$ rpki-client -vvf rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft File: c5FNFBChzT-FrR4bClD_P4vWDBA.mft (raw, json) Hash identifier: xwH1GQOWEphpMGh3g/VnsB6F84XwVJDqNHAOX8SR5vc= Subject key identifier: 5A:D7:D9:9D:3C:FC:C4:89:CE:05:C0:84:B2:05:BF:5B:42:14:14:AC Authority key identifier: 73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10 Certificate issuer: /CN=A91366F8/serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10 Certificate serial: 0284 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft Manifest number: 0281 Signing time: Sun 19 May 2024 03:41:23 +0000 Manifest this update: Sun 19 May 2024 03:41:22 +0000 Manifest next update: Sun 26 May 2024 03:41:22 +0000 Files and hashes: 1: c5FNFBChzT-FrR4bClD_P4vWDBA.crl (hash: 5WvSQ7yNYVISkkDTVRYJ1TJl9/dh9gEg+5j0T0fCA2w=) 2: 591A8C06BE4D11EC8DADB22CC4F9AE02.roa (hash: TnhvZ0VFGTx0Tr/xnOEZWoxZ1LhtDqsEDoaY/RfN4rk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 644 (0x284) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91366F8/serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10 Validity Not Before: May 19 03:41:22 2024 GMT Not After : May 26 03:41:22 2024 GMT Subject: CN=664974e3-593f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:15:7f:d3:c5:90:47:d1:1a:c7:e8:d7:bd:c7: 38:8e:a1:f2:3a:e3:ab:e5:78:4a:ae:ac:89:27:93: 71:f7:4e:af:91:38:e8:c6:ef:ce:6d:fb:d3:db:9b: 64:e1:c2:dd:9e:92:c9:a8:ec:92:b5:03:26:ba:78: d4:0e:e6:b6:b2:73:4e:64:57:6b:78:9f:21:4f:49: 03:12:8e:c8:13:ef:2a:34:4d:b8:43:aa:83:7b:25: 23:aa:67:db:bd:93:82:d7:c7:dd:a1:c9:c9:ca:54: eb:ca:64:ff:14:29:cf:da:69:26:72:54:4e:97:6a: 16:ce:c7:af:fa:0d:1f:21:91:91:3f:b1:fb:75:64: 4b:ed:1c:30:89:fa:bf:f1:00:8f:6a:57:e9:e1:e3: 34:e0:fe:b5:c8:5a:88:4a:f4:92:0d:8b:59:de:14: cf:b9:30:e7:7f:97:c0:79:4e:5c:ea:6f:93:5b:f3: 45:1a:35:30:22:d1:04:6c:79:da:19:41:71:d8:52: 50:64:d1:19:89:ca:6f:f0:48:3e:8f:e3:cb:58:bb: f8:81:d1:5c:68:54:0c:19:44:8d:d5:62:f1:4b:d5: a1:13:a6:32:31:00:9b:49:da:b2:44:6f:a6:1c:c4: b4:64:7b:1f:17:56:61:bd:96:50:80:0e:d0:26:a9: b8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:D7:D9:9D:3C:FC:C4:89:CE:05:C0:84:B2:05:BF:5B:42:14:14:AC X509v3 Authority Key Identifier: keyid:73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:38:62:b6:4e:47:6a:f6:f7:01:e0:2b:ba:56:07:6e:98:6b: 1c:51:35:ff:6e:c6:e4:f5:35:f2:9a:04:f7:69:18:ac:fd:bd: 43:dd:52:fa:de:87:8c:a6:3d:f0:df:fe:6e:77:2b:79:d2:64: c9:9e:a6:16:b7:8f:e5:01:e3:46:06:31:4f:4b:bb:b1:44:a8: b1:17:0d:35:b5:d8:c0:ba:e9:df:f6:52:b9:c4:42:5b:c1:33: d5:f1:84:02:34:71:d8:ae:2c:53:6f:69:b3:f0:33:55:9e:a6: a0:40:03:c1:4b:c9:75:4c:68:5f:46:da:45:33:57:fb:00:da: 7d:50:ee:26:e6:56:44:70:5d:8c:6d:05:d1:a7:29:9c:84:84: 40:36:4f:02:71:6f:27:b1:48:58:ba:3d:9f:43:88:21:48:c4: 9d:37:68:38:24:0d:93:7c:85:93:c5:dc:04:88:72:ea:75:af: 51:89:30:88:1b:c8:4c:56:82:01:2c:84:d6:27:77:38:f4:a7: ba:09:3c:02:79:fd:86:d8:02:3f:60:70:fa:f7:5f:d2:76:e0: 38:15:72:46:5f:0b:ad:3b:40:2a:14:fa:43:d6:06:cc:cb:be: 18:ab:12:fb:d1:b5:7e:67:d3:aa:a7:43:03:c8:23:8f:2e:32: c6:f5:e1:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2RjgxMTAvBgNVBAUTKDczOTE0RDE0MTBBMUNEM0Y4NUFEMUUxQjBBNTBGRjNG OEJENjBDMTAwHhcNMjQwNTE5MDM0MTIyWhcNMjQwNTI2MDM0MTIyWjAYMRYwFAYD VQQDEw02NjQ5NzRlMy01OTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3hV/08WQR9Eax+jXvcc4jqHyOuOr5XhKrqyJJ5Nx906vkTjoxu/ObfvT25tk 4cLdnpLJqOyStQMmunjUDua2snNOZFdreJ8hT0kDEo7IE+8qNE24Q6qDeyUjqmfb vZOC18fdocnJylTrymT/FCnP2mkmclROl2oWzsev+g0fIZGRP7H7dWRL7Rwwifq/ 8QCPalfp4eM04P61yFqISvSSDYtZ3hTPuTDnf5fAeU5c6m+TW/NFGjUwItEEbHna GUFx2FJQZNEZicpv8Eg+j+PLWLv4gdFcaFQMGUSN1WLxS9WhE6YyMQCbSdqyRG+m HMS0ZHsfF1ZhvZZQgA7QJqm4QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFrX2Z08 /MSJzgXAhLIFv1tCFBSsMB8GA1UdIwQYMBaAFHORTRQQoc0/ha0eGwpQ/z+L1gwQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjZGOC9BNDI0Mzk3MEJF NEExMUVDQjI3OTU1MkFDNEY5QUUwMi9jNUZORkJDaHpULUZyUjRiQ2xEX1A0dldE QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M1Rk5GQkNoelQtRnJSNGJDbERfUDR2V0RCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjZGOC9BNDI0Mzk3MEJFNEExMUVDQjI3OTU1MkFDNEY5QUUwMi9jNUZORkJDaHpU LUZyUjRiQ2xEX1A0dldEQkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByOGK2Tkdq9vcB4Cu6VgdumGscUTX/bsbk9TXymgT3aRis/b1D3VL6 3oeMpj3w3/5udyt50mTJnqYWt4/lAeNGBjFPS7uxRKixFw01tdjAuunf9lK5xEJb wTPV8YQCNHHYrixTb2mz8DNVnqagQAPBS8l1TGhfRtpFM1f7ANp9UO4m5lZEcF2M bQXRpymchIRANk8CcW8nsUhYuj2fQ4ghSMSdN2g4JA2TfIWTxdwEiHLqda9RiTCI G8hMVoIBLITWJ3c49Ke6CTwCef2G2AI/YHD691/SduA4FXJGXwutO0AqFPpD1gbM y74YqxL70bV+Z9Oqp0MDyCOPLjLG9eER -----END CERTIFICATE-----Generated at Sun May 19 04:20:42 2024 by rpki-client on console-ams.rpki-client.org