$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft File: MAKFsSjLjblfHkH_vS68Io1FPvw.mft (raw, json) Hash identifier: SYiFcDDHFcvqaB3AHyKKV7gz4zfk0YL4autu2nsB+uw= Subject key identifier: 40:BD:0F:65:69:D6:AC:4F:A5:83:50:B9:D3:A4:85:A0:B0:B6:56:82 Authority key identifier: 30:02:85:B1:28:CB:8D:B9:5F:1E:41:FF:BD:2E:BC:22:8D:45:3E:FC Certificate issuer: /CN=A91CD39D/serialNumber=300285B128CB8DB95F1E41FFBD2EBC228D453EFC Certificate serial: 03A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAKFsSjLjblfHkH_vS68Io1FPvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft Manifest number: 03A0 Signing time: Sun 19 May 2024 02:34:30 +0000 Manifest this update: Sun 19 May 2024 02:34:30 +0000 Manifest next update: Sun 26 May 2024 02:34:30 +0000 Files and hashes: 1: MAKFsSjLjblfHkH_vS68Io1FPvw.crl (hash: +PIGI6AzU3ZN9GkICvhQP2JLw1iZa0KhBNG6UriXyxE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.crl rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAKFsSjLjblfHkH_vS68Io1FPvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 928 (0x3a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD39D/serialNumber=300285B128CB8DB95F1E41FFBD2EBC228D453EFC Validity Not Before: May 19 02:34:30 2024 GMT Not After : May 26 02:34:30 2024 GMT Subject: CN=66496536-8625 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ac:10:b0:1d:ac:4e:b0:66:9c:50:91:36:d8: 00:be:90:45:5c:6f:4f:0b:75:b3:b6:e7:81:2c:5e: 9c:4c:6c:0a:78:dc:d6:cc:b5:cd:dd:1f:ce:57:0e: 85:5c:2d:22:72:13:8a:d3:58:48:6b:d9:59:f0:30: 4b:06:ea:7b:ed:5c:bf:9c:9d:64:18:dc:4f:49:7b: d7:d1:0e:c4:6b:87:1c:30:a9:4b:6e:d4:3a:62:70: 82:db:fc:d2:8c:02:dc:a1:49:b0:d9:40:45:17:bf: 82:ea:18:56:50:a0:ae:24:43:c7:4d:1a:cb:12:8c: cb:fb:33:7b:a1:5a:d1:04:33:a0:fd:d5:52:81:a4: c1:b5:55:d8:ca:eb:08:1b:ce:00:ad:25:0c:55:a8: 55:72:b8:1e:ea:e7:84:c4:ee:ee:7e:0c:65:0d:d9: 06:29:00:68:d3:2d:1e:87:08:c6:3c:f8:bb:be:e3: 91:34:fd:7c:31:8f:dd:e1:91:b1:36:8d:b5:e3:31: 2d:fb:49:98:e8:b1:76:f1:58:a2:3b:70:31:12:62: 6a:f2:4d:e0:36:4e:79:53:3a:7d:fe:bd:b1:d9:5b: 85:0a:03:17:3a:7c:c4:18:85:c4:f4:f7:52:b6:23: 8c:dc:5d:b3:53:09:ad:cb:a2:a3:c5:d5:20:d0:58: 04:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:BD:0F:65:69:D6:AC:4F:A5:83:50:B9:D3:A4:85:A0:B0:B6:56:82 X509v3 Authority Key Identifier: keyid:30:02:85:B1:28:CB:8D:B9:5F:1E:41:FF:BD:2E:BC:22:8D:45:3E:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAKFsSjLjblfHkH_vS68Io1FPvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:ab:43:98:fd:70:75:a0:53:9f:4e:06:96:e9:09:c3:04:18: