$ rpki-client -vvf rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft File: kTOGkN66V4znOCGKniIIVNG1J18.mft (raw, json) Hash identifier: 2OkmHch9tvXjZpKeRhOjMUB1Hk/SEew/4aM/NKS5pYc= Subject key identifier: 48:19:3F:3F:18:AE:4E:75:04:CC:85:A7:36:DF:F5:B0:92:71:75:8B Authority key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F Certificate issuer: /CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Certificate serial: 037E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft Manifest number: 036D Signing time: Fri 03 May 2024 02:59:11 +0000 Manifest this update: Fri 03 May 2024 02:59:11 +0000 Manifest next update: Fri 10 May 2024 02:59:11 +0000 Files and hashes: 1: kTOGkN66V4znOCGKniIIVNG1J18.crl (hash: l6EJqmws94tzZYarukAHZSKM+z7NEqKqajz/whZm3ms=) 2: E29E31F47B4211EEAEE2281DC4F9AE02.roa (hash: CMBklRgoWBAI9bBrQOFA+/x7621FWfVfV0EFm23ww7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 02:59:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 894 (0x37e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Validity Not Before: May 3 02:59:11 2024 GMT Not After : May 10 02:59:11 2024 GMT Subject: CN=663452ff-d49f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:02:aa:86:49:08:84:d4:91:49:2e:8c:04:f1: b0:21:28:e0:f5:5c:89:33:26:1a:89:93:4a:09:7a: 46:c1:1f:16:a8:7c:8a:a2:8b:a5:4f:f3:93:3d:37: 85:5e:d8:27:bf:29:83:57:29:1f:2a:25:59:7f:67: f0:9f:b1:78:dd:51:11:4c:f8:67:1a:9b:3d:98:2f: cb:ed:d1:5b:7b:70:6b:57:48:1c:34:69:eb:a0:32: 90:68:a8:cb:eb:7d:80:7a:92:ca:55:c9:6a:8e:25: d2:52:e2:88:ba:80:63:62:4f:7a:e8:8f:dd:9a:ff: b0:c5:61:cf:56:97:62:e6:1b:61:aa:a4:33:f0:fd: de:a4:7b:0f:2d:72:d5:03:23:b9:9a:41:25:0f:c0: cd:1c:7f:39:d7:50:8e:76:47:fc:97:d2:e0:0d:88: 20:3c:66:6e:6f:d8:9a:10:a5:16:07:aa:d3:c2:5b: 86:82:f3:af:1c:c5:02:cf:f0:7b:1f:78:e0:54:6b: 55:15:17:da:10:3d:2e:14:f3:6a:c3:5d:84:b3:61: 57:3f:b4:94:35:96:32:92:97:3a:48:e6:1e:ce:07: 02:98:e1:ef:8b:a1:b2:b2:e6:bb:25:c9:53:47:b7: c8:13:e7:3b:70:7d:09:2a:a5:cd:aa:ba:94:63:7f: db:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:19:3F:3F:18:AE:4E:75:04:CC:85:A7:36:DF:F5:B0:92:71:75:8B X509v3 Authority Key Identifier: keyid:91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:ac:e5:c5:fd:bd:f8:80:99:42:26:67:5a:4a:71:a7:61:e3: 17:42:82:33:8e:d4:6a:c9:61:9b:3d:b8:55:4b:8b:63:23:e5: 2a:06:49:ae:8a:4f:f1:0f:c8:b1:59:6a:f3:97:bc:4e:49:cd: 83:3b:7d:a7:17:4a:1d:bf:46:f6:78:5b:02:14:19:0a:1a:89: 78:3e:06:02:69:e2:f6:20:d8:45:0d:9f:e4:8d:42:b8:be:5f: f2:f5:0e:e5:a7:94:87:a0:54:47:3f:f3:89:13:4a:18:a5:ba: fe:c7:b0:c4:34:34:1b:81:05:8f:a7:93:b1:13:88:17:ac:13: 5b:aa:ad:79:63:d4:a6:e4:fc:2c:45:07:55:4d:43:d9:f6:42: 6b:e9:a0:e2:3f:b8:66:b4:ed:ad:ce:a8:43:32:3c:ca:12:1c: 75:98:c8:cc:35:4d:e4:f6:4d:26:31:38:2c:04:0d:8d:d0:20: 54:d9:bf:a1:17:1c:6c:e1:1c:eb:71:13:70:23:0e:12:5a:19: 1b:9f:df:5d:0b:1f:6c:78:f5:4e:31:e7:dc:9b:15:36:8f:b7: de:9c:5d:04:85:23:8e:c3:a4:6b:fe:38:d3:28:7b:62:ff:28: 33:4c:19:1b:b2:99:54:a7:85:17:85:51:27:79:e4:9e:77:09: f1:a4:c6:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYwNUIxMTAvBgNVBAUTKDkxMzM4NjkwREVCQTU3OENFNzM4MjE4QTlFMjIwODU0 RDFCNTI3NUYwHhcNMjQwNTAzMDI1OTExWhcNMjQwNTEwMDI1OTExWjAYMRYwFAYD VQQDEw02NjM0NTJmZi1kNDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApgKqhkkIhNSRSS6MBPGwISjg9VyJMyYaiZNKCXpGwR8WqHyKooulT/OTPTeF XtgnvymDVykfKiVZf2fwn7F43VERTPhnGps9mC/L7dFbe3BrV0gcNGnroDKQaKjL 632AepLKVclqjiXSUuKIuoBjYk966I/dmv+wxWHPVpdi5hthqqQz8P3epHsPLXLV AyO5mkElD8DNHH8511COdkf8l9LgDYggPGZub9iaEKUWB6rTwluGgvOvHMUCz/B7 H3jgVGtVFRfaED0uFPNqw12Es2FXP7SUNZYykpc6SOYezgcCmOHvi6Gysua7JclT R7fIE+c7cH0JKqXNqrqUY3/bnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgZPz8Y rk51BMyFpzbf9bCScXWLMB8GA1UdIwQYMBaAFJEzhpDeuleM5zghip4iCFTRtSdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjA1Qi85ODE3RDI3MjY0 Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0em5PQ0dLbmlJSVZORzFK MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUT0drTjY2VjR6bk9DR0tuaUlJVk5HMUoxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjA1Qi85ODE3RDI3MjY0Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0 em5PQ0dLbmlJSVZORzFKMTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJrOXF/b34gJlCJmdaSnGnYeMXQoIzjtRqyWGbPbhVS4tjI+UqBkmu ik/xD8ixWWrzl7xOSc2DO32nF0odv0b2eFsCFBkKGol4PgYCaeL2INhFDZ/kjUK4 vl/y9Q7lp5SHoFRHP/OJE0oYpbr+x7DENDQbgQWPp5OxE4gXrBNbqq15Y9Sm5Pws RQdVTUPZ9kJr6aDiP7hmtO2tzqhDMjzKEhx1mMjMNU3k9k0mMTgsBA2N0CBU2b+h Fxxs4RzrcRNwIw4SWhkbn99dCx9sePVOMefcmxU2j7fenF0EhSOOw6Rr/jjTKHti /ygzTBkbsplUp4UXhVEneeSedwnxpMZ1 -----END CERTIFICATE-----Generated at Fri May 3 04:45:30 2024 by rpki-client on console-fra.rpki-client.org