$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft File: kJUWWXx2-jz_qxUgjArpiGY0qgM.mft (raw, json) Hash identifier: B5Iwzuq+IvCyY17NjwxpH9o/ytSK9Fw28Ju2nwkkvk0= Subject key identifier: 80:2B:3B:CB:DB:B8:B1:80:CC:97:7E:14:5D:8D:4D:EB:5A:04:E5:34 Authority key identifier: 90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 Certificate issuer: /CN=A91847A2/serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Certificate serial: 09DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft Manifest number: 09D6 Signing time: Fri 26 Apr 2024 20:48:02 +0000 Manifest this update: Fri 26 Apr 2024 20:48:01 +0000 Manifest next update: Fri 03 May 2024 20:48:01 +0000 Files and hashes: 1: kJUWWXx2-jz_qxUgjArpiGY0qgM.crl (hash: xRDfclabtUMFgN9YMJSimUt6jHF/NMCu7OEGqX26xPQ=) 2: 54EDB8542E1811EBB4E80B1FC4F9AE02.roa (hash: vez5gs+Pt4ya6YLdOueO0QMF6IGNEZr0U1SUVMLX8CY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 20:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2525 (0x9dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2/serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Validity Not Before: Apr 26 20:48:01 2024 GMT Not After : May 3 20:48:01 2024 GMT Subject: CN=662c1301-acb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:84:3e:f0:a9:bd:b2:19:9e:e0:13:e1:e5:55: e0:ce:8a:ba:5d:a6:4c:97:2c:a3:a0:c5:11:f8:e5: c4:9f:c3:1b:db:88:63:0a:57:5a:85:34:ee:e1:b5: 9e:10:9b:43:81:dd:0a:87:80:dd:67:a5:19:09:b8: cb:59:87:29:d1:c1:f6:5e:5b:5a:9e:bd:a3:f7:be: 0f:67:57:fc:9a:40:fd:b8:b7:e5:4e:b7:14:a4:d1: 8c:bd:a5:3f:08:af:e7:cd:6e:c1:10:84:f6:f6:27: c8:d8:cf:b9:8c:20:98:d0:8c:2e:2f:5b:3c:3a:0f: 3f:c6:0b:7b:ca:73:49:1a:b5:c9:03:32:e1:14:76: 2d:6e:a1:17:6c:bc:57:2e:05:ea:18:83:10:2b:5a: e6:e6:f2:bf:b8:c6:94:64:81:84:e9:75:3a:bc:81: 4a:13:86:5c:f8:42:34:d1:06:c6:72:40:ee:c5:ea: ec:98:46:ac:65:61:ec:00:64:97:0d:53:46:0d:da: 91:36:93:ca:a4:6c:ae:23:9d:37:b0:84:4f:6a:7a: 5e:3b:19:05:14:8b:0b:a1:b5:ca:08:64:08:99:8a: 33:d9:38:14:50:5c:af:ce:16:5e:d3:0b:29:62:90: 15:8d:4d:d5:f4:15:c3:46:20:0b:c6:41:cd:6f:a5: 05:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:2B:3B:CB:DB:B8:B1:80:CC:97:7E:14:5D:8D:4D:EB:5A:04:E5:34 X509v3 Authority Key Identifier: keyid:90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:c2:41:c5:d2:d1:de:4e:1a:57:84:03:9f:92:d5:3d:2f:e7: 5c:8a:58:ce:ab:6c:a6:16:91:fa:c5:50:51:9e:51:f9:1e:c2: e4:09:66:d8:d2:8c:d3:3f:64:bd:b2:40:9a:3e:2d:fa:cc:6b: ff:cb:69:82:7b:9a:a9:1c:da:17:20:b7:8e:1b:d6:86:6f:e6: 0e:9d:5a:13:e5:c1:54:7b:13:a5:c2:f1:ff:9e:9f:b4:9d:36: 09:de:6b:90:e7:09:52:0e:f6:0f:0b:94:76:83:33:db:27:d0: 75:ae:4a:28:02:49:5f:db:04:80:d3:9e:b6:ad:ff:9a:10:ef: 07:0d:30:99:55:ff:0f:9b:4f:4f:fc:a1:f0:9e:f7:75:ec:73: 4d:16:ab:0f:39:b4:70:59:8f:9e:11:f7:99:31:04:3c:44:0e: 9d:f3:60:cc:c3:fc:b1:4c:8d:70:ca:e9:c5:a9:04:a5:66:20: 5b:8e:96:ad:2c:66:ba:b5:3f:cb:75:a3:a8:70:50:cb:5d:ae: 67:18:cf:c1:fb:f4:db:9c:68:18:57:e3:91:9e:1a:8a:8f:8d: 8a:ff:5e:18:28:3e:17:96:f8:9d:bb:8b:6a:54:f2:16:76:9d: 48:47:1e:79:ef:53:82:39:6f:c0:e3:a1:e6:f7:a2:75:0e:0a: 59:fb:76:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkwOTUxNjU5N0M3NkZBM0NGRkFCMTUyMDhDMEFFOTg4 NjYzNEFBMDMwHhcNMjQwNDI2MjA0ODAxWhcNMjQwNTAzMjA0ODAxWjAYMRYwFAYD VQQDEw02NjJjMTMwMS1hY2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0IQ+8Km9shme4BPh5VXgzoq6XaZMlyyjoMUR+OXEn8Mb24hjCldahTTu4bWe EJtDgd0Kh4DdZ6UZCbjLWYcp0cH2Xltanr2j974PZ1f8mkD9uLflTrcUpNGMvaU/ CK/nzW7BEIT29ifI2M+5jCCY0IwuL1s8Og8/xgt7ynNJGrXJAzLhFHYtbqEXbLxX LgXqGIMQK1rm5vK/uMaUZIGE6XU6vIFKE4Zc+EI00QbGckDuxersmEasZWHsAGSX DVNGDdqRNpPKpGyuI503sIRPanpeOxkFFIsLobXKCGQImYoz2TgUUFyvzhZe0wsp YpAVjU3V9BXDRiALxkHNb6UFWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIArO8vb uLGAzJd+FF2NTetaBOU0MB8GA1UdIwQYMBaAFJCVFll8dvo8/6sVIIwK6YhmNKoD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9BRUQzRDM1RTU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rSlVXV1h4Mi1qel9xeFVnakFycGlHWTBx Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tKVVdXWHgyLWp6X3F4VWdqQXJwaUdZMHFnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBMi9BRUQzRDM1RTU5NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rSlVXV1h4Mi1q el9xeFVnakFycGlHWTBxZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4wkHF0tHeThpXhAOfktU9L+dciljOq2ymFpH6xVBRnlH5HsLkCWbY 0ozTP2S9skCaPi36zGv/y2mCe5qpHNoXILeOG9aGb+YOnVoT5cFUexOlwvH/np+0 nTYJ3muQ5wlSDvYPC5R2gzPbJ9B1rkooAklf2wSA0562rf+aEO8HDTCZVf8Pm09P /KHwnvd17HNNFqsPObRwWY+eEfeZMQQ8RA6d82DMw/yxTI1wyunFqQSlZiBbjpat LGa6tT/LdaOocFDLXa5nGM/B+/TbnGgYV+ORnhqKj42K/14YKD4Xlvidu4tqVPIW dp1IRx5571OCOW/A46Hm96J1DgpZ+3aJ -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:06 2024 by rpki-client on console-fra.rpki-client.org