$ rpki-client -vvf rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/1mk-41xy689CY8aYRW2C9o5xT1w.mft File: 1mk-41xy689CY8aYRW2C9o5xT1w.mft (raw, json) Hash identifier: R1BELry0b10dwi5O5u9VNsziIr/LdmipmwmaJl7U9Hk= Subject key identifier: 28:DE:4E:20:59:D7:C3:8E:CD:EF:E7:61:B7:EB:75:FE:FB:D9:D4:41 Authority key identifier: D6:69:3E:E3:5C:72:EB:CF:42:63:C6:98:45:6D:82:F6:8E:71:4F:5C Certificate issuer: /CN=A916EF5E/serialNumber=D6693EE35C72EBCF4263C698456D82F68E714F5C Certificate serial: 08C3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1mk-41xy689CY8aYRW2C9o5xT1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/1mk-41xy689CY8aYRW2C9o5xT1w.mft Manifest number: 08C3 Signing time: Fri 31 May 2024 17:29:18 +0000 Manifest this update: Fri 31 May 2024 17:29:17 +0000 Manifest next update: Fri 07 Jun 2024 17:29:17 +0000 Files and hashes: 1: 1mk-41xy689CY8aYRW2C9o5xT1w.crl (hash: sB4vxQQKw6ucn3UWHxLr6q/D5UuKTVPgS8x3G05jpQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/1mk-41xy689CY8aYRW2C9o5xT1w.crl rsync://rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/1mk-41xy689CY8aYRW2C9o5xT1w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1mk-41xy689CY8aYRW2C9o5xT1w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2243 (0x8c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EF5E/serialNumber=D6693EE35C72EBCF4263C698456D82F68E714F5C Validity Not Before: May 31 17:29:17 2024 GMT Not After : Jun 7 17:29:17 2024 GMT Subject: CN=665a08ee-33a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e9:28:88:f5:37:9f:82:eb:79:e9:05:9e:4a: 30:56:2b:aa:08:79:5e:38:fd:1e:c5:18:fd:78:40: 42:02:61:40:e4:42:01:4c:06:fb:f4:c6:c3:16:8b: e9:5a:3f:2e:c1:7c:e0:59:ef:d4:ff:19:8a:f6:51: be:fd:bb:56:e6:dc:ac:59:c4:33:6c:32:9d:66:55: 3d:4d:eb:d3:72:d9:6c:fc:4e:8f:28:59:c6:ce:12: f4:cb:6a:f7:25:ad:65:9e:03:38:dd:05:95:18:0d: f4:cf:9d:f1:57:9d:ef:f0:a5:eb:ff:1b:d2:56:28: 9b:c0:c4:c3:e3:82:67:53:f6:6a:c9:b3:33:7d:3d: 9c:98:28:25:a5:9e:4f:9c:05:60:86:30:65:0d:b0: ed:5f:7c:14:b9:94:83:5c:23:34:ea:86:0c:da:7b: 44:7e:4b:1c:9a:ec:6f:16:fe:fa:60:2c:de:0c:90: e0:ab:61:67:fa:ad:a2:ef:eb:15:59:a1:27:97:cd: e7:c7:ab:60:71:1c:55:8e:b2:7d:5a:d7:56:c2:22: f7:c3:22:65:0a:a2:b2:f0:df:b2:52:17:01:e3:20: 0d:80:25:68:e3:44:39:13:97:49:23:9e:24:99:87: b9:94:a7:1f:af:f1:e5:8b:a1:d0:f0:ce:fe:59:6e: 35:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:DE:4E:20:59:D7:C3:8E:CD:EF:E7:61:B7:EB:75:FE:FB:D9:D4:41 X509v3 Authority Key Identifier: