$ rpki-client -vvf rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft File: f3UA8ZRiBwd03Is7S5avThubtUU.mft (raw, json) Hash identifier: KO7+6c49Jmh2HrmjMo+VzMMlmMKuIOLnWgwRMf9P7fo= Subject key identifier: 44:16:1B:4B:CB:52:2E:78:72:A9:47:E7:44:E6:37:46:20:2D:46:FD Authority key identifier: 7F:75:00:F1:94:62:07:07:74:DC:8B:3B:4B:96:AF:4E:1B:9B:B5:45 Certificate issuer: /CN=A91A840E/serialNumber=7F7500F19462070774DC8B3B4B96AF4E1B9BB545 Certificate serial: 2D4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f3UA8ZRiBwd03Is7S5avThubtUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft Manifest number: 2D4B Signing time: Sat 18 May 2024 15:45:27 +0000 Manifest this update: Sat 18 May 2024 15:45:26 +0000 Manifest next update: Sat 25 May 2024 15:45:26 +0000 Files and hashes: 1: f3UA8ZRiBwd03Is7S5avThubtUU.crl (hash: AtzLBFhl3LpOX/rGE/sjplddUgx3LJ0L8vQCqLpm+sk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.crl rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f3UA8ZRiBwd03Is7S5avThubtUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11595 (0x2d4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A840E/serialNumber=7F7500F19462070774DC8B3B4B96AF4E1B9BB545 Validity Not Before: May 18 15:45:26 2024 GMT Not After : May 25 15:45:26 2024 GMT Subject: CN=6648cd16-46e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ca:4a:20:9d:27:bb:3d:a9:43:a7:93:5f:35: 9c:27:29:4b:cc:9d:e6:a7:34:cd:37:fc:06:d2:3d: da:c6:87:9c:1c:fc:ba:60:0b:e4:69:dc:9c:e9:1d: 12:0f:83:37:10:2f:5c:6f:3e:6b:7e:50:ab:fb:b3: af:bf:aa:e1:de:96:dc:1b:a3:fa:b5:a1:8a:e4:e4: df:bd:97:c4:f3:45:2e:d1:17:c8:4f:ff:71:6f:8e: fd:98:9d:46:80:45:5b:26:94:a6:23:d7:f4:69:1d: 3f:69:2c:dc:7c:91:58:f3:9c:1d:2a:80:7a:ed:78: 9d:62:4f:c7:8a:3c:12:39:dc:30:56:a2:07:ca:c5: 1d:fc:6e:18:a0:48:fd:c2:d8:26:a3:ee:ac:a8:28: 28:29:65:3b:76:b3:8a:a1:57:17:14:9c:97:78:60: fd:4a:22:b2:3a:e4:0a:94:b5:9b:d6:f6:95:18:da: bc:5d:56:2f:d3:2d:a7:4e:ed:cd:b8:96:02:cb:30: e4:94:76:f9:f7:05:19:e3:d0:5c:5d:e0:f8:98:cc: ce:71:9e:83:21:cf:5b:b5:a9:e0:69:d0:7d:bc:99: 8f:a2:b9:e8:12:c5:6c:a6:48:cf:32:40:c5:c6:cf: 70:85:9c:72:18:9d:7f:08:e1:ac:61:6c:49:39:82: 6e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:16:1B:4B:CB:52:2E:78:72:A9:47:E7:44:E6:37:46:20:2D:46:FD X509v3 Authority Key Identifier: keyid:7F:75:00:F1:94:62:07:07:74:DC:8B:3B:4B:96:AF:4E:1B:9B:B5:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f3UA8ZRiBwd03Is7S5avThubtUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:8f:cf:f0:f0:37:db:51:01:ee:3c:54:d9:f1:db:9c:55:85: