$ rpki-client -vvf rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft File: kzrI56xL07WCmJ_Mty_JJ9cWQks.mft (raw, json) Hash identifier: 9drt5NI3xEs0BeC9Hcw2nj6R7hDIHakvZRxXBh3GM88= Subject key identifier: 23:B7:B1:C0:C9:E3:33:E8:90:56:4B:16:89:2F:A2:DF:1A:95:82:BD Authority key identifier: 93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B Certificate issuer: /CN=A91C79E1/serialNumber=933AC8E7AC4BD3B582989FCCB72FC927D716424B Certificate serial: 0761 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft Manifest number: 075C Signing time: Fri 31 May 2024 23:06:12 +0000 Manifest this update: Fri 31 May 2024 23:06:12 +0000 Manifest next update: Fri 07 Jun 2024 23:06:12 +0000 Files and hashes: 1: kzrI56xL07WCmJ_Mty_JJ9cWQks.crl (hash: wLj8qMkXjFE88VVJ/HDNS4oU5DAboQIGQilON8YpNcA=) 2: 26D0F9B82A6611ECB12FB439C4F9AE02.roa (hash: Us9s+8uAx54lSxxT1nylNk+h4ZNXtM/yR2j35EIok8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:06:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1889 (0x761) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C79E1/serialNumber=933AC8E7AC4BD3B582989FCCB72FC927D716424B Validity Not Before: May 31 23:06:12 2024 GMT Not After : Jun 7 23:06:12 2024 GMT Subject: CN=665a57e4-85d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4f:8d:02:da:f7:0d:d5:79:a2:3b:9c:f6:b7: 14:06:87:6f:c8:7c:10:df:f6:20:9f:86:d9:d2:1f: 1b:e9:0f:61:b4:af:b1:3c:55:6c:43:a0:2b:b0:27: 83:32:d6:1f:51:0d:e5:43:e5:a7:a0:f0:4d:0e:90: 93:34:30:4a:59:7b:55:4f:46:74:35:70:2c:b9:9c: 1e:0b:88:76:ca:fe:9e:f1:b6:e3:ab:12:aa:9d:07: c1:4a:65:7b:ce:8a:55:21:f6:9e:11:7c:ae:b3:51: dc:2b:7e:dc:56:b2:2d:c0:e5:1d:ff:66:41:d6:96: ca:b9:f5:73:69:0d:56:8f:af:8d:01:b1:da:26:60: dc:ea:46:3f:d3:21:3a:50:61:da:14:5d:d3:07:03: 6f:bb:51:b6:38:34:f4:18:62:8f:ae:84:d8:0a:5d: f5:e6:46:ee:03:07:ad:4c:23:90:71:d7:49:5c:ea: 15:6d:fb:b4:da:23:2e:12:9f:f0:d7:e9:09:c7:be: be:47:97:0a:46:b7:d7:ff:79:d1:a8:7e:04:98:a2: 2a:1d:5d:6b:78:c7:50:1d:44:c3:8b:fe:98:73:e9: 2e:78:2b:33:7b:8e:a3:f9:dd:01:d3:c5:1f:56:8c: f5:7b:49:d9:60:83:fb:aa:b9:40:6f:5d:bb:88:47: 25:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:B7:B1:C0:C9:E3:33:E8:90:56:4B:16:89:2F:A2:DF:1A:95:82:BD X509v3 Authority Key Identifier: keyid:93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:97:b5:c4:c5:19:a4:5a:e0:82:9e:4f:bb:f3:8e:42:70:53: