$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft File: 4BlKpTtYIbm9DFx7g1K7E4GFP50.mft (raw, json) Hash identifier: kL2ZXINZCEytEFcMD3/ClQi6GhwcQvU0bgQ5wX8A074= Subject key identifier: BD:0F:BC:AB:EB:B9:07:5F:E4:3C:B1:33:3B:C3:DC:87:4B:C2:72:B6 Authority key identifier: E0:19:4A:A5:3B:58:21:B9:BD:0C:5C:7B:83:52:BB:13:81:85:3F:9D Certificate issuer: /CN=A914E0B6/serialNumber=E0194AA53B5821B9BD0C5C7B8352BB1381853F9D Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BlKpTtYIbm9DFx7g1K7E4GFP50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft Manifest number: 40 Signing time: Fri 31 May 2024 09:07:44 +0000 Manifest this update: Fri 31 May 2024 09:07:43 +0000 Manifest next update: Fri 07 Jun 2024 09:07:43 +0000 Files and hashes: 1: 4BlKpTtYIbm9DFx7g1K7E4GFP50.crl (hash: RSwVBLXE8Dqk/Pr0AN8G9mBVzl0CMOlj1ug3/sh5BQk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.crl rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BlKpTtYIbm9DFx7g1K7E4GFP50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0B6/serialNumber=E0194AA53B5821B9BD0C5C7B8352BB1381853F9D Validity Not Before: May 31 09:07:43 2024 GMT Not After : Jun 7 09:07:43 2024 GMT Subject: CN=66599360-6f93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5c:8d:0e:7d:f2:43:e4:45:52:5b:eb:96:2b: b7:14:64:4f:ac:a9:be:dc:67:8d:79:34:50:b6:55: 78:99:72:21:51:c2:8d:50:3e:cb:03:60:77:d0:d6: f4:c6:75:f5:31:6f:1e:45:13:fa:7b:01:a5:1b:b3: 71:08:41:a5:fb:41:af:a4:e6:9a:bf:b3:51:3b:84: 8a:d8:18:a2:86:f2:2a:f8:f0:66:d0:0f:6e:21:85: ba:39:a8:6c:9d:0f:74:ca:7c:80:cb:0a:0a:5b:36: 5f:66:22:e0:8d:aa:59:d8:1c:54:d2:6b:e3:09:90: 89:81:10:14:48:f4:39:8d:92:9c:6c:0c:41:38:11: 9e:50:c3:87:7e:35:45:25:dc:6c:f5:bf:4f:36:3e: ed:46:d7:0b:1b:c5:c2:1f:c3:e2:a8:f0:dd:51:3a: d6:6c:1c:f7:b4:13:ca:e0:a0:6f:d0:25:d5:59:32: b5:c7:94:71:e6:ec:5c:ee:c7:78:fc:c2:1a:22:2c: e3:60:5f:66:e2:e1:75:ef:6f:78:8e:a4:72:46:ad: f5:0d:52:f3:cc:63:63:4a:1d:6a:12:16:b9:ee:8a: 35:ac:40:5f:00:6e:7d:9c:c8:bb:97:99:0b:b4:23: 42:cd:9c:90:57:13:fc:25:13:7b:bb:33:87:97:8b: f4:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:0F:BC:AB:EB:B9:07:5F:E4:3C:B1:33:3B:C3:DC:87:4B:C2:72:B6 X509v3 Authority Key Identifier: keyid:E0:19:4A:A5:3B:58:21:B9:BD:0C:5C:7B:83:52:BB:13:81:85:3F:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BlKpTtYIbm9DFx7g1K7E4GFP50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:c2:3a:38:9b:8b:54:bc:15:f5:d4:33:b4:a5:2b:30:16:1b: 