$ rpki-client -vvf rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft File: kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft (raw, json) Hash identifier: pt+gi/L5/noI3SO/VcrYai4fyh+vBGy+GGVYD1iA5xs= Subject key identifier: 36:11:F5:2A:DB:04:2F:49:A4:3B:20:F6:DF:1D:2D:82:EB:CD:55:89 Authority key identifier: 91:2F:B5:F7:35:1C:F9:8F:B9:67:45:1F:EE:DA:F4:9F:14:8E:1A:3A Certificate issuer: /CN=A91C779D/serialNumber=912FB5F7351CF98FB967451FEEDAF49F148E1A3A Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft Manifest number: 1F Signing time: Wed 15 May 2024 08:45:58 +0000 Manifest this update: Wed 15 May 2024 08:45:58 +0000 Manifest next update: Wed 22 May 2024 08:45:58 +0000 Files and hashes: 1: kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.crl (hash: LMF1qXhjT24car4jpJmy3GTVQ6Fyqtkdd+VaV+nBxSg=) 2: 1BC8D5FCE2B211EE946C6541C4F9AE02.roa (hash: pb1KwX0pLwie7CfOH9Gyxrh7Hyrg9MAEQqr69on+vGU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.crl rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:45:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C779D/serialNumber=912FB5F7351CF98FB967451FEEDAF49F148E1A3A Validity Not Before: May 15 08:45:58 2024 GMT Not After : May 22 08:45:58 2024 GMT Subject: CN=66447646-a9e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:95:c5:29:5b:c8:8a:ba:6a:dc:78:6b:9b:fd: 92:09:c9:b1:59:1e:ae:93:c9:eb:bb:13:74:38:a6: 1b:45:ca:76:a6:bc:1b:3a:88:f7:b2:23:bd:d3:dc: 84:09:53:87:39:94:e7:df:a7:51:2e:af:bd:95:98: a8:ab:5b:3c:9a:7b:32:f2:4c:14:52:8d:ac:7f:56: b0:2f:08:d3:56:51:6e:fa:13:be:c8:54:b2:6e:98: e1:68:42:07:8f:b5:2a:6f:e7:75:8b:da:de:f4:f9: e9:84:4e:16:3e:17:70:11:c0:a8:3d:df:bb:3e:db: 27:28:e8:62:23:a3:45:32:dc:07:31:d6:05:0e:85: bc:a6:84:2b:94:6f:fc:94:7d:b7:e8:67:da:de:5b: 74:b9:5d:1b:c0:11:12:c0:f2:14:38:90:b0:92:38: af:41:16:84:47:93:30:39:4f:a1:74:3c:d9:90:5d: f3:f1:10:51:85:c1:e8:fb:9f:4c:ea:45:e3:b0:6e: 46:f5:38:6c:1b:2c:69:87:d9:af:8d:c4:bb:cf:2c: d7:bb:c9:87:ce:cc:a8:0c:4a:2b:d3:08:64:0b:c6: 82:d2:8e:85:bd:f7:6e:2b:81:18:d9:6c:7b:6a:27: f1:7b:ca:ff:bb:78:06:05:54:53:7f:82:81:1e:04: 6d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:11:F5:2A:DB:04:2F:49:A4:3B:20:F6:DF:1D:2D:82:EB:CD:55:89 X509v3 Authority Key Identifier: keyid:91:2F:B5:F7:35:1C:F9:8F:B9:67:45:1F:EE:DA:F4:9F:14:8E:1A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:65:44:b4:31:51:6b:d2:67:51:08:99:3b:66:a4:ac:7c:9f: 