$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft File: kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft (raw, json) Hash identifier: GZ7uuI4DyRV+vHAbu4vxA0MsPOTbEPuTKB3hXjFEHK0= Subject key identifier: F4:D6:FE:0C:AF:9B:DF:8D:17:A8:52:FC:CC:50:D5:F9:D3:9D:74:9B Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 0299 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft Manifest number: 0293 Signing time: Sun 05 May 2024 03:46:00 +0000 Manifest this update: Sun 05 May 2024 03:45:59 +0000 Manifest next update: Sun 12 May 2024 03:45:59 +0000 Files and hashes: 1: kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl (hash: Cio+r3U70wReqTMyVJnTHOU6qS/64VPKknimeNL61bk=) 2: ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa (hash: lBledsUPQfpk+tssxnbGlzMMM3id5rxqk89XoR+ouo4=) 3: 0E9CF77EBA6811EC8058A213C4F9AE02.roa (hash: 5JX/NsZ2a+UHFDz6JI63xOnKLqLK3hbrFa/fbOl21LA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 665 (0x299) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Validity Not Before: May 5 03:45:59 2024 GMT Not After : May 12 03:45:59 2024 GMT Subject: CN=663700f8-910b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d1:c5:9c:e9:88:f2:0a:3e:93:dc:f5:3e:b2: 94:42:dd:5d:b7:8d:84:02:04:1a:16:e3:12:e6:95: 1d:71:66:98:c9:86:ad:a4:f8:47:3d:1c:73:33:21: 16:21:b9:c0:32:a6:fe:9c:6c:16:a0:1d:f7:7c:b6: 3e:8d:ea:78:72:81:64:8a:63:8b:f7:e9:1a:07:b3: e2:92:ce:b2:4b:82:d5:41:c2:92:cd:cc:21:46:0e: 0d:85:a0:db:52:bb:fb:e7:20:b5:9f:56:f4:e7:cc: 0b:74:25:2c:d4:31:95:46:7a:b5:ca:1b:ca:23:58: e3:3c:78:a4:cd:64:dc:64:1f:b9:a3:64:0e:41:b6: 14:40:ae:2d:ef:6c:b2:0f:f8:64:e8:91:ba:6d:16: db:50:45:01:bf:d1:c2:70:82:9d:f0:d7:dd:b0:21: bf:7f:48:61:20:f1:66:a8:3d:0f:1c:52:5f:bc:19: b4:90:b2:90:70:42:f2:98:d5:7a:07:c2:6b:88:a2: 2b:6a:ab:6d:5f:2d:8c:c3:26:18:65:26:f9:5f:95: c8:b6:62:8d:a3:32:fe:e8:00:66:78:02:00:90:18: f5:6d:61:97:d7:81:32:5e:ec:81:21:af:eb:be:65: dc:57:01:4a:a2:6e:54:23:8d:12:d9:2d:a1:f1:75: 56:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D6:FE:0C:AF:9B:DF:8D:17:A8:52:FC:CC:50:D5:F9:D3:9D:74:9B X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:e4:07:fd:58:66:57:61:58:80:22:0c:b7:78:f8:4b:a6:02: bf:c0:14:84:9b:97:2c:2f:5d:d1:72:b6:0c:a1:21:7e:88:58: 9d:ad:fe:c1:81:dc:cd:b6:bb:fa:63:3a:cd:8a:2b:50:d8:c7: 28:54:d8:cb:7d:ce:c1:39:3a:d0:33:14:aa:69:c4:b6:2d:4c: b1:dd:71:45:06:df:df:fc:eb:98:53:ce:5a:59:47:a9:84:d8: 80:51:63:84:57:84:f5:ab:38:d3:38:36:d5:b0:68:db:41:b4: c1:5a:4e:69:e3:82:d0:63:39:2a:cd:b8:90:be:54:3b:d9:ca: 89:f0:61:4d:5c:0b:97:d1:f5:c0:91:5f:48:1f:7f:95:aa:d3: bd:4b:3e:1a:52:df:de:ec:be:f4:70:8a:c8:8b:0c:42:4e:62: 06:32:59:e8:d9:71:2b:36:58:77:31:4d:42:84:b2:13:69:3b: 9c:34:93:0b:19:a3:3b:47:02:30:87:4f:1b:36:f9:d6:97:60: 29:94:8e:1a:61:c8:0c:ad:1a:b3:90:df:04:45:41:df:b2:12: 39:37:26:4f:39:32:5d:08:31:ef:b8:f1:42:fe:9d:0f:86:7f: 07:4a:47:69:10:bf:8e:8e:42:40:23:d3:89:9f:a0:f4:1c:0b: 55:c3:6f:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjQwNTA1MDM0NTU5WhcNMjQwNTEyMDM0NTU5WjAYMRYwFAYD VQQDEw02NjM3MDBmOC05MTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApdHFnOmI8go+k9z1PrKUQt1dt42EAgQaFuMS5pUdcWaYyYatpPhHPRxzMyEW IbnAMqb+nGwWoB33fLY+jep4coFkimOL9+kaB7Piks6yS4LVQcKSzcwhRg4NhaDb Urv75yC1n1b058wLdCUs1DGVRnq1yhvKI1jjPHikzWTcZB+5o2QOQbYUQK4t72yy D/hk6JG6bRbbUEUBv9HCcIKd8NfdsCG/f0hhIPFmqD0PHFJfvBm0kLKQcELymNV6 B8JriKIraqttXy2MwyYYZSb5X5XItmKNozL+6ABmeAIAkBj1bWGX14EyXuyBIa/r vmXcVwFKom5UI40S2S2h8XVWdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTW/gyv m9+NF6hS/MxQ1fnTnXSbMB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mjg3NS9DMjVERTBFNkI0RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1V Q3ZycDdpdi12Tm8zdWh6U2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv5Af9WGZXYViAIgy3ePhLpgK/wBSEm5csL13RcrYMoSF+iFidrf7B gdzNtrv6YzrNiitQ2McoVNjLfc7BOTrQMxSqacS2LUyx3XFFBt/f/OuYU85aWUep hNiAUWOEV4T1qzjTODbVsGjbQbTBWk5p44LQYzkqzbiQvlQ72cqJ8GFNXAuX0fXA kV9IH3+VqtO9Sz4aUt/e7L70cIrIiwxCTmIGMlno2XErNlh3MU1ChLITaTucNJML GaM7RwIwh08bNvnWl2AplI4aYcgMrRqzkN8ERUHfshI5NyZPOTJdCDHvuPFC/p0P hn8HSkdpEL+OjkJAI9OJn6D0HAtVw29i -----END CERTIFICATE-----Generated at Sun May 5 04:34:56 2024 by rpki-client on console-fra.rpki-client.org