d1:97:bb:05:2d:cf:a7:a3:38:37:7b:36:96:8a:78:90:eb:07: 2b:9e:18:b2:8a:40:aa:cd:21:c7:3e:9b:70:17:dd:7f:14:90: bb:88:41:5f:04:34:e8:53:d3:70:0b:23:f1:66:1b:b7:8c:6e: 84:b2:d8:58:a8:60:6a:fe:55:f2:6e:2f:c1:9e:e8:26:a8:2f: 55:a0:4b:b8:d6:01:5c:07:32:dd:8c:91:26:54:93:bb:07:6f: 63:15:ad:da:bc:7b:52:d2:ee:cf:57:8b:24:bd:16:34:e7:e1: fe:67:b6:82:b8:d4:1b:e5:be:4b:b5:e4:24:02:52:57:96:ec: e7:f0:29:02:43:a2:4b:da:5d:be:30:b6:d0:ab:fc:da:e8:35: ba:12:cc:6f:03:f0:38:6d:04:87:91:5c:94:56:2c:fa:0d:f7: 9f:7e:0f:97:dc:6e:98:c6:2d:b6:59:34:8f:53:f8:60:42:8e: 40:2c:f5:c1:bb:a1:82:f9:ec:69:05:f9:70:be:77:cb:9e:39: b1:eb:93:eb:b6:af:cf:e2:0a:fa:67:32:4e:9f:11:f9:72:ca: e9:80:c8:09:be:4f:67:a8:be:81:92:88:e3:ad:fb:87:f8:d5: 03:3a:cc:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QzOUQxMTAvBgNVBAUTKDMwMDI4NUIxMjhDQjhEQjk1RjFFNDFGRkJEMkVCQzIy OEQ0NTNFRkMwHhcNMjQwNTE5MDIzNDMwWhcNMjQwNTI2MDIzNDMwWjAYMRYwFAYD VQQDEw02NjQ5NjUzNi04NjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6wQsB2sTrBmnFCRNtgAvpBFXG9PC3WztueBLF6cTGwKeNzWzLXN3R/OVw6F XC0ichOK01hIa9lZ8DBLBup77Vy/nJ1kGNxPSXvX0Q7Ea4ccMKlLbtQ6YnCC2/zS jALcoUmw2UBFF7+C6hhWUKCuJEPHTRrLEozL+zN7oVrRBDOg/dVSgaTBtVXYyusI G84ArSUMVahVcrge6ueExO7ufgxlDdkGKQBo0y0ehwjGPPi7vuORNP18MY/d4ZGx No214zEt+0mY6LF28ViiO3AxEmJq8k3gNk55Uzp9/r2x2VuFCgMXOnzEGIXE9PdS tiOM3F2zUwmty6KjxdUg0FgEYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEC9D2Vp 1qxPpYNQudOkhaCwtlaCMB8GA1UdIwQYMBaAFDAChbEoy425Xx5B/70uvCKNRT78 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDM5RC9ENDRFMzZEMDRF NzYxMUVDQTU3MjBCNzlDNEY5QUUwMi9NQUtGc1NqTGpibGZIa0hfdlM2OElvMUZQ dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01BS0ZzU2pMamJsZkhrSF92UzY4SW8xRlB2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDM5RC9ENDRFMzZEMDRFNzYxMUVDQTU3MjBCNzlDNEY5QUUwMi9NQUtGc1NqTGpi bGZIa0hfdlM2OElvMUZQdncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdq0OY/XB1oFOfTgaW6QnDBBjRl7sFLc+nozg3ezaWiniQ6wcrnhiy ikCqzSHHPptwF91/FJC7iEFfBDToU9NwCyPxZhu3jG6EsthYqGBq/lXybi/Bnugm qC9VoEu41gFcBzLdjJEmVJO7B29jFa3avHtS0u7PV4skvRY05+H+Z7aCuNQb5b5L teQkAlJXluzn8CkCQ6JL2l2+MLbQq/za6DW6EsxvA/A4bQSHkVyUViz6Dfeffg+X 3G6Yxi22WTSPU/hgQo5ALPXBu6GC+expBflwvnfLnjmx65Prtq/P4gr6ZzJOnxH5 csrpgMgJvk9nqL6BkojjrfuH+NUDOswt -----END CERTIFICATE-----Generated at Sun May 19 03:14:50 2024 by rpki-client on console-fra.rpki-client.org