2a:b5:bb:8c:ae:89:41:54:30:73:33:36:aa:be:75:2c:7c:62: 1b:cd:5f:92:e1:75:95:92:e1:2a:6d:f2:d9:85:18:ed:01:9c: a4:56:0b:b9:56:2d:a6:12:e2:ba:4e:4f:e2:e4:55:bf:5d:91: df:64:12:bf:87:40:63:5f:f0:68:7f:b9:93:20:f1:9f:0a:3a: d7:cf:8c:96:45:1a:ee:4d:17:e3:99:ec:af:b4:df:31:ff:0e: 79:fd:68:a1:28:e8:2c:e6:2e:26:ab:d5:94:42:81:47:19:d2: 53:56:04:dd:ca:f4:95:61:c2:19:63:f8:33:11:55:33:0f:54: 74:80:39:46:62:b1:b5:32:62:70:a3:98:fc:25:38:34:9d:15: 6d:e2:9c:61:26:02:7b:88:23:86:5f:ec:c2:68:b2:e1:90:ee: 85:d1:3a:13:21:5a:c3:8c:53:5b:cd:a3:4d:c1:14:0c:b7:93: a4:2b:f9:a5:67:b0:1b:d9:c9:be:ec:a6:0d:6c:48:54:d9:b0: 36:c5:1c:2e:5f:dd:40:e8:17:fe:25:6c:a5:e5:3b:d5:d8:9c: b2:cb:09:33:d2:93:3e:7d:d5:fa:d2:4e:e6:ff:5e:01:e0:f0: cd:a4:0d:65 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Nzc5RDExMC8GA1UEBRMoOTEyRkI1RjczNTFDRjk4RkI5Njc0NTFGRUVEQUY0OUYx NDhFMUEzQTAeFw0yNDA1MTUwODQ1NThaFw0yNDA1MjIwODQ1NThaMBgxFjAUBgNV BAMTDTY2NDQ3NjQ2LWE5ZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCflcUpW8iKumrceGub/ZIJybFZHq6Tyeu7E3Q4phtFynamvBs6iPeyI73T3IQJ U4c5lOffp1Eur72VmKirWzyaezLyTBRSjax/VrAvCNNWUW76E77IVLJumOFoQgeP tSpv53WL2t70+emEThY+F3ARwKg937s+2yco6GIjo0Uy3Acx1gUOhbymhCuUb/yU fbfoZ9reW3S5XRvAERLA8hQ4kLCSOK9BFoRHkzA5T6F0PNmQXfPxEFGFwej7n0zq ReOwbkb1OGwbLGmH2a+NxLvPLNe7yYfOzKgMSivTCGQLxoLSjoW9924rgRjZbHtq J/F7yv+7eAYFVFN/goEeBG0PAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNhH1KtsE L0mkOyD23x0tguvNVYkwHwYDVR0jBBgwFoAUkS+19zUc+Y+5Z0Uf7tr0nxSOGjow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3NzlELzRGRDU5NDI0RTJB RTExRUU4NkYzM0MxRUM0RjlBRTAyL2tTLTE5elVjLVktNVowVWY3dHIwbnhTT0dq by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1MtMTl6VWMtWS01WjBVZjd0cjBueFNPR2pvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3 NzlELzRGRDU5NDI0RTJBRTExRUU4NkYzM0MxRUM0RjlBRTAyL2tTLTE5elVjLVkt NVowVWY3dHIwbnhTT0dqby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFllRLQxUWvSZ1EImTtmpKx8nyq1u4yuiUFUMHMzNqq+dSx8YhvNX5Lh dZWS4Spt8tmFGO0BnKRWC7lWLaYS4rpOT+LkVb9dkd9kEr+HQGNf8Gh/uZMg8Z8K OtfPjJZFGu5NF+OZ7K+03zH/Dnn9aKEo6CzmLiar1ZRCgUcZ0lNWBN3K9JVhwhlj +DMRVTMPVHSAOUZisbUyYnCjmPwlODSdFW3inGEmAnuII4Zf7MJosuGQ7oXROhMh WsOMU1vNo03BFAy3k6Qr+aVnsBvZyb7spg1sSFTZsDbFHC5f3UDoF/4lbKXlO9XY nLLLCTPSkz591frSTub/XgHg8M2kDWU= -----END CERTIFICATE-----Generated at Wed May 15 11:17:44 2024 by rpki-client on console-ams.rpki-client.org