$ rpki-client -vvf rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft File: clTejLmzOZRVQ9h-jrBW8VPVH1A.mft (raw, json) Hash identifier: D02+8m+TLVekPJvkd0gYOt5A5YkjRayqDb6u5j/ymVs= Subject key identifier: AC:D3:34:00:A2:98:76:D4:EF:5F:24:BA:66:74:20:38:94:36:3F:13 Authority key identifier: 72:54:DE:8C:B9:B3:39:94:55:43:D8:7E:8E:B0:56:F1:53:D5:1F:50 Certificate issuer: /CN=A9198166/serialNumber=7254DE8CB9B339945543D87E8EB056F153D51F50 Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/clTejLmzOZRVQ9h-jrBW8VPVH1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft Manifest number: 012A Signing time: Sun 19 May 2024 05:03:09 +0000 Manifest this update: Sun 19 May 2024 05:03:08 +0000 Manifest next update: Sun 26 May 2024 05:03:08 +0000 Files and hashes: 1: clTejLmzOZRVQ9h-jrBW8VPVH1A.crl (hash: yZ9AIJuYTL8v9QplhMCD7cpTOeqGk/oxEeieiDmg/K0=) 2: A968BCA24C8511ED94579477C4F9AE02.roa (hash: 4KL1W1yXQ5sV+BSE+r37ZihmVY+0fGoeVcOLKae4ER0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.crl rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/clTejLmzOZRVQ9h-jrBW8VPVH1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198166/serialNumber=7254DE8CB9B339945543D87E8EB056F153D51F50 Validity Not Before: May 19 05:03:08 2024 GMT Not After : May 26 05:03:08 2024 GMT Subject: CN=6649880d-cf6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ad:0d:87:14:b7:78:1f:71:fe:b7:a7:26:ea: 24:30:7a:d2:8e:f2:a8:aa:75:ce:bb:9c:4d:ff:cd: 2d:be:39:3d:f2:07:ae:cb:b3:f6:29:5b:b0:d8:75: 58:68:36:07:ff:eb:5f:26:6d:ce:e8:34:2c:34:fb: 11:b0:02:90:95:7d:e0:38:e1:2a:1c:e9:8e:44:b1: 7b:b7:74:61:15:8b:d1:df:f8:fb:00:46:cc:92:7c: fe:4f:10:02:f5:f8:22:e8:d0:a8:dd:6a:6b:83:e4: 43:0c:75:5e:18:2b:87:15:43:45:38:73:ce:87:c4: 1f:59:31:8a:17:75:8c:98:f4:15:b6:8f:34:3d:5f: cc:39:4d:5d:87:ad:90:d6:7b:fa:97:6d:e8:a4:de: ef:29:34:99:98:aa:b6:0d:1f:10:50:08:55:33:5e: 91:fa:85:30:39:28:7d:ab:a7:69:07:c3:cf:74:33: 0e:64:45:b8:bf:1a:28:c7:94:13:6f:00:00:ab:05: e9:87:83:5a:c2:f0:67:02:cf:d5:02:4d:56:42:85: a1:08:ea:6c:95:a7:9a:57:19:e4:03:cc:58:0c:6c: e1:de:99:98:b0:a7:a4:90:8e:e9:91:91:84:3d:ab: 2c:03:84:39:74:4b:e1:2b:15:fd:27:d6:7b:44:54: c4:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D3:34:00:A2:98:76:D4:EF:5F:24:BA:66:74:20:38:94:36:3F:13 X509v3 Authority Key Identifier: keyid:72:54:DE:8C:B9:B3:39:94:55:43:D8:7E:8E:B0:56:F1:53:D5:1F:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/clTejLmzOZRVQ9h-jrBW8VPVH1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:56:15:5b:de:02:b4:a8:bf:a8:d5:56:51:ad:74:9c:2b:56: 