$ rpki-client -vvf rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft File: CkMWPL6xv3mMnOQcHF50ociDesY.mft (raw, json) Hash identifier: PsHksFHdLlBE4sH/QYnX8C4ENvq0sN78xUAkn9U/QOs= Subject key identifier: 23:1C:4F:2E:76:35:BF:5F:BD:9C:90:A1:13:FA:50:82:DB:17:DD:83 Authority key identifier: 0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 Certificate issuer: /CN=A91A95C1/serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Certificate serial: 01B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft Manifest number: 01B5 Signing time: Sun 19 May 2024 04:32:59 +0000 Manifest this update: Sun 19 May 2024 04:32:58 +0000 Manifest next update: Sun 26 May 2024 04:32:58 +0000 Files and hashes: 1: CkMWPL6xv3mMnOQcHF50ociDesY.crl (hash: cekFsP5u2eB3qkLnlnJ/EAjlkfx55uVYCgUwvKzx+NA=) 2: DA61302A0F0211EDABBE3C6AC4F9AE02.roa (hash: JKeISo/Mq9MpA3CnUuVBraJP4vSdwyiOEeRfzcBtl0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A95C1/serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Validity Not Before: May 19 04:32:58 2024 GMT Not After : May 26 04:32:58 2024 GMT Subject: CN=664980fa-8ee5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:05:20:e6:96:1c:eb:30:c9:56:b9:b7:cd:cf: c0:86:6d:d4:14:e8:af:c6:7d:f4:1e:0f:2b:e4:bf: 03:5f:ba:33:5e:8a:9e:00:66:a6:02:3c:04:49:b3: b9:ce:0d:90:d8:72:8e:8f:0e:2b:85:c3:65:69:cd: d5:57:12:55:27:fd:b7:97:7d:bb:57:65:5a:fc:b3: 70:94:1a:6d:a0:e7:d2:5c:69:95:c5:da:71:ec:b3: 55:ff:b3:b7:4c:14:ac:02:a6:c0:e8:cb:8f:34:da: cf:2c:4f:81:f1:ba:2d:2a:e6:c1:a7:8a:65:23:a0: 1a:b6:ce:18:ad:2e:76:42:37:75:4e:38:0f:c8:97: 48:2f:63:bd:64:77:b2:84:29:6e:6a:dd:20:4c:5d: 03:b2:e6:eb:b1:0b:6f:2f:a1:54:a0:04:77:34:29: f6:de:04:ab:30:f0:36:4f:97:fd:a4:1f:86:6c:36: 05:3b:7e:48:54:5b:61:a2:9a:5f:6d:a2:18:07:4a: 35:0a:83:35:73:1b:95:5e:57:ed:b7:e0:4c:54:2e: f9:d2:14:72:9b:3d:1d:78:08:44:9a:98:ee:f5:9c: a7:5a:ec:9c:8d:2c:6b:03:15:bd:f1:03:51:82:87: b0:a2:7e:83:f0:fd:38:30:44:ae:71:8b:c2:ce:eb: 3a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:1C:4F:2E:76:35:BF:5F:BD:9C:90:A1:13:FA:50:82:DB:17:DD:83 X509v3 Authority Key Identifier: keyid:0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:61:ae:84:8b:02:20:ef:65:e0:70:17:ed:0b:57:35:12:49: ab:58:1a:04:80:dd:22:d9:26:61:68:c7:db:b5:2a:a1:ab:c2: 6d:b0:6d:b7:ca:3e:f2:40:52:a8:b5:02:4e:b2:cd:19:4b:92: c4:99:e5:c1:a0:1c:c3:e9:dd:d1:48:3e:f1:6e:a7:a8:5b:d8: 41:a6:e8:bf:cf:68:61:0d:49:59:fb:ea:20:f1:52:41:e6:ce: 99:af:a9:70:09:49:28:b7:e4:af:b1:23:df:01:e3:bb:94:0c: e8:75:b4:74:1f:f9:d8:47:86:84:32:fb:39:fa:71:b0:3b:4c: 8f:fe:c0:a5:2c:a3:90:01:b0:af:8a:ee:b1:71:9e:36:91:25: 3f:4f:a9:20:35:e1:47:41:cd:e6:83:29:b8:16:e8:17:4c:46: 78:8d:9a:1a:67:7b:c4:cc:06:18:27:c8:6f:6c:38:82:e3:84: 95:64:69:77:01:05:23:05:63:93:23:be:46:2f:e6:6e:5f:97: ca:69:3b:c8:90:c9:35:4b:49:88:63:94:f3:de:e7:0e:ff:22: 2a:6c:f8:19:a4:f7:eb:b2:55:15:2d:cc:02:5b:57:16:42:f7: 96:7d:e7:02:e2:ff:aa:cc:6d:c0:ca:00:25:ad:45:f9:39:09: 65:e7:f4:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk1QzExMTAvBgNVBAUTKDBBNDMxNjNDQkVCMUJGNzk4QzlDRTQxQzFDNUU3NEEx Qzg4MzdBQzYwHhcNMjQwNTE5MDQzMjU4WhcNMjQwNTI2MDQzMjU4WjAYMRYwFAYD VQQDEw02NjQ5ODBmYS04ZWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wUg5pYc6zDJVrm3zc/Ahm3UFOivxn30Hg8r5L8DX7ozXoqeAGamAjwESbO5 zg2Q2HKOjw4rhcNlac3VVxJVJ/23l327V2Va/LNwlBptoOfSXGmVxdpx7LNV/7O3 TBSsAqbA6MuPNNrPLE+B8botKubBp4plI6Aats4YrS52Qjd1TjgPyJdIL2O9ZHey hCluat0gTF0DsubrsQtvL6FUoAR3NCn23gSrMPA2T5f9pB+GbDYFO35IVFthoppf baIYB0o1CoM1cxuVXlftt+BMVC750hRymz0deAhEmpju9ZynWuycjSxrAxW98QNR goewon6D8P04MESucYvCzus6PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMcTy52 Nb9fvZyQoRP6UILbF92DMB8GA1UdIwQYMBaAFApDFjy+sb95jJzkHBxedKHIg3rG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTVDMS9DQkU2QkM3NDBG MDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYzbU1uT1FjSEY1MG9jaURl c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrTVdQTDZ4djNtTW5PUWNIRjUwb2NpRGVzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTVDMS9DQkU2QkM3NDBGMDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYz bU1uT1FjSEY1MG9jaURlc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFYa6EiwIg72XgcBftC1c1EkmrWBoEgN0i2SZhaMfbtSqhq8JtsG23 yj7yQFKotQJOss0ZS5LEmeXBoBzD6d3RSD7xbqeoW9hBpui/z2hhDUlZ++og8VJB 5s6Zr6lwCUkot+SvsSPfAeO7lAzodbR0H/nYR4aEMvs5+nGwO0yP/sClLKOQAbCv iu6xcZ42kSU/T6kgNeFHQc3mgym4FugXTEZ4jZoaZ3vEzAYYJ8hvbDiC44SVZGl3 AQUjBWOTI75GL+ZuX5fKaTvIkMk1S0mIY5Tz3ucO/yIqbPgZpPfrslUVLcwCW1cW QveWfecC4v+qzG3AygAlrUX5OQll5/Ra -----END CERTIFICATE-----Generated at Sun May 19 05:48:51 2024 by rpki-client on console-fra.rpki-client.org