2d:14:42:53:3d:bf: fa:9c:37:a5:4c:08:20:53:20:23:c6:20:98:24:44: 43:5f:a1:87:0d:ad:f9:53:d6:da:78:9f:46:04:b1: 59:ed:ed:d6:6e:94:76:e5:90:33:c5:37:9a:6f:54: df:80:e6:c7:6a:55:08:aa:a6:e7:f2:61:bb:50:1e: 6a:b9:f3:c2:f2:6f:d6:0a:35:97:09:d2:17:9c:5d: 56:6e:95:d2:83:c9:e3:ae:5c:17:6a:b0:24:1a:f3: 9d:34:c6:70:18:b8:55:4b:6f:b5:5f:18:e0:30:ba: ce:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:53:BA:D2:2F:68:77:8B:B3:88:4A:74:17:E8:3D:DA:15:88:83:12 X509v3 Authority Key Identifier: keyid:91:2A:B3:9F:C7:BB:CB:EF:1C:F2:67:E9:D3:F7:19:C9:A4:F0:A1:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:ab:df:e6:2c:aa:2c:e4:2c:45:c4:54:63:72:0e:4f:f3:9f: 17:d3:05:29:2c:c0:36:01:00:1a:1e:a2:93:a6:a2:6b:bf:99: 62:81:ff:b0:a6:11:64:48:a9:d4:74:16:e9:80:8b:ef:5a:75: f4:a2:8b:bf:81:96:b0:a8:a7:61:36:d0:38:33:d9:fd:7f:37: f8:55:27:c6:70:f4:b3:fb:f1:40:48:bc:44:a9:9e:c3:37:58: 53:c9:40:d1:dc:76:30:18:61:dd:12:9a:f9:21:f0:75:02:5b: 7e:0e:28:38:5c:61:ee:74:a2:b9:04:43:fa:0f:5a:99:a8:e4: 1d:8b:74:c5:67:38:4a:6b:35:6e:9a:5d:26:93:85:7c:fb:8b: 14:54:f1:cd:1c:d6:7b:18:9d:3f:f3:e4:1e:51:8c:d6:51:f8: 52:e7:20:0d:ca:13:9e:44:3a:7b:7f:78:4d:aa:c3:c8:49:d8: 13:c7:85:ca:91:c6:95:b2:db:cb:85:de:92:bd:9e:f5:1a:cd: 23:68:b9:94:11:c3:3d:60:af:71:59:dd:fe:eb:70:3f:5b:0c: 1a:f4:3b:76:03:2b:52:87:6c:9c:82:db:a5:7d:8d:c7:05:98: ba:ed:5b:23:c3:aa:93:26:59:23:9e:7c:55:db:9f:16:5f:bd: 7d:ca:0a:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc4QzMxMTAvBgNVBAUTKDkxMkFCMzlGQzdCQkNCRUYxQ0YyNjdFOUQzRjcxOUM5 QTRGMEExMTQwHhcNMjQwNDI2MTgzMjI4WhcNMjQwNTAzMTgzMjI4WjAYMRYwFAYD VQQDEw02NjJiZjMzYy01M2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0O0MKjDjyn5/NRSzJNvnfVZTLSCXJU8TakO7Zh96TIFFeIgFBhNXfb20E8/ 3eItE/uvsTYUKQ7YOsz2S/CNcZEkiB5zvYuH4xN6iDccYK+Vz4hwtqcSRKupEhfn 36GLjdMCCiOyS4JAdLQ7Om7wxlf9JUVpYan6E9rH7TCVVU5Q3BC0nxaMU5Xtz87Y 0r4tFEJTPb/6nDelTAggUyAjxiCYJERDX6GHDa35U9baeJ9GBLFZ7e3WbpR25ZAz xTeab1TfgObHalUIqqbn8mG7UB5qufPC8m/WCjWXCdIXnF1WbpXSg8njrlwXarAk GvOdNMZwGLhVS2+1XxjgMLrOewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLVTutIv aHeLs4hKdBfoPdoViIMSMB8GA1UdIwQYMBaAFJEqs5/Hu8vvHPJn6dP3Gcmk8KEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzhDMy9FM0Q5MTk0QzlE MkMxMUU5ODAyMjE4MjlDNEY5QUUwMi9rU3F6bjhlN3ktOGM4bWZwMF9jWnlhVHdv UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTcXpuOGU3eS04YzhtZnAwX2NaeWFUd29SUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzhDMy9FM0Q5MTk0QzlEMkMxMUU5ODAyMjE4MjlDNEY5QUUwMi9rU3F6bjhlN3kt OGM4bWZwMF9jWnlhVHdvUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPq9/mLKos5CxFxFRjcg5P858X0wUpLMA2AQAaHqKTpqJrv5ligf+w phFkSKnUdBbpgIvvWnX0oou/gZawqKdhNtA4M9n9fzf4VSfGcPSz+/FASLxEqZ7D N1hTyUDR3HYwGGHdEpr5IfB1Alt+Dig4XGHudKK5BEP6D1qZqOQdi3TFZzhKazVu ml0mk4V8+4sUVPHNHNZ7GJ0/8+QeUYzWUfhS5yANyhOeRDp7f3hNqsPISdgTx4XK kcaVstvLhd6SvZ71Gs0jaLmUEcM9YK9xWd3+63A/Wwwa9Dt2AytSh2ycgtulfY3H BZi67Vsjw6qTJlkjnnxV258WX719ygoz -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:49 2024 by rpki-client on console-ams.rpki-client.org