$ rpki-client -vvf rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft File: peado7v7jl3TlkjmpD4A-nI95lg.mft (raw, json) Hash identifier: gNyKnll4+9l9f+0BCzfwXvegEXcS4zkrUWIyQpvNP/4= Subject key identifier: 69:38:E3:C7:7F:67:98:E7:28:24:F6:42:82:C9:01:D7:36:62:42:4D Authority key identifier: A5:E6:9D:A3:BB:FB:8E:5D:D3:96:48:E6:A4:3E:00:FA:72:3D:E6:58 Certificate issuer: /CN=A91190B4/serialNumber=A5E69DA3BBFB8E5DD39648E6A43E00FA723DE658 Certificate serial: 09E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft Manifest number: 09DC Signing time: Mon 06 May 2024 20:52:29 +0000 Manifest this update: Mon 06 May 2024 20:52:29 +0000 Manifest next update: Mon 13 May 2024 20:52:29 +0000 Files and hashes: 1: peado7v7jl3TlkjmpD4A-nI95lg.crl (hash: kXfyTQ0zeuD5U2NcuucJiMOe6RhzS9MTGFRTlZeHUSU=) 2: 55BC5674573F11EAA8901D3EC4F9AE02.roa (hash: rdqj8/PeZ1X7JbGyHFdOgeZIkKmjTUjAK8v5yOyh4l0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.crl rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2531 (0x9e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91190B4/serialNumber=A5E69DA3BBFB8E5DD39648E6A43E00FA723DE658 Validity Not Before: May 6 20:52:29 2024 GMT Not After : May 13 20:52:29 2024 GMT Subject: CN=6639430d-4379 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:20:15:28:1f:6d:14:bd:4e:21:12:3d:8f:e6: e8:01:5d:c5:c6:91:07:5b:50:c3:2b:a1:cb:a8:99: d4:57:61:fa:a6:8b:1f:e5:38:4e:36:cb:31:be:c3: 4d:be:80:4c:0f:d1:29:05:ff:2f:02:01:f0:4d:e7: b2:dc:2e:db:e7:aa:f6:64:bd:6d:4a:e1:28:bd:f1: f7:43:85:d4:66:51:96:1d:c3:fb:e4:b6:27:a0:42: 60:1d:6b:16:33:5e:1e:b9:7a:e8:ef:9c:c7:25:01: 80:6a:75:37:63:26:2a:8d:5a:e0:29:5a:08:44:aa: 79:84:ba:21:9d:9c:7c:c3:a9:f1:2e:8f:ba:c0:00: e9:6f:73:37:d2:21:2b:e0:9c:cc:d2:d6:a6:eb:be: 2b:45:f4:29:42:fc:9c:73:1e:14:fb:7e:e7:4e:0d: ee:cc:e4:3b:a3:2c:e5:06:08:c7:32:07:00:54:47: ac:ae:9c:4d:65:84:86:cc:3b:ff:d2:38:e5:42:83: 9f:d4:f6:9a:84:ec:82:32:5f:61:5f:e1:24:65:60: 9f:d8:c0:6d:f2:93:37:a0:6d:e2:8b:9a:b2:dc:0c: 9a:9e:20:41:cf:a1:52:19:3a:e9:ce:50:fe:be:8a: 4e:1e:6d:2e:78:ce:70:da:df:eb:c4:68:4e:c2:9f: ce:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:38:E3:C7:7F:67:98:E7:28:24:F6:42:82:C9:01:D7:36:62:42:4D X509v3 Authority Key Identifier: keyid:A5:E6:9D:A3:BB:FB:8E:5D:D3:96:48:E6:A4:3E:00:FA:72:3D:E6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:0b:88:0b:e2:2d:0a:f1:7c:d8:fe:9e:69:d3:57:da:6f:29: