$ rpki-client -vvf rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft File: W9l8Mex4xvFX13LBu1drgCSCtyg.mft (raw, json) Hash identifier: 8w3OkItCdJeZOwrD2dmR6+1GHqF6anp/0yrIcmdS6nI= Subject key identifier: F8:45:20:87:38:36:CD:03:CA:01:F8:B0:A4:1C:9D:FF:CF:EF:00:E3 Authority key identifier: 5B:D9:7C:31:EC:78:C6:F1:57:D7:72:C1:BB:57:6B:80:24:82:B7:28 Certificate issuer: /CN=A91764A1/serialNumber=5BD97C31EC78C6F157D772C1BB576B802482B728 Certificate serial: 0B8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9l8Mex4xvFX13LBu1drgCSCtyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft Manifest number: 0B86 Signing time: Sat 18 May 2024 19:19:36 +0000 Manifest this update: Sat 18 May 2024 19:19:36 +0000 Manifest next update: Sat 25 May 2024 19:19:36 +0000 Files and hashes: 1: W9l8Mex4xvFX13LBu1drgCSCtyg.crl (hash: NN6aM0FVW+wKDvm2pdKn9n3/8O1TS/aiW0shQHfWYAk=) 2: 753703FE045C11EAB8BF0932C4F9AE02.roa (hash: suETF+vFD1wbLZix4YvOuJSudoXGPltkTo1vKWv22Vk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.crl rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9l8Mex4xvFX13LBu1drgCSCtyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2959 (0xb8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764A1/serialNumber=5BD97C31EC78C6F157D772C1BB576B802482B728 Validity Not Before: May 18 19:19:36 2024 GMT Not After : May 25 19:19:36 2024 GMT Subject: CN=6648ff48-5aaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d7:4c:e8:34:b9:10:7d:f6:73:53:1c:dd:b6: 92:52:cc:16:80:a3:04:ed:29:ac:cb:95:35:4e:8a: 74:5b:6a:5a:54:f5:5c:0c:12:91:98:40:5c:7a:9a: 9e:21:4f:35:b4:20:c3:37:14:20:37:75:0a:d5:b4: 12:e1:8b:a4:2b:92:66:c4:6d:c0:fe:8d:5c:37:b6: 62:7c:b0:b6:1f:b4:80:97:5a:af:a5:d8:b2:51:8e: c5:2f:5e:47:0d:e6:42:b6:09:22:d1:48:7b:3e:11: 75:1f:9d:a5:2f:fd:a0:32:31:53:72:ca:30:31:29: fb:4b:ac:ad:d5:93:a3:93:61:47:3c:eb:f9:ea:f1: ec:1c:6f:e4:bd:b9:60:67:3a:f2:3c:ba:03:6a:5f: 7c:d6:ea:5c:08:76:7b:05:4a:8d:37:01:c0:13:57: 90:dd:08:9b:28:1b:40:d6:4b:d7:91:f9:5c:e2:70: b4:ee:40:24:f0:08:84:73:bb:49:d9:ff:79:5e:61: 47:f2:c9:63:07:5b:49:d8:fe:d4:e4:e7:a3:c1:e8: ce:1d:ed:59:49:a9:1e:f8:cd:40:e5:0c:bb:f6:e8: 5a:a8:ad:d0:78:a6:4a:6e:72:9f:d0:6c:02:e1:77: 20:f9:ef:29:d0:47:1e:59:6b:8e:74:dd:54:da:f3: 42:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:45:20:87:38:36:CD:03:CA:01:F8:B0:A4:1C:9D:FF:CF:EF:00:E3 X509v3 Authority Key Identifier: keyid:5B:D9:7C:31:EC:78:C6:F1:57:D7:72:C1:BB:57:6B:80:24:82:B7:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9l8Mex4xvFX13LBu1drgCSCtyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:8a:a5:a1:f5:96:b6:2c:b5:f3:af:af:7c:a4:ba:3d:26:cb: bc:c6:49:24:73:32:8e:69:70:dd:30:1e:b9:e2:b4:ad:8e:68: 80:c0:ef:84:60:4a:25:ad:0a:cd:cc:40:aa:a7:98:e6:c6:87: e7:5f:7e:97:73:70:91:af:71:c7:53:f0:be:8c:30:b8:6c:8c: 33:75:84:bc:93:ec:c3:02:ac:b4:f4:1a:2a:32:c6:0d:07:f3: cf:4f:a8:a7:6b:0f:aa:85:d3:03:99:f0:a2:65:58:df:2b:c4: 24:c1:b7:3b:85:dc:36:8b:fd:26:9d:dd:35:90:53:ae:c8:b2: 47:3a:5b:d3:7a:21:4e:a6:c7:7f:bd:ab:45:49:91:2b:3f:03: f3:e2:61:ff:17:1f:3f:9b:ee:c2:dd:db:4e:e4:17:20:af:b6: 72:e1:92:87:16:95:f7:03:7c:39:38:ce:41:66:cb:63:1f:31: 19:00:93:a2:e2:b0:55:83:30:42:26:5b:70:ac:9e:1e:af:a0: bf:50:a9:5f:38:94:57:65:ac:b1:21:7b:b1:a3:83:35:a8:67: 29:c5:6a:56:74:d3:1a:ba:1f:d4:22:20:6a:de:bf:51:a4:92: 9e:56:7f:51:78:5a:b8:41:55:3a:38:0d:6c:1d:03:46:31:bb: 1f:26:9f:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0QTExMTAvBgNVBAUTKDVCRDk3QzMxRUM3OEM2RjE1N0Q3NzJDMUJCNTc2Qjgw MjQ4MkI3MjgwHhcNMjQwNTE4MTkxOTM2WhcNMjQwNTI1MTkxOTM2WjAYMRYwFAYD VQQDEw02NjQ4ZmY0OC01YWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ddM6DS5EH32c1Mc3baSUswWgKME7Smsy5U1Top0W2paVPVcDBKRmEBcepqe IU81tCDDNxQgN3UK1bQS4YukK5JmxG3A/o1cN7ZifLC2H7SAl1qvpdiyUY7FL15H DeZCtgki0Uh7PhF1H52lL/2gMjFTcsowMSn7S6yt1ZOjk2FHPOv56vHsHG/kvblg ZzryPLoDal981upcCHZ7BUqNNwHAE1eQ3QibKBtA1kvXkflc4nC07kAk8AiEc7tJ 2f95XmFH8sljB1tJ2P7U5OejwejOHe1ZSake+M1A5Qy79uhaqK3QeKZKbnKf0GwC 4Xcg+e8p0EceWWuOdN1U2vNCHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhFIIc4 Ns0DygH4sKQcnf/P7wDjMB8GA1UdIwQYMBaAFFvZfDHseMbxV9dywbtXa4Akgrco MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjRBMS82QjdENjlBNjA0 NTMxMUVBQThGOEVDMURDNEY5QUUwMi9XOWw4TWV4NHh2RlgxM0xCdTFkcmdDU0N0 eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1c5bDhNZXg0eHZGWDEzTEJ1MWRyZ0NTQ3R5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjRBMS82QjdENjlBNjA0NTMxMUVBQThGOEVDMURDNEY5QUUwMi9XOWw4TWV4NHh2 RlgxM0xCdTFkcmdDU0N0eWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZiqWh9Za2LLXzr698pLo9Jsu8xkkkczKOaXDdMB654rStjmiAwO+E YEolrQrNzECqp5jmxofnX36Xc3CRr3HHU/C+jDC4bIwzdYS8k+zDAqy09BoqMsYN B/PPT6inaw+qhdMDmfCiZVjfK8Qkwbc7hdw2i/0mnd01kFOuyLJHOlvTeiFOpsd/ vatFSZErPwPz4mH/Fx8/m+7C3dtO5Bcgr7Zy4ZKHFpX3A3w5OM5BZstjHzEZAJOi 4rBVgzBCJltwrJ4er6C/UKlfOJRXZayxIXuxo4M1qGcpxWpWdNMauh/UIiBq3r9R pJKeVn9ReFq4QVU6OA1sHQNGMbsfJp/a -----END CERTIFICATE-----Generated at Sat May 18 20:16:00 2024 by rpki-client on console-ams.rpki-client.org