b9:8e:db:73:e6:82:91:35:b1:e8:93:48:56:8e:ab:65:08:ea: 80:f9:2e:ca:2f:67:83:79:27:9a:22:c4:1c:37:3e:df:fe:09: 0f:e4:40:57:f9:a1:a0:f1:98:81:97:5e:3c:d9:b7:1e:f5:f2: 64:82:c6:60:3e:87:50:60:20:10:fe:86:23:2a:c4:39:be:91: 3f:12:b0:35:31:ec:56:0b:7e:7d:d3:46:5f:2e:22:e3:63:8e: e3:c2:fe:f2:d6:e1:a2:d4:fc:66:8e:60:6b:d1:60:0c:eb:b9: 2c:4e:e0:64:87:ee:56:7e:eb:e6:b9:95:52:f2:68:cd:48:2f: f1:a3:45:9d:f8:71:41:00:a1:97:e1:36:cc:60:f5:75:5a:78: 01:7d:ca:eb:66:d7:0e:46:63:75:af:e0:36:4a:ba:49:d6:70: 3f:05:c5:2b:98:4a:70:3c:ed:b1:3c:1e:48:ad:80:b0:ff:91: 19:6a:2d:32:18:67:d1:c4:1f:a9:79:ec:2f:03:e8:10:63:7a: 6b:7f:3c:a2:3d:a0:6b:d3:95:26:b8:e1:2f:7a:63:6a:96:89: 84:f7:b8:2e:e8:7a:36:44:10:b2:9d:45:92:16:d3:85:b5:ed: ea:1a:a3:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5RTExMTAvBgNVBAUTKDkzM0FDOEU3QUM0QkQzQjU4Mjk4OUZDQ0I3MkZDOTI3 RDcxNjQyNEIwHhcNMjQwNTMxMjMwNjEyWhcNMjQwNjA3MjMwNjEyWjAYMRYwFAYD VQQDEw02NjVhNTdlNC04NWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxU+NAtr3DdV5ojuc9rcUBodvyHwQ3/Ygn4bZ0h8b6Q9htK+xPFVsQ6ArsCeD MtYfUQ3lQ+WnoPBNDpCTNDBKWXtVT0Z0NXAsuZweC4h2yv6e8bbjqxKqnQfBSmV7 zopVIfaeEXyus1HcK37cVrItwOUd/2ZB1pbKufVzaQ1Wj6+NAbHaJmDc6kY/0yE6 UGHaFF3TBwNvu1G2ODT0GGKProTYCl315kbuAwetTCOQcddJXOoVbfu02iMuEp/w 1+kJx76+R5cKRrfX/3nRqH4EmKIqHV1reMdQHUTDi/6Yc+kueCsze46j+d0B08Uf Voz1e0nZYIP7qrlAb127iEclSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCO3scDJ 4zPokFZLFokvot8alYK9MB8GA1UdIwQYMBaAFJM6yOesS9O1gpifzLcvySfXFkJL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzlFMS82NTU2RjhEQUQ3 ODQxMUVBOUM1RDk2NDBDNEY5QUUwMi9renJJNTZ4TDA3V0NtSl9NdHlfSko5Y1dR a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6ckk1NnhMMDdXQ21KX010eV9KSjljV1Frcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzlFMS82NTU2RjhEQUQ3ODQxMUVBOUM1RDk2NDBDNEY5QUUwMi9renJJNTZ4TDA3 V0NtSl9NdHlfSko5Y1dRa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvl7XExRmkWuCCnk+7845CcFO5jttz5oKRNbHok0hWjqtlCOqA+S7K L2eDeSeaIsQcNz7f/gkP5EBX+aGg8ZiBl1482bce9fJkgsZgPodQYCAQ/oYjKsQ5 vpE/ErA1MexWC35900ZfLiLjY47jwv7y1uGi1PxmjmBr0WAM67ksTuBkh+5Wfuvm uZVS8mjNSC/xo0Wd+HFBAKGX4TbMYPV1WngBfcrrZtcORmN1r+A2SrpJ1nA/BcUr mEpwPO2xPB5IrYCw/5EZai0yGGfRxB+peewvA+gQY3prfzyiPaBr05UmuOEvemNq lomE97gu6Ho2RBCynUWSFtOFte3qGqNc -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:28 2024 by rpki-client on console-ams.rpki-client.org