$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: YyrPNc5NMzouRdC0pBKXYPFw0n8RujUF+t+3NaozMjk= Subject key identifier: 94:3F:51:07:E3:4E:B5:42:F1:6F:96:46:71:A6:09:BC:B2:31:46:57 Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: C6 Signing time: Sun 19 May 2024 06:16:46 +0000 Manifest this update: Sun 19 May 2024 06:16:45 +0000 Manifest next update: Sun 26 May 2024 06:16:45 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: DlfC9JvSog+QaT44mshel30oybfgK3dwUvCx3unw8g4=) 2: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: wrAqXtR5cQSmhUWLr1y8UjgIlTpfMqLqNlgVaZhEGts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: May 19 06:16:45 2024 GMT Not After : May 26 06:16:45 2024 GMT Subject: CN=6649994d-4c3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:62:da:5f:95:d0:51:3f:29:b8:84:7d:75:bc: f5:34:8a:f9:bd:2b:c2:ec:8e:60:2a:bf:7f:8d:d0: 00:2c:71:6f:74:3e:55:58:37:28:31:79:93:e8:3e: 30:a3:b3:11:93:2a:c4:ca:a9:49:a9:63:98:13:2c: 20:30:4f:c4:d5:c1:1e:1f:61:1e:41:4a:ce:c4:50: cf:18:a1:2e:d1:76:89:e8:66:9f:f5:0e:e4:d4:77: 14:15:07:c7:11:7c:81:74:75:aa:2d:d1:21:a3:ff: 2b:91:c1:1d:3c:6e:90:26:5b:1c:e5:71:14:11:49: 39:0a:70:bc:2f:7e:c3:cf:05:d1:3c:83:31:da:ec: 87:52:00:ba:e3:f3:f2:c1:ad:1e:69:b6:53:6c:2e: 84:19:72:9e:e4:07:91:86:ef:6c:ef:aa:ef:c1:d6: 43:43:85:51:37:02:fc:50:6f:17:77:9a:ef:65:09: 9a:9f:28:54:ba:75:fe:c5:21:af:4f:92:99:35:a9: 4b:ee:07:a2:07:0a:b5:9a:d1:82:8d:c8:c7:58:78: 6d:9b:7b:f1:f5:b2:4f:c9:b4:61:2e:29:72:c2:64: 94:ee:45:a0:b6:a7:7b:61:e6:a2:1a:98:fa:bb:8e: c3:59:a6:9d:27:54:e6:0f:64:1e:3f:99:b5:37:71: 39:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:3F:51:07:E3:4E:B5:42:F1:6F:96:46:71:A6:09:BC:B2:31:46:57 X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:e3:43:55:3f:a5:ea:c1:93:00:23:53:35:6f:02:03:7d:73: 7c:c0:e0:10:d7:95:57:f8:89:ed:e4:77:9d:1d:7e:91:dc:15: ce:82:c9:7c:aa:61:ae:e4:96:43:12:93:0f:87:28:87:72:8f: f0:0e:7c:09:33:c9:b6:a6:da:fd:a3:8f:96:04:f3:9e:7f:ff: 35:9e:4c:75:72:00:d8:0a:8c:47:ab:26:f9:8b:8e:ba:59:d1: e7:ac:b6:fd:e7:09:5f:a6:a0:5c:17:43:bd:74:18:77:4e:37: 47:ec:0f:a0:42:0a:e9:7e:3b:0c:27:fc:6c:42:f5:97:e0:a5: 59:d6:1e:c0:72:6d:86:de:2c:c0:a1:3d:79:08:c2:44:14:bf: 77:73:29:1e:e0:c2:c3:c2:e5:73:59:d5:b0:63:c0:e9:71:db: fa:a3:26:05:61:c8:c1:c2:13:76:ea:43:2c:1a:a2:44:5f:3b: 8c:31:e1:19:27:59:32:cd:73:8c:aa:e6:b0:0f:4f:59:0c:44: 6f:f1:53:ca:2a:ac:a4:2a:62:92:50:12:0b:8a:96:16:77:fe: 54:22:d2:1c:b8:e3:07:61:69:54:41:06:d5:b7:c3:a7:65:dd: 58:30:0d:be:4e:55:61:fe:97:1d:67:6b:b3:be:7e:bc:c8:07: 7f:d6:71:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjQwNTE5MDYxNjQ1WhcNMjQwNTI2MDYxNjQ1WjAYMRYwFAYD VQQDEw02NjQ5OTk0ZC00YzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGLaX5XQUT8puIR9dbz1NIr5vSvC7I5gKr9/jdAALHFvdD5VWDcoMXmT6D4w o7MRkyrEyqlJqWOYEywgME/E1cEeH2EeQUrOxFDPGKEu0XaJ6Gaf9Q7k1HcUFQfH EXyBdHWqLdEho/8rkcEdPG6QJlsc5XEUEUk5CnC8L37DzwXRPIMx2uyHUgC64/Py wa0eabZTbC6EGXKe5AeRhu9s76rvwdZDQ4VRNwL8UG8Xd5rvZQmanyhUunX+xSGv T5KZNalL7geiBwq1mtGCjcjHWHhtm3vx9bJPybRhLilywmSU7kWgtqd7YeaiGpj6 u47DWaadJ1TmD2QeP5m1N3E5wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJQ/UQfj TrVC8W+WRnGmCbyyMUZXMB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa40NVP6XqwZMAI1M1bwIDfXN8wOAQ15VX+Int5HedHX6R3BXOgsl8 qmGu5JZDEpMPhyiHco/wDnwJM8m2ptr9o4+WBPOef/81nkx1cgDYCoxHqyb5i466 WdHnrLb95wlfpqBcF0O9dBh3TjdH7A+gQgrpfjsMJ/xsQvWX4KVZ1h7Acm2G3izA oT15CMJEFL93cyke4MLDwuVzWdWwY8Dpcdv6oyYFYcjBwhN26kMsGqJEXzuMMeEZ J1kyzXOMquawD09ZDERv8VPKKqykKmKSUBILipYWd/5UItIcuOMHYWlUQQbVt8On Zd1YMA2+TlVh/pcdZ2uzvn68yAd/1nEB -----END CERTIFICATE-----Generated at Sun May 19 08:24:59 2024 by rpki-client on console-ams.rpki-client.org