62:1e:1e:84:d1:c7:73:fd:8b:0c:00:1f:64:e4:c7:0c:aa:d1: 36:a5:a9:fb:96:7d:e4:db:8e:2a:d9:44:f4:2e:ea:dc:06:d0: 2a:31:20:a2:db:ff:28:46:c4:88:e6:84:d4:10:cc:27:53:4c: b3:76:a2:4a:8a:57:82:3e:ac:b9:84:a2:35:93:14:f6:45:d3: c6:d0:9b:dc:eb:a0:07:4e:e3:d9:7b:2b:6c:63:6e:52:a6:3e: ea:87:fa:58:89:4d:9a:66:61:9f:3d:3a:4a:5d:fc:e5:e5:cf: 77:21:05:c7:4f:3b:ff:13:0b:16:b6:4b:50:bd:bc:32:43:a4: 4d:39:0b:1c:31:b4:0d:cd:ae:c8:9a:4c:b3:d8:e9:d3:84:be: a2:32:77:7a:b4:f7:73:6f:07:e2:40:bc:fd:6e:0b:95:f1:80: bd:95:ea:66:7e:55:80:d2:b2:12:b4:17:f8:67:1b:77:c1:1e: c8:a0:79:66:b3:96:6f:3b:a7:e5:ae:da:a3:d7:22:95:d0:85: e8:d4:03:38:c9:da:fb:7b:48:30:80:16:7d:35:74:f9:3b:0c: 38:49:0c:9f:a6:0d:5c:42:ff:b0:bb:4b:65:f5:3c:a7:c7:d6: e6:23:7f:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgxNjYxMTAvBgNVBAUTKDcyNTRERThDQjlCMzM5OTQ1NTQzRDg3RThFQjA1NkYx NTNENTFGNTAwHhcNMjQwNTE5MDUwMzA4WhcNMjQwNTI2MDUwMzA4WjAYMRYwFAYD VQQDEw02NjQ5ODgwZC1jZjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAza0NhxS3eB9x/renJuokMHrSjvKoqnXOu5xN/80tvjk98geuy7P2KVuw2HVY aDYH/+tfJm3O6DQsNPsRsAKQlX3gOOEqHOmORLF7t3RhFYvR3/j7AEbMknz+TxAC 9fgi6NCo3Wprg+RDDHVeGCuHFUNFOHPOh8QfWTGKF3WMmPQVto80PV/MOU1dh62Q 1nv6l23opN7vKTSZmKq2DR8QUAhVM16R+oUwOSh9q6dpB8PPdDMOZEW4vxoox5QT bwAAqwXph4NawvBnAs/VAk1WQoWhCOpslaeaVxnkA8xYDGzh3pmYsKekkI7pkZGE PassA4Q5dEvhKxX9J9Z7RFTEuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKzTNACi mHbU718kumZ0IDiUNj8TMB8GA1UdIwQYMBaAFHJU3oy5szmUVUPYfo6wVvFT1R9Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODE2Ni8zRTYxMjI5NDRD ODIxMUVEOUIwM0Q0NDlDNEY5QUUwMi9jbFRlakxtek9aUlZROWgtanJCVzhWUFZI MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NsVGVqTG16T1pSVlE5aC1qckJXOFZQVkgxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODE2Ni8zRTYxMjI5NDRDODIxMUVEOUIwM0Q0NDlDNEY5QUUwMi9jbFRlakxtek9a UlZROWgtanJCVzhWUFZIMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4VhVb3gK0qL+o1VZRrXScK1ZiHh6E0cdz/YsMAB9k5McMqtE2pan7 ln3k244q2UT0LurcBtAqMSCi2/8oRsSI5oTUEMwnU0yzdqJKileCPqy5hKI1kxT2 RdPG0Jvc66AHTuPZeytsY25Spj7qh/pYiU2aZmGfPTpKXfzl5c93IQXHTzv/EwsW tktQvbwyQ6RNOQscMbQNza7Imkyz2OnThL6iMnd6tPdzbwfiQLz9bguV8YC9lepm flWA0rIStBf4Zxt3wR7IoHlms5ZvO6flrtqj1yKV0IXo1AM4ydr7e0gwgBZ9NXT5 Oww4SQyfpg1cQv+wu0tl9Tynx9bmI3+e -----END CERTIFICATE-----Generated at Sun May 19 05:48:51 2024 by rpki-client on console-fra.rpki-client.org