$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft File: xG1ZE_bCUMau4vMnRTXOhmKVufo.mft (raw, json) Hash identifier: oOKUyMnMHdGZ3asQbPVhGRSc1SthzM8fvNyECkZVto8= Subject key identifier: 53:A0:07:03:3F:93:A6:F3:90:DF:F5:0F:A8:4D:AF:4D:2D:0C:9C:21 Authority key identifier: C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA Certificate issuer: /CN=A9148B83/serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Certificate serial: 05A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft Manifest number: 0599 Signing time: Sat 01 Jun 2024 01:20:05 +0000 Manifest this update: Sat 01 Jun 2024 01:20:03 +0000 Manifest next update: Sat 08 Jun 2024 01:20:03 +0000 Files and hashes: 1: xG1ZE_bCUMau4vMnRTXOhmKVufo.crl (hash: D+vw3wcktNLCBpZp1CsjkbiDjuVr8Fww+MmJyfSk0wE=) 2: 65FE79B8885D11EB81454E41C4F9AE02.roa (hash: yJcXIOHZrZvQNo0ukdJEKm6dbG3rbyIaGjIEhNXIugs=) 3: 009E969E885C11EB88A7723DC4F9AE02.roa (hash: BJnNWnj5bAaWTSHL28K9ADigo6P+b0SvAF+XSGEZo6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 01:20:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1442 (0x5a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B83/serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Validity Not Before: Jun 1 01:20:03 2024 GMT Not After : Jun 8 01:20:03 2024 GMT Subject: CN=665a7744-e097 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e7:c3:de:6d:d2:8f:ed:da:e3:f7:3f:2b:2d: e3:25:0e:23:d3:a3:67:e7:cf:ac:ff:d9:97:83:cf: b3:0f:e1:1e:9f:d7:b8:7d:1c:e4:71:7b:55:84:ab: 28:2e:c1:fe:79:00:2d:8c:0a:c1:07:38:a9:e5:ef: a5:20:f8:79:0b:2d:45:20:60:86:7b:c1:18:ea:91: c7:94:1b:0c:cb:ba:9f:96:43:61:c0:49:e9:96:e8: e1:e9:41:f1:4e:0b:5d:a2:c7:2e:17:4a:bc:ea:1a: c8:f1:87:a0:23:d2:c7:32:b7:6e:2c:2f:87:04:fd: 82:2a:3f:8b:6c:17:d7:7a:3e:80:f1:a9:91:c0:2b: 86:18:c5:2a:c8:a2:37:05:2a:ca:f4:94:c0:03:5f: 5f:ae:24:33:b6:a5:90:31:ff:c7:d7:6b:33:e1:b3: a2:58:d8:fa:3d:64:96:d0:17:6e:7b:ac:c5:a1:5d: c8:55:d5:2a:cf:0e:e8:3c:cc:f8:98:93:cd:c5:72: 98:b7:7b:f4:30:d7:39:1e:17:f9:dc:22:de:ec:99: 13:5e:57:73:1c:0f:f1:83:ca:84:68:4b:cb:72:ce: b0:32:8e:74:02:d8:36:6d:fa:ec:ad:a9:e7:f1:ab: a2:26:25:02:1c:bf:e7:c1:b3:d6:0b:55:a3:44:ee: f9:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:A0:07:03:3F:93:A6:F3:90:DF:F5:0F:A8:4D:AF:4D:2D:0C:9C:21 X509v3 Authority Key Identifier: keyid:C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:9e:f3:4f:f5:e6:f6:4b:76:16:42:74:f1:f3:15:98:64:26: f4:ec:9f:25:a0:2c:7b:b2:1e:8e:e1:8a:33:e7:b8:bf:17:bb: 0c:12:c8:9b:f8:72:aa:22:e9:70:4b:11:3a:ae:ed:b3:15:a1: d3:18:8f:08:b5:b6:14:d4:73:d1:f5:97:38:fa:a6:55:e4:11: f6:6a:f0:a3:72:f2:b2:3a:2a:ad:77:70:4a:16:4b:14:ee:72: 45:06:46:f1:93:c7:c9:3f:1f:b6:0e:00:73:7e:73:0d:f5:79: d1:7f:23:4a:0d:8a:89:b9:25:0b:27:6f:b3:b5:d0:e3:03:31: b6:de:a2:77:8a:8d:39:c3:82:60:fc:b9:39:df:61:1a:a5:d4: 38:b4:2a:81:b3:17:a2:06:93:3b:19:57:13:f7:31:89:6d:7c: b6:00:0c:0f:a6:74:eb:b0:79:b1:78:47:55:74:aa:21:f3:9c: 2e:f0:d4:82:cc:b4:a6:de:70:b2:9f:36:1a:10:31:ea:53:59: 2a:38:46:30:12:93:74:fc:44:f9:75:c8:6a:05:2f:5a:ec:a9: a9:23:8e:c9:a4:54:0d:ae:6c:ce:6d:1e:e2:bd:78:a5:2f:b7: f4:61:25:84:ce:7d:a2:53:ac:06:47:78:d3:ce:6f:4d:00:ed: d2:72:3b:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCODMxMTAvBgNVBAUTKEM0NkQ1OTEzRjZDMjUwQzZBRUUyRjMyNzQ1MzVDRTg2 NjI5NUI5RkEwHhcNMjQwNjAxMDEyMDAzWhcNMjQwNjA4MDEyMDAzWjAYMRYwFAYD VQQDEw02NjVhNzc0NC1lMDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuefD3m3Sj+3a4/c/Ky3jJQ4j06Nn58+s/9mXg8+zD+Een9e4fRzkcXtVhKso LsH+eQAtjArBBzip5e+lIPh5Cy1FIGCGe8EY6pHHlBsMy7qflkNhwEnplujh6UHx TgtdoscuF0q86hrI8YegI9LHMrduLC+HBP2CKj+LbBfXej6A8amRwCuGGMUqyKI3 BSrK9JTAA19friQztqWQMf/H12sz4bOiWNj6PWSW0Bdue6zFoV3IVdUqzw7oPMz4 mJPNxXKYt3v0MNc5Hhf53CLe7JkTXldzHA/xg8qEaEvLcs6wMo50Atg2bfrsrann 8auiJiUCHL/nwbPWC1WjRO75aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOgBwM/ k6bzkN/1D6hNr00tDJwhMB8GA1UdIwQYMBaAFMRtWRP2wlDGruLzJ0U1zoZilbn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI4My83N0FBNDE0Njg3 RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VNYXU0dk1uUlRYT2htS1Z1 Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHMVpFX2JDVU1hdTR2TW5SVFhPaG1LVnVmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEI4My83N0FBNDE0Njg3RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VN YXU0dk1uUlRYT2htS1Z1Zm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBnvNP9eb2S3YWQnTx8xWYZCb07J8loCx7sh6O4Yoz57i/F7sMEsib +HKqIulwSxE6ru2zFaHTGI8ItbYU1HPR9Zc4+qZV5BH2avCjcvKyOiqtd3BKFksU 7nJFBkbxk8fJPx+2DgBzfnMN9XnRfyNKDYqJuSULJ2+ztdDjAzG23qJ3io05w4Jg /Lk532EapdQ4tCqBsxeiBpM7GVcT9zGJbXy2AAwPpnTrsHmxeEdVdKoh85wu8NSC zLSm3nCynzYaEDHqU1kqOEYwEpN0/ET5dchqBS9a7KmpI47JpFQNrmzObR7ivXil L7f0YSWEzn2iU6wGR3jTzm9NAO3Scjty -----END CERTIFICATE-----Generated at Sat Jun 1 02:55:15 2024 by rpki-client on console-fra.rpki-client.org