$ rpki-client -vvf rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft File: 57DhU8QU0ThUitp16M0FzWk2cgY.mft (raw, json) Hash identifier: QhOWom5AQiWji88PzwyJLIoDh2LYFBNOA+KpQpVAkfc= Subject key identifier: 75:A4:45:63:57:A6:6E:AF:9F:2B:4B:9D:C5:25:6F:CC:54:80:D7:47 Authority key identifier: E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 Certificate issuer: /CN=A91B42CA/serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Certificate serial: 33C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft Manifest number: 503B Signing time: Sat 18 May 2024 15:15:44 +0000 Manifest this update: Sat 18 May 2024 15:15:43 +0000 Manifest next update: Sat 25 May 2024 15:15:43 +0000 Files and hashes: 1: 57DhU8QU0ThUitp16M0FzWk2cgY.crl (hash: QEHAnC7IGRwY+L7MPRoLHxnECDcbZF0OdmgfDw5aEQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13252 (0x33c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B42CA/serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Validity Not Before: May 18 15:15:43 2024 GMT Not After : May 25 15:15:43 2024 GMT Subject: CN=6648c61f-a311 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:aa:b0:f4:3a:de:1c:c4:0c:7c:87:74:3f:c0: 5c:3b:c2:26:65:8a:7b:1e:f3:c7:03:11:4e:48:49: 03:96:c7:a2:1d:cb:9b:c0:ab:24:eb:e0:a6:d7:e2: 14:ad:e0:ec:38:0c:83:11:6a:cf:be:63:3c:66:d5: 1b:76:3b:38:33:ce:ff:4d:a5:fe:54:af:06:8d:e2: 3f:14:c2:be:68:0d:0e:6c:e2:08:72:8c:a6:f5:dc: d5:47:7e:a5:00:1e:5f:55:a2:37:7e:a9:57:03:90: 01:a7:96:bd:6d:f2:54:40:52:b3:e6:39:bd:02:d9: 7b:41:ba:75:60:8c:d3:48:a4:fc:31:34:47:83:cf: b8:ca:a8:52:7f:f7:9e:90:7a:b2:c7:11:02:9e:84: 7c:7f:dc:a7:b9:f8:cd:0e:84:aa:73:9c:68:bb:52: e3:fb:d5:59:e1:0e:23:ae:48:e3:ac:c5:22:f1:a3: 37:0f:12:56:4b:eb:5c:cd:78:48:66:52:a2:91:6d: fa:dc:19:ca:85:17:74:da:4d:8b:3b:7c:68:ec:7a: 04:ca:8a:39:ed:29:61:02:9d:2e:3b:c0:5a:e8:ce: 07:1f:a8:26:f0:c6:f2:71:45:28:1f:fb:08:9a:b1: d1:27:58:7c:9f:10:6a:26:4f:6d:76:c1:d2:43:7d: 0d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:A4:45:63:57:A6:6E:AF:9F:2B:4B:9D:C5:25:6F:CC:54:80:D7:47 X509v3 Authority Key Identifier: keyid:E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:6a:d3:24:70:8c:eb:bb:3e:26:7c:46:aa:61:8c:34:3c:3d: a2:04:af:6a:6b:12:99:cf:4c:a0:6e:eb:6e:07:12:41:80:91: 44:d7:69:3c:4d:47:98:ea:68:27:a3:82:f9:7f:3f:3d:cb:dd: 39:30:5c:c0:41:d6:cf:3a:cf:ed:e5:4d:22:32:0c:3e:f7:43: d5:45:cc:d4:f8:e5:ca:6d:3a:b9:62:e7:4c:53:92:b1:3f:fc: 5a:55:0b:f0:19:61:f4:d7:0c:21:e0:52:44:ec:7e:18:80:e7: a1:eb:53:6a:b3:a9:cc:53:7d:3a:54:75:39:eb:d0:26:96:50: 3d:3a:da:b0:80:37:61:2a:a8:52:d8:f6:97:9d:6e:7c:bd:a7: 85:6a:db:90:1f:fb:77:dd:16:0a:34:b7:85:89:b1:87:18:8b: e9:01:64:dc:e9:c8:d1:c8:f6:cd:b2:06:6d:62:2e:48:10:5e: f8:17:10:40:5a:46:51:24:00:f9:9f:46:ba:0b:e0:e1:26:28: c8:80:ff:c0:df:f4:c7:bf:9a:b8:05:d9:6f:52:e6:0c:d9:a3: 62:52:09:8d:3e:6c:16:c2:c3:38:65:1f:0e:f8:47:5f:eb:70: 49:c7:b8:8c:fb:da:82:97:3e:a9:a7:cb:e1:83:09:49:d2:e5: 52:7a:15:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyQ0ExMTAvBgNVBAUTKEU3QjBFMTUzQzQxNEQxMzg1NDhBREE3NUU4Q0QwNUNE NjkzNjcyMDYwHhcNMjQwNTE4MTUxNTQzWhcNMjQwNTI1MTUxNTQzWjAYMRYwFAYD VQQDEw02NjQ4YzYxZi1hMzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqqw9DreHMQMfId0P8BcO8ImZYp7HvPHAxFOSEkDlseiHcubwKsk6+Cm1+IU reDsOAyDEWrPvmM8ZtUbdjs4M87/TaX+VK8GjeI/FMK+aA0ObOIIcoym9dzVR36l AB5fVaI3fqlXA5ABp5a9bfJUQFKz5jm9Atl7Qbp1YIzTSKT8MTRHg8+4yqhSf/ee kHqyxxECnoR8f9ynufjNDoSqc5xou1Lj+9VZ4Q4jrkjjrMUi8aM3DxJWS+tczXhI ZlKikW363BnKhRd02k2LO3xo7HoEyoo57SlhAp0uO8Ba6M4HH6gm8MbycUUoH/sI mrHRJ1h8nxBqJk9tdsHSQ30NLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWkRWNX pm6vnytLncUlb8xUgNdHMB8GA1UdIwQYMBaAFOew4VPEFNE4VIradejNBc1pNnIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDJDQS9EMzREQjk3RTFE QTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBUaFVpdHAxNk0wRnpXazJj Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3RGhVOFFVMFRoVWl0cDE2TTBGeldrMmNnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDJDQS9EMzREQjk3RTFEQTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBU aFVpdHAxNk0wRnpXazJjZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2atMkcIzruz4mfEaqYYw0PD2iBK9qaxKZz0ygbutuBxJBgJFE12k8 TUeY6mgno4L5fz89y905MFzAQdbPOs/t5U0iMgw+90PVRczU+OXKbTq5YudMU5Kx P/xaVQvwGWH01wwh4FJE7H4YgOeh61Nqs6nMU306VHU569AmllA9OtqwgDdhKqhS 2PaXnW58vaeFatuQH/t33RYKNLeFibGHGIvpAWTc6cjRyPbNsgZtYi5IEF74FxBA WkZRJAD5n0a6C+DhJijIgP/A3/THv5q4BdlvUuYM2aNiUgmNPmwWwsM4ZR8O+Edf 63BJx7iM+9qClz6pp8vhgwlJ0uVSehW+ -----END CERTIFICATE-----Generated at Sat May 18 15:58:25 2024 by rpki-client on console-ams.rpki-client.org