$ rpki-client -vvf rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft File: D-jKZIcKPWORHI0tZRuinKztDso.mft (raw, json) Hash identifier: u2Ap7r2y//wPlecbnTPr0VRsktckJGaweeuPb+8M3cI= Subject key identifier: 46:84:D7:7A:90:1E:A9:E3:12:05:8F:66:FB:3D:D6:B3:D9:55:8A:DF Authority key identifier: 0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA Certificate issuer: /CN=A91B428B/serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Certificate serial: 08FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft Manifest number: 08F4 Signing time: Sat 18 May 2024 21:19:26 +0000 Manifest this update: Sat 18 May 2024 21:19:25 +0000 Manifest next update: Sat 25 May 2024 21:19:25 +0000 Files and hashes: 1: D-jKZIcKPWORHI0tZRuinKztDso.crl (hash: Jms6SzJX5aDRfNnz482BwL2hr3NPcbwb9Sh9OS6JAmU=) 2: 319DF660847811EA8EE07E81C4F9AE02.roa (hash: FKZsZ6eAd5BvbnauopEY4uKdxyNb8Ct9XBk7pe2RwBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2298 (0x8fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B428B/serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Validity Not Before: May 18 21:19:25 2024 GMT Not After : May 25 21:19:25 2024 GMT Subject: CN=66491b5e-cfe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bf:ed:c2:8b:fd:40:89:9d:74:24:3b:b6:28: 20:db:18:c7:89:2b:a7:86:63:fb:ce:e2:7a:c8:cf: 63:0a:42:8e:00:09:95:28:ab:e9:b6:00:cf:36:51: 7b:ad:bf:f9:9e:25:d1:d5:07:94:b8:ec:b7:80:7e: 02:f0:53:8e:c9:01:8e:2e:5f:3b:b3:14:ee:d2:fd: 21:86:4b:ef:1d:43:aa:87:49:ad:36:1b:a9:6e:a6: 1f:b7:17:18:00:fe:2f:32:7b:d9:db:9a:ca:c7:30: 9a:11:e2:0e:b8:8b:ee:ca:b7:b7:f7:fb:f0:d4:f4: 52:6c:f8:d4:e4:b2:cc:88:d2:60:b7:af:47:3a:b8: 30:d0:b3:0a:9b:98:35:3c:05:68:6e:7d:58:e3:33: bf:e0:4a:a7:8f:d2:f7:5d:4d:7f:ca:43:c4:21:62: 49:28:49:6a:57:ce:32:49:f7:22:a8:ce:4e:11:16: e1:3f:40:f5:e7:2f:06:71:e4:31:d4:98:b4:cf:a1: 2d:a1:b5:f4:a4:92:c8:24:ac:09:49:3d:38:5f:1a: 45:c5:94:ba:c0:22:fe:8b:f5:b4:4f:8d:ff:c2:70: bb:72:c2:45:f2:53:8c:ba:ec:42:01:08:92:8c:33: 7c:1a:95:bc:fd:b4:ae:a2:b7:61:b2:23:0a:a7:b1: e4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:84:D7:7A:90:1E:A9:E3:12:05:8F:66:FB:3D:D6:B3:D9:55:8A:DF X509v3 Authority Key Identifier: keyid:0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:76:8b:99:ab:3b:4d:e6:f6:f2:1d:d6:88:55:c4:7c:bd:c8: a0:1f:15:04:71:75:c0:c9:ac:ba:eb:1c:74:19:b8:19:74:56: a5:f5:da:9e:b8:7a:22:d3:7a:78:a2:6b:17:bb:8e:3c:ea:7c: f0:94:0a:54:2e:83:c8:4f:e6:23:02:9b:65:5e:b6:1a:fd:7e: 10:e6:70:06:80:db:6d:72:05:b2:f9:96:86:d2:31:58:b4:03: f8:f3:75:27:bb:12:25:b5:5c:b4:c4:e5:64:77:51:23:2a:ac: 21:ae:3a:c1:73:63:1c:b0:5e:c3:05:e7:ee:8e:0f:dd:2f:56: e9:ed:b8:4a:50:b6:67:af:63:dc:fa:29:8c:c8:3f:48:a0:37: e9:9a:b1:64:a1:87:63:82:a4:43:21:88:dd:23:b7:c8:91:af: 52:48:af:c5:95:e1:9c:16:f4:16:3e:76:38:00:c2:ff:34:73: 7f:0e:dc:16:90:1e:e8:b6:ba:a8:f7:23:c3:88:3e:49:d9:c4: 04:e4:97:46:2d:55:bd:d0:3c:ad:52:a2:27:00:23:da:93:df: 84:ca:73:0c:5d:79:e7:7a:8e:76:33:b7:4a:41:82:bf:d3:ad: 8e:ff:73:1b:2c:78:ed:fd:d0:f8:21:25:53:8f:4c:6d:5e:1a: df:a9:37:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyOEIxMTAvBgNVBAUTKDBGRThDQTY0ODcwQTNENjM5MTFDOEQyRDY1MUJBMjlD QUNFRDBFQ0EwHhcNMjQwNTE4MjExOTI1WhcNMjQwNTI1MjExOTI1WjAYMRYwFAYD VQQDEw02NjQ5MWI1ZS1jZmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7/twov9QImddCQ7tigg2xjHiSunhmP7zuJ6yM9jCkKOAAmVKKvptgDPNlF7 rb/5niXR1QeUuOy3gH4C8FOOyQGOLl87sxTu0v0hhkvvHUOqh0mtNhupbqYftxcY AP4vMnvZ25rKxzCaEeIOuIvuyre39/vw1PRSbPjU5LLMiNJgt69HOrgw0LMKm5g1 PAVobn1Y4zO/4Eqnj9L3XU1/ykPEIWJJKElqV84ySfciqM5OERbhP0D15y8GceQx 1Ji0z6EtobX0pJLIJKwJST04XxpFxZS6wCL+i/W0T43/wnC7csJF8lOMuuxCAQiS jDN8GpW8/bSuordhsiMKp7Hk5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEaE13qQ HqnjEgWPZvs91rPZVYrfMB8GA1UdIwQYMBaAFA/oymSHCj1jkRyNLWUbopys7Q7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Qi8zQTBCNkMwQzg0 NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BXT1JISTB0WlJ1aW5LenRE c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QtaktaSWNLUFdPUkhJMHRaUnVpbkt6dERzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Qi8zQTBCNkMwQzg0NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BX T1JISTB0WlJ1aW5LenREc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBdouZqztN5vbyHdaIVcR8vcigHxUEcXXAyay66xx0GbgZdFal9dqe uHoi03p4omsXu4486nzwlApULoPIT+YjAptlXrYa/X4Q5nAGgNttcgWy+ZaG0jFY tAP483UnuxIltVy0xOVkd1EjKqwhrjrBc2McsF7DBefujg/dL1bp7bhKULZnr2Pc +imMyD9IoDfpmrFkoYdjgqRDIYjdI7fIka9SSK/FleGcFvQWPnY4AML/NHN/DtwW kB7otrqo9yPDiD5J2cQE5JdGLVW90DytUqInACPak9+EynMMXXnneo52M7dKQYK/ 062O/3MbLHjt/dD4ISVTj0xtXhrfqTcP -----END CERTIFICATE-----Generated at Sat May 18 22:28:01 2024 by rpki-client on console-ams.rpki-client.org