b6:b2:82:76:9b:d8:7f:76:96:9f:aa:44:92:9a:f3:ab:e6:e7: e2:cd:6d:8d:08:7b:83:1f:c2:67:c1:ba:4d:d6:ae:48:33:f5: 97:55:4b:74:81:19:6f:c7:d7:87:68:b6:1d:87:02:67:c7:12: 9a:5e:64:47:02:1e:b7:a7:00:2a:51:e4:a2:f0:1b:bb:f6:35: 07:90:bb:12:ad:46:de:83:43:3e:0a:84:e8:70:83:ff:01:3c: 96:65:1e:2c:90:2e:b5:4f:d6:91:71:83:32:5b:d3:af:b1:45: be:6e:a7:c1:ff:a6:d2:3f:cc:54:eb:87:96:a8:45:3a:98:1e: 7a:09:dc:f5:75:b5:02:c9:9a:ca:23:58:a6:25:66:71:2a:52: 39:e4:f4:29:0c:1b:21:a3:61:59:d0:c6:e3:dd:f1:5a:af:80: 17:68:da:01:8c:a4:cd:5a:93:77:f4:7c:f7:03:ae:19:f8:19: 62:fc:a1:bf:4f:8c:d5:48:ad:d5:f8:b1:62:c0:21:11:1b:79: cd:75:0e:44:ff:2f:ad:89:26:9f:00:71:59:6e:24:72:cf:5e: 0c:cd:9a:1f:56:4d:72:f4:ef:fd:48:d5:ee:92:c9:6c:4d:8d: f1:06:59:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwQjQxMTAvBgNVBAUTKEE1RTY5REEzQkJGQjhFNUREMzk2NDhFNkE0M0UwMEZB NzIzREU2NTgwHhcNMjQwNTA2MjA1MjI5WhcNMjQwNTEzMjA1MjI5WjAYMRYwFAYD VQQDEw02NjM5NDMwZC00Mzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxiAVKB9tFL1OIRI9j+boAV3FxpEHW1DDK6HLqJnUV2H6posf5ThONssxvsNN voBMD9EpBf8vAgHwTeey3C7b56r2ZL1tSuEovfH3Q4XUZlGWHcP75LYnoEJgHWsW M14euXro75zHJQGAanU3YyYqjVrgKVoIRKp5hLohnZx8w6nxLo+6wADpb3M30iEr 4JzM0tam674rRfQpQvyccx4U+37nTg3uzOQ7oyzlBgjHMgcAVEesrpxNZYSGzDv/ 0jjlQoOf1PaahOyCMl9hX+EkZWCf2MBt8pM3oG3ii5qy3AyaniBBz6FSGTrpzlD+ vopOHm0ueM5w2t/rxGhOwp/O5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGk448d/ Z5jnKCT2QoLJAdc2YkJNMB8GA1UdIwQYMBaAFKXmnaO7+45d05ZI5qQ+APpyPeZY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTBCNC9CQzhDMTBBRTU3 M0MxMUVBQjBBNEUzMzVDNEY5QUUwMi9wZWFkbzd2N2psM1Rsa2ptcEQ0QS1uSTk1 bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BlYWRvN3Y3amwzVGxram1wRDRBLW5JOTVsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTBCNC9CQzhDMTBBRTU3M0MxMUVBQjBBNEUzMzVDNEY5QUUwMi9wZWFkbzd2N2ps M1Rsa2ptcEQ0QS1uSTk1bGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3C4gL4i0K8XzY/p5p01fabym2soJ2m9h/dpafqkSSmvOr5ufizW2N CHuDH8JnwbpN1q5IM/WXVUt0gRlvx9eHaLYdhwJnxxKaXmRHAh63pwAqUeSi8Bu7 9jUHkLsSrUbeg0M+CoTocIP/ATyWZR4skC61T9aRcYMyW9OvsUW+bqfB/6bSP8xU 64eWqEU6mB56Cdz1dbUCyZrKI1imJWZxKlI55PQpDBsho2FZ0Mbj3fFar4AXaNoB jKTNWpN39Hz3A64Z+Bli/KG/T4zVSK3V+LFiwCERG3nNdQ5E/y+tiSafAHFZbiRy z14MzZofVk1y9O/9SNXukslsTY3xBll1 -----END CERTIFICATE-----Generated at Mon May 6 22:40:52 2024 by rpki-client on console-ams.rpki-client.org