$ rpki-client -vvf rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft File: 2dCjxqTde6e0VN6uAa9nryxUxDM.mft (raw, json) Hash identifier: ocs5DKpjO9Q/MFg/Af3XcMYhEReLTEEemHexhoU3rpY= Subject key identifier: 7B:35:74:F3:8D:1A:30:8D:B8:A9:86:F8:DE:07:C2:E5:EE:95:4C:3D Authority key identifier: D9:D0:A3:C6:A4:DD:7B:A7:B4:54:DE:AE:01:AF:67:AF:2C:54:C4:33 Certificate issuer: /CN=A915C9B7/serialNumber=D9D0A3C6A4DD7BA7B454DEAE01AF67AF2C54C433 Certificate serial: 0721 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft Manifest number: 071A Signing time: Sat 18 May 2024 22:32:24 +0000 Manifest this update: Sat 18 May 2024 22:32:23 +0000 Manifest next update: Sat 25 May 2024 22:32:23 +0000 Files and hashes: 1: 2dCjxqTde6e0VN6uAa9nryxUxDM.crl (hash: 3XSU4YxGhyKVe02bo3Oz/FAI0v47n5A6vac5QR1Xc1k=) 2: D031F80AEE5C11EA9088DA37C4F9AE02.roa (hash: ri8Z3PYKESyj0m+apXiBwx/lR/nbb7JYltqwUIB1M5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.crl rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1825 (0x721) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C9B7/serialNumber=D9D0A3C6A4DD7BA7B454DEAE01AF67AF2C54C433 Validity Not Before: May 18 22:32:23 2024 GMT Not After : May 25 22:32:23 2024 GMT Subject: CN=66492c77-6548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:df:68:b9:f0:1c:85:55:62:b7:04:8a:ed:59: 8d:a4:19:76:dd:db:f3:d7:27:e1:52:e8:5b:ca:cb: 1e:ab:de:4f:98:79:cb:84:1a:04:db:52:18:e2:b5: c4:04:6a:9f:4f:8d:a4:de:f5:eb:5f:70:25:57:00: db:97:25:f4:2f:4b:7f:0b:cc:8d:3c:86:d9:77:36: 0b:9b:c6:ac:0c:50:bd:58:86:32:33:0c:e1:c7:24: d3:9a:cd:e1:21:7e:7c:86:34:3d:51:be:34:5d:9a: 33:f4:39:88:77:15:5f:2d:99:b1:15:89:06:30:a6: 42:cb:51:d3:16:d2:da:eb:3b:f8:31:a4:6b:80:73: eb:cd:f1:49:15:1c:f7:bf:be:a3:58:22:e0:da:d1: 01:93:dc:8a:65:bc:00:07:4b:d1:76:d3:4d:b8:58: eb:87:14:97:20:43:d4:c1:bc:26:5e:6d:dd:c7:5c: aa:de:c7:28:f2:52:dd:35:91:61:73:81:68:db:9b: 0d:a7:8a:db:e7:71:a0:d5:6a:e1:76:4f:1f:5a:57: 67:5f:5c:56:a7:b1:8c:73:f8:b4:0c:59:c6:66:dd: 42:a7:b7:22:3b:93:4e:65:bf:10:b1:0f:32:01:9e: 61:ac:4b:2d:fa:48:80:02:1f:f4:99:1e:62:17:2f: f2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:35:74:F3:8D:1A:30:8D:B8:A9:86:F8:DE:07:C2:E5:EE:95:4C:3D X509v3 Authority Key Identifier: keyid:D9:D0:A3:C6:A4:DD:7B:A7:B4:54:DE:AE:01:AF:67:AF:2C:54:C4:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:93:b5:47:8c:d4:0a:93:ff:58:35:d8:a3:b9:60:f1:ce:c4: d4:34:4c:f3:8e:35:7f:20:1f:ce:5b:a4:84:24:04:4b:bf:4b: ff:99:d9:49:31:83:f4:76:f5:59:d5:2c:6d:e9:2d:96:d8:3a: 68:45:41:5f:25:fe:49:4e:94:5b:af:09:a1:09:2c:f5:a9:63: e1:8e:85:c9:cb:98:2e:40:e6:b8:4f:a8:6d:40:83:e0:73:39: 94:2f:cc:4f:f3:06:59:68:fd:ed:79:5d:39:af:5f:11:60:eb: b1:73:94:8e:fe:af:ea:9a:18:f5:e0:0e:f4:77:32:75:9c:65: 25:35:b0:63:7c:d5:db:19:b5:88:8f:65:54:58:26:c0:6f:44: 27:43:92:9a:80:a8:dc:63:2c:a9:11:f8:5b:16:43:db:9e:c5: 90:b1:90:ac:10:8d:1d:6d:e0:6b:8b:e4:ce:c3:9f:c3:db:02: cb:d0:a1:6c:4b:ea:d5:dc:2e:b0:9c:6a:99:85:4b:ae:7f:fd: 2c:71:f7:94:82:dc:0d:49:0f:20:0d:47:d6:df:b5:f2:f5:2b: 7e:7b:1c:67:f9:e8:29:83:df:21:53:cf:57:83:bb:d3:d0:3b: c2:dc:77:1d:ed:99:cf:26:f7:d6:38:31:d5:b9:10:8c:c8:27: dc:7d:30:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM5QjcxMTAvBgNVBAUTKEQ5RDBBM0M2QTRERDdCQTdCNDU0REVBRTAxQUY2N0FG MkM1NEM0MzMwHhcNMjQwNTE4MjIzMjIzWhcNMjQwNTI1MjIzMjIzWjAYMRYwFAYD VQQDEw02NjQ5MmM3Ny02NTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxt9oufAchVVitwSK7VmNpBl23dvz1yfhUuhbysseq95PmHnLhBoE21IY4rXE BGqfT42k3vXrX3AlVwDblyX0L0t/C8yNPIbZdzYLm8asDFC9WIYyMwzhxyTTms3h IX58hjQ9Ub40XZoz9DmIdxVfLZmxFYkGMKZCy1HTFtLa6zv4MaRrgHPrzfFJFRz3 v76jWCLg2tEBk9yKZbwAB0vRdtNNuFjrhxSXIEPUwbwmXm3dx1yq3sco8lLdNZFh c4Fo25sNp4rb53Gg1Wrhdk8fWldnX1xWp7GMc/i0DFnGZt1Cp7ciO5NOZb8QsQ8y AZ5hrEst+kiAAh/0mR5iFy/ywQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHs1dPON GjCNuKmG+N4HwuXulUw9MB8GA1UdIwQYMBaAFNnQo8ak3XuntFTergGvZ68sVMQz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzlCNy84QzI2NEZEMkVF NUExMUVBQUQ3NjkwMzNDNEY5QUUwMi8yZENqeHFUZGU2ZTBWTjZ1QWE5bnJ5eFV4 RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkQ2p4cVRkZTZlMFZONnVBYTlucnl4VXhETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzlCNy84QzI2NEZEMkVFNUExMUVBQUQ3NjkwMzNDNEY5QUUwMi8yZENqeHFUZGU2 ZTBWTjZ1QWE5bnJ5eFV4RE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHk7VHjNQKk/9YNdijuWDxzsTUNEzzjjV/IB/OW6SEJARLv0v/mdlJ MYP0dvVZ1Sxt6S2W2DpoRUFfJf5JTpRbrwmhCSz1qWPhjoXJy5guQOa4T6htQIPg czmUL8xP8wZZaP3teV05r18RYOuxc5SO/q/qmhj14A70dzJ1nGUlNbBjfNXbGbWI j2VUWCbAb0QnQ5KagKjcYyypEfhbFkPbnsWQsZCsEI0dbeBri+TOw5/D2wLL0KFs S+rV3C6wnGqZhUuuf/0scfeUgtwNSQ8gDUfW37Xy9St+exxn+egpg98hU89Xg7vT 0DvC3Hcd7ZnPJvfWODHVuRCMyCfcfTD/ -----END CERTIFICATE-----Generated at Sun May 19 00:16:14 2024 by rpki-client on console-fra.rpki-client.org