$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft File: r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft (raw, json) Hash identifier: xpsSanQZf7XtoJQd1Enz+CDNE073eu5Gc/ARTouR5mQ= Subject key identifier: 09:6A:7D:81:37:F2:4B:90:BA:B4:23:FF:52:B5:B1:56:E4:1D:0D:8A Authority key identifier: AF:A6:D7:BD:C3:7B:64:C8:F1:46:EE:A6:17:36:D3:D4:51:78:FB:37 Certificate issuer: /CN=A91E8CB0/serialNumber=AFA6D7BDC37B64C8F146EEA61736D3D45178FB37 Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft Manifest number: 011A Signing time: Sun 19 May 2024 05:18:26 +0000 Manifest this update: Sun 19 May 2024 05:18:26 +0000 Manifest next update: Sun 26 May 2024 05:18:26 +0000 Files and hashes: 1: r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl (hash: cQv5eu5OA8f8MfNgcqC3IxgvnrlyvBQXIUoeyAzLtxQ=) 2: F11BA4EA75B811EDA34F9687C4F9AE02.roa (hash: FDlBQttiAjfW5cf3WMiGkJNbaMYuBenMKHgdFn6C9uo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8CB0/serialNumber=AFA6D7BDC37B64C8F146EEA61736D3D45178FB37 Validity Not Before: May 19 05:18:26 2024 GMT Not After : May 26 05:18:26 2024 GMT Subject: CN=66498ba2-3fb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:20:a5:71:7c:99:cb:14:0d:f1:b5:07:48:39: 24:52:8a:98:42:df:df:e6:21:18:66:37:af:65:92: 05:96:32:d1:1f:a6:66:c2:76:2a:ee:2f:51:48:3a: 36:05:47:b9:90:36:94:fd:b1:48:5e:2e:16:5c:81: 86:6a:69:28:48:b1:e5:a4:3f:fe:ad:d1:1d:a0:46: 8e:27:a3:77:77:ad:98:b4:e6:ed:33:c3:92:b6:25: d9:fb:48:cb:c7:9b:65:3f:e5:10:68:ea:9a:6c:8b: db:b9:1f:fb:30:dc:36:2c:13:4e:8d:2a:a4:d7:ed: 79:3b:8d:7a:4d:3a:8f:53:55:5c:86:7f:59:f2:7d: 61:13:0a:76:75:c0:89:3e:ce:0a:b0:85:0d:1a:fd: 95:0a:32:15:e5:74:b7:c8:eb:bd:e9:05:24:c4:84: 73:58:9f:54:2b:e6:4c:ae:94:52:4a:53:0c:8f:43: 0a:10:7f:a3:c9:51:eb:32:b6:2d:74:21:94:8e:5a: 83:62:b2:0b:c9:67:7b:5e:61:3d:b2:2c:c0:3c:ab: c2:97:cc:6f:82:e7:e7:48:73:69:53:59:54:f7:e1: b5:cd:4b:a6:b6:5d:b0:8b:ca:f5:b6:d4:64:3b:f7: ea:d1:76:30:bf:f3:be:c5:5b:18:68:8c:14:9d:da: a8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:6A:7D:81:37:F2:4B:90:BA:B4:23:FF:52:B5:B1:56:E4:1D:0D:8A X509v3 Authority Key Identifier: keyid:AF:A6:D7:BD:C3:7B:64:C8:F1:46:EE:A6:17:36:D3:D4:51:78:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:d7:ad:84:d2:24:be:a0:3a:c3:98:4f:28:96:29:c2:d2:0e: 4a:49:02:ae:bd:94:87:fc:60:65:d2:06:79:17:57:cd:39:53: 