$ rpki-client -vvf rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft File: _7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft (raw, json) Hash identifier: r/PP9ZX2Ll9VqYeNN8ZR2yWga1/SFDOKbLrYxyVQPrQ= Subject key identifier: 14:C6:5B:AC:08:A5:5C:4E:BF:1E:E9:B2:1D:4E:A4:20:B6:FF:42:53 Authority key identifier: FF:BC:2D:41:CD:D9:5F:FC:F8:A7:7E:52:91:9E:2E:6D:1B:AF:02:DF Certificate issuer: /CN=A91168FD/serialNumber=FFBC2D41CDD95FFCF8A77E52919E2E6D1BAF02DF Certificate serial: 209F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft Manifest number: 2097 Signing time: Mon 06 May 2024 16:21:54 +0000 Manifest this update: Mon 06 May 2024 16:21:54 +0000 Manifest next update: Mon 13 May 2024 16:21:54 +0000 Files and hashes: 1: _7wtQc3ZX_z4p35SkZ4ubRuvAt8.crl (hash: nFCo4/1fSBr3GPKRNVqLuaD3y7eStMv1+SMURc09PRo=) 2: D07411B6661211ECBCD61A65C4F9AE02.roa (hash: nL0Z119WnXgRu2rtcMKUBxI4xbIxjYpGKvjnrU4cw64=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.crl rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 16:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8351 (0x209f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91168FD/serialNumber=FFBC2D41CDD95FFCF8A77E52919E2E6D1BAF02DF Validity Not Before: May 6 16:21:54 2024 GMT Not After : May 13 16:21:54 2024 GMT Subject: CN=663903a2-f620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:89:83:e7:24:3f:6d:20:06:94:c7:00:4a:bd: 84:a5:38:12:e0:ac:fc:9d:f9:04:36:d4:e6:2e:44: 03:fc:53:d9:1e:f8:27:61:c4:55:61:8d:93:05:e0: 9c:46:3e:3f:8e:fb:b7:7c:a5:67:b5:cc:af:a6:74: 6b:1c:30:1e:a8:e7:0c:87:60:4e:40:80:fc:29:e2: e6:74:26:2e:df:a5:3a:c4:71:38:67:a2:92:44:09: df:ab:cd:6c:38:50:f8:e5:73:d3:f7:9f:87:52:e3: c6:2d:e1:d0:58:81:05:98:2a:82:2f:33:b8:b0:ee: d6:51:7c:a0:0e:6d:0d:d5:2a:26:95:c2:48:bc:f9: 95:c8:8a:3c:d0:13:19:bb:04:1a:f0:50:42:96:73: e4:ac:c5:b9:d8:7e:9f:a3:e1:d4:42:02:96:fb:46: 50:14:e0:35:11:a1:ef:76:72:09:06:a7:6c:0a:76: f1:63:f5:cd:f9:2f:78:c1:cc:dd:88:6e:2c:aa:1c: 6e:f2:06:4a:94:46:a9:cc:65:3b:11:a5:2d:1c:e4: 09:7d:33:f2:26:0b:ab:9a:7e:83:65:96:9e:94:45: cd:57:a4:50:23:55:16:a2:68:a7:a4:3f:63:2e:0c: 6b:c5:f3:9f:4b:fc:a0:90:2f:25:27:39:32:bb:5c: 73:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:C6:5B:AC:08:A5:5C:4E:BF:1E:E9:B2:1D:4E:A4:20:B6:FF:42:53 X509v3 Authority Key Identifier: keyid:FF:BC:2D:41:CD:D9:5F:FC:F8:A7:7E:52:91:9E:2E:6D:1B:AF:02:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:f3:85:8b:27:fb:3e:66:a2:bf:e3:5e:ff:5a:2f:b3:cf:e9: b0:95:4f:48:59:de:ca:a8:30:8e:b8:85:cb:88:6f:23:0d:32: fb:89:74:f0:be:6a:76:fa:f6:b9:21:a2:77:bf:6a:33:8e:72: 11:ea:89:6b:8f:c2:92:43:e9:7e:84:09:12:1f:93:fc:23:c0: 0e:5a:1e:34:bd:7d:bd:92:69:71:e3:72:7a:9d:6e:b6:93:26: 4a:b0:30:24:59:21:9b:a3:d8:14:95:55:b8:d7:11:e0:4c:d5: 85:60:29:b4:fa:2c:ed:15:52:47:58:04:9d:96:87:a2:31:16: e5:f8:25:a2:ee:57:c2:e8:d3:28:4a:4b:5e:b9:09:36:d5:fd: a2:44:cb:43:56:09:8e:92:45:f8:1f:f6:f5:dd:a9:5f:83:d6: b3:d9:7e:1d:d8:e0:89:d5:45:4d:98:51:4f:af:67:ca:bb:25: 1f:b7:86:2a:dd:cd:6f:e1:21:f3:50:f3:b7:0e:0b:68:ee:4c: ab:59:48:4d:ff:48:4f:e9:43:fc:a9:0a:f6:34:fe:8b:b7:ba: 15:90:67:21:33:17:f8:83:ab:32:3d:72:86:54:d3:56:cb:29: b9:02:5c:0a:d6:28:c8:7f:b9:3b:17:f1:05:69:59:63:5b:ae: e4:91:ad:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY4RkQxMTAvBgNVBAUTKEZGQkMyRDQxQ0REOTVGRkNGOEE3N0U1MjkxOUUyRTZE MUJBRjAyREYwHhcNMjQwNTA2MTYyMTU0WhcNMjQwNTEzMTYyMTU0WjAYMRYwFAYD VQQDEw02NjM5MDNhMi1mNjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9YmD5yQ/bSAGlMcASr2EpTgS4Kz8nfkENtTmLkQD/FPZHvgnYcRVYY2TBeCc Rj4/jvu3fKVntcyvpnRrHDAeqOcMh2BOQID8KeLmdCYu36U6xHE4Z6KSRAnfq81s OFD45XPT95+HUuPGLeHQWIEFmCqCLzO4sO7WUXygDm0N1SomlcJIvPmVyIo80BMZ uwQa8FBClnPkrMW52H6fo+HUQgKW+0ZQFOA1EaHvdnIJBqdsCnbxY/XN+S94wczd iG4sqhxu8gZKlEapzGU7EaUtHOQJfTPyJgurmn6DZZaelEXNV6RQI1UWominpD9j LgxrxfOfS/ygkC8lJzkyu1xziwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTGW6wI pVxOvx7psh1OpCC2/0JTMB8GA1UdIwQYMBaAFP+8LUHN2V/8+Kd+UpGeLm0brwLf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjhGRC85QTc5OTY0NEUx MTExMUU1QUIwMTc3MjdDNEY5QUUwMi9fN3d0UWMzWlhfejRwMzVTa1o0dWJSdXZB dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL183d3RRYzNaWF96NHAzNVNrWjR1YlJ1dkF0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjhGRC85QTc5OTY0NEUxMTExMUU1QUIwMTc3MjdDNEY5QUUwMi9fN3d0UWMzWlhf ejRwMzVTa1o0dWJSdXZBdDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp84WLJ/s+ZqK/417/Wi+zz+mwlU9IWd7KqDCOuIXLiG8jDTL7iXTw vmp2+va5IaJ3v2ozjnIR6olrj8KSQ+l+hAkSH5P8I8AOWh40vX29kmlx43J6nW62 kyZKsDAkWSGbo9gUlVW41xHgTNWFYCm0+iztFVJHWASdloeiMRbl+CWi7lfC6NMo SkteuQk21f2iRMtDVgmOkkX4H/b13alfg9az2X4d2OCJ1UVNmFFPr2fKuyUft4Yq 3c1v4SHzUPO3Dgto7kyrWUhN/0hP6UP8qQr2NP6Lt7oVkGchMxf4g6syPXKGVNNW yym5AlwK1ijIf7k7F/EFaVljW67kka0Y -----END CERTIFICATE-----Generated at Mon May 6 17:35:33 2024 by rpki-client on console-fra.rpki-client.org