$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft File: KdzyaXujSl1MV_LtlnGNAxu8VjA.mft (raw, json) Hash identifier: sLpAoKNNkS5glcpKKophOoJYpGAbk5aEui9rLj3bqx8= Subject key identifier: AD:97:8E:CA:6E:39:98:18:4C:93:2E:E0:96:E8:59:81:E0:F9:8C:2B Authority key identifier: 29:DC:F2:69:7B:A3:4A:5D:4C:57:F2:ED:96:71:8D:03:1B:BC:56:30 Certificate issuer: /CN=A91A1103/serialNumber=29DCF2697BA34A5D4C57F2ED96718D031BBC5630 Certificate serial: 1541 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdzyaXujSl1MV_LtlnGNAxu8VjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft Manifest number: 1538 Signing time: Thu 02 May 2024 17:23:49 +0000 Manifest this update: Thu 02 May 2024 17:23:49 +0000 Manifest next update: Thu 09 May 2024 17:23:49 +0000 Files and hashes: 1: KdzyaXujSl1MV_LtlnGNAxu8VjA.crl (hash: YHqUJa50KLzrfWcy0tcitlYwMHyCeXi1EAk0ZkAnARg=) 2: 1C85059C1EB911E88533FA4EC4F9AE02.roa (hash: OL39VuRaTO6++N4sfRM3PA54REESO/zOJiR+TFOYEMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.crl rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdzyaXujSl1MV_LtlnGNAxu8VjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 17:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5441 (0x1541) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1103/serialNumber=29DCF2697BA34A5D4C57F2ED96718D031BBC5630 Validity Not Before: May 2 17:23:49 2024 GMT Not After : May 9 17:23:49 2024 GMT Subject: CN=6633cc25-7430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:36:27:ff:b1:ce:12:4e:c8:42:c1:15:53:ae: 68:4a:d5:2d:17:c2:c2:0c:20:3a:d2:e0:14:79:96: ba:93:55:0e:9e:41:2a:1b:9b:81:2f:3c:f3:3f:b7: d0:fb:85:a1:a1:f5:9d:bb:14:1e:f9:ea:b1:c0:e0: 30:5f:4a:b4:0b:c5:ae:90:02:04:b6:1d:19:ca:fc: 44:cf:e0:fb:51:b8:45:f2:c1:fe:38:d2:bc:c5:22: 5e:8e:ec:17:fa:a3:90:43:5a:4b:dd:5a:1a:9a:cc: 5c:bd:c7:07:53:71:bd:b8:bd:43:a4:45:fe:01:5b: c7:81:57:b2:98:f7:c5:4c:cc:83:28:92:f1:ea:ff: 45:0f:ad:69:f0:b6:97:e5:1c:f7:32:e9:9f:18:ed: 16:9f:9d:e2:e8:76:f2:3f:6b:ef:a3:47:cf:5a:61: bf:97:a1:bc:50:ee:f7:14:c6:23:c8:da:d4:41:ac: e3:ef:4a:05:e6:b3:52:ba:0a:cd:1b:97:40:a3:e0: b8:ef:33:a0:fe:8c:b2:2f:d9:fa:4f:04:73:31:67: b2:ca:f4:68:e4:c0:98:39:31:f5:05:ef:00:48:80: ec:27:78:d0:0c:f7:02:1b:23:14:97:15:fb:31:11: 86:bb:e7:ba:e9:76:e1:b1:9c:52:92:68:c4:a8:91: 24:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:97:8E:CA:6E:39:98:18:4C:93:2E:E0:96:E8:59:81:E0:F9:8C:2B X509v3 Authority Key Identifier: keyid:29:DC:F2:69:7B:A3:4A:5D:4C:57:F2:ED:96:71:8D:03:1B:BC:56:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdzyaXujSl1MV_LtlnGNAxu8VjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:40:aa:4c:a9:85:73:1d:8c:5d:9b:92:cd:a5:3f:ce:59:c4: cf:22:0d:5f:1e:fa:a4:7c:29:45:8d:a4:76:04:61:e3:cf:15: b9:a3:29:6d:19:2c:f4:44:8f:94:c5:b8:64:6a:fa:fa:ca:6a: 75:cc:4e:12:17:43:ad:48:50:52:5a:7a:99:07:99:00:be:12: 9b:10:a8:22:af:00:bd:8a:be:ca:e4:7d:0c:3a:56:c5:7e:5a: b8:cf:6d:95:d5:94:43:a9:10:b1:78:2c:08:f0:d2:4b:fe:aa: a9:24:d7:5a:cc:a6:14:95:eb:7a:0f:06:31:32:52:77:20:1a: 33:29:56:9e:fb:0e:41:80:f8:dc:84:76:05:0c:f5:82:56:29: 62:e2:7b:f3:8d:fd:37:35:50:97:7f:18:a7:cd:d1:25:b6:f6: e8:64:24:9c:b3:92:53:2d:37:68:67:9b:1b:82:49:5d:f0:2e: f4:4d:b9:b0:06:11:30:a7:be:01:ae:e7:e0:44:95:0f:f5:4c: 0d:fe:69:4b:7a:8c:60:55:78:4a:34:dd:cd:86:06:ea:34:6f: 64:0f:23:b0:2b:14:b6:0d:ec:fd:c6:61:6d:1b:57:d4:ad:68: 4d:43:74:3d:6e:b6:1f:aa:af:17:26:5a:ec:28:ad:bc:e4:d0: 74:22:69:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTExMDMxMTAvBgNVBAUTKDI5RENGMjY5N0JBMzRBNUQ0QzU3RjJFRDk2NzE4RDAz MUJCQzU2MzAwHhcNMjQwNTAyMTcyMzQ5WhcNMjQwNTA5MTcyMzQ5WjAYMRYwFAYD VQQDEw02NjMzY2MyNS03NDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyjYn/7HOEk7IQsEVU65oStUtF8LCDCA60uAUeZa6k1UOnkEqG5uBLzzzP7fQ +4WhofWduxQe+eqxwOAwX0q0C8WukAIEth0ZyvxEz+D7UbhF8sH+ONK8xSJejuwX +qOQQ1pL3VoamsxcvccHU3G9uL1DpEX+AVvHgVeymPfFTMyDKJLx6v9FD61p8LaX 5Rz3MumfGO0Wn53i6HbyP2vvo0fPWmG/l6G8UO73FMYjyNrUQazj70oF5rNSugrN G5dAo+C47zOg/oyyL9n6TwRzMWeyyvRo5MCYOTH1Be8ASIDsJ3jQDPcCGyMUlxX7 MRGGu+e66XbhsZxSkmjEqJEkiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK2Xjspu OZgYTJMu4JboWYHg+YwrMB8GA1UdIwQYMBaAFCnc8ml7o0pdTFfy7ZZxjQMbvFYw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTEwMy8yMDk1QUE2MjFB MDcxMUU4QkUyNEE1NThDNEY5QUUwMi9LZHp5YVh1alNsMU1WX0x0bG5HTkF4dThW akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkenlhWHVqU2wxTVZfTHRsbkdOQXh1OFZqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTEwMy8yMDk1QUE2MjFBMDcxMUU4QkUyNEE1NThDNEY5QUUwMi9LZHp5YVh1alNs MU1WX0x0bG5HTkF4dThWakEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHQKpMqYVzHYxdm5LNpT/OWcTPIg1fHvqkfClFjaR2BGHjzxW5oylt GSz0RI+Uxbhkavr6ymp1zE4SF0OtSFBSWnqZB5kAvhKbEKgirwC9ir7K5H0MOlbF flq4z22V1ZRDqRCxeCwI8NJL/qqpJNdazKYUlet6DwYxMlJ3IBozKVae+w5BgPjc hHYFDPWCVili4nvzjf03NVCXfxinzdEltvboZCScs5JTLTdoZ5sbgkld8C70Tbmw BhEwp74BrufgRJUP9UwN/mlLeoxgVXhKNN3NhgbqNG9kDyOwKxS2Dez9xmFtG1fU rWhNQ3Q9brYfqq8XJlrsKK285NB0Imm8 -----END CERTIFICATE-----Generated at Thu May 2 20:50:32 2024 by rpki-client on console-fra.rpki-client.org