d3:87:a1:f4:e0:d6:de:52:b2:40:7f:14:58:41:24:2f:ca:45: 2b:36:7e:d8:e2:51:d3:fb:6a:58:2e:00:da:01:ed:a4:c0:3e: be:23:2d:a2:70:20:b0:84:36:d7:9a:69:46:e1:1c:1f:cf:29: 1d:77:ec:8b:a1:cb:46:52:e1:7f:c4:56:cb:ce:01:dc:27:8e: eb:4f:07:bd:8f:07:8c:6e:18:41:c1:df:ad:e1:d7:75:3d:16: 8b:40:d6:cb:51:27:bc:3b:01:e5:22:67:40:e3:ff:12:b8:20: a3:50:7c:b6:60:fa:8f:cb:5b:47:c2:41:a9:87:c1:ad:43:ac: 17:a8:0d:cf:a1:74:96:51:10:57:44:7c:6f:44:49:86:64:4e: f4:59:41:63:88:70:a1:2f:c8:4b:a7:ff:8c:f5:0d:4b:e9:e2: 09:43:90:c0:22:8c:65:44:f7:f3:0b:8f:ec:7d:4f:97:2e:bc: 0a:be:3a:64:a0:cc:a4:7c:a6:96:e3:af:4c:d5:17:74:90:a5: d6:3c:02:74:ec:f2:67:b2:16:9f:1c:3c:57:f5:87:66:7a:6e: 9e:2c:09:08:34:78:a6:4c:dd:9a:42:6d:93:8f:70:d6:7e:70: 40:ac:f5:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg0MEUxMTAvBgNVBAUTKDdGNzUwMEYxOTQ2MjA3MDc3NERDOEIzQjRCOTZBRjRF MUI5QkI1NDUwHhcNMjQwNTE4MTU0NTI2WhcNMjQwNTI1MTU0NTI2WjAYMRYwFAYD VQQDEw02NjQ4Y2QxNi00NmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8pKIJ0nuz2pQ6eTXzWcJylLzJ3mpzTNN/wG0j3axoecHPy6YAvkadyc6R0S D4M3EC9cbz5rflCr+7Ovv6rh3pbcG6P6taGK5OTfvZfE80Uu0RfIT/9xb479mJ1G gEVbJpSmI9f0aR0/aSzcfJFY85wdKoB67XidYk/HijwSOdwwVqIHysUd/G4YoEj9 wtgmo+6sqCgoKWU7drOKoVcXFJyXeGD9SiKyOuQKlLWb1vaVGNq8XVYv0y2nTu3N uJYCyzDklHb59wUZ49BcXeD4mMzOcZ6DIc9btangadB9vJmPornoEsVspkjPMkDF xs9whZxyGJ1/COGsYWxJOYJuhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQWG0vL Ui54cqlH50TmN0YgLUb9MB8GA1UdIwQYMBaAFH91APGUYgcHdNyLO0uWr04bm7VF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODQwRS9EQTEwRkY2NjYy RUUxMUUzQUFEOTlGODM1OTExRUEzMi9mM1VBOFpSaUJ3ZDAzSXM3UzVhdlRodWJ0 VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YzVUE4WlJpQndkMDNJczdTNWF2VGh1YnRVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODQwRS9EQTEwRkY2NjYyRUUxMUUzQUFEOTlGODM1OTExRUEzMi9mM1VBOFpSaUJ3 ZDAzSXM3UzVhdlRodWJ0VVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoj8/w8DfbUQHuPFTZ8ducVYXTh6H04NbeUrJAfxRYQSQvykUrNn7Y 4lHT+2pYLgDaAe2kwD6+Iy2icCCwhDbXmmlG4Rwfzykdd+yLoctGUuF/xFbLzgHc J47rTwe9jweMbhhBwd+t4dd1PRaLQNbLUSe8OwHlImdA4/8SuCCjUHy2YPqPy1tH wkGph8GtQ6wXqA3PoXSWURBXRHxvREmGZE70WUFjiHChL8hLp/+M9Q1L6eIJQ5DA IoxlRPfzC4/sfU+XLrwKvjpkoMykfKaW469M1Rd0kKXWPAJ07PJnshafHDxX9Ydm em6eLAkINHimTN2aQm2Tj3DWfnBArPXh -----END CERTIFICATE-----Generated at Sat May 18 16:20:16 2024 by rpki-client on console-fra.rpki-client.org