$ rpki-client -vvf rpki.apnic.net/member_repository/A91E431E/7A8481968C6511EBAAF80376C4F9AE02/i29QUS89IfFe7mdUeBjiY79cXRQ.mft File: i29QUS89IfFe7mdUeBjiY79cXRQ.mft (raw, json) Hash identifier: 25SN0EA8bvSH4s6zCnhvAhX7YFFEWCdM2PMFtYl6QUY= Subject key identifier: 2B:67:9B:00:44:A9:B2:25:3D:3B:3E:B3:4B:BD:5F:58:2A:EE:65:70 Authority key identifier: 8B:6F:50:51:2F:3D:21:F1:5E:EE:67:54:78:18:E2:63:BF:5C:5D:14 Certificate issuer: /CN=A91E431E/serialNumber=8B6F50512F3D21F15EEE67547818E263BF5C5D14 Certificate serial: 0591 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i29QUS89IfFe7mdUeBjiY79cXRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E431E/7A8481968C6511EBAAF80376C4F9AE02/i29QUS89IfFe7mdUeBjiY79cXRQ.mft Manifest number: 058D Signing time: Sat 01 Jun 2024 01:21:53 +0000 Manifest this update: Sat 01 Jun 2024 01:21:52 +0000 Manifest next update: Sat 08 Jun 2024 01:21:52 +0000 Files and hashes: 1: i29QUS89IfFe7mdUeBjiY79cXRQ.crl (hash: U3HoxSSp75PhhiX7ANPwpPeCbwYGYf/0w1D0rSqWeoc=) 2: 51CBE4868C6711EB98B7B279C4F9AE02.roa (hash: JEllQKc3DqGQDnEjbcIuS3uHGcs7crhoU+oxwVF3Umg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E431E/7A8481968C6511EBAAF80376C4F9AE02/i29QUS89IfFe7mdUeBjiY79cXRQ.crl rsync://rpki.apnic.net/member_repository/A91E431E/7A8481968C6511EBAAF80376C4F9AE02/i29QUS89IfFe7mdUeBjiY79cXRQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i29QUS89IfFe7mdUeBjiY79cXRQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 01:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1425 (0x591) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E431E/serialNumber=8B6F50512F3D21F15EEE67547818E263BF5C5D14 Validity Not Before: Jun 1 01:21:52 2024 GMT Not After : Jun 8 01:21:52 2024 GMT Subject: CN=665a77b1-2ab4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:63:7e:98:c2:24:20:cd:c0:3a:db:7d:29:f5: 84:3e:12:9e:6d:e6:60:8e:9c:92:62:f5:b0:8d:fc: 76:df:3a:c0:db:57:4f:84:a8:24:c9:73:b3:ac:5e: 01:2e:2b:74:83:a3:79:54:7e:a5:29:f5:cf:8b:e6: 1a:e3:ce:00:59:b7:92:43:09:2c:a0:43:ac:dd:40: 08:71:f2:49:67:70:86:14:5f:c2:fe:10:21:6e:9e: 94:7a:db:97:d8:8c:20:ec:ca:ee:92:b5:de:28:b1: 5d:6e:2b:f7:9a:ef:da:67:d7:43:b8:65:51:9f:cc: f0:a7:9e:c2:0a:f3:86:67:60:0b:35:87:8b:00:c6: 9c:19:19:3a:c8:06:24:58:c6:86:e1:23:08:5e:01: c4:ef:fe:f2:c0:8b:71:3f:7a:2e:2e:79:48:34:41: 27:ce:a5:dd:c7:54:4d:d8:40:ac:2c:85:04:bf:2f: 85:4d:43:3a:b0:07:d0:24:b2:2c:68:6b:37:41:b1: 71:ac:08:ad:6f:51:92:33:b9:3f:5a:5b:b3:34:63: ca:31:a5:1d:81:7b:fd:e6:13:da:31:5f:d2:03:e4: d0:df:bd:32:64:fe:aa:78:0a:44:17:cc:a3:a5:e9: 16:d9:54:6e:83:ab:ce:c0:15:a2:68:54:f6:6d:78: be:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:67:9B:00:44:A9:B2:25:3D:3B:3E:B3:4B:BD:5F:58:2A:EE:65:70 X509v3 Authority Key Identifier: keyid:8B:6F:50:51:2F:3D:21:F1:5E:EE:67:54:78:18:E2:63:BF:5C:5D:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E431E/7A8481968C6511EBAAF80376C4F9AE02/i29QUS89IfFe7mdUeBjiY79cXRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i29QUS89IfFe7mdUeBjiY79cXRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E431E/7A8481968C6511EBAAF80376C4F9AE02/i29QUS89IfFe7mdUeBjiY79cXRQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:40:ab:ec:dc:fd:85:a6:30:f3:6a:4a:ec:ff:80:cc:25:cc: 81:6c:3e:57:16:37:b5:ca:5a:2e:93:e0:0a:61:b8:35:fd:c3: 6d:31:9a:69:fe:bf:16:39:03:e6:5e:dd:3b:f9:0f:64:e9:82: 58:74:a0:c3:4a:18:3a:70:d8:49:6a:8e:93:fe:c6:59:a0:d9: b5:51:43:f3:e6:37:27:af:aa:54:c2:fb:23:93:f8:dd:a1:6e: 40:f1:be:40:ab:e5:9c:eb:4c:19:28:27:71:d6:c2:ef:fc:19: 11:36:92:85:52:e7:04:69:ea:c2:34:13:7d:f8:25:4c:da:3c: d2:5b:99:78:e1:fc:4d:39:b0:79:73:d3:d6:01:c2:d3:4e:a1: b7:93:86:56:b4:5a:e0:80:40:4f:f4:93:e3:96:3d:30:d4:30: c8:1a:5f:29:1a:16:cb:ab:58:d9:4e:f2:96:00:d1:ca:3a:26: 46:a9:0a:d6:7b:88:12:8e:ca:82:50:70:6c:f2:9c:eb:9b:53: 71:ed:02:e3:44:29:4c:d5:a5:fa:9c:7b:17:7e:e3:2a:ea:bf: 22:af:34:0b:4e:16:b0:e5:17:85:47:a1:e4:09:7b:26:fd:9a: a4:c8:59:4f:4f:d1:a1:02:e4:d8:d9:eb:3a:02:df:c2:0d:96: a5:fc:f9:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQzMUUxMTAvBgNVBAUTKDhCNkY1MDUxMkYzRDIxRjE1RUVFNjc1NDc4MThFMjYz QkY1QzVEMTQwHhcNMjQwNjAxMDEyMTUyWhcNMjQwNjA4MDEyMTUyWjAYMRYwFAYD VQQDEw02NjVhNzdiMS0yYWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWN+mMIkIM3AOtt9KfWEPhKebeZgjpySYvWwjfx23zrA21dPhKgkyXOzrF4B Lit0g6N5VH6lKfXPi+Ya484AWbeSQwksoEOs3UAIcfJJZ3CGFF/C/hAhbp6UetuX 2Iwg7MrukrXeKLFdbiv3mu/aZ9dDuGVRn8zwp57CCvOGZ2ALNYeLAMacGRk6yAYk WMaG4SMIXgHE7/7ywItxP3ouLnlINEEnzqXdx1RN2ECsLIUEvy+FTUM6sAfQJLIs aGs3QbFxrAitb1GSM7k/WluzNGPKMaUdgXv95hPaMV/SA+TQ370yZP6qeApEF8yj pekW2VRug6vOwBWiaFT2bXi+pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCtnmwBE qbIlPTs+s0u9X1gq7mVwMB8GA1UdIwQYMBaAFItvUFEvPSHxXu5nVHgY4mO/XF0U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDMxRS83QTg0ODE5NjhD NjUxMUVCQUFGODAzNzZDNEY5QUUwMi9pMjlRVVM4OUlmRmU3bWRVZUJqaVk3OWNY UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kyOVFVUzg5SWZGZTdtZFVlQmppWTc5Y1hSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDMxRS83QTg0ODE5NjhDNjUxMUVCQUFGODAzNzZDNEY5QUUwMi9pMjlRVVM4OUlm RmU3bWRVZUJqaVk3OWNYUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWQKvs3P2FpjDzakrs/4DMJcyBbD5XFje1ylouk+AKYbg1/cNtMZpp /r8WOQPmXt07+Q9k6YJYdKDDShg6cNhJao6T/sZZoNm1UUPz5jcnr6pUwvsjk/jd oW5A8b5Aq+Wc60wZKCdx1sLv/BkRNpKFUucEaerCNBN9+CVM2jzSW5l44fxNObB5 c9PWAcLTTqG3k4ZWtFrggEBP9JPjlj0w1DDIGl8pGhbLq1jZTvKWANHKOiZGqQrW e4gSjsqCUHBs8pzrm1Nx7QLjRClM1aX6nHsXfuMq6r8irzQLThaw5ReFR6HkCXsm /ZqkyFlPT9GhAuTY2es6At/CDZal/Pmp -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:24 2024 by rpki-client on console-ams.rpki-client.org