$ rpki-client -vvf rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft File: TrnMSjh3s_-dQLwbs-YMkK36zVM.mft (raw, json) Hash identifier: BCgyV7AbQFyRq3U9jFVIHwMa380q8NDqfpyDiOt4tlg= Subject key identifier: 47:AB:8A:8E:BB:A0:3A:5A:0A:5B:AD:83:39:FD:2B:8C:4B:AB:8D:EA Authority key identifier: 4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 Certificate issuer: /CN=A91F104D/serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Certificate serial: 09D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft Manifest number: 09D4 Signing time: Sat 18 May 2024 20:45:49 +0000 Manifest this update: Sat 18 May 2024 20:45:48 +0000 Manifest next update: Sat 25 May 2024 20:45:48 +0000 Files and hashes: 1: TrnMSjh3s_-dQLwbs-YMkK36zVM.crl (hash: 9js+bJR1ubIGvmeQF/XKbpVRAQnPLRpHeupWWR8vmiI=) 2: 1979A7C0586111EA9FC98555C4F9AE02.roa (hash: lWpaNn0qlQx09gHZA5X/OYspgbqbVIoZ/8ILnluvm6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2521 (0x9d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F104D/serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Validity Not Before: May 18 20:45:48 2024 GMT Not After : May 25 20:45:48 2024 GMT Subject: CN=6649137c-f377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:95:1f:da:5d:ad:a0:68:97:14:4a:a6:78:2b: 93:4d:ae:13:d1:ce:7a:01:5d:5f:5f:04:f8:62:a4: a4:52:55:ce:75:c1:00:03:e8:9e:39:d5:c0:d8:8d: 28:76:74:cb:4c:92:30:af:f6:f1:e4:3c:67:26:5a: 3f:28:07:7e:f5:52:cc:8e:28:39:f8:e5:8b:e8:a9: 45:0e:cf:5c:8c:86:2a:64:98:bc:e1:5c:b5:3a:25: bc:1c:f7:48:58:5b:f0:78:d9:12:be:36:cf:92:d5: 36:bd:f6:c9:a4:67:d5:43:b5:36:eb:a8:18:f1:85: 42:e5:05:83:a2:c0:0f:5b:ed:f4:4e:af:4b:55:55: 7f:bd:4a:c5:43:1c:6f:34:c6:de:61:7c:c6:c1:3a: 45:46:9a:17:b6:58:95:06:89:96:ad:b8:fa:e7:f0: a2:d2:d6:82:50:ff:ea:9e:c8:01:dd:d1:4e:de:e0: 07:7a:cc:03:36:99:e9:e6:75:21:7f:b9:f1:a8:39: d4:8c:ee:19:c4:8d:49:08:ba:1e:99:c8:68:4b:a9: 8f:65:f9:b9:18:0e:c8:ae:46:2c:d8:31:c8:3e:57: 87:01:c0:10:1f:ff:2b:de:a9:96:61:47:56:b6:61: 70:9f:bc:80:57:f1:a2:8e:8d:f9:24:12:80:d6:d7: 8c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:AB:8A:8E:BB:A0:3A:5A:0A:5B:AD:83:39:FD:2B:8C:4B:AB:8D:EA X509v3 Authority Key Identifier: keyid:4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:9f:43:a2:60:26:69:45:3d:6b:84:50:a8:58:de:76:fc:46: 33:b9:e7:60:57:2b:da:62:76:56:03:19:d1:33:10:d7:02:72: 71:d6:75:e5:7d:be:a4:4a:99:2c:30:ff:e7:4c:52:e6:3e:1b: dc:bc:63:d9:d0:25:27:8d:4d:fb:d5:2c:a1:77:07:df:a8:30: 2c:27:fa:23:f2:70:9a:92:e2:4a:eb:1a:e5:b5:86:3e:45:48: 31:47:a9:13:80:08:47:24:4a:48:9d:20:3c:4f:09:2a:8e:d8: ba:13:c7:ed:b8:7f:8c:d4:a2:af:ab:cf:29:48:34:e4:3e:6f: 24:33:14:6f:41:a9:31:a3:99:81:4d:8c:14:6b:78:37:6e:6a: 7e:f6:b9:b1:ba:96:6d:f9:2e:82:a7:4b:3f:61:c8:26:0c:36: 24:6a:94:6b:0a:13:7f:ca:e6:d6:3f:7b:44:bc:39:cb:fe:de: 85:f1:e0:a7:15:58:ef:4f:bc:4e:d7:bf:00:03:65:97:8c:af: d8:de:4c:c8:87:ec:47:ad:fc:a4:28:72:68:ae:13:b5:91:d8: 3b:de:25:db:07:8a:67:0d:7f:34:30:57:12:80:91:54:6c:07: 88:d8:c4:5e:3e:b4:82:fa:12:7f:81:2a:1b:9d:a1:e0:d8:bc: 21:4a:bd:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEwNEQxMTAvBgNVBAUTKDRFQjlDQzRBMzg3N0IzRkY5RDQwQkMxQkIzRTYwQzkw QURGQUNENTMwHhcNMjQwNTE4MjA0NTQ4WhcNMjQwNTI1MjA0NTQ4WjAYMRYwFAYD VQQDEw02NjQ5MTM3Yy1mMzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5Uf2l2toGiXFEqmeCuTTa4T0c56AV1fXwT4YqSkUlXOdcEAA+ieOdXA2I0o dnTLTJIwr/bx5DxnJlo/KAd+9VLMjig5+OWL6KlFDs9cjIYqZJi84Vy1OiW8HPdI WFvweNkSvjbPktU2vfbJpGfVQ7U266gY8YVC5QWDosAPW+30Tq9LVVV/vUrFQxxv NMbeYXzGwTpFRpoXtliVBomWrbj65/Ci0taCUP/qnsgB3dFO3uAHeswDNpnp5nUh f7nxqDnUjO4ZxI1JCLoemchoS6mPZfm5GA7IrkYs2DHIPleHAcAQH/8r3qmWYUdW tmFwn7yAV/Gijo35JBKA1teM8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEerio67 oDpaClutgzn9K4xLq43qMB8GA1UdIwQYMBaAFE65zEo4d7P/nUC8G7PmDJCt+s1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTA0RC8yMUMyQTA4QzU4 NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3NfLWRRTHdicy1ZTWtLMzZ6 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rybk1Tamgzc18tZFFMd2JzLVlNa0szNnpWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTA0RC8yMUMyQTA4QzU4NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3Nf LWRRTHdicy1ZTWtLMzZ6Vk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcn0OiYCZpRT1rhFCoWN52/EYzuedgVyvaYnZWAxnRMxDXAnJx1nXl fb6kSpksMP/nTFLmPhvcvGPZ0CUnjU371SyhdwffqDAsJ/oj8nCakuJK6xrltYY+ RUgxR6kTgAhHJEpInSA8Twkqjti6E8ftuH+M1KKvq88pSDTkPm8kMxRvQakxo5mB TYwUa3g3bmp+9rmxupZt+S6Cp0s/YcgmDDYkapRrChN/yubWP3tEvDnL/t6F8eCn FVjvT7xO178AA2WXjK/Y3kzIh+xHrfykKHJorhO1kdg73iXbB4pnDX80MFcSgJFU bAeI2MRePrSC+hJ/gSobnaHg2LwhSr3y -----END CERTIFICATE-----Generated at Sat May 18 21:31:32 2024 by rpki-client on console-ams.rpki-client.org