$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft File: KHuwzWb71-W3qIumZ4kSTAsExXg.mft (raw, json) Hash identifier: BRUE2N4acxPp+csvBYtxhS6M5pO1aisRhXcNnjKRHk8= Subject key identifier: B0:6A:CC:3C:2D:7A:AB:9E:2F:85:BA:4B:37:59:07:3E:BC:0D:19:93 Authority key identifier: 28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 Certificate issuer: /CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Certificate serial: 0AA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft Manifest number: 0A9D Signing time: Thu 02 May 2024 20:17:06 +0000 Manifest this update: Thu 02 May 2024 20:17:05 +0000 Manifest next update: Thu 09 May 2024 20:17:05 +0000 Files and hashes: 1: KHuwzWb71-W3qIumZ4kSTAsExXg.crl (hash: uv3lUvj/4BCryFkJMLZ1pe9tqu6YrnkaZ+q+4FTDo3o=) 2: 2BA212DC306D11EA81D19B38C4F9AE02.roa (hash: qdcX3PFmEKsRTGwOpvRhat3kMdiR4Zkc8V5yDiHBhm4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 20:17:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2723 (0xaa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Validity Not Before: May 2 20:17:05 2024 GMT Not After : May 9 20:17:05 2024 GMT Subject: CN=6633f4c1-1cd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:96:e9:94:2f:6a:dd:e3:dd:71:a8:01:5a:07: 57:66:93:1c:0a:e5:5a:8b:9c:27:08:c2:c8:83:4d: 45:47:f3:0e:f5:61:87:8b:12:bd:62:79:c7:d0:e5: 85:2b:81:30:b1:b3:fe:28:82:a0:fc:ad:e8:a5:5f: 08:80:71:12:84:12:3b:b4:39:d5:d2:ec:a6:75:f6: 93:74:40:a1:7d:e8:f0:b1:96:39:01:c4:80:29:76: 2e:13:94:59:d7:54:ec:67:75:89:1e:9a:2d:9e:81: d4:1c:3d:5a:1a:e5:e8:b7:6a:b4:ef:25:34:cd:c6: 5e:e5:d6:88:ab:a6:2c:4a:6b:6c:46:9e:db:08:b2: 30:b4:41:2c:08:b1:bc:6e:af:d1:9e:a3:7b:f1:ab: 55:f3:0c:22:07:c6:2d:9c:93:5c:91:bd:43:2a:11: 49:43:b2:42:1f:a0:df:e8:c2:e7:d4:ca:21:8e:5e: e4:68:6a:6a:59:e0:62:d3:fd:2e:8e:68:f6:b6:b8: 45:9d:bc:da:75:87:c6:22:64:06:20:fb:d8:6e:7e: 77:65:3e:2d:88:3e:0d:51:41:e7:66:e4:90:87:fb: 6c:5a:15:b0:ef:43:c7:62:80:79:d9:0b:df:30:fc: 40:dd:91:fe:f1:53:48:12:65:7a:21:b0:39:07:d8: 55:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:6A:CC:3C:2D:7A:AB:9E:2F:85:BA:4B:37:59:07:3E:BC:0D:19:93 X509v3 Authority Key Identifier: keyid:28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:ca:73:a7:8c:41:8a:c7:eb:36:b7:18:8b:e6:6d:6b:fc:dc: 91:59:9e:28:83:19:65:c5:56:d6:e4:26:cd:89:59:2c:3f:05: 4c:94:8f:6a:c2:67:34:75:80:95:27:b7:18:a9:b2:0b:f3:7e: f6:4d:b0:fa:63:0c:0a:5f:31:2a:76:c9:59:4c:cc:0c:4a:f6: c0:a9:da:c1:79:be:85:2a:a9:2b:18:30:61:cf:f2:ab:5a:dc: 17:25:6f:6b:64:32:e7:56:31:d4:f1:ed:42:bd:f2:54:21:b2: ca:ae:ce:e5:48:56:57:33:c1:5e:a1:e4:32:cc:65:d4:32:c8: ea:9f:2a:b3:74:1c:df:a6:d5:29:7b:e5:26:62:d3:e8:1c:f3: 17:fb:3e:a8:b6:93:ea:34:00:ac:ce:95:20:2c:ec:65:6f:93: 44:5c:ae:27:69:c3:0e:17:d0:98:37:f4:32:90:22:35:53:45: ed:0d:9a:66:2e:65:2f:cc:2a:c5:20:f3:9e:42:15:9c:5a:a8: c6:2e:e7:f2:cd:48:4a:b3:c5:27:ce:9b:bd:21:dd:0d:cc:91: 5b:56:d6:6c:0e:fb:0e:ef:2e:34:85:b5:99:22:c5:bc:7f:cb: bd:53:07:06:e9:73:b0:e0:2e:81:9c:4e:3c:c6:06:f1:92:8e: 36:ef:e2:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFMjUxMTAvBgNVBAUTKDI4N0JCMENENjZGQkQ3RTVCN0E4OEJBNjY3ODkxMjRD MEIwNEM1NzgwHhcNMjQwNTAyMjAxNzA1WhcNMjQwNTA5MjAxNzA1WjAYMRYwFAYD VQQDEw02NjMzZjRjMS0xY2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA25bplC9q3ePdcagBWgdXZpMcCuVai5wnCMLIg01FR/MO9WGHixK9YnnH0OWF K4EwsbP+KIKg/K3opV8IgHEShBI7tDnV0uymdfaTdEChfejwsZY5AcSAKXYuE5RZ 11TsZ3WJHpotnoHUHD1aGuXot2q07yU0zcZe5daIq6YsSmtsRp7bCLIwtEEsCLG8 bq/RnqN78atV8wwiB8YtnJNckb1DKhFJQ7JCH6Df6MLn1Mohjl7kaGpqWeBi0/0u jmj2trhFnbzadYfGImQGIPvYbn53ZT4tiD4NUUHnZuSQh/tsWhWw70PHYoB52Qvf MPxA3ZH+8VNIEmV6IbA5B9hVUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLBqzDwt equeL4W6SzdZBz68DRmTMB8GA1UdIwQYMBaAFCh7sM1m+9flt6iLpmeJEkwLBMV4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUyNS82OEU1N0FFRTMw NjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEtVzNxSXVtWjRrU1RBc0V4 WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIdXd6V2I3MS1XM3FJdW1aNGtTVEFzRXhYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUyNS82OEU1N0FFRTMwNjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEt VzNxSXVtWjRrU1RBc0V4WGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIynOnjEGKx+s2txiL5m1r/NyRWZ4ogxllxVbW5CbNiVksPwVMlI9q wmc0dYCVJ7cYqbIL8372TbD6YwwKXzEqdslZTMwMSvbAqdrBeb6FKqkrGDBhz/Kr WtwXJW9rZDLnVjHU8e1CvfJUIbLKrs7lSFZXM8FeoeQyzGXUMsjqnyqzdBzfptUp e+UmYtPoHPMX+z6otpPqNACszpUgLOxlb5NEXK4nacMOF9CYN/QykCI1U0XtDZpm LmUvzCrFIPOeQhWcWqjGLufyzUhKs8Unzpu9Id0NzJFbVtZsDvsO7y40hbWZIsW8 f8u9UwcG6XOw4C6BnE48xgbxko427+JN -----END CERTIFICATE-----Generated at Thu May 2 22:28:58 2024 by rpki-client on console-ams.rpki-client.org