$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft File: wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft (raw, json) Hash identifier: YFnU85O0wYEDTA2Wg2J6UV75SwuCe9WLR9hA+Yzm6h0= Subject key identifier: 0A:60:11:1A:B6:FF:FF:D5:70:65:C0:61:0E:8B:18:2E:02:86:9C:D4 Authority key identifier: C2:22:C1:9E:BF:52:84:4D:4B:7C:DA:0E:F7:54:E6:D3:30:C4:B6:09 Certificate issuer: /CN=A91CE821/serialNumber=C222C19EBF52844D4B7CDA0EF754E6D330C4B609 Certificate serial: 1400 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wiLBnr9ShE1LfNoO91Tm0zDEtgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft Manifest number: 1787 Signing time: Sat 18 May 2024 17:27:42 +0000 Manifest this update: Sat 18 May 2024 17:27:42 +0000 Manifest next update: Sat 25 May 2024 17:27:42 +0000 Files and hashes: 1: wiLBnr9ShE1LfNoO91Tm0zDEtgk.crl (hash: P8NlSCxx2DfEfrpclpFsF1MEs1OtlEOtSlM3R3qPoQ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.crl rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wiLBnr9ShE1LfNoO91Tm0zDEtgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5120 (0x1400) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE821/serialNumber=C222C19EBF52844D4B7CDA0EF754E6D330C4B609 Validity Not Before: May 18 17:27:42 2024 GMT Not After : May 25 17:27:42 2024 GMT Subject: CN=6648e50e-9c89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c1:c7:7d:25:5c:b4:00:33:e8:eb:cc:d9:47: 1b:1a:d8:64:4c:2c:0b:bb:c6:b9:45:16:28:1a:f0: b0:46:b5:d2:dc:2e:7f:2f:76:67:93:9f:6d:a2:34: f4:71:d6:7e:a4:76:81:c5:7b:e9:d5:53:b5:1a:17: e6:52:30:25:7d:a3:53:76:e1:1a:e4:d5:28:48:3e: 9e:eb:7d:3f:3a:12:74:44:96:48:e2:a0:48:d6:e0: 66:67:de:0d:fd:23:d4:07:25:e3:70:e3:58:8d:c2: 61:f0:9e:b7:c3:e0:07:23:93:09:5b:68:d3:fe:29: 47:d7:fd:6c:8c:5c:62:96:70:8d:1e:05:b1:68:06: 95:b6:60:c2:19:33:50:05:3b:16:81:a7:a7:aa:d5: a6:57:a7:d2:28:b2:70:26:8c:1b:c9:7d:cb:1e:fd: 24:12:31:06:7c:a4:92:cb:8e:1e:93:eb:c4:02:e9: c9:6c:e3:b9:3b:57:db:c7:89:25:60:3c:6c:0b:e3: e0:bd:14:d2:3a:97:b7:24:c3:a8:dd:cc:ca:e2:8e: 80:32:1e:6c:a8:11:53:d0:9f:8b:c3:d0:0e:fe:40: 53:b5:42:49:13:ab:d4:3b:84:e5:f1:fa:76:83:58: a3:ea:b1:9e:e2:26:78:5e:20:3b:2b:8a:25:9f:a2: a0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:60:11:1A:B6:FF:FF:D5:70:65:C0:61:0E:8B:18:2E:02:86:9C:D4 X509v3 Authority Key Identifier: keyid:C2:22:C1:9E:BF:52:84:4D:4B:7C:DA:0E:F7:54:E6:D3:30:C4:B6:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wiLBnr9ShE1LfNoO91Tm0zDEtgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:d6:bf:99:c7:67:64:aa:10:77:07:d5:96:c8:5c:c4:c9:a1: 