55:3b:33:e7:3d:3e:00:56:0a:22:d6:dc:b3:7d:cf:62:37:80: e0:e3:7b:8c:aa:e1:fe:eb:0c:f0:18:55:b4:89:4a:20:28:85: b6:70:0a:b0:2a:f5:43:09:c5:5a:88:ee:da:94:28:ea:c0:9d: 72:71:07:b9:bd:14:09:bd:06:2e:97:59:e6:bb:3d:e0:40:b8: fe:9e:86:10:b0:a5:46:57:04:80:b0:d5:0e:56:3d:8b:d9:af: b4:fb:5a:b0:a4:bd:25:5f:2e:c9:3f:c9:b2:28:35:f5:6d:a6: 50:b8:b7:33:a7:8c:09:20:1e:54:3d:54:ea:03:c4:36:ce:40: 87:d8:cb:c5:95:6c:b0:53:a4:3a:28:2b:57:99:11:60:69:18: 86:30:77:5e:79:7d:0a:ca:80:74:a0:64:a0:ca:ad:6a:87:2c: 88:45:2b:23:ff:a7:e9:55:8a:77:cc:d2:60:cc:88:45:c1:5c: 85:29:1e:7f:ea:bd:28:e4:7f:fb:80:2d:fd:1b:e6:b6:fd:3a: 37:28:48:0e:e1:a0:f8:87:70:05:f6:c7:5c:d1:3d:4c:47:ad: cb:e8:01:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDQjAxMTAvBgNVBAUTKEFGQTZEN0JEQzM3QjY0QzhGMTQ2RUVBNjE3MzZEM0Q0 NTE3OEZCMzcwHhcNMjQwNTE5MDUxODI2WhcNMjQwNTI2MDUxODI2WjAYMRYwFAYD VQQDEw02NjQ5OGJhMi0zZmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyiClcXyZyxQN8bUHSDkkUoqYQt/f5iEYZjevZZIFljLRH6ZmwnYq7i9RSDo2 BUe5kDaU/bFIXi4WXIGGamkoSLHlpD/+rdEdoEaOJ6N3d62YtObtM8OStiXZ+0jL x5tlP+UQaOqabIvbuR/7MNw2LBNOjSqk1+15O416TTqPU1Vchn9Z8n1hEwp2dcCJ Ps4KsIUNGv2VCjIV5XS3yOu96QUkxIRzWJ9UK+ZMrpRSSlMMj0MKEH+jyVHrMrYt dCGUjlqDYrILyWd7XmE9sizAPKvCl8xvgufnSHNpU1lU9+G1zUumtl2wi8r1ttRk O/fq0XYwv/O+xVsYaIwUndqoVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAlqfYE3 8kuQurQj/1K1sVbkHQ2KMB8GA1UdIwQYMBaAFK+m173De2TI8Ubuphc209RRePs3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOENCMC8zNzcwMTI0RTZC QzUxMUVEODY2QTdENUVDNEY5QUUwMi9yNmJYdmNON1pNanhSdTZtRnpiVDFGRjQt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I2Ylh2Y043Wk1qeFJ1Nm1GemJUMUZGNC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OENCMC8zNzcwMTI0RTZCQzUxMUVEODY2QTdENUVDNEY5QUUwMi9yNmJYdmNON1pN anhSdTZtRnpiVDFGRjQtemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAD162E0iS+oDrDmE8olinC0g5KSQKuvZSH/GBl0gZ5F1fNOVNVOzPn PT4AVgoi1tyzfc9iN4Dg43uMquH+6wzwGFW0iUogKIW2cAqwKvVDCcVaiO7alCjq wJ1ycQe5vRQJvQYul1nmuz3gQLj+noYQsKVGVwSAsNUOVj2L2a+0+1qwpL0lXy7J P8myKDX1baZQuLczp4wJIB5UPVTqA8Q2zkCH2MvFlWywU6Q6KCtXmRFgaRiGMHde eX0KyoB0oGSgyq1qhyyIRSsj/6fpVYp3zNJgzIhFwVyFKR5/6r0o5H/7gC39G+a2 /To3KEgO4aD4h3AF9sdc0T1MR63L6AG/ -----END CERTIFICATE-----Generated at Sun May 19 06:14:37 2024 by rpki-client on console-ams.rpki-client.org