$ rpki-client -vvf rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft File: rSHpWiYaLoAl4zypVIJcFHCzt6M.mft (raw, json) Hash identifier: K8V3ra/x7J45UQoQ6QXoIJu8qFyocmktd7duz6xDOUM= Subject key identifier: 73:09:84:E5:25:09:A9:59:51:97:AE:F9:D9:38:C4:E4:22:14:A3:B2 Authority key identifier: AD:21:E9:5A:26:1A:2E:80:25:E3:3C:A9:54:82:5C:14:70:B3:B7:A3 Certificate issuer: /CN=A91508C4/serialNumber=AD21E95A261A2E8025E33CA954825C1470B3B7A3 Certificate serial: 0651 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft Manifest number: 064D Signing time: Sat 18 May 2024 23:38:28 +0000 Manifest this update: Sat 18 May 2024 23:38:27 +0000 Manifest next update: Sat 25 May 2024 23:38:27 +0000 Files and hashes: 1: rSHpWiYaLoAl4zypVIJcFHCzt6M.crl (hash: yUowWL4uCToTSCb0bJF1VqVNCXziFrTjEUswP+1V4/E=) 2: B855A21C3E1211EB8D23EB6CC4F9AE02.roa (hash: HDKYcqzQ1+KeIp+18/aWUGSKGmZ8AfbGEy7O86H1f4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.crl rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1617 (0x651) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508C4/serialNumber=AD21E95A261A2E8025E33CA954825C1470B3B7A3 Validity Not Before: May 18 23:38:27 2024 GMT Not After : May 25 23:38:27 2024 GMT Subject: CN=66493bf3-feb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:02:8c:04:50:e8:f2:9e:34:28:04:f0:54:ec: 36:75:9e:8b:39:70:25:79:d3:bc:aa:45:0b:5a:ea: 06:bb:ae:21:dd:bb:a7:c4:09:e6:35:1b:2b:b9:7d: 4e:45:a4:8c:9f:2c:e6:87:b4:ab:fe:4c:22:63:f3: f7:cd:49:52:09:e4:75:10:c0:49:33:8e:7a:3e:42: 5d:f0:ee:df:0b:ec:b8:4a:14:99:bf:eb:07:df:88: 0e:94:11:a8:62:bb:48:8e:13:0a:10:a7:4b:92:67: 0f:d5:b5:1f:5e:ea:49:8c:30:de:2a:87:d6:57:9f: 41:7c:39:98:0c:0d:21:6a:d8:86:4e:88:1d:29:5f: 63:cb:b7:a8:7c:85:ef:ef:85:9e:f9:14:61:7a:c7: c3:87:09:aa:ea:60:34:dc:a0:17:b8:9c:75:90:cc: a5:ef:30:b4:b9:e3:40:9b:38:52:bc:45:60:61:ea: 03:25:f3:70:b1:4f:7a:17:51:35:a2:db:01:5d:66: 0c:0f:2c:e2:ae:4f:94:a8:49:ce:c2:09:10:d8:79: 4b:be:d6:96:25:35:43:82:ae:88:d4:5d:61:9c:70: 9b:5f:ee:3d:9b:21:12:73:1c:f9:61:7a:4e:05:21: 40:07:b7:e0:c4:b7:f6:9a:06:c9:ca:b1:c3:3d:59: c0:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:09:84:E5:25:09:A9:59:51:97:AE:F9:D9:38:C4:E4:22:14:A3:B2 X509v3 Authority Key Identifier: keyid:AD:21:E9:5A:26:1A:2E:80:25:E3:3C:A9:54:82:5C:14:70:B3:B7:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:bd:48:64:2e:cd:51:6f:e0:d8:9e:d2:a7:2e:52:63:a2:63: 