$ rpki-client -vvf rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft File: DxfzfbyUhNluGgq8eKT5ys1e2oo.mft (raw, json) Hash identifier: YqegbyzaDX5ud+TDyzb2bgACvlNZSHTUgLcBJeYNoiU= Subject key identifier: 6A:1F:4C:89:DB:BE:D6:86:84:8C:5F:CF:29:8A:04:A3:C7:EF:3A:25 Authority key identifier: 0F:17:F3:7D:BC:94:84:D9:6E:1A:0A:BC:78:A4:F9:CA:CD:5E:DA:8A Certificate issuer: /CN=A91B036A/serialNumber=0F17F37DBC9484D96E1A0ABC78A4F9CACD5EDA8A Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft Manifest number: 56 Signing time: Sun 19 May 2024 08:26:41 +0000 Manifest this update: Sun 19 May 2024 08:26:40 +0000 Manifest next update: Sun 26 May 2024 08:26:40 +0000 Files and hashes: 1: DxfzfbyUhNluGgq8eKT5ys1e2oo.crl (hash: 8b9fyuclnHfyHdMgjTT9Essg50C5HJ4Ieb/ZYotg/30=) 2: 860FE244E7F211EEA82C4340C4F9AE02.roa (hash: tJJTcGQ2m2pshzd0U/DwfkAv50Vcbcpb9AnTouLN/sk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.crl rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B036A/serialNumber=0F17F37DBC9484D96E1A0ABC78A4F9CACD5EDA8A Validity Not Before: May 19 08:26:40 2024 GMT Not After : May 26 08:26:40 2024 GMT Subject: CN=6649b7c0-1488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6b:40:3c:82:76:8e:6a:4e:4d:a0:f7:39:fb: 9a:2d:6e:0d:2c:b8:5d:e8:dc:19:a7:c5:13:af:e1: 67:2b:87:45:fe:c1:fd:be:b2:20:76:4f:5a:17:96: c3:54:c7:c6:21:98:a9:42:b6:17:65:3e:9b:11:4c: c6:34:4b:2b:19:7c:d9:19:55:03:a6:91:de:41:cd: 0e:3a:7a:73:93:4d:46:ba:7b:23:b0:ae:68:db:e1: fb:f1:d2:7c:98:1a:35:0b:e1:15:56:4b:f8:96:61: bc:89:d4:9e:2f:c4:2e:65:f9:f7:43:21:72:41:56: 87:8d:10:bb:ed:7e:fa:65:42:64:61:59:e6:07:36: cf:25:e2:d9:71:e2:61:ed:ed:9a:3d:32:e3:12:55: 54:8f:48:c7:f0:49:5d:8f:ee:f9:b1:a4:07:0d:71: a0:c2:de:51:c0:5c:ba:57:40:6b:21:a0:f7:c3:84: aa:dd:b2:c7:5f:d3:8c:93:a8:af:9c:0b:34:0b:e5: 46:2e:41:39:f9:f2:f2:0d:8c:db:6b:d3:f4:34:53: 6e:f9:d4:fa:39:e4:d9:3d:19:24:28:c3:be:dc:21: ae:06:df:e5:63:93:69:cd:2d:3c:1a:6d:94:cc:1a: 6e:27:1a:72:7c:1f:b7:3e:0d:9f:d7:3e:62:c8:b8: b9:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:1F:4C:89:DB:BE:D6:86:84:8C:5F:CF:29:8A:04:A3:C7:EF:3A:25 X509v3 Authority Key Identifier: keyid:0F:17:F3:7D:BC:94:84:D9:6E:1A:0A:BC:78:A4:F9:CA:CD:5E:DA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:f7:a7:d6:a6:4a:c1:91:96:6a:8c:17:ef:b3:c0:f4:42:ec: bf:14:d4:3b:5e:51:09:bf:8c:43:72:c1:cb:e6:fc:6a:ec:89: ce:51:73:32:59:ce:c6:d9:ea:3a:ef:f0:82:5b:ef:4f:cf:19: d0:fb:48:0b:90:73:83:ea:57:11:73:e0:59:a1:35:43:f9:c6: 13:c8:9c:47:46:c9:86:95:55:71:6a:47:1c:7e:16:40:7f:5f: e7:5a:b8:d9:4f:45:0a:65:69:dc:9b:d5:40:b4:8b:e4:2e:c4: a7:fa:60:f3:04:d2:70:74:a6:82:35:2f:50:31:3a:eb:61:fe: 80:3e:93:f2:78:47:26:17:9c:be:1b:00:aa:e1:d4:86:69:68: 44:be:d8:fb:89:6d:7b:a2:a7:e0:fc:80:be:84:71:5c:f1:b2: b1:24:db:9d:c5:3d:86:5a:ac:8a:0a:78:8a:53:45:4a:db:41: 73:af:97:f9:78:f5:83:3e:50:18:d9:2d:34:c1:a8:7d:37:2e: e8:e7:af:88:4f:3a:6f:f9:05:af:13:fd:18:31:3f:98:a2:18: 70:3a:e8:be:07:e8:ad:bb:05:2f:20:52:37:25:44:fb:74:a7: 0d:c4:3a:47:b1:a8:55:1b:e1:a4:33:17:b0:75:2c:93:f6:f7: 7f:b5:1e:07 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MDM2QTExMC8GA1UEBRMoMEYxN0YzN0RCQzk0ODREOTZFMUEwQUJDNzhBNEY5Q0FD RDVFREE4QTAeFw0yNDA1MTkwODI2NDBaFw0yNDA1MjYwODI2NDBaMBgxFjAUBgNV BAMTDTY2NDliN2MwLTE0ODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4a0A8gnaOak5NoPc5+5otbg0suF3o3BmnxROv4Wcrh0X+wf2+siB2T1oXlsNU x8YhmKlCthdlPpsRTMY0SysZfNkZVQOmkd5BzQ46enOTTUa6eyOwrmjb4fvx0nyY GjUL4RVWS/iWYbyJ1J4vxC5l+fdDIXJBVoeNELvtfvplQmRhWeYHNs8l4tlx4mHt 7Zo9MuMSVVSPSMfwSV2P7vmxpAcNcaDC3lHAXLpXQGshoPfDhKrdssdf04yTqK+c CzQL5UYuQTn58vINjNtr0/Q0U2751Po55Nk9GSQow77cIa4G3+Vjk2nNLTwabZTM Gm4nGnJ8H7c+DZ/XPmLIuLmHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUah9Midu+ 1oaEjF/PKYoEo8fvOiUwHwYDVR0jBBgwFoAUDxfzfbyUhNluGgq8eKT5ys1e2oow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIwMzZBL0JCQzJGNzc2RDFG MTExRUU4NjA1MUE2MUM0RjlBRTAyL0R4ZnpmYnlVaE5sdUdncThlS1Q1eXMxZTJv by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRHhmemZieVVoTmx1R2dxOGVLVDV5czFlMm9vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIw MzZBL0JCQzJGNzc2RDFGMTExRUU4NjA1MUE2MUM0RjlBRTAyL0R4ZnpmYnlVaE5s dUdncThlS1Q1eXMxZTJvby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADX3p9amSsGRlmqMF++zwPRC7L8U1DteUQm/jENywcvm/Grsic5RczJZ zsbZ6jrv8IJb70/PGdD7SAuQc4PqVxFz4FmhNUP5xhPInEdGyYaVVXFqRxx+FkB/ X+dauNlPRQpladyb1UC0i+QuxKf6YPME0nB0poI1L1AxOuth/oA+k/J4RyYXnL4b AKrh1IZpaES+2PuJbXuip+D8gL6EcVzxsrEk253FPYZarIoKeIpTRUrbQXOvl/l4 9YM+UBjZLTTBqH03Lujnr4hPOm/5Ba8T/RgxP5iiGHA66L4H6K27BS8gUjclRPt0 pw3EOkexqFUb4aQzF7B1LJP293+1Hgc= -----END CERTIFICATE-----Generated at Sun May 19 09:32:18 2024 by rpki-client on console-ams.rpki-client.org