51:73:85:f9:76:3b:ad:0a:65:09:f3:c3:21:7d:93:d2:a5:8b: c9:48:e8:58:bb:0d:e5:75:8c:10:65:3e:b0:77:fe:8d:9b:aa: 71:63:2d:e3:53:bf:fd:fd:ad:3e:37:10:be:ff:fd:0e:1a:97: 3e:e5:c6:12:58:3a:75:25:4b:74:9f:c8:5e:1b:f2:3c:22:f0: 36:ef:09:92:bc:88:7b:0c:b1:b7:f2:01:ba:50:28:22:1d:70: b6:c2:6d:84:46:e0:7e:67:cd:02:7b:3d:92:c9:90:20:79:41: b2:e3:c3:98:26:81:c1:bf:39:b6:63:15:e1:e3:37:e3:ed:02: 2e:3f:54:72:18:7b:27:ea:15:a1:5f:b1:97:ef:55:50:e9:4b: 2d:36:1f:0b:62:cb:b7:99:da:56:c2:ad:ef:de:6b:30:7d:62: 3e:fe:cc:62:6d:c3:a6:50:a0:34:9e:60:fe:b7:76:cc:b6:02: a2:07:22:97:a9:56:c0:9a:f7:48:46:f2:99:60:a6:d1:b2:0d: 71:71:27:95:01:87:18:58:3f:c7:4c:f4:7a:6d:fb:8f:d5:ed: 8b:1f:f3:15:ad:82:df:03:30:78:39:ed:1d:a3:02:fe:16:a0: 78:f5:60:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U4MjExMTAvBgNVBAUTKEMyMjJDMTlFQkY1Mjg0NEQ0QjdDREEwRUY3NTRFNkQz MzBDNEI2MDkwHhcNMjQwNTE4MTcyNzQyWhcNMjQwNTI1MTcyNzQyWjAYMRYwFAYD VQQDEw02NjQ4ZTUwZS05Yzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsHHfSVctAAz6OvM2UcbGthkTCwLu8a5RRYoGvCwRrXS3C5/L3Znk59tojT0 cdZ+pHaBxXvp1VO1GhfmUjAlfaNTduEa5NUoSD6e630/OhJ0RJZI4qBI1uBmZ94N /SPUByXjcONYjcJh8J63w+AHI5MJW2jT/ilH1/1sjFxilnCNHgWxaAaVtmDCGTNQ BTsWgaenqtWmV6fSKLJwJowbyX3LHv0kEjEGfKSSy44ek+vEAunJbOO5O1fbx4kl YDxsC+PgvRTSOpe3JMOo3czK4o6AMh5sqBFT0J+Lw9AO/kBTtUJJE6vUO4Tl8fp2 g1ij6rGe4iZ4XiA7K4oln6KgjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFApgERq2 ///VcGXAYQ6LGC4ChpzUMB8GA1UdIwQYMBaAFMIiwZ6/UoRNS3zaDvdU5tMwxLYJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTgyMS84MTFGQjU5MDYw NTExMUU4OENEOEVDNDdDNEY5QUUwMi93aUxCbnI5U2hFMUxmTm9POTFUbTB6REV0 Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dpTEJucjlTaEUxTGZOb085MVRtMHpERXRnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTgyMS84MTFGQjU5MDYwNTExMUU4OENEOEVDNDdDNEY5QUUwMi93aUxCbnI5U2hF MUxmTm9POTFUbTB6REV0Z2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ1r+Zx2dkqhB3B9WWyFzEyaFRc4X5djutCmUJ88MhfZPSpYvJSOhY uw3ldYwQZT6wd/6Nm6pxYy3jU7/9/a0+NxC+//0OGpc+5cYSWDp1JUt0n8heG/I8 IvA27wmSvIh7DLG38gG6UCgiHXC2wm2ERuB+Z80Cez2SyZAgeUGy48OYJoHBvzm2 YxXh4zfj7QIuP1RyGHsn6hWhX7GX71VQ6UstNh8LYsu3mdpWwq3v3mswfWI+/sxi bcOmUKA0nmD+t3bMtgKiByKXqVbAmvdIRvKZYKbRsg1xcSeVAYcYWD/HTPR6bfuP 1e2LH/MVrYLfAzB4Oe0dowL+FqB49WDQ -----END CERTIFICATE-----Generated at Sat May 18 18:21:39 2024 by rpki-client on console-ams.rpki-client.org