$ rpki-client -vvf rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/xMZ-u2st3Gkku7llXn4PghhTDGU.mft File: xMZ-u2st3Gkku7llXn4PghhTDGU.mft (raw, json) Hash identifier: dpf+hpujTjKDpnuR01t2sORrSmrmsIDbSeKSkbKcVp8= Subject key identifier: 2E:E4:3B:33:ED:D4:64:43:98:87:BE:A7:3D:75:9F:92:05:2B:5B:A5 Authority key identifier: C4:C6:7E:BB:6B:2D:DC:69:24:BB:B9:65:5E:7E:0F:82:18:53:0C:65 Certificate issuer: /CN=A9122D51/serialNumber=C4C67EBB6B2DDC6924BBB9655E7E0F8218530C65 Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xMZ-u2st3Gkku7llXn4PghhTDGU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/xMZ-u2st3Gkku7llXn4PghhTDGU.mft Manifest number: 1D Signing time: Fri 31 May 2024 09:37:14 +0000 Manifest this update: Fri 31 May 2024 09:37:13 +0000 Manifest next update: Fri 07 Jun 2024 09:37:13 +0000 Files and hashes: 1: xMZ-u2st3Gkku7llXn4PghhTDGU.crl (hash: taVMg16j9hWvHXSq8pPuVER4oHKMRaqTsijWDkRMMNU=) 2: 6D610A58F23711EEA11AA759C4F9AE02.roa (hash: SDToLq2T7z90cfNjaTZT3zSAgkRp8bhjTtdT/TF1af0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/xMZ-u2st3Gkku7llXn4PghhTDGU.crl rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/xMZ-u2st3Gkku7llXn4PghhTDGU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xMZ-u2st3Gkku7llXn4PghhTDGU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 09:37:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122D51/serialNumber=C4C67EBB6B2DDC6924BBB9655E7E0F8218530C65 Validity Not Before: May 31 09:37:13 2024 GMT Not After : Jun 7 09:37:13 2024 GMT Subject: CN=66599a4a-9f79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:db:b4:65:c8:db:ba:b9:33:dd:53:8d:b4:aa: 5c:ec:5a:dd:8b:cf:9d:8d:a4:21:f0:d3:aa:ed:64: a0:3e:c9:2c:88:2b:17:e6:4c:22:f9:88:c2:88:a0: 04:86:a5:85:9c:2f:45:e8:89:a8:1a:ba:91:06:a7: 6d:8c:48:aa:d0:45:90:6a:eb:db:ef:fb:a3:f6:eb: 4b:9f:7a:a3:30:89:e5:b2:88:33:68:cf:69:c2:9d: a3:85:70:3b:b1:7a:c8:62:24:d5:e1:02:85:3f:07: ce:05:5d:f8:e3:4c:49:76:9d:2f:32:a0:83:6f:e8: ae:3f:bd:9c:64:44:b0:b2:28:65:5b:e1:52:c4:28: a6:76:b3:1c:d6:bd:f5:61:49:2d:f5:0f:0d:52:ab: 58:09:59:eb:f8:a4:eb:de:da:7c:91:05:21:16:28: e7:8c:0a:d6:eb:60:ca:9d:3a:9b:08:d0:2f:e3:1f: 69:17:a4:e5:0e:1f:14:3e:49:b0:03:dc:63:52:d0: 93:e4:96:85:6d:88:25:d6:97:01:88:4a:6a:a3:80: 03:c8:98:44:2e:ae:43:9c:e4:e4:d0:e0:f3:3c:e2: 2e:cd:79:98:59:54:01:ed:8d:5f:a1:f3:64:94:b8: b3:8e:4e:98:38:e7:3c:87:ed:d2:16:1e:c7:3d:31: 47:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:E4:3B:33:ED:D4:64:43:98:87:BE:A7:3D:75:9F:92:05:2B:5B:A5 X509v3 Authority Key Identifier: