$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: yqK1FR40NqwZdGGwCAw1RHA7EqDBwUoPUgSc91xaXbY= Subject key identifier: B3:9F:DD:08:DF:63:D3:9B:22:85:14:35:8D:B2:68:82:54:47:D0:3B Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0B46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0B3B Signing time: Fri 26 Apr 2024 19:44:50 +0000 Manifest this update: Fri 26 Apr 2024 19:44:50 +0000 Manifest next update: Fri 03 May 2024 19:44:50 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: QoD9nWxIO7wWLnn3TDflUoM3qmXyCjuVRjjMa0Ja3t0=) 2: 6972AE70CBB811ED8583D849C4F9AE02.roa (hash: HN3UyiD2PNkwmfM0Dj37gtn6SCwlGgs7sbn4P47eUas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 19:44:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2886 (0xb46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: Apr 26 19:44:50 2024 GMT Not After : May 3 19:44:50 2024 GMT Subject: CN=662c0432-0620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b1:12:a8:e2:a1:77:ff:1b:fc:ac:6a:9c:b0: 3e:b2:24:cf:e9:7e:63:25:78:1d:85:10:dc:da:db: 9f:e5:ea:c8:9e:ae:93:d0:d3:3a:58:c7:5c:3f:0b: 99:31:bc:c7:81:29:e8:4f:0e:d2:f8:69:b4:2c:f1: e8:47:e9:c5:37:6f:33:97:3d:a4:3a:78:2b:8c:93: 87:92:0f:7b:6d:13:be:d4:e6:4b:5d:55:ab:d0:fc: c7:95:35:18:85:57:08:a3:be:ef:76:a0:3e:d0:0f: 6f:f4:73:bd:c5:ea:93:42:88:8a:43:0f:c5:23:8b: d9:3f:13:9b:46:72:10:96:fe:36:11:ae:ab:7d:d2: b6:f1:6b:32:3b:de:ea:9e:6a:b0:8c:a3:f1:29:0b: bf:7c:7a:f1:4f:6c:af:04:27:50:da:44:d8:12:07: 3f:cc:b6:a6:55:bc:c4:29:69:06:a9:a7:46:95:ad: c2:e9:1f:a2:5d:af:1f:09:e3:91:05:70:e6:8e:70: 44:57:aa:03:2b:f3:3d:a5:46:f9:11:d8:6b:9a:e4: 2c:ff:62:4d:80:67:d4:7e:b6:4f:d0:86:78:66:a6: 19:26:6f:cb:c0:2b:d4:47:61:42:3e:fe:87:07:bb: 89:ce:44:02:97:74:9e:8e:32:41:db:ec:86:75:0b: a7:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:9F:DD:08:DF:63:D3:9B:22:85:14:35:8D:B2:68:82:54:47:D0:3B X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:cc:6e:2e:ae:b0:6d:57:7f:42:af:fa:f8:0a:db:ff:2a:49: 11:32:01:4d:78:6e:c7:0f:21:e1:8d:e7:c3:40:c8:4e:20:75: e1:ff:f1:6e:3c:16:40:4f:74:30:0b:d3:67:65:f1:83:fa:53: c0:68:2e:b2:e0:f6:1c:c1:08:3c:31:ba:da:73:f1:21:3e:84: ce:07:80:ae:6c:dc:64:59:58:7c:1c:93:d9:37:1f:82:d6:24: 84:75:1a:60:09:8e:85:2f:1e:4a:57:8d:69:02:59:ff:63:2b: 96:2b:ca:a9:4d:61:b0:52:f9:4a:b0:f9:ee:68:8b:12:b3:40: 5d:6c:03:c7:a6:42:d1:6e:3d:f8:f0:a5:a7:12:52:02:d1:43: d2:85:98:ea:67:75:ac:24:be:7b:97:29:98:01:70:3e:87:e2: 9e:16:23:05:36:8a:ac:94:9f:48:8b:80:88:73:a2:b9:bb:21: a0:8e:10:d7:ea:eb:37:49:ea:85:7d:f8:12:8a:24:02:4b:49: 97:ce:49:f3:c0:b8:10:d9:43:5e:de:f0:17:c4:89:cd:bd:e4: 79:db:ab:a1:40:c6:fc:15:94:43:8b:48:01:b3:2f:98:9d:e3: fc:31:5a:03:c3:3e:00:51:f4:38:39:84:81:14:68:57:2b:a5: a1:1a:1c:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjQwNDI2MTk0NDUwWhcNMjQwNTAzMTk0NDUwWjAYMRYwFAYD VQQDEw02NjJjMDQzMi0wNjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbESqOKhd/8b/KxqnLA+siTP6X5jJXgdhRDc2tuf5erInq6T0NM6WMdcPwuZ MbzHgSnoTw7S+Gm0LPHoR+nFN28zlz2kOngrjJOHkg97bRO+1OZLXVWr0PzHlTUY hVcIo77vdqA+0A9v9HO9xeqTQoiKQw/FI4vZPxObRnIQlv42Ea6rfdK28WsyO97q nmqwjKPxKQu/fHrxT2yvBCdQ2kTYEgc/zLamVbzEKWkGqadGla3C6R+iXa8fCeOR BXDmjnBEV6oDK/M9pUb5EdhrmuQs/2JNgGfUfrZP0IZ4ZqYZJm/LwCvUR2FCPv6H B7uJzkQCl3SejjJB2+yGdQunfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLOf3Qjf Y9ObIoUUNY2yaIJUR9A7MB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4zG4urrBtV39Cr/r4Ctv/KkkRMgFNeG7HDyHhjefDQMhOIHXh//Fu PBZAT3QwC9NnZfGD+lPAaC6y4PYcwQg8Mbrac/EhPoTOB4CubNxkWVh8HJPZNx+C 1iSEdRpgCY6FLx5KV41pAln/YyuWK8qpTWGwUvlKsPnuaIsSs0BdbAPHpkLRbj34 8KWnElIC0UPShZjqZ3WsJL57lymYAXA+h+KeFiMFNoqslJ9Ii4CIc6K5uyGgjhDX 6us3SeqFffgSiiQCS0mXzknzwLgQ2UNe3vAXxInNveR526uhQMb8FZRDi0gBsy+Y neP8MVoDwz4AUfQ4OYSBFGhXK6WhGhxs -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:51 2024 by rpki-client on console-ams.rpki-client.org