$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft File: kKozD4l2v2xASeZzwoIf0pHUO8E.mft (raw, json) Hash identifier: x1dXY/t5GhZk/syf/QuJus0YZu+JbimbFLvkfdM6CDA= Subject key identifier: F9:9C:5F:AE:23:16:6B:26:5B:A8:CC:52:E4:3A:C8:BF:5B:34:FB:22 Authority key identifier: 90:AA:33:0F:89:76:BF:6C:40:49:E6:73:C2:82:1F:D2:91:D4:3B:C1 Certificate issuer: /CN=A91AE85E/serialNumber=90AA330F8976BF6C4049E673C2821FD291D43BC1 Certificate serial: 0487 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kKozD4l2v2xASeZzwoIf0pHUO8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft Manifest number: 0487 Signing time: Thu 02 May 2024 14:18:39 +0000 Manifest this update: Thu 02 May 2024 14:18:38 +0000 Manifest next update: Thu 09 May 2024 14:18:38 +0000 Files and hashes: 1: kKozD4l2v2xASeZzwoIf0pHUO8E.crl (hash: kjHrZgx5VecP1fPP83RXPmzPJ+QOGQX1nPQCJnq+iKM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.crl rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kKozD4l2v2xASeZzwoIf0pHUO8E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 14:18:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1159 (0x487) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE85E/serialNumber=90AA330F8976BF6C4049E673C2821FD291D43BC1 Validity Not Before: May 2 14:18:38 2024 GMT Not After : May 9 14:18:38 2024 GMT Subject: CN=6633a0be-5d39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:65:bd:78:65:35:2f:86:cb:f6:a5:55:ee:64: 81:97:7e:58:d6:1e:74:aa:c7:17:f3:d1:7b:5f:56: b8:92:0d:e3:77:70:3d:67:74:7a:38:7d:84:5d:bf: 03:c7:c6:45:c8:f6:0e:0e:40:6a:68:39:c3:27:07: 23:20:be:84:0a:54:08:6f:ec:cd:f5:8c:03:a8:3e: 79:9d:f1:32:f0:cf:09:93:08:a6:cb:d6:60:52:b5: e1:dd:d9:d4:6c:8c:e1:85:37:ab:ec:84:04:1a:b2: 9c:51:03:96:11:a9:e9:3d:f0:46:01:cc:3f:d7:20: b1:a2:2c:58:de:a6:63:f7:4e:e0:e0:a5:4e:a6:6a: a8:75:2b:12:37:ea:99:a7:59:a4:b9:ea:1e:b2:58: 25:66:f3:69:59:d6:06:08:87:64:d8:19:03:3b:51: fe:4b:e6:d4:d8:7c:75:c0:56:14:ae:ef:94:76:d1: 93:a8:2a:8f:00:64:57:e9:18:3a:60:53:cb:aa:fe: 69:b2:e3:3e:60:df:22:b7:45:8d:1a:ef:62:5b:29: 51:96:53:9e:7e:0f:3e:cd:f8:cc:73:94:88:51:68: 27:7e:cb:3c:73:28:bf:68:9e:16:f1:40:db:d4:8e: 4b:59:2e:fe:ca:56:34:9c:ea:e8:96:4d:38:09:ce: f3:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:9C:5F:AE:23:16:6B:26:5B:A8:CC:52:E4:3A:C8:BF:5B:34:FB:22 X509v3 Authority Key Identifier: keyid:90:AA:33:0F:89:76:BF:6C:40:49:E6:73:C2:82:1F:D2:91:D4:3B:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kKozD4l2v2xASeZzwoIf0pHUO8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:08:1e:a7:a3:b2:b8:96:9d:9a:2c:6e:c1:d0:ee:c8:0c:1e: 