$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: +xk8d5ou4CpYpNynYp7HdWMj7mjO99tz1rzep5R8H14= Subject key identifier: 5C:39:AC:D5:6E:E1:73:29:91:0E:13:B8:A2:3F:92:3C:C1:9E:83:B9 Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 03F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 03F0 Signing time: Sun 19 May 2024 02:15:20 +0000 Manifest this update: Sun 19 May 2024 02:15:19 +0000 Manifest next update: Sun 26 May 2024 02:15:19 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: gao+3Vzv8QxZt52ROAE3T/n4yZO0et53k2oEQHsdfZo=) 2: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: ajpvJcJk2hIGJtK47b/oFETGJ6AH8R2N0nzWfcugHow=) 3: ECC109EA3C8811EC889B9D78C4F9AE02.roa (hash: XrzDpLQm0V+9lneCAa/NLIKLtQrYT59YvNC+sD19lgk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1017 (0x3f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: May 19 02:15:19 2024 GMT Not After : May 26 02:15:19 2024 GMT Subject: CN=664960b8-752d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:54:ae:af:6c:7c:d6:d9:12:c1:42:42:ec:eb: 76:1a:69:1e:2e:cb:66:2f:e0:d4:21:74:21:31:f7: b2:14:5d:87:f3:8e:81:34:0d:a0:6f:a1:e4:f7:08: 1c:11:3d:f9:98:00:2f:a0:e1:5d:b8:a5:38:2a:f3: f3:46:ea:8c:4f:ae:f9:a3:97:54:4e:75:3a:f1:a8: 08:e0:61:4c:f7:da:67:39:9a:e1:46:19:44:80:5f: 63:e0:1b:56:c8:08:65:23:51:85:63:f2:ea:8a:94: 84:e3:72:0c:33:e4:68:46:1e:6d:6c:ba:d7:7c:c5: ec:92:c7:c5:e4:e5:97:de:0e:02:54:c9:62:20:08: 36:02:1d:a7:ff:51:4b:1b:8e:44:09:68:95:45:09: bb:e5:6a:73:bc:aa:40:52:26:20:ea:f9:fa:5e:4b: ab:9a:83:39:ba:0e:9d:d2:64:17:6c:d1:9b:71:2f: 6f:3c:5b:c8:1f:f3:83:c1:2b:57:9c:80:7d:3f:c9: 07:3c:b1:3b:dd:31:32:9b:0c:9b:a4:b4:8a:69:78: fd:a9:b7:9a:10:28:cc:9d:c4:30:04:df:1a:db:7d: aa:27:6f:04:dd:a0:52:1f:19:56:41:c7:61:49:66: 73:ae:4d:b0:ab:1f:65:b4:e9:69:ef:35:83:5c:06: 7b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:39:AC:D5:6E:E1:73:29:91:0E:13:B8:A2:3F:92:3C:C1:9E:83:B9 X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:dc:19:fb:ff:8f:a0:ca:1c:e3:02:ac:64:3f:37:7d:75:39: 23:88:36:93:1a:54:81:24:c7:66:50:fd:b4:a3:c0:a3:69:c6: 7d:4c:71:9b:9e:bb:a0:69:67:7c:8e:c6:13:26:a1:51:45:76: 45:10:7f:ce:3c:94:9e:a0:1b:b0:b6:0e:5f:79:82:53:b7:70: d1:42:c2:d0:fb:08:79:e2:ad:33:19:0a:cd:a5:5d:b3:af:92: 0c:72:9c:93:c0:9d:3f:07:f2:88:8c:ec:fe:8e:f7:17:89:d7: 78:62:b6:bf:f1:ab:a2:d2:f7:93:01:99:3b:b1:8b:ef:8c:6c: 04:6d:f3:08:4a:93:eb:42:29:99:c9:c9:3d:b4:1b:e5:91:fb: 20:7f:d6:81:2b:3f:bb:98:6a:b3:35:73:0e:b9:9a:3f:0f:a1: 74:20:48:47:c2:15:a5:83:7d:a8:c8:36:0d:ef:ca:d7:9d:ea: 9d:3a:b4:45:f6:9f:b6:72:09:8f:b6:c5:e5:0b:22:4e:54:18: 53:bb:ea:13:b2:b6:b1:35:bd:20:23:6b:19:99:71:11:ab:7a: dc:60:5b:b4:e2:d3:61:9a:5e:52:b8:bd:59:3e:50:4c:7f:b1: f7:f2:f9:1e:80:78:21:79:20:be:28:07:3f:60:ae:bd:cb:42: 59:2b:50:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjQwNTE5MDIxNTE5WhcNMjQwNTI2MDIxNTE5WjAYMRYwFAYD VQQDEw02NjQ5NjBiOC03NTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFSur2x81tkSwUJC7Ot2GmkeLstmL+DUIXQhMfeyFF2H846BNA2gb6Hk9wgc ET35mAAvoOFduKU4KvPzRuqMT675o5dUTnU68agI4GFM99pnOZrhRhlEgF9j4BtW yAhlI1GFY/LqipSE43IMM+RoRh5tbLrXfMXsksfF5OWX3g4CVMliIAg2Ah2n/1FL G45ECWiVRQm75WpzvKpAUiYg6vn6XkurmoM5ug6d0mQXbNGbcS9vPFvIH/ODwStX nIB9P8kHPLE73TEymwybpLSKaXj9qbeaECjMncQwBN8a232qJ28E3aBSHxlWQcdh SWZzrk2wqx9ltOlp7zWDXAZ7DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFw5rNVu 4XMpkQ4TuKI/kjzBnoO5MB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF3Bn7/4+gyhzjAqxkPzd9dTkjiDaTGlSBJMdmUP20o8CjacZ9THGb nrugaWd8jsYTJqFRRXZFEH/OPJSeoBuwtg5feYJTt3DRQsLQ+wh54q0zGQrNpV2z r5IMcpyTwJ0/B/KIjOz+jvcXidd4Yra/8aui0veTAZk7sYvvjGwEbfMISpPrQimZ yck9tBvlkfsgf9aBKz+7mGqzNXMOuZo/D6F0IEhHwhWlg32oyDYN78rXneqdOrRF 9p+2cgmPtsXlCyJOVBhTu+oTsraxNb0gI2sZmXERq3rcYFu04tNhml5SuL1ZPlBM f7H38vkegHgheSC+KAc/YK69y0JZK1DK -----END CERTIFICATE-----Generated at Sun May 19 02:59:04 2024 by rpki-client on console-ams.rpki-client.org