$ rpki-client -vvf rpki.apnic.net/member_repository/A9168336/19F75A6601CD11EAB865EA22C4F9AE02/5iRBKkJ5WJuewvqzIiurBibTElo.mft File: 5iRBKkJ5WJuewvqzIiurBibTElo.mft (raw, json) Hash identifier: zwgbI37RV74Zf+v2cJILVBmDB2lhvG1SBYiwNvO3Qyc= Subject key identifier: B2:4D:3F:1D:70:DB:4B:BB:B1:CD:DB:2E:05:54:ED:6C:FB:5B:54:31 Authority key identifier: E6:24:41:2A:42:79:58:9B:9E:C2:FA:B3:22:2B:AB:06:26:D3:12:5A Certificate issuer: /CN=A9168336/serialNumber=E624412A4279589B9EC2FAB3222BAB0626D3125A Certificate serial: 0BBB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iRBKkJ5WJuewvqzIiurBibTElo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168336/19F75A6601CD11EAB865EA22C4F9AE02/5iRBKkJ5WJuewvqzIiurBibTElo.mft Manifest number: 0BAD Signing time: Fri 31 May 2024 19:53:09 +0000 Manifest this update: Fri 31 May 2024 19:53:09 +0000 Manifest next update: Fri 07 Jun 2024 19:53:08 +0000 Files and hashes: 1: 5iRBKkJ5WJuewvqzIiurBibTElo.crl (hash: e7Dn7IcKM+oqTk8D5nyey745AdDqRsWFeTCAn1Q7gXM=) 2: BE4852941C2E11EE9A9A9940C4F9AE02.roa (hash: kbRGxh+eHT4yaX3DIe1fJAJpI0Ll4+Ql3O+or3Gu5JU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168336/19F75A6601CD11EAB865EA22C4F9AE02/5iRBKkJ5WJuewvqzIiurBibTElo.crl rsync://rpki.apnic.net/member_repository/A9168336/19F75A6601CD11EAB865EA22C4F9AE02/5iRBKkJ5WJuewvqzIiurBibTElo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iRBKkJ5WJuewvqzIiurBibTElo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 19:53:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3003 (0xbbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168336/serialNumber=E624412A4279589B9EC2FAB3222BAB0626D3125A Validity Not Before: May 31 19:53:09 2024 GMT Not After : Jun 7 19:53:08 2024 GMT Subject: CN=665a2aa5-689a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2d:c8:7f:bd:35:a2:01:f0:6b:5c:86:64:66: 8a:ff:da:b9:e9:93:b3:92:c9:cf:9d:e1:62:a1:e9: e0:a4:a3:62:2f:2b:53:43:d3:8d:7a:08:ec:e4:8f: 9e:fd:1d:dd:84:e1:42:b9:81:72:52:4a:f0:b9:f5: ea:e4:96:5d:a3:fc:2a:34:9d:4a:9d:2c:c3:89:d7: e6:c9:42:61:75:4c:3d:2c:77:43:2e:8c:f2:f3:49: 37:e5:47:73:70:81:7a:83:0b:30:89:04:f1:d7:6a: 70:08:df:ab:ea:97:c8:cf:0f:6f:3a:3d:cb:cb:2b: 28:28:bc:33:11:78:81:a8:37:da:2f:5d:9f:a6:12: 71:3c:ba:a7:8c:43:2d:7e:f7:df:3c:99:c4:42:c9: 4a:c6:dd:bd:f5:1b:45:0f:04:20:87:73:a6:a6:24: b3:3d:79:5c:07:86:e5:e9:bc:fd:df:81:a3:62:09: 59:05:d7:f7:b1:91:22:c5:a8:89:08:2b:07:07:05: 7a:69:1a:1c:ea:eb:96:73:04:b4:94:d3:37:b6:24: 81:b3:e4:8a:28:20:e2:4b:77:8c:bc:c7:e7:a2:27: 5d:8a:72:0c:f2:36:42:26:14:26:6d:f2:6c:a4:7c: 2b:4a:99:5d:2c:52:26:52:7f:bc:3b:bc:4e:80:d5: 19:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:4D:3F:1D:70:DB:4B:BB:B1:CD:DB:2E:05:54:ED:6C:FB:5B:54:31 X509v3 Authority Key Identifier: keyid:E6:24:41:2A:42:79:58:9B:9E:C2:FA:B3:22:2B:AB:06:26:D3:12:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168336/19F75A6601CD11EAB865EA22C4F9AE02/5iRBKkJ5WJuewvqzIiurBibTElo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iRBKkJ5WJuewvqzIiurBibTElo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168336/19F75A6601CD11EAB865EA22C4F9AE02/5iRBKkJ5WJuewvqzIiurBibTElo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:66:22:03:0a:3f:89:02:73:fa:da:a2:d1:f4:51:20:81:5b: c4:ff:da:13:d1:cc:d3:3e:ba:99:73:8d:09:ce:df:59:4b:64: 39:6c:7b:3c:a1:24:f1:2c:1e:f9:73:fe:78:52:eb:01:6d:fc: d8:c1:54:49:85:fb:d5:a7:6e:7b:17:36:46:36:04:93:9f:46: 7b:68:9a:f4:25:7f:2f:ba:a3:57:d3:06:8e:72:27:ef:7f:62: 65:95:72:0e:26:5e:40:4e:f8:2c:2d:28:b3:f5:2d:fd:43:c5: b8:84:c8:f8:0c:76:2c:52:67:ad:4e:25:37:90:2f:35:57:cf: c7:39:b7:70:9e:32:76:a6:c0:61:fa:16:28:4a:ae:16:91:3b: a3:c1:cd:83:54:dc:71:bd:f3:22:04:77:a5:03:4d:45:4b:7b: 07:3f:ba:23:fb:9e:9b:93:8c:21:9d:27:d8:a7:2d:bb:be:2b: d3:cf:17:33:a8:81:34:9f:a9:ca:85:67:e1:82:b8:3f:1d:92: ad:9c:dd:3e:40:20:c9:77:b9:df:a7:18:4c:16:59:4e:10:5d: 03:28:8e:3b:47:5d:8e:43:36:d5:09:b5:8e:b0:2a:d2:fb:6a: 64:00:65:d1:88:44:f9:90:b9:c8:db:2a:58:11:e9:06:5c:29: 63:dc:24:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgzMzYxMTAvBgNVBAUTKEU2MjQ0MTJBNDI3OTU4OUI5RUMyRkFCMzIyMkJBQjA2 MjZEMzEyNUEwHhcNMjQwNTMxMTk1MzA5WhcNMjQwNjA3MTk1MzA4WjAYMRYwFAYD VQQDEw02NjVhMmFhNS02ODlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoy3If701ogHwa1yGZGaK/9q56ZOzksnPneFioengpKNiLytTQ9ONegjs5I+e /R3dhOFCuYFyUkrwufXq5JZdo/wqNJ1KnSzDidfmyUJhdUw9LHdDLozy80k35Udz cIF6gwswiQTx12pwCN+r6pfIzw9vOj3LyysoKLwzEXiBqDfaL12fphJxPLqnjEMt fvffPJnEQslKxt299RtFDwQgh3OmpiSzPXlcB4bl6bz934GjYglZBdf3sZEixaiJ CCsHBwV6aRoc6uuWcwS0lNM3tiSBs+SKKCDiS3eMvMfnoiddinIM8jZCJhQmbfJs pHwrSpldLFImUn+8O7xOgNUZhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJNPx1w 20u7sc3bLgVU7Wz7W1QxMB8GA1UdIwQYMBaAFOYkQSpCeVibnsL6syIrqwYm0xJa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODMzNi8xOUY3NUE2NjAx Q0QxMUVBQjg2NUVBMjJDNEY5QUUwMi81aVJCS2tKNVdKdWV3dnF6SWl1ckJpYlRF bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVpUkJLa0o1V0p1ZXd2cXpJaXVyQmliVEVsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODMzNi8xOUY3NUE2NjAxQ0QxMUVBQjg2NUVBMjJDNEY5QUUwMi81aVJCS2tKNVdK dWV3dnF6SWl1ckJpYlRFbG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0ZiIDCj+JAnP62qLR9FEggVvE/9oT0czTPrqZc40Jzt9ZS2Q5bHs8 oSTxLB75c/54UusBbfzYwVRJhfvVp257FzZGNgSTn0Z7aJr0JX8vuqNX0waOcifv f2JllXIOJl5ATvgsLSiz9S39Q8W4hMj4DHYsUmetTiU3kC81V8/HObdwnjJ2psBh +hYoSq4WkTujwc2DVNxxvfMiBHelA01FS3sHP7oj+56bk4whnSfYpy27vivTzxcz qIE0n6nKhWfhgrg/HZKtnN0+QCDJd7nfpxhMFllOEF0DKI47R12OQzbVCbWOsCrS +2pkAGXRiET5kLnI2ypYEekGXClj3CSo -----END CERTIFICATE-----Generated at Fri May 31 22:13:05 2024 by rpki-client on console-fra.rpki-client.org