1f:c1:bf:68:aa:65:49:d2:3c:de:af:e0:29:f0:67:7e:66:12: 24:d8:7e:6f:e8:82:2d:5e:22:a9:22:9b:fb:19:2d:e9:c1:ac: 8e:4b:44:fb:9f:36:4e:b1:67:2b:43:58:f5:f6:ff:d8:2a:1c: ef:30:c6:83:1f:8f:3e:4d:5c:af:a7:ec:aa:57:04:df:16:05: 60:21:ae:1a:14:d1:e3:b2:a0:76:95:81:46:fd:59:15:88:1c: af:5f:ec:3b:af:24:7f:d1:23:45:3d:22:95:62:99:f8:2d:c2: f0:48:84:2b:c9:fa:b6:2a:d6:e8:f0:c1:51:16:13:74:7e:ad: 5f:2a:6a:49:32:32:b5:43:d5:85:64:2c:e9:99:3e:9e:4a:24: 7c:4b:33:9d:6f:80:18:9b:a7:0f:b8:4f:52:50:01:9c:1d:ef: 40:e0:23:30:cb:9c:91:e5:25:d8:a5:9d:36:71:db:5a:77:66: 35:54:ba:cc:70:49:b1:66:1b:60:ef:ae:bc:3a:c3:7c:6d:da: 88:9e:e4:09:e9:f5:34:a9:76:ee:04:b9:47:5d:54:32:26:63: ba:b7:9f:bb:ff:c6:73:f3:1b:13:2e:f4:65:ee:15:f9:34:1c: 65:d5:17:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QzQxMTAvBgNVBAUTKEFEMjFFOTVBMjYxQTJFODAyNUUzM0NBOTU0ODI1QzE0 NzBCM0I3QTMwHhcNMjQwNTE4MjMzODI3WhcNMjQwNTI1MjMzODI3WjAYMRYwFAYD VQQDEw02NjQ5M2JmMy1mZWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3AKMBFDo8p40KATwVOw2dZ6LOXAledO8qkULWuoGu64h3bunxAnmNRsruX1O RaSMnyzmh7Sr/kwiY/P3zUlSCeR1EMBJM456PkJd8O7fC+y4ShSZv+sH34gOlBGo YrtIjhMKEKdLkmcP1bUfXupJjDDeKofWV59BfDmYDA0hatiGTogdKV9jy7eofIXv 74We+RRhesfDhwmq6mA03KAXuJx1kMyl7zC0ueNAmzhSvEVgYeoDJfNwsU96F1E1 otsBXWYMDyzirk+UqEnOwgkQ2HlLvtaWJTVDgq6I1F1hnHCbX+49myEScxz5YXpO BSFAB7fgxLf2mgbJyrHDPVnA5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHMJhOUl CalZUZeu+dk4xOQiFKOyMB8GA1UdIwQYMBaAFK0h6VomGi6AJeM8qVSCXBRws7ej MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhDNC81MzJGRENEQzNF MTExMUVCQUUwMDIxNkNDNEY5QUUwMi9yU0hwV2lZYUxvQWw0enlwVklKY0ZIQ3p0 Nk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JTSHBXaVlhTG9BbDR6eXBWSUpjRkhDenQ2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhDNC81MzJGRENEQzNFMTExMUVCQUUwMDIxNkNDNEY5QUUwMi9yU0hwV2lZYUxv QWw0enlwVklKY0ZIQ3p0Nk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPvUhkLs1Rb+DYntKnLlJjomMfwb9oqmVJ0jzer+Ap8Gd+ZhIk2H5v 6IItXiKpIpv7GS3pwayOS0T7nzZOsWcrQ1j19v/YKhzvMMaDH48+TVyvp+yqVwTf FgVgIa4aFNHjsqB2lYFG/VkViByvX+w7ryR/0SNFPSKVYpn4LcLwSIQryfq2Ktbo 8MFRFhN0fq1fKmpJMjK1Q9WFZCzpmT6eSiR8SzOdb4AYm6cPuE9SUAGcHe9A4CMw y5yR5SXYpZ02cdtad2Y1VLrMcEmxZhtg7668OsN8bdqInuQJ6fU0qXbuBLlHXVQy JmO6t5+7/8Zz8xsTLvRl7hX5NBxl1Rfn -----END CERTIFICATE-----Generated at Sun May 19 00:30:15 2024 by rpki-client on console-ams.rpki-client.org