$ rpki-client -vvf rpki.apnic.net/member_repository/A911C812/6ABC5B32B3D111EC91BF3C22C4F9AE02/Zp-zqMoqIOo7gaY6f227FZ-71XQ.mft File: Zp-zqMoqIOo7gaY6f227FZ-71XQ.mft (raw, json) Hash identifier: NmpaO8RECoayU0miAedSjVbzkSxJgijlUTN6pENWbpg= Subject key identifier: 68:AF:AA:F2:65:21:50:7D:27:86:1E:84:F5:14:F4:BE:03:49:4A:42 Authority key identifier: 66:9F:B3:A8:CA:2A:20:EA:3B:81:A6:3A:7F:6D:BB:15:9F:BB:D5:74 Certificate issuer: /CN=A911C812/serialNumber=669FB3A8CA2A20EA3B81A63A7F6DBB159FBBD574 Certificate serial: 02A1 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Zp-zqMoqIOo7gaY6f227FZ-71XQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C812/6ABC5B32B3D111EC91BF3C22C4F9AE02/Zp-zqMoqIOo7gaY6f227FZ-71XQ.mft Manifest number: 02A1 Signing time: Sun 26 May 2024 22:35:31 +0000 Manifest this update: Sun 26 May 2024 22:35:30 +0000 Manifest next update: Sun 02 Jun 2024 22:35:30 +0000 Files and hashes: 1: Zp-zqMoqIOo7gaY6f227FZ-71XQ.crl (hash: tmkFMukyxDQ3L6Okx6X1y7T2o9aXAvjF8VtCnZVEk7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C812/6ABC5B32B3D111EC91BF3C22C4F9AE02/Zp-zqMoqIOo7gaY6f227FZ-71XQ.crl rsync://rpki.apnic.net/member_repository/A911C812/6ABC5B32B3D111EC91BF3C22C4F9AE02/Zp-zqMoqIOo7gaY6f227FZ-71XQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Zp-zqMoqIOo7gaY6f227FZ-71XQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 21:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 673 (0x2a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C812/serialNumber=669FB3A8CA2A20EA3B81A63A7F6DBB159FBBD574 Validity Not Before: May 26 22:35:30 2024 GMT Not After : Jun 2 22:35:30 2024 GMT Subject: CN=6653b932-26d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