$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft File: kBUoySF5F9lWch0caFZlNFvrVv0.mft (raw, json) Hash identifier: LnJ/FG5iPNlTUx/smxXF/XlAz2unqvU+L6ogMlyDTpQ= Subject key identifier: 12:A7:8D:1E:7E:8C:1E:0E:D6:90:AD:9D:34:A6:87:A0:79:43:5B:2B Authority key identifier: 90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD Certificate issuer: /CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Certificate serial: 0267 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft Manifest number: 0264 Signing time: Fri 03 May 2024 03:31:32 +0000 Manifest this update: Fri 03 May 2024 03:31:32 +0000 Manifest next update: Fri 10 May 2024 03:31:32 +0000 Files and hashes: 1: kBUoySF5F9lWch0caFZlNFvrVv0.crl (hash: JzFZxYiXA8X/oLp1t+kJEQ+qPNtF+rX7qktbUD+izxg=) 2: 39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa (hash: FD8mMbLhsLGNWUTDqXS2ge1jhJLxbO0CzgruTSg9Row=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 615 (0x267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Validity Not Before: May 3 03:31:32 2024 GMT Not After : May 10 03:31:32 2024 GMT Subject: CN=66345a94-48a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:72:f2:da:1c:d2:fc:cc:21:b5:32:24:af:c5: cb:42:60:8c:e7:dd:1d:6d:d7:74:f3:24:5a:ac:89: 46:c2:52:1c:b7:7e:d1:bc:c3:87:23:d4:7d:3b:5e: 99:46:c1:25:13:58:b8:b0:32:26:ca:d6:c9:28:e0: 34:cb:1e:b2:1a:d3:ce:39:a5:ef:73:db:ce:c1:49: 14:ee:ea:9d:f7:84:71:59:d3:73:70:e2:00:18:77: 6e:0f:ba:21:05:d9:9b:cd:d0:f3:93:e1:53:41:31: 4b:92:9a:3d:d9:d4:9b:ea:0f:af:02:70:f3:27:a9: 73:00:bc:83:b5:6b:2e:a6:38:58:b0:f0:4a:47:7f: e1:c8:4c:bf:b4:cd:1d:90:6e:4b:18:82:1b:77:24: ce:1b:a2:49:42:01:5c:3a:2a:5a:29:ac:32:d5:2c: a0:c1:8a:57:ea:e7:7e:16:b2:40:81:67:e6:65:48: 41:95:f9:ed:8e:5b:77:5c:84:61:e5:68:95:fe:63: f1:3d:cc:37:a4:be:6a:6d:2a:18:85:5a:6c:a7:ed: 35:14:55:c1:f8:32:d3:2e:c6:df:e8:91:d9:e6:ff: 40:bd:61:62:c7:50:b3:fb:cc:62:66:84:51:07:07: 05:19:de:2c:5d:99:bf:11:17:71:3c:5d:2a:2c:05: db:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:A7:8D:1E:7E:8C:1E:0E:D6:90:AD:9D:34:A6:87:A0:79:43:5B:2B X509v3 Authority Key Identifier: keyid:90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:19:b5:b2:1f:44:7b:c8:9f:36:d1:f1:1f:8c:31:59:11:12: d3:1f:db:52:98:0e:c8:c6:a0:d8:0b:01:c1:5f:f3:3e:1a:07: a4:0d:c9:c4:65:fa:45:de:54:01:d2:7a:64:d2:b7:55:0a:c8: ee:5b:43:e2:92:d8:eb:26:4a:30:a7:a5:27:69:f9:fe:03:5d: cd:39:9c:9f:90:bb:ca:d5:51:ab:28:7f:d2:62:ca:b8:ed:42: 23:ca:f7:4c:85:ab:39:eb:8a:5e:5e:05:a5:f3:4a:31:a4:22: 18:4f:c3:43:4d:4f:8d:e6:32:84:98:e6:0f:fc:25:20:15:8c: e8:4c:7c:2a:c6:1a:32:2c:e0:1a:59:52:a6:71:93:a6:57:3f: cd:e0:ac:d7:47:34:93:02:be:bb:1e:c1:ee:04:d1:71:c9:6e: d1:cf:68:1a:46:71:24:9b:1b:18:dc:a9:62:52:af:0b:7c:83: 25:c2:e6:c3:ef:4b:f0:ab:ce:76:98:54:56:f5:be:9e:41:8f: 9d:cf:04:3e:04:3a:29:c4:fb:a0:d7:68:92:39:eb:73:12:df: 67:a7:9c:c8:8a:49:30:b8:a7:93:74:b9:ab:28:1a:40:c8:b6: d2:bb:61:4d:2d:79:0b:22:70:7d:9e:00:c5:57:68:3e:0b:08: c8:a4:92:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKDkwMTUyOEM5MjE3OTE3RDk1NjcyMUQxQzY4NTY2NTM0 NUJFQjU2RkQwHhcNMjQwNTAzMDMzMTMyWhcNMjQwNTEwMDMzMTMyWjAYMRYwFAYD VQQDEw02NjM0NWE5NC00OGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlHLy2hzS/MwhtTIkr8XLQmCM590dbdd08yRarIlGwlIct37RvMOHI9R9O16Z RsElE1i4sDImytbJKOA0yx6yGtPOOaXvc9vOwUkU7uqd94RxWdNzcOIAGHduD7oh BdmbzdDzk+FTQTFLkpo92dSb6g+vAnDzJ6lzALyDtWsupjhYsPBKR3/hyEy/tM0d kG5LGIIbdyTOG6JJQgFcOipaKawy1SygwYpX6ud+FrJAgWfmZUhBlfntjlt3XIRh 5WiV/mPxPcw3pL5qbSoYhVpsp+01FFXB+DLTLsbf6JHZ5v9AvWFix1Cz+8xiZoRR BwcFGd4sXZm/ERdxPF0qLAXbeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBKnjR5+ jB4O1pCtnTSmh6B5Q1srMB8GA1UdIwQYMBaAFJAVKMkheRfZVnIdHGhWZTRb61b9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS8xQ0Q0NEY5RUM3 N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5bFdjaDBjYUZabE5GdnJW djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tCVW95U0Y1RjlsV2NoMGNhRlpsTkZ2clZ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkFCOS8xQ0Q0NEY5RUM3N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5 bFdjaDBjYUZabE5GdnJWdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjGbWyH0R7yJ820fEfjDFZERLTH9tSmA7IxqDYCwHBX/M+GgekDcnE ZfpF3lQB0npk0rdVCsjuW0PiktjrJkowp6Unafn+A13NOZyfkLvK1VGrKH/SYsq4 7UIjyvdMhas564peXgWl80oxpCIYT8NDTU+N5jKEmOYP/CUgFYzoTHwqxhoyLOAa WVKmcZOmVz/N4KzXRzSTAr67HsHuBNFxyW7Rz2gaRnEkmxsY3KliUq8LfIMlwubD 70vwq852mFRW9b6eQY+dzwQ+BDopxPug12iSOetzEt9np5zIikkwuKeTdLmrKBpA yLbSu2FNLXkLInB9ngDFV2g+CwjIpJL3 -----END CERTIFICATE-----Generated at Fri May 3 04:45:27 2024 by rpki-client on console-fra.rpki-client.org