keyid:C4:C6:7E:BB:6B:2D:DC:69:24:BB:B9:65:5E:7E:0F:82:18:53:0C:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/xMZ-u2st3Gkku7llXn4PghhTDGU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xMZ-u2st3Gkku7llXn4PghhTDGU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/xMZ-u2st3Gkku7llXn4PghhTDGU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:84:bf:67:10:fa:f8:7b:e4:e9:06:88:1d:f6:d1:c6:75:0d: 34:f0:e2:77:8a:13:f6:4a:9b:5b:3f:05:59:83:d8:87:9f:4a: 11:84:23:eb:23:fb:90:50:f4:61:66:12:20:9b:7f:49:15:27: ef:01:12:42:7b:76:ef:1c:70:4a:ec:54:b2:03:40:18:f7:a6: 86:99:bf:95:8a:fd:2b:1e:e0:59:8f:fe:a5:df:f8:a4:0a:5f: 6b:08:60:2c:7d:5d:ec:bc:b1:86:03:8e:30:39:ac:dc:25:23: 57:63:84:9e:a5:be:43:36:96:47:9d:85:6c:91:13:04:5d:fd: de:2f:9e:95:e9:7d:aa:6b:4f:16:c0:c1:57:98:4a:34:88:2f: 9d:20:c3:58:61:36:d1:f1:72:72:18:fa:d1:d1:14:e6:d2:02: 77:5a:b4:44:80:32:e7:24:94:6d:30:35:64:2c:13:75:7e:5f: 59:4e:c8:0d:8b:5c:0a:11:80:00:b5:9f:ed:f1:29:9b:cb:ff: 40:68:4b:5e:3f:55:a2:0e:ab:90:75:84:93:20:c8:33:b2:07: 07:f2:a9:be:00:76:d5:2c:97:88:1f:3d:2d:e9:80:cc:a9:44: 7c:44:e7:e3:ed:93:99:95:92:8c:d9:6d:1d:5e:11:33:7d:fb: da:08:94:36 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MkQ1MTExMC8GA1UEBRMoQzRDNjdFQkI2QjJEREM2OTI0QkJCOTY1NUU3RTBGODIx ODUzMEM2NTAeFw0yNDA1MzEwOTM3MTNaFw0yNDA2MDcwOTM3MTNaMBgxFjAUBgNV BAMTDTY2NTk5YTRhLTlmNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCs27RlyNu6uTPdU420qlzsWt2Lz52NpCHw06rtZKA+ySyIKxfmTCL5iMKIoASG pYWcL0XoiagaupEGp22MSKrQRZBq69vv+6P260ufeqMwieWyiDNoz2nCnaOFcDux eshiJNXhAoU/B84FXfjjTEl2nS8yoINv6K4/vZxkRLCyKGVb4VLEKKZ2sxzWvfVh SS31Dw1Sq1gJWev4pOve2nyRBSEWKOeMCtbrYMqdOpsI0C/jH2kXpOUOHxQ+SbAD 3GNS0JPkloVtiCXWlwGISmqjgAPImEQurkOc5OTQ4PM84i7NeZhZVAHtjV+h82SU uLOOTpg45zyH7dIWHsc9MUeRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULuQ7M+3U ZEOYh76nPXWfkgUrW6UwHwYDVR0jBBgwFoAUxMZ+u2st3Gkku7llXn4PghhTDGUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIyRDUxL0VBRTVGQ0FBRjIz NjExRUU4QzhCOTc1OEM0RjlBRTAyL3hNWi11MnN0M0dra3U3bGxYbjRQZ2hoVERH VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveE1aLXUyc3QzR2trdTdsbFhuNFBnaGhUREdVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIy RDUxL0VBRTVGQ0FBRjIzNjExRUU4QzhCOTc1OEM0RjlBRTAyL3hNWi11MnN0M0dr a3U3bGxYbjRQZ2hoVERHVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABKEv2cQ+vh75OkGiB320cZ1DTTw4neKE/ZKm1s/BVmD2IefShGEI+sj +5BQ9GFmEiCbf0kVJ+8BEkJ7du8ccErsVLIDQBj3poaZv5WK/Sse4FmP/qXf+KQK X2sIYCx9Xey8sYYDjjA5rNwlI1djhJ6lvkM2lkedhWyREwRd/d4vnpXpfaprTxbA wVeYSjSIL50gw1hhNtHxcnIY+tHRFObSAndatESAMucklG0wNWQsE3V+X1lOyA2L XAoRgAC1n+3xKZvL/0BoS14/VaIOq5B1hJMgyDOyBwfyqb4AdtUsl4gfPS3pgMyp RHxE5+Ptk5mVkozZbR1eETN9+9oIlDY= -----END CERTIFICATE-----Generated at Fri May 31 13:04:14 2024 by rpki-client on console-ams.rpki-client.org