$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft File: XAq0JfK0I14cgVaDvWyOi3uAtyc.mft (raw, json) Hash identifier: wDttUNxfEWxXYI+/H5e+uBslaqhgOsKHcCy6TLqfsCw= Subject key identifier: AB:F1:D8:62:DB:7B:52:D8:92:43:EA:DC:1F:5D:72:5E:9A:93:7D:30 Authority key identifier: 5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 Certificate issuer: /CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Certificate serial: 08C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft Manifest number: 08B1 Signing time: Fri 31 May 2024 22:17:59 +0000 Manifest this update: Fri 31 May 2024 22:17:58 +0000 Manifest next update: Fri 07 Jun 2024 22:17:58 +0000 Files and hashes: 1: XAq0JfK0I14cgVaDvWyOi3uAtyc.crl (hash: vO0eYyIm7s6d/ig8yba9AL5T53L1NWrVnQraupBZB/s=) 2: 83DC30E0D0DB11EA9336962FC4F9AE02.roa (hash: bUYUEG9rlvWLeJULxYTOt+yyfrQInR4t1BBt7mMKyis=) 3: 0774A2C894F211EAB30E7682C4F9AE02.roa (hash: Fq/pVmaUyaXfhTK7mExdKDljB++79tgdQzG08MLch8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:17:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2246 (0x8c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Validity Not Before: May 31 22:17:58 2024 GMT Not After : Jun 7 22:17:58 2024 GMT Subject: CN=665a4c97-7334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d5:15:a0:75:87:86:1e:36:e0:ad:71:70:97: 37:18:0c:91:ef:c2:ec:17:b5:ff:33:3e:e5:8c:bc: a4:cb:70:b7:47:38:fe:26:55:5d:7b:ad:c0:f8:c5: c4:6d:78:76:ba:16:74:6c:64:6e:bd:d6:af:c4:63: 1e:a7:36:d9:38:1a:93:d8:87:6a:39:ee:ea:51:59: 3b:9a:d6:de:40:4e:1e:48:84:09:5b:20:69:34:67: 1f:fe:1c:4c:48:d4:02:84:fd:31:b8:54:b6:16:f9: 86:1e:41:2b:c0:de:de:fa:6a:af:cc:11:dd:52:ea: 3d:df:cc:bf:0d:90:11:ea:d4:cc:10:9f:4a:10:04: 5f:12:90:c9:78:26:29:10:14:b1:4d:b8:1a:bf:b4: 7a:3b:d4:3b:c5:71:f2:a2:49:f0:0e:02:7b:f2:7f: dd:87:93:1c:cf:ea:99:96:7c:c8:20:ae:d5:1f:19: a5:b0:0b:95:2d:e8:a2:79:c0:07:4a:19:52:12:57: cd:71:dc:63:a6:cf:98:03:06:7c:e0:0a:2d:10:e2: 8f:01:72:be:1a:68:36:76:e7:ee:c0:73:43:15:5a: 36:88:cc:32:98:58:c3:44:09:af:07:6d:17:8b:9f: 1d:66:6d:3f:97:02:c3:7e:79:c9:71:9b:61:bb:dc: 21:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:F1:D8:62:DB:7B:52:D8:92:43:EA:DC:1F:5D:72:5E:9A:93:7D:30 X509v3 Authority Key Identifier: keyid:5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:66:6b:c7:8a:d3:88:9e:c7:5a:16:14:a4:8f:1b:40:66:09: ff:f0:77:c7:1b:f3:de:d7:73:61:53:e1:a7:47:9b:e0:f8:40: eb:58:e1:75:6f:35:8d:5c:b5:b7:6a:21:e0:38:14:77:cc:6a: eb:3d:8d:6d:3d:b6:98:87:a3:6f:5e:c3:7d:3e:e7:84:6e:f4: 5b:54:ce:f0:ff:3f:87:43:5c:c8:5f:af:95:48:ae:2a:28:c2: 76:66:a4:74:83:c4:8e:2c:24:02:3e:b8:41:1d:ca:21:3b:6e: 62:e6:c3:50:97:3d:4d:7b:b4:79:33:2f:67:ec:c9:ee:0a:f8: 23:87:d3:2d:c2:3e:c0:46:be:32:6e:d2:51:e4:19:26:15:a0: d9:d6:fa:87:68:90:b3:47:73:9f:fd:0e:2c:0d:32:2c:be:0a: 7d:a6:7c:b1:0e:aa:2b:1c:7c:aa:2e:b7:b2:ec:bc:f8:ed:e0: 6c:66:36:8d:80:9c:f8:a8:4d:62:e2:7e:c4:39:37:3f:9c:67: 9f:f7:d8:02:0a:7b:9e:80:87:1d:54:12:d3:d4:48:c3:92:42: 51:55:b3:29:96:5e:12:8b:ec:7d:75:44:25:7f:88:82:a2:9d: 39:5c:33:79:cf:5f:fe:c3:04:93:c8:e6:98:f7:f0:27:dd:e6: 3d:f2:cd:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4QTkxMTAvBgNVBAUTKDVDMEFCNDI1RjJCNDIzNUUxQzgxNTY4M0JENkM4RThC N0I4MEI3MjcwHhcNMjQwNTMxMjIxNzU4WhcNMjQwNjA3MjIxNzU4WjAYMRYwFAYD VQQDEw02NjVhNGM5Ny03MzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dUVoHWHhh424K1xcJc3GAyR78LsF7X/Mz7ljLyky3C3Rzj+JlVde63A+MXE bXh2uhZ0bGRuvdavxGMepzbZOBqT2IdqOe7qUVk7mtbeQE4eSIQJWyBpNGcf/hxM SNQChP0xuFS2FvmGHkErwN7e+mqvzBHdUuo938y/DZAR6tTMEJ9KEARfEpDJeCYp EBSxTbgav7R6O9Q7xXHyoknwDgJ78n/dh5Mcz+qZlnzIIK7VHxmlsAuVLeiiecAH ShlSElfNcdxjps+YAwZ84AotEOKPAXK+Gmg2dufuwHNDFVo2iMwymFjDRAmvB20X i58dZm0/lwLDfnnJcZthu9whcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKvx2GLb e1LYkkPq3B9dcl6ak30wMB8GA1UdIwQYMBaAFFwKtCXytCNeHIFWg71sjot7gLcn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhBOS8yQUEwNDMzMDk0 RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkxNGNnVmFEdld5T2kzdUF0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBcTBKZkswSTE0Y2dWYUR2V3lPaTN1QXR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjhBOS8yQUEwNDMzMDk0RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkx NGNnVmFEdld5T2kzdUF0eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPZmvHitOInsdaFhSkjxtAZgn/8HfHG/Pe13NhU+GnR5vg+EDrWOF1 bzWNXLW3aiHgOBR3zGrrPY1tPbaYh6NvXsN9PueEbvRbVM7w/z+HQ1zIX6+VSK4q KMJ2ZqR0g8SOLCQCPrhBHcohO25i5sNQlz1Ne7R5My9n7MnuCvgjh9Mtwj7ARr4y btJR5BkmFaDZ1vqHaJCzR3Of/Q4sDTIsvgp9pnyxDqorHHyqLrey7Lz47eBsZjaN gJz4qE1i4n7EOTc/nGef99gCCnuegIcdVBLT1EjDkkJRVbMpll4Si+x9dUQlf4iC op05XDN5z1/+wwSTyOaY9/An3eY98s2w -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:20 2024 by rpki-client on console-ams.rpki-client.org