$ rpki-client -vvf rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft File: kzrtfDoGQianFEt0eMdAPazdgAU.mft (raw, json) Hash identifier: rqT17wDmRub4TWgzniN5pasgbj+iZDQ24S6+ZzV7F8A= Subject key identifier: 22:E4:8A:FC:3C:7C:67:8F:A0:DD:76:C7:1F:30:D1:11:00:C4:68:F4 Authority key identifier: 93:3A:ED:7C:3A:06:42:26:A7:14:4B:74:78:C7:40:3D:AC:DD:80:05 Certificate issuer: /CN=A91A81F7/serialNumber=933AED7C3A064226A7144B7478C7403DACDD8005 Certificate serial: 02CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft Manifest number: 02C8 Signing time: Fri 03 May 2024 03:33:09 +0000 Manifest this update: Fri 03 May 2024 03:33:08 +0000 Manifest next update: Fri 10 May 2024 03:33:08 +0000 Files and hashes: 1: kzrtfDoGQianFEt0eMdAPazdgAU.crl (hash: NkPqnSYe1DHwpQ2IeQCfncBM8fY5BGLijXe5NcvqZPY=) 2: 4D7F18D69F8911EC8270CE39C4F9AE02.roa (hash: sKrR8nyrA9k2Fu4OXZ5KA+PbUQPwuN9zY9d0wSDVkS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.crl rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 715 (0x2cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A81F7/serialNumber=933AED7C3A064226A7144B7478C7403DACDD8005 Validity Not Before: May 3 03:33:08 2024 GMT Not After : May 10 03:33:08 2024 GMT Subject: CN=66345af4-49df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:07:13:8e:cb:c6:a6:05:43:99:cf:02:01:f5: 50:6c:dc:0b:cc:f1:ce:a1:76:2c:f6:5e:8b:26:43: 89:63:12:2c:6f:b4:d1:13:89:1e:2e:dc:8d:43:22: 6f:c9:dd:09:5d:db:de:d9:3a:c4:38:05:6c:ec:c6: 12:6d:39:55:b5:f7:ec:0c:b5:4e:03:85:5a:2b:dd: fa:4c:72:0b:3f:3c:d6:94:3a:86:20:de:46:de:85: b9:ba:9c:91:48:e8:a3:a4:b0:39:d7:e4:17:bf:d3: 6d:83:c5:a0:44:c2:a0:a8:05:ba:c5:e0:2c:55:dd: b6:6c:0f:f4:f9:1f:d8:f3:aa:27:89:9b:4f:35:60: ea:f7:b8:54:2e:a1:b5:53:52:c1:fe:c5:24:ac:ee: 3b:e6:c0:2f:c1:60:63:b6:56:bb:d3:e2:19:cd:96: 43:90:fb:a4:6c:4f:89:d9:47:f0:d0:d5:5f:6c:83: c6:f1:0d:3a:a7:e1:f9:b0:d7:19:8a:c1:62:66:d1: f0:c5:5e:d5:d4:f0:ff:a7:54:91:09:55:7c:d5:32: f8:b1:27:cd:8d:d4:11:2f:3c:56:05:0c:bf:81:da: 9b:af:60:fd:25:e4:de:f1:e9:31:c1:ea:f0:41:c2: 29:b2:41:f7:b4:d5:ec:cf:6f:0d:8a:53:6b:e1:31: 31:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:E4:8A:FC:3C:7C:67:8F:A0:DD:76:C7:1F:30:D1:11:00:C4:68:F4 X509v3 Authority Key Identifier: keyid:93:3A:ED:7C:3A:06:42:26:A7:14:4B:74:78:C7:40:3D:AC:DD:80:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:2e:6f:02:87:ac:df:da:ef:2b:0f:50:0c:b9:2c:8f:ab:b8: e1:60:6e:f9:4f:f0:8d:aa:18:59:96:c5:ce:df:22:35:90:7c: e8:6f:37:99:2a:ec:91:1a:94:8e:00:df:e4:fd:e5:bf:7e:2f: 00:70:5c:98:62:1e:c3:f9:bf:33:82:7c:00:a3:c2:3a:90:3e: 03:89:df:d3:0e:52:b0:ff:ae:90:9f:b5:0a:47:89:27:0f:89: 02:7f:8e:d1:93:15:69:e7:67:a5:cf:15:be:34:94:68:7d:20: 10:39:40:3c:b1:3d:8b:57:27:6b:b3:60:29:81:bc:1e:42:5f: 2e:67:52:f6:6d:49:38:82:80:5c:9c:9c:15:dc:87:e9:8c:52: b7:62:65:d7:dc:0a:34:9e:1c:02:b6:34:d8:bc:9b:c1:70:e6: f5:be:33:2b:15:bc:1a:04:d4:55:7f:13:de:cc:3a:f2:c1:59: b3:60:62:53:ea:11:b5:37:8b:ac:e3:19:8e:4f:01:d1:0c:8b: be:de:79:d6:5d:8a:04:7a:22:ea:99:2d:06:e1:c4:a2:37:05: fc:60:29:ea:79:ab:d9:ff:17:a5:93:ac:c2:55:ca:aa:42:66: d7:bc:ff:f9:ac:14:52:c7:8d:14:e2:3d:77:d2:b8:73:06:ec: 19:64:78:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxRjcxMTAvBgNVBAUTKDkzM0FFRDdDM0EwNjQyMjZBNzE0NEI3NDc4Qzc0MDNE QUNERDgwMDUwHhcNMjQwNTAzMDMzMzA4WhcNMjQwNTEwMDMzMzA4WjAYMRYwFAYD VQQDEw02NjM0NWFmNC00OWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswcTjsvGpgVDmc8CAfVQbNwLzPHOoXYs9l6LJkOJYxIsb7TRE4keLtyNQyJv yd0JXdve2TrEOAVs7MYSbTlVtffsDLVOA4VaK936THILPzzWlDqGIN5G3oW5upyR SOijpLA51+QXv9Ntg8WgRMKgqAW6xeAsVd22bA/0+R/Y86oniZtPNWDq97hULqG1 U1LB/sUkrO475sAvwWBjtla70+IZzZZDkPukbE+J2Ufw0NVfbIPG8Q06p+H5sNcZ isFiZtHwxV7V1PD/p1SRCVV81TL4sSfNjdQRLzxWBQy/gdqbr2D9JeTe8ekxwerw QcIpskH3tNXsz28NilNr4TExNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLkivw8 fGePoN12xx8w0REAxGj0MB8GA1UdIwQYMBaAFJM67Xw6BkImpxRLdHjHQD2s3YAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODFGNy8zMEY0NkVFRTlG ODYxMUVDOEQ5RjNGMzRDNEY5QUUwMi9renJ0ZkRvR1FpYW5GRXQwZU1kQVBhemRn QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6cnRmRG9HUWlhbkZFdDBlTWRBUGF6ZGdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODFGNy8zMEY0NkVFRTlGODYxMUVDOEQ5RjNGMzRDNEY5QUUwMi9renJ0ZkRvR1Fp YW5GRXQwZU1kQVBhemRnQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8Lm8Ch6zf2u8rD1AMuSyPq7jhYG75T/CNqhhZlsXO3yI1kHzobzeZ KuyRGpSOAN/k/eW/fi8AcFyYYh7D+b8zgnwAo8I6kD4Did/TDlKw/66Qn7UKR4kn D4kCf47RkxVp52elzxW+NJRofSAQOUA8sT2LVydrs2ApgbweQl8uZ1L2bUk4goBc nJwV3IfpjFK3YmXX3Ao0nhwCtjTYvJvBcOb1vjMrFbwaBNRVfxPezDrywVmzYGJT 6hG1N4us4xmOTwHRDIu+3nnWXYoEeiLqmS0G4cSiNwX8YCnqeavZ/xelk6zCVcqq QmbXvP/5rBRSx40U4j130rhzBuwZZHgB -----END CERTIFICATE-----Generated at Fri May 3 04:36:53 2024 by rpki-client on console-ams.rpki-client.org