$ rpki-client -vvf rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft File: mTXGObPDUdvtWyk5lPcvgUzPm6k.mft (raw, json) Hash identifier: 1BJIYXNgk0I86xeB+NgeC+gKNgwNsC6vMRRG977Wwwc= Subject key identifier: 40:6A:0E:43:8A:F5:19:7B:4B:B0:42:20:A6:9F:CE:FB:24:35:87:BE Authority key identifier: 99:35:C6:39:B3:C3:51:DB:ED:5B:29:39:94:F7:2F:81:4C:CF:9B:A9 Certificate issuer: /CN=A9195D93/serialNumber=9935C639B3C351DBED5B293994F72F814CCF9BA9 Certificate serial: 20DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft Manifest number: 20C6 Signing time: Sat 18 May 2024 16:16:27 +0000 Manifest this update: Sat 18 May 2024 16:16:26 +0000 Manifest next update: Sat 25 May 2024 16:16:26 +0000 Files and hashes: 1: mTXGObPDUdvtWyk5lPcvgUzPm6k.crl (hash: uqFh0T22+qW/2L5OAf6HLJv+xBPO5xO7fsyPa+vw+do=) 2: 5D2D29A2966D11EA96C50E81C4F9AE02.roa (hash: O+MHFL5HucSSSkSZxHxmzfF8b/+aFHUTT5vt1LsMrv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.crl rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8414 (0x20de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195D93/serialNumber=9935C639B3C351DBED5B293994F72F814CCF9BA9 Validity Not Before: May 18 16:16:26 2024 GMT Not After : May 25 16:16:26 2024 GMT Subject: CN=6648d45a-bd51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:67:dd:15:13:db:72:e0:47:03:ab:4e:04:e8: c5:e6:e9:c2:ab:78:79:cb:b1:3c:eb:d3:7e:bc:c3: 7d:cc:ea:ad:d7:32:be:0e:29:76:69:cd:76:7a:f9: 12:53:ad:6b:2f:dc:95:07:7b:48:bd:fb:73:13:e1: ec:b0:11:e0:74:5b:5f:25:91:0c:6c:5d:96:a5:3b: 6c:f7:4a:9f:72:17:a9:6e:f5:99:1f:0a:44:a7:b7: 68:94:e3:6f:45:a8:f3:85:d1:28:0a:a6:d6:eb:28: 30:b5:06:a4:67:89:de:36:87:93:d9:9d:7b:06:4d: 11:9d:ce:bd:d7:a3:53:e9:2a:62:30:5e:39:47:4f: 5c:f6:a5:c2:7f:50:fc:4b:b6:36:5f:54:39:80:46: 36:89:d5:e9:36:07:f9:ba:a7:60:29:a4:5b:c1:72: ca:25:e2:95:b7:70:96:ca:54:27:5a:49:27:04:7e: 5d:0d:c0:10:1f:b2:12:4c:86:ef:65:2e:0d:d5:8b: 94:82:05:ef:7f:51:87:7f:33:b8:d3:74:5b:40:19: 35:f1:ed:ab:39:55:73:7f:ec:8a:9b:0b:6e:46:b0: 02:ab:c4:75:5e:5d:a4:79:b7:bd:f9:00:3f:91:dc: ad:ef:4d:e1:2d:29:30:96:9d:87:ec:39:98:ee:e1: 32:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:6A:0E:43:8A:F5:19:7B:4B:B0:42:20:A6:9F:CE:FB:24:35:87:BE X509v3 Authority Key Identifier: keyid:99:35:C6:39:B3:C3:51:DB:ED:5B:29:39:94:F7:2F:81:4C:CF:9B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:8b:55:57:c0:04:17:b9:3a:a4:c8:a7:d1:d9:2e:8d:67:65: bb:2d:cc:8a:59:e8:46:bc:36:91:7b:18:f9:9c:78:d8:e0:c8: f8:0e:0d:66:c7:d5:10:9c:29:89:54:88:c6:b6:46:96:bb:96: 33:6b:b8:f9:05:af:23:f5:0e:05:88:3a:3b:9b:60:1d:81:0b: ae:e0:05:24:f4:0c:bf:8c:8d:22:bb:a6:09:c8:2d:0e:b5:ee: f3:10:13:5e:49:1b:d2:fd:9e:27:06:b6:26:12:ef:d5:ca:bc: a1:36:cd:8c:fa:a3:e2:49:ae:ee:65:33:aa:8a:e7:1b:90:a1: 3a:c7:b7:8b:da:6c:f4:4c:1f:7f:f5:0e:f2:b0:08:c3:45:8e: e7:4e:6c:8c:74:2e:26:92:77:09:f8:dc:c4:ef:56:8c:02:4e: ac:cb:af:4f:e6:52:ea:e6:a8:7c:4e:b0:16:c1:bc:c7:31:07: 16:6b:b2:9d:cd:17:29:f1:66:22:16:5a:bf:ff:4d:ed:16:30: 16:f0:f3:7e:2e:5d:b8:c3:92:92:fb:a3:ea:0d:67:c5:74:58: b6:6a:b4:27:9c:3b:82:79:76:8a:c8:09:b9:e4:7b:19:9c:a8: 8f:eb:02:1f:53:fa:90:40:4f:98:a6:9b:4c:1a:b0:c8:49:81: a7:f7:49:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVEOTMxMTAvBgNVBAUTKDk5MzVDNjM5QjNDMzUxREJFRDVCMjkzOTk0RjcyRjgx NENDRjlCQTkwHhcNMjQwNTE4MTYxNjI2WhcNMjQwNTI1MTYxNjI2WjAYMRYwFAYD VQQDEw02NjQ4ZDQ1YS1iZDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn2fdFRPbcuBHA6tOBOjF5unCq3h5y7E869N+vMN9zOqt1zK+Dil2ac12evkS U61rL9yVB3tIvftzE+HssBHgdFtfJZEMbF2WpTts90qfchepbvWZHwpEp7dolONv RajzhdEoCqbW6ygwtQakZ4neNoeT2Z17Bk0Rnc6916NT6SpiMF45R09c9qXCf1D8 S7Y2X1Q5gEY2idXpNgf5uqdgKaRbwXLKJeKVt3CWylQnWkknBH5dDcAQH7ISTIbv ZS4N1YuUggXvf1GHfzO403RbQBk18e2rOVVzf+yKmwtuRrACq8R1Xl2kebe9+QA/ kdyt703hLSkwlp2H7DmY7uEy8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEBqDkOK 9Rl7S7BCIKafzvskNYe+MB8GA1UdIwQYMBaAFJk1xjmzw1Hb7VspOZT3L4FMz5up MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUQ5My81QzEwQTgxMERD NUQxMUU1QjMyNTQ1MkVDNEY5QUUwMi9tVFhHT2JQRFVkdnRXeWs1bFBjdmdVelBt NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21UWEdPYlBEVWR2dFd5azVsUGN2Z1V6UG02ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUQ5My81QzEwQTgxMERDNUQxMUU1QjMyNTQ1MkVDNEY5QUUwMi9tVFhHT2JQRFVk dnRXeWs1bFBjdmdVelBtNmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+i1VXwAQXuTqkyKfR2S6NZ2W7LcyKWehGvDaRexj5nHjY4Mj4Dg1m x9UQnCmJVIjGtkaWu5Yza7j5Ba8j9Q4FiDo7m2AdgQuu4AUk9Ay/jI0iu6YJyC0O te7zEBNeSRvS/Z4nBrYmEu/VyryhNs2M+qPiSa7uZTOqiucbkKE6x7eL2mz0TB9/ 9Q7ysAjDRY7nTmyMdC4mkncJ+NzE71aMAk6sy69P5lLq5qh8TrAWwbzHMQcWa7Kd zRcp8WYiFlq//03tFjAW8PN+Ll24w5KS+6PqDWfFdFi2arQnnDuCeXaKyAm55HsZ nKiP6wIfU/qQQE+YpptMGrDISYGn90mv -----END CERTIFICATE-----Generated at Sat May 18 16:57:54 2024 by rpki-client on console-fra.rpki-client.org