$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft File: kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft (raw, json) Hash identifier: jOtYbWaI6u8ElHyjn04DrpbbiyVpZpcEnc1XeD8sx5E= Subject key identifier: 94:10:84:56:16:94:5D:AF:AF:C7:20:56:C7:10:F0:6F:FB:75:CF:18 Authority key identifier: 91:F2:DE:67:C8:E6:5B:B5:33:ED:8F:3C:64:F3:2D:F9:C6:95:C0:57 Certificate issuer: /CN=A91BC1CE/serialNumber=91F2DE67C8E65BB533ED8F3C64F32DF9C695C057 Certificate serial: 0F8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft Manifest number: 0F87 Signing time: Tue 30 Apr 2024 18:21:32 +0000 Manifest this update: Tue 30 Apr 2024 18:21:32 +0000 Manifest next update: Tue 07 May 2024 18:21:32 +0000 Files and hashes: 1: kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.crl (hash: DcMb5XsDQUOOH0DVRPv6mzRerOelLFy9+g3vGOl8rpA=) 2: 4178B83237ED11E99B3C9C4AC4F9AE02.roa (hash: 0PS2W/syYUSkz17ljAqjY2hFcw3tUCxxsQacyUzIWb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.crl rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 18:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3981 (0xf8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC1CE/serialNumber=91F2DE67C8E65BB533ED8F3C64F32DF9C695C057 Validity Not Before: Apr 30 18:21:32 2024 GMT Not After : May 7 18:21:32 2024 GMT Subject: CN=663136ac-a243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:42:52:8e:26:70:32:aa:a0:4d:f0:8d:0a:c4: 7e:47:7a:74:7f:19:06:2e:f7:47:ef:91:04:5b:f7: e8:87:c4:21:dc:59:ad:5b:ce:08:ad:cf:35:85:0e: c2:40:6c:ad:cf:67:8a:ae:ac:f6:da:6d:00:d7:0d: 30:85:4a:68:08:85:2f:4f:cd:c1:d9:f4:44:83:0a: b7:d6:81:8d:bd:41:ef:e1:60:8c:ed:11:ee:2e:be: d0:76:36:22:6b:8a:fb:cf:a1:c5:c1:aa:dc:13:e4: 44:d5:3c:21:23:31:46:7e:b2:9b:ee:c6:3c:6a:90: 1e:e4:cd:6b:4e:5e:43:27:96:fd:30:ef:ee:de:ee: 8f:3d:e1:ea:69:8e:a1:32:cc:62:11:71:f8:ac:9e: 0a:fb:f0:dc:5e:4e:ec:bf:47:bb:4b:35:65:0d:f0: a1:32:f1:43:e2:dc:9d:24:af:e5:dc:d0:9d:f2:3d: 53:0b:05:1a:8c:07:79:e9:c7:12:c9:bc:fb:40:89: ad:89:d4:2b:fc:07:cc:ea:5e:27:1e:05:6d:3e:1e: 48:8f:80:13:0f:2d:cb:5d:6c:4b:fa:64:be:f9:5d: 6d:40:da:60:7e:41:29:0b:85:9d:bb:11:03:17:52: 6d:d8:68:7c:90:21:09:81:7f:7e:18:97:2a:ce:80: 17:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:10:84:56:16:94:5D:AF:AF:C7:20:56:C7:10:F0:6F:FB:75:CF:18 X509v3 Authority Key Identifier: keyid:91:F2:DE:67:C8:E6:5B:B5:33:ED:8F:3C:64:F3:2D:F9:C6:95:C0:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:03:1c:7d:50:84:7b:af:be:46:50:dd:7f:dd:62:db:d0:74: d8:e6:7d:6f:ed:b0:47:b0:ac:eb:fe:f7:43:a4:2a:56:82:a3: 6d:c6:09:65:35:80:19:fb:ad:04:1b:b9:c0:1f:65:58:92:dc: 5b:5b:8f:3f:90:07:e1:eb:d1:e7:64:c2:ac:45:38:99:98:56: 17:c5:1e:a7:54:79:32:5f:fe:5d:cb:a4:38:50:be:3b:84:5a: 8e:ab:a1:b8:7b:d0:5e:f8:2a:59:4f:53:5f:24:96:1b:7c:9d: 87:fe:83:7a:ed:79:ac:c3:bc:38:1c:94:c3:72:1a:c0:a5:01: dd:07:4f:7c:f7:dc:38:f4:1c:91:32:e6:3d:55:5b:8d:8f:94: c2:69:04:82:7d:b0:59:e9:bf:77:b7:48:41:a8:fd:0f:f9:6a: 01:cb:37:9e:91:e5:db:a8:08:f2:6b:ec:26:20:49:93:9c:30: 5a:16:bb:d4:8d:cb:55:7b:cb:86:72:f7:9e:9d:18:76:5a:3a: de:c2:14:a1:d7:8f:9c:f9:7b:d0:11:e4:80:5f:f8:a8:be:67: 65:79:8f:c5:eb:09:5d:43:92:bb:0d:b7:79:1f:1e:43:36:9b: f7:55:19:43:25:bf:27:39:31:d1:2e:d3:87:73:1f:6c:c1:a6: b9:a4:0e:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMxQ0UxMTAvBgNVBAUTKDkxRjJERTY3QzhFNjVCQjUzM0VEOEYzQzY0RjMyREY5 QzY5NUMwNTcwHhcNMjQwNDMwMTgyMTMyWhcNMjQwNTA3MTgyMTMyWjAYMRYwFAYD VQQDEw02NjMxMzZhYy1hMjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0JSjiZwMqqgTfCNCsR+R3p0fxkGLvdH75EEW/foh8Qh3FmtW84Irc81hQ7C QGytz2eKrqz22m0A1w0whUpoCIUvT83B2fREgwq31oGNvUHv4WCM7RHuLr7QdjYi a4r7z6HFwarcE+RE1TwhIzFGfrKb7sY8apAe5M1rTl5DJ5b9MO/u3u6PPeHqaY6h MsxiEXH4rJ4K+/DcXk7sv0e7SzVlDfChMvFD4tydJK/l3NCd8j1TCwUajAd56ccS ybz7QImtidQr/AfM6l4nHgVtPh5Ij4ATDy3LXWxL+mS++V1tQNpgfkEpC4WduxED F1Jt2Gh8kCEJgX9+GJcqzoAXMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJQQhFYW lF2vr8cgVscQ8G/7dc8YMB8GA1UdIwQYMBaAFJHy3mfI5lu1M+2PPGTzLfnGlcBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzFDRS8yNEZBNjBFNDM3 RUMxMUU5QTg3NUU4NDhDNEY5QUUwMi9rZkxlWjhqbVc3VXo3WTg4WlBNdC1jYVZ3 RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmTGVaOGptVzdVejdZODhaUE10LWNhVndGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzFDRS8yNEZBNjBFNDM3RUMxMUU5QTg3NUU4NDhDNEY5QUUwMi9rZkxlWjhqbVc3 VXo3WTg4WlBNdC1jYVZ3RmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIAxx9UIR7r75GUN1/3WLb0HTY5n1v7bBHsKzr/vdDpCpWgqNtxgll NYAZ+60EG7nAH2VYktxbW48/kAfh69HnZMKsRTiZmFYXxR6nVHkyX/5dy6Q4UL47 hFqOq6G4e9Be+CpZT1NfJJYbfJ2H/oN67Xmsw7w4HJTDchrApQHdB09899w49ByR MuY9VVuNj5TCaQSCfbBZ6b93t0hBqP0P+WoByzeekeXbqAjya+wmIEmTnDBaFrvU jctVe8uGcveenRh2WjrewhSh14+c+XvQEeSAX/iovmdleY/F6wldQ5K7Dbd5Hx5D Npv3VRlDJb8nOTHRLtOHcx9swaa5pA6J -----END CERTIFICATE-----Generated at Tue Apr 30 18:57:39 2024 by rpki-client on console-fra.rpki-client.org