$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft File: 1lqglKUeKDl1O1khC2zyxUkVwB4.mft (raw, json) Hash identifier: 4F9hWbKe3slCw4z8jieUH+bCTrXXqqqpaZOhioTYmzs= Subject key identifier: B9:88:58:F1:45:34:E1:97:65:6D:47:5D:92:EB:2A:8F:16:40:2E:F9 Authority key identifier: D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E Certificate issuer: /CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Certificate serial: 091D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft Manifest number: 0917 Signing time: Fri 31 May 2024 21:55:00 +0000 Manifest this update: Fri 31 May 2024 21:54:59 +0000 Manifest next update: Fri 07 Jun 2024 21:54:59 +0000 Files and hashes: 1: 1lqglKUeKDl1O1khC2zyxUkVwB4.crl (hash: 7Xc2PT4nHF4Ek4BbALpiehWECzfWI5QxDdOKVIynako=) 2: 220853047F2211EA8E730F35C4F9AE02.roa (hash: xV0WLxYqqQFCLmI/y4DVLsG2EiamVNg0WSby5MmNSBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:54:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2333 (0x91d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Validity Not Before: May 31 21:54:59 2024 GMT Not After : Jun 7 21:54:59 2024 GMT Subject: CN=665a4734-1109 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:67:8a:5c:78:02:39:f1:32:20:22:50:1b:a2: 88:45:c3:0e:24:9e:fe:cf:c9:b4:de:7a:6d:7b:0a: c6:99:c0:cb:c2:d5:10:a9:23:4c:86:3e:d9:35:84: be:68:6e:1d:92:bb:1f:ab:2f:96:a5:d6:4a:04:d8: 0c:27:b8:55:c2:15:b7:ea:82:a9:0c:0d:d6:79:d3: 3a:76:c4:ce:c7:45:59:64:d4:e2:80:1d:0f:4f:76: 65:d2:46:c4:2e:78:e6:cf:05:b8:b9:9c:58:f0:bd: e4:9c:69:45:c5:5d:ea:5b:f5:0c:15:f2:7a:2e:70: 79:28:03:7f:0a:d2:be:b9:b2:13:8b:0d:7d:ee:dc: dc:df:7b:74:f5:df:67:23:f3:4b:29:f7:fb:ed:a2: 82:1d:32:93:29:a6:9f:91:e8:7f:d8:58:fa:42:a6: 1e:34:24:e9:87:f3:f6:56:0b:4f:1f:65:3d:83:3b: 5a:9a:72:31:ca:cd:d7:82:c9:85:df:c1:11:61:9a: 95:21:b5:30:11:f9:5b:25:d9:b8:12:e6:38:39:20: 73:10:b6:e0:a5:1a:90:a5:96:f3:45:cb:5d:69:c7: dc:43:e7:1e:66:ba:57:e3:0b:08:7d:00:77:d2:53: 58:df:83:3b:3e:60:76:8e:e9:3f:b1:09:73:e3:4d: 27:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:88:58:F1:45:34:E1:97:65:6D:47:5D:92:EB:2A:8F:16:40:2E:F9 X509v3 Authority Key Identifier: keyid:D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:52:e3:00:0e:cb:45:27:01:f2:8c:c7:d3:23:9f:72:2f:0c: f2:06:9a:54:e4:d7:3c:68:ec:b7:e9:ee:25:0e:c7:02:8f:9c: 4d:e2:d7:8c:9d:e9:95:5b:9c:ed:fa:c0:2c:73:30:61:ea:19: b3:12:e7:f2:06:66:c4:00:42:ef:54:e3:6a:6d:39:d8:d7:f2: ee:62:1b:84:3a:33:4b:8c:75:73:40:0b:f6:3b:b1:c9:6a:36: 26:ac:9d:a2:0d:87:dc:93:17:10:83:ab:fe:43:a3:b9:61:3c: cf:ac:ae:3e:76:10:9a:a8:1a:88:7d:d0:69:d0:60:4e:cf:9f: d9:11:fe:4b:64:b4:ec:0a:da:0a:7e:88:b7:50:39:d1:ab:10: 69:cd:da:e4:1a:4a:a9:a1:cc:e1:ce:ed:c9:85:06:78:42:07: d2:9b:39:62:fc:7c:66:02:6e:01:e8:13:b8:74:97:df:e5:e1: 9e:d0:af:cf:4b:1b:cd:28:e5:93:ed:a6:84:9a:60:27:69:11: 78:9d:85:8d:12:16:40:b9:db:0d:14:35:3c:67:17:fa:77:92: 06:28:63:9e:6e:85:44:45:b8:30:37:08:8c:7a:c7:9d:17:ea: a1:ef:64:c3:f3:26:9c:ee:cc:09:12:95:f3:6d:76:60:e6:c0: eb:79:8d:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxQUExMTAvBgNVBAUTKEQ2NUFBMDk0QTUxRTI4Mzk3NTNCNTkyMTBCNkNGMkM1 NDkxNUMwMUUwHhcNMjQwNTMxMjE1NDU5WhcNMjQwNjA3MjE1NDU5WjAYMRYwFAYD VQQDEw02NjVhNDczNC0xMTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGeKXHgCOfEyICJQG6KIRcMOJJ7+z8m03nptewrGmcDLwtUQqSNMhj7ZNYS+ aG4dkrsfqy+WpdZKBNgMJ7hVwhW36oKpDA3WedM6dsTOx0VZZNTigB0PT3Zl0kbE LnjmzwW4uZxY8L3knGlFxV3qW/UMFfJ6LnB5KAN/CtK+ubITiw197tzc33t09d9n I/NLKff77aKCHTKTKaafkeh/2Fj6QqYeNCTph/P2VgtPH2U9gztamnIxys3XgsmF 38ERYZqVIbUwEflbJdm4EuY4OSBzELbgpRqQpZbzRctdacfcQ+ceZrpX4wsIfQB3 0lNY34M7PmB2juk/sQlz400nsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmIWPFF NOGXZW1HXZLrKo8WQC75MB8GA1UdIwQYMBaAFNZaoJSlHig5dTtZIQts8sVJFcAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFBQS82QzlEMjYzMDdG MjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtEbDFPMWtoQzJ6eXhVa1Z3 QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFscWdsS1VlS0RsMU8xa2hDMnp5eFVrVndCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFBQS82QzlEMjYzMDdGMjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtE bDFPMWtoQzJ6eXhVa1Z3QjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiUuMADstFJwHyjMfTI59yLwzyBppU5Nc8aOy36e4lDscCj5xN4teM nemVW5zt+sAsczBh6hmzEufyBmbEAELvVONqbTnY1/LuYhuEOjNLjHVzQAv2O7HJ ajYmrJ2iDYfckxcQg6v+Q6O5YTzPrK4+dhCaqBqIfdBp0GBOz5/ZEf5LZLTsCtoK foi3UDnRqxBpzdrkGkqpoczhzu3JhQZ4QgfSmzli/HxmAm4B6BO4dJff5eGe0K/P SxvNKOWT7aaEmmAnaRF4nYWNEhZAudsNFDU8Zxf6d5IGKGOeboVERbgwNwiMesed F+qh72TD8yac7swJEpXzbXZg5sDreY02 -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:15 2024 by rpki-client on console-ams.rpki-client.org