05:5a:e9:a3:2b:76:4f:3c:96:e9:43:73:4f:13:64:83:7d:b0: 01:33:de:87:56:e2:8d:c6:79:20:ee:44:26:60:a7:d2:07:3b: 66:7d:bd:07:0f:0d:20:b9:d7:73:d7:f2:a1:00:2d:51:80:95: 45:ba:ca:7f:7e:31:be:55:be:b6:96:a8:3e:00:8f:d9:b2:a5: 17:fb:c1:e6:61:f0:2e:d1:77:48:30:ee:08:ab:94:72:4f:bb: a2:aa:78:fe:6d:1d:df:a8:3d:83:48:0c:bc:24:25:cf:29:22: 96:81:72:f1:d4:c4:2c:47:b6:a0:08:b9:92:27:76:66:42:7a: 8b:dd:a4:d8:14:c9:86:2d:bf:c6:13:81:f6:1d:4f:ae:63:04: c5:04:a6:58:e4:a6:bc:30:9d:ed:30:f6:ea:55:3d:ee:ea:fa: 2f:6b:73:cf:19:9e:55:24:95:5f:50:42:f9:da:d0:24:a9:25: de:61:bb:ca:4b:1c:d3:e0:94:7e:75:44:56:37:f7:6a:68:ba: c6:f7:b1:7c:d1:0c:8c:f5:d3:fa:9b:bf:a4:c7:8a:46:74:fc: 1b:11:57:4d:3b:9c:67:26:2b:b3:17:88:0b:ec:13:d2:81:ee: 98:b8:65:fa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTBCNjExMC8GA1UEBRMoRTAxOTRBQTUzQjU4MjFCOUJEMEM1QzdCODM1MkJCMTM4 MTg1M0Y5RDAeFw0yNDA1MzEwOTA3NDNaFw0yNDA2MDcwOTA3NDNaMBgxFjAUBgNV BAMTDTY2NTk5MzYwLTZmOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWXI0OffJD5EVSW+uWK7cUZE+sqb7cZ415NFC2VXiZciFRwo1QPssDYHfQ1vTG dfUxbx5FE/p7AaUbs3EIQaX7Qa+k5pq/s1E7hIrYGKKG8ir48GbQD24hhbo5qGyd D3TKfIDLCgpbNl9mIuCNqlnYHFTSa+MJkImBEBRI9DmNkpxsDEE4EZ5Qw4d+NUUl 3Gz1v082Pu1G1wsbxcIfw+Ko8N1ROtZsHPe0E8rgoG/QJdVZMrXHlHHm7Fzux3j8 whoiLONgX2bi4XXvb3iOpHJGrfUNUvPMY2NKHWoSFrnuijWsQF8Abn2cyLuXmQu0 I0LNnJBXE/wlE3u7M4eXi/SlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvQ+8q+u5 B1/kPLEzO8Pch0vCcrYwHwYDVR0jBBgwFoAU4BlKpTtYIbm9DFx7g1K7E4GFP50w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFMEI2LzY5NTZBRTNFQkYz MDExRUVCRTRGM0MxRUM0RjlBRTAyLzRCbEtwVHRZSWJtOURGeDdnMUs3RTRHRlA1 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNEJsS3BUdFlJYm05REZ4N2cxSzdFNEdGUDUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRF MEI2LzY5NTZBRTNFQkYzMDExRUVCRTRGM0MxRUM0RjlBRTAyLzRCbEtwVHRZSWJt OURGeDdnMUs3RTRHRlA1MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFjCOjibi1S8FfXUM7SlKzAWGwVa6aMrdk88lulDc08TZIN9sAEz3odW 4o3GeSDuRCZgp9IHO2Z9vQcPDSC513PX8qEALVGAlUW6yn9+Mb5VvraWqD4Aj9my pRf7weZh8C7Rd0gw7girlHJPu6KqeP5tHd+oPYNIDLwkJc8pIpaBcvHUxCxHtqAI uZIndmZCeovdpNgUyYYtv8YTgfYdT65jBMUEpljkprwwne0w9upVPe7q+i9rc88Z nlUklV9QQvna0CSpJd5hu8pLHNPglH51RFY392pousb3sXzRDIz10/qbv6THikZ0 /BsRV007nGcmK7MXiAvsE9KB7pi4Zfo= -----END CERTIFICATE-----Generated at Fri May 31 10:42:21 2024 by rpki-client on console-fra.rpki-client.org