5b:92:b8:2a:4c:4f:91:26:10:29:4c:6f:3a:2b:d0:ab:1f:51: 4e:7d:cb:39:02:df:df:ca:51:7f:42:64:b2:6f:65:77:e1:e0: 60:86:65:68:05:45:67:4e:b3:79:20:dc:ad:bc:95:8c:eb:5e: 68:95:64:09:55:ec:a5:bd:65:04:ae:71:ad:2c:79:18:28:10: 3e:7c:24:c1:d9:31:ba:83:73:78:7a:02:2f:99:e1:dd:3d:19: f6:42:69:c2:96:0c:10:d0:01:8a:a2:a7:a2:c3:32:3c:49:1c: 69:da:2c:1d:ba:66:e6:6b:0e:d6:85:3e:e6:ee:ff:19:4b:59: 6f:d1:10:e0:0f:87:f3:b6:11:20:eb:f2:e0:2e:24:18:2c:b3: 9d:52:9b:cf:6b:96:ff:b9:b3:ba:1d:5e:b7:c7:ef:b0:57:a9: 2a:27:73:63:c7:a0:48:73:ff:e1:dc:6c:8a:b3:f8:fb:8f:ac: 92:8e:cb:f2:b7:60:b4:59:dd:e4:2e:99:6a:8a:34:33:23:d5: 12:13:8c:5e:55:f1:74:16:20:da:82:2f:f9:36:5f:ea:e8:84: bb:86:f4:85:42:9d:c6:b0:72:c5:37:0e:91:b1:e8:7b:c5:36: 8c:f6:93:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU4NUUxMTAvBgNVBAUTKDkwQUEzMzBGODk3NkJGNkM0MDQ5RTY3M0MyODIxRkQy OTFENDNCQzEwHhcNMjQwNTAyMTQxODM4WhcNMjQwNTA5MTQxODM4WjAYMRYwFAYD VQQDEw02NjMzYTBiZS01ZDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomW9eGU1L4bL9qVV7mSBl35Y1h50qscX89F7X1a4kg3jd3A9Z3R6OH2EXb8D x8ZFyPYODkBqaDnDJwcjIL6EClQIb+zN9YwDqD55nfEy8M8Jkwimy9ZgUrXh3dnU bIzhhTer7IQEGrKcUQOWEanpPfBGAcw/1yCxoixY3qZj907g4KVOpmqodSsSN+qZ p1mkueoeslglZvNpWdYGCIdk2BkDO1H+S+bU2Hx1wFYUru+UdtGTqCqPAGRX6Rg6 YFPLqv5psuM+YN8it0WNGu9iWylRllOefg8+zfjMc5SIUWgnfss8cyi/aJ4W8UDb 1I5LWS7+ylY0nOrolk04Cc7zUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPmcX64j FmsmW6jMUuQ6yL9bNPsiMB8GA1UdIwQYMBaAFJCqMw+Jdr9sQEnmc8KCH9KR1DvB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTg1RS8xQTE2RUI4NkYz RUExMUVCQjI1OEJBN0JDNEY5QUUwMi9rS296RDRsMnYyeEFTZVp6d29JZjBwSFVP OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tLb3pENGwydjJ4QVNlWnp3b0lmMHBIVU84RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTg1RS8xQTE2RUI4NkYzRUExMUVCQjI1OEJBN0JDNEY5QUUwMi9rS296RDRsMnYy eEFTZVp6d29JZjBwSFVPOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5CB6no7K4lp2aLG7B0O7IDB5bkrgqTE+RJhApTG86K9CrH1FOfcs5 At/fylF/QmSyb2V34eBghmVoBUVnTrN5INytvJWM615olWQJVeylvWUErnGtLHkY KBA+fCTB2TG6g3N4egIvmeHdPRn2QmnClgwQ0AGKoqeiwzI8SRxp2iwdumbmaw7W hT7m7v8ZS1lv0RDgD4fzthEg6/LgLiQYLLOdUpvPa5b/ubO6HV63x++wV6kqJ3Nj x6BIc//h3GyKs/j7j6ySjsvyt2C0Wd3kLplqijQzI9USE4xeVfF0FiDagi/5Nl/q 6IS7hvSFQp3GsHLFNw6Rseh7xTaM9pPp -----END CERTIFICATE-----Generated at Thu May 2 17:43:48 2024 by rpki-client on console-fra.rpki-client.org