$ rpki-client -vvf rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft File: CHQTSbZiijmB94o3MLiYg-PXa8o.mft (raw, json) Hash identifier: SR8GCAEOAWqmdhNsF04BA6N1wFBsJH4pbwQFrIMwleA= Subject key identifier: 1B:C8:A8:7A:ED:5C:1B:65:64:29:C5:6C:97:4A:96:6A:49:75:CB:C5 Authority key identifier: 08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA Certificate issuer: /CN=A91712A8/serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Certificate serial: 05BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft Manifest number: 05B5 Signing time: Sat 01 Jun 2024 01:06:58 +0000 Manifest this update: Sat 01 Jun 2024 01:06:57 +0000 Manifest next update: Sat 08 Jun 2024 01:06:57 +0000 Files and hashes: 1: CHQTSbZiijmB94o3MLiYg-PXa8o.crl (hash: ZSCe52gopl65R2+cGrj9O56uCZWhq62EeKivXNTSjiI=) 2: B69DB4D27D6911EBA420FC6AC4F9AE02.roa (hash: kqvjt4xRQkic0pSOKa9QVL0YjZAGhKt2kqY9ktYProo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 01:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1467 (0x5bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91712A8/serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Validity Not Before: Jun 1 01:06:57 2024 GMT Not After : Jun 8 01:06:57 2024 GMT Subject: CN=665a7432-7349 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:20:43:88:c6:50:47:10:dc:d3:46:a0:c3:89: e2:46:4e:6d:20:f4:8b:5f:f9:a7:7f:c9:79:84:bd: f2:1a:61:88:14:62:43:a1:89:4a:4e:fb:34:30:ac: 74:74:8c:de:30:5a:7d:af:4d:5c:53:2f:3e:2d:01: bb:8a:e8:8d:50:11:fc:2a:e7:65:6f:8b:60:1d:63: c8:29:97:9a:61:dd:b0:7f:6c:0b:79:b1:c6:05:e4: 47:e6:03:17:bf:c6:d5:de:9a:29:7a:ee:23:6b:4e: ff:10:17:98:c1:a5:02:b6:63:79:e7:e1:bf:56:a6: 15:57:6a:ec:50:d0:ec:fe:df:fb:11:cb:e7:13:65: d7:2d:00:89:96:34:9e:38:d8:13:f1:f9:99:16:be: ce:16:8a:8e:09:96:55:f1:90:30:c3:a5:61:9a:d2: 0c:92:5d:25:f3:d9:bc:2a:e4:9f:9e:14:17:c8:a9: 2f:1b:1a:4f:5b:9e:de:a8:75:ef:be:c0:2d:80:a8: 69:72:57:cd:bb:42:aa:8e:a9:79:91:d3:0a:10:0d: 9c:e9:a8:19:67:a6:97:f4:e8:a3:c3:ba:8b:c5:9c: 59:fa:a1:2f:76:76:d4:34:53:45:5b:c3:70:cb:49: b8:bb:2e:89:70:47:46:31:c3:0e:0c:33:84:ff:3e: 70:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:C8:A8:7A:ED:5C:1B:65:64:29:C5:6C:97:4A:96:6A:49:75:CB:C5 X509v3 Authority Key Identifier: keyid:08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:39:f0:a2:4b:bd:fe:50:42:90:00:1f:06:c8:ca:1f:c7:14: e6:f3:31:0c:38:65:03:7a:3f:07:c0:8c:55:eb:e7:58:54:e1: f7:b7:6b:18:c7:a1:64:56:b1:c4:49:fc:92:51:ac:18:8e:b2: 4c:78:a3:79:43:c9:fa:11:a9:1a:f1:e5:15:fb:5d:23:77:ec: 15:b7:ec:c7:39:93:1e:2b:1d:a4:9f:f1:d8:d6:2c:fc:bb:59: 75:fe:be:0f:3b:f6:f4:73:19:2b:ae:8d:c4:fc:d7:5e:95:00: 2f:6c:e9:e2:bc:4e:6b:f1:a5:9d:87:9b:96:3c:d8:5d:fb:1b: 6d:26:ab:51:ab:97:15:c0:63:9e:ac:1b:26:9f:da:a3:fd:b4: a4:50:9c:d1:94:a0:1f:8b:e1:49:b7:ec:e1:e6:0b:33:30:7a: df:5d:21:f4:c3:32:de:87:94:74:ff:97:90:4f:70:ec:0a:dc: ad:3f:af:45:33:a8:b2:55:27:36:9d:2c:8f:b8:43:ae:81:cf: 29:60:24:8f:09:e9:43:46:9a:90:43:42:9f:5a:79:a7:bd:44: 2d:f1:9f:ff:3a:1e:48:5b:94:01:1f:56:a0:8f:e0:e7:5b:a3: a2:f3:5c:d2:2a:28:26:f9:76:b2:a8:c3:b8:0c:66:de:aa:a3: 01:1f:06:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEyQTgxMTAvBgNVBAUTKDA4NzQxMzQ5QjY2MjhBMzk4MUY3OEEzNzMwQjg5ODgz RTNENzZCQ0EwHhcNMjQwNjAxMDEwNjU3WhcNMjQwNjA4MDEwNjU3WjAYMRYwFAYD VQQDEw02NjVhNzQzMi03MzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+yBDiMZQRxDc00agw4niRk5tIPSLX/mnf8l5hL3yGmGIFGJDoYlKTvs0MKx0 dIzeMFp9r01cUy8+LQG7iuiNUBH8Kudlb4tgHWPIKZeaYd2wf2wLebHGBeRH5gMX v8bV3popeu4ja07/EBeYwaUCtmN55+G/VqYVV2rsUNDs/t/7EcvnE2XXLQCJljSe ONgT8fmZFr7OFoqOCZZV8ZAww6VhmtIMkl0l89m8KuSfnhQXyKkvGxpPW57eqHXv vsAtgKhpclfNu0Kqjql5kdMKEA2c6agZZ6aX9Oijw7qLxZxZ+qEvdnbUNFNFW8Nw y0m4uy6JcEdGMcMODDOE/z5wcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBvIqHrt XBtlZCnFbJdKlmpJdcvFMB8GA1UdIwQYMBaAFAh0E0m2Yoo5gfeKNzC4mIPj12vK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTJBOC80NjUwMEY4QzdE NjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlqbUI5NG8zTUxpWWctUFhh OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIUVRTYlppaWptQjk0bzNNTGlZZy1QWGE4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTJBOC80NjUwMEY4QzdENjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlq bUI5NG8zTUxpWWctUFhhOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByOfCiS73+UEKQAB8GyMofxxTm8zEMOGUDej8HwIxV6+dYVOH3t2sY x6FkVrHESfySUawYjrJMeKN5Q8n6Eaka8eUV+10jd+wVt+zHOZMeKx2kn/HY1iz8 u1l1/r4PO/b0cxkrro3E/NdelQAvbOnivE5r8aWdh5uWPNhd+xttJqtRq5cVwGOe rBsmn9qj/bSkUJzRlKAfi+FJt+zh5gszMHrfXSH0wzLeh5R0/5eQT3DsCtytP69F M6iyVSc2nSyPuEOugc8pYCSPCelDRpqQQ0KfWnmnvUQt8Z//Oh5IW5QBH1agj+Dn W6Oi81zSKigm+XayqMO4DGbeqqMBHwap -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:15 2024 by rpki-client on console-ams.rpki-client.org