$ rpki-client -vvf rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft File: 5cOmhsg97m0zv-xUHqy0pKCJknk.mft (raw, json) Hash identifier: Tt4wbo9v0bZXMUd6+yEpz1p9OaDMquoZvghqpQRFVI8= Subject key identifier: B1:AE:4E:2D:2F:B9:8C:03:EF:50:91:EC:4D:C6:E4:C6:73:EC:D9:45 Authority key identifier: E5:C3:A6:86:C8:3D:EE:6D:33:BF:EC:54:1E:AC:B4:A4:A0:89:92:79 Certificate issuer: /CN=A9153AA6/serialNumber=E5C3A686C83DEE6D33BFEC541EACB4A4A0899279 Certificate serial: 160A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft Manifest number: 1602 Signing time: Sat 18 May 2024 17:12:21 +0000 Manifest this update: Sat 18 May 2024 17:12:21 +0000 Manifest next update: Sat 25 May 2024 17:12:21 +0000 Files and hashes: 1: 5cOmhsg97m0zv-xUHqy0pKCJknk.crl (hash: wRTXjItvfEq97jxdJ1QBkC+eQCqPb7MVku5F/yspqeM=) 2: 99C6F94CF52511E7948D5A0BC4F9AE02.roa (hash: +YVTXBVMB4NVDrSuu5VfKltIOz41e+WgOeU4jEE7Kc8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.crl rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5642 (0x160a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153AA6/serialNumber=E5C3A686C83DEE6D33BFEC541EACB4A4A0899279 Validity Not Before: May 18 17:12:21 2024 GMT Not After : May 25 17:12:21 2024 GMT Subject: CN=6648e175-b690 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d8:68:21:b6:33:f7:83:cf:ad:2b:66:9a:27: aa:87:16:d5:c3:0d:dd:fd:62:9d:ed:7e:83:b1:01: 8e:73:c1:7c:b3:1a:40:eb:c1:db:e0:0e:c9:8f:3b: 88:7a:b8:ee:bd:6e:cd:2e:0f:11:b3:1b:98:23:4b: a2:ac:5d:4b:ce:8e:6a:b0:fb:89:08:4e:d5:8f:b3: 02:79:44:3e:6d:cc:01:fb:b1:61:cc:78:8c:b7:3e: e4:39:1a:49:fd:35:00:bc:ba:08:10:f4:6f:45:d3: 92:f5:8a:a1:9d:17:90:9d:f9:01:97:bc:d5:de:d4: 74:c0:ed:4d:8a:a3:b5:c2:10:25:35:61:a0:77:82: 3b:cc:50:b6:3a:d1:54:16:ea:eb:8f:98:83:d4:83: d9:b0:48:8c:57:6d:c4:6f:55:86:1a:27:97:5c:9a: 86:19:87:98:13:f4:07:2d:0f:00:9b:3f:55:e0:c3: 9d:f3:0f:84:6f:09:a8:70:34:b7:97:ec:40:51:a9: 93:97:85:59:bd:2f:d9:cf:b6:1f:07:c3:6a:17:d8: fa:0a:a1:5d:70:ff:d8:b5:ef:11:d5:e2:5e:1c:1e: fc:72:38:f7:19:8e:8c:96:9c:44:12:af:b9:f3:c2: fc:4d:e0:e8:fa:96:b5:47:98:e3:7d:58:58:3b:c3: 50:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:AE:4E:2D:2F:B9:8C:03:EF:50:91:EC:4D:C6:E4:C6:73:EC:D9:45 X509v3 Authority Key Identifier: keyid:E5:C3:A6:86:C8:3D:EE:6D:33:BF:EC:54:1E:AC:B4:A4:A0:89:92:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:35:bd:13:6a:6f:c6:cf:68:4b:4e:91:de:6f:ae:65:d0:5c: cf:3f:81:3a:4a:97:5a:d4:44:1f:f4:fe:b3:ae:6d:8d:1f:82: 88:7c:fb:44:ec:ce:a3:18:28:a3:b8:e2:66:7e:6e:06:1f:0a: fd:63:bc:b4:24:b0:13:11:c9:62:26:a4:a3:cc:1f:4e:cc:d0: 47:44:e1:61:89:1d:7e:b9:fd:17:2f:79:d0:16:77:66:1a:21: 72:38:27:cb:e7:2d:08:11:89:3d:b3:db:2e:78:0b:c2:52:3f: cb:f7:56:a6:80:27:8b:d2:7c:4e:8c:f2:73:38:f2:f0:2e:7b: e1:27:30:40:48:de:25:fb:9b:a8:42:60:f5:6b:ba:b9:b9:db: b0:20:3d:78:1e:d6:83:13:95:75:25:f3:ec:42:33:bf:22:e6: e3:dd:12:8f:85:b1:0b:5d:89:3e:db:51:35:b0:ec:a7:ed:83: a0:dc:ae:ca:8e:90:f9:d3:92:39:41:1f:74:52:aa:1e:4b:04: 99:b0:d7:4f:e9:1e:2f:d7:c0:9e:8d:a6:85:74:64:ed:02:9c: 5e:f0:45:c1:b6:36:74:40:07:47:c0:14:e3:04:e3:56:ba:e2: ce:97:ea:4e:8c:95:c4:6e:ab:e3:cb:44:db:84:6d:57:ae:06: 03:fb:b9:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNBQTYxMTAvBgNVBAUTKEU1QzNBNjg2QzgzREVFNkQzM0JGRUM1NDFFQUNCNEE0 QTA4OTkyNzkwHhcNMjQwNTE4MTcxMjIxWhcNMjQwNTI1MTcxMjIxWjAYMRYwFAYD VQQDEw02NjQ4ZTE3NS1iNjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9hoIbYz94PPrStmmieqhxbVww3d/WKd7X6DsQGOc8F8sxpA68Hb4A7JjzuI erjuvW7NLg8RsxuYI0uirF1Lzo5qsPuJCE7Vj7MCeUQ+bcwB+7FhzHiMtz7kORpJ /TUAvLoIEPRvRdOS9YqhnReQnfkBl7zV3tR0wO1NiqO1whAlNWGgd4I7zFC2OtFU Furrj5iD1IPZsEiMV23Eb1WGGieXXJqGGYeYE/QHLQ8Amz9V4MOd8w+EbwmocDS3 l+xAUamTl4VZvS/Zz7YfB8NqF9j6CqFdcP/Yte8R1eJeHB78cjj3GY6MlpxEEq+5 88L8TeDo+pa1R5jjfVhYO8NQuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGuTi0v uYwD71CR7E3G5MZz7NlFMB8GA1UdIwQYMBaAFOXDpobIPe5tM7/sVB6stKSgiZJ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0FBNi85QzNEODdFNkY1 MjQxMUU3OTY0NEIwMDlDNEY5QUUwMi81Y09taHNnOTdtMHp2LXhVSHF5MHBLQ0pr bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVjT21oc2c5N20wenYteFVIcXkwcEtDSmtuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0FBNi85QzNEODdFNkY1MjQxMUU3OTY0NEIwMDlDNEY5QUUwMi81Y09taHNnOTdt MHp2LXhVSHF5MHBLQ0prbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATNb0Tam/Gz2hLTpHeb65l0FzPP4E6Spda1EQf9P6zrm2NH4KIfPtE 7M6jGCijuOJmfm4GHwr9Y7y0JLATEcliJqSjzB9OzNBHROFhiR1+uf0XL3nQFndm GiFyOCfL5y0IEYk9s9sueAvCUj/L91amgCeL0nxOjPJzOPLwLnvhJzBASN4l+5uo QmD1a7q5uduwID14HtaDE5V1JfPsQjO/Iubj3RKPhbELXYk+21E1sOyn7YOg3K7K jpD505I5QR90UqoeSwSZsNdP6R4v18CejaaFdGTtApxe8EXBtjZ0QAdHwBTjBONW uuLOl+pOjJXEbqvjy0TbhG1XrgYD+7la -----END CERTIFICATE-----Generated at Sat May 18 17:37:32 2024 by rpki-client on console-fra.rpki-client.org