keyid:D6:69:3E:E3:5C:72:EB:CF:42:63:C6:98:45:6D:82:F6:8E:71:4F:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/1mk-41xy689CY8aYRW2C9o5xT1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1mk-41xy689CY8aYRW2C9o5xT1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/1mk-41xy689CY8aYRW2C9o5xT1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:f1:ff:47:7a:b2:1f:95:0a:bb:e8:b5:33:e6:e7:e5:a6:89: cc:59:d4:0c:b3:30:1d:99:0c:53:68:86:c4:8e:1f:a4:2c:ce: f2:06:65:05:6d:4d:46:0a:43:24:5f:21:1b:9c:d6:41:bf:05: f0:e0:d0:bb:3c:47:43:45:91:84:be:05:76:20:b4:5c:f2:c9: 28:6f:fa:00:b1:ac:45:60:d4:2a:ec:16:e7:a3:58:5f:c3:24: 8c:ed:43:6a:7e:35:8d:5d:30:2c:40:97:78:dd:55:f8:78:ba: 71:28:d2:27:22:46:83:38:3a:78:d9:a3:bd:bb:15:40:ca:d1: 17:b9:e7:b6:cf:11:99:3a:11:0c:84:8d:d8:dc:05:6b:16:92: a6:8b:58:fe:d6:43:ae:8e:ef:a9:2f:13:13:6e:8f:fa:b2:d5: aa:cd:7f:7f:4c:46:a5:7d:db:29:79:ed:bc:8f:d9:e2:09:66: d5:52:10:51:c6:d7:5c:8c:27:81:97:c5:be:cf:e0:fe:60:b0: cc:b9:91:c9:0b:5d:44:4a:24:ae:d0:83:90:f1:ab:83:ab:cd: 73:70:b9:c8:80:3b:b6:e3:1d:a6:b0:2c:3b:74:ea:da:8f:cc: 6b:72:bf:53:4d:8f:ae:ca:06:89:54:f3:26:9a:04:46:dd:d5: 1c:47:95:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVGNUUxMTAvBgNVBAUTKEQ2NjkzRUUzNUM3MkVCQ0Y0MjYzQzY5ODQ1NkQ4MkY2 OEU3MTRGNUMwHhcNMjQwNTMxMTcyOTE3WhcNMjQwNjA3MTcyOTE3WjAYMRYwFAYD VQQDEw02NjVhMDhlZS0zM2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5OkoiPU3n4LreekFnkowViuqCHleOP0exRj9eEBCAmFA5EIBTAb79MbDFovp Wj8uwXzgWe/U/xmK9lG+/btW5tysWcQzbDKdZlU9TevTctls/E6PKFnGzhL0y2r3 Ja1lngM43QWVGA30z53xV53v8KXr/xvSViibwMTD44JnU/ZqybMzfT2cmCglpZ5P nAVghjBlDbDtX3wUuZSDXCM06oYM2ntEfkscmuxvFv76YCzeDJDgq2Fn+q2i7+sV WaEnl83nx6tgcRxVjrJ9WtdWwiL3wyJlCqKy8N+yUhcB4yANgCVo40Q5E5dJI54k mYe5lKcfr/Hli6HQ8M7+WW411wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCjeTiBZ 18OOze/nYbfrdf772dRBMB8GA1UdIwQYMBaAFNZpPuNccuvPQmPGmEVtgvaOcU9c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUY1RS8yQ0U0OTRDMDhG OTYxMUVBOUFDQjdFN0ZDNEY5QUUwMi8xbWstNDF4eTY4OUNZOGFZUlcyQzlvNXhU MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFtay00MXh5Njg5Q1k4YVlSVzJDOW81eFQxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUY1RS8yQ0U0OTRDMDhGOTYxMUVBOUFDQjdFN0ZDNEY5QUUwMi8xbWstNDF4eTY4 OUNZOGFZUlcyQzlvNXhUMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB8f9HerIflQq76LUz5uflponMWdQMszAdmQxTaIbEjh+kLM7yBmUF bU1GCkMkXyEbnNZBvwXw4NC7PEdDRZGEvgV2ILRc8skob/oAsaxFYNQq7Bbno1hf wySM7UNqfjWNXTAsQJd43VX4eLpxKNInIkaDODp42aO9uxVAytEXuee2zxGZOhEM hI3Y3AVrFpKmi1j+1kOuju+pLxMTbo/6stWqzX9/TEalfdspee28j9niCWbVUhBR xtdcjCeBl8W+z+D+YLDMuZHJC11ESiSu0IOQ8auDq81zcLnIgDu24x2msCw7dOra j8xrcr9TTY+uygaJVPMmmgRG3dUcR5Vr -----END CERTIFICATE-----Generated at Fri May 31 20:34:05 2024 by rpki-client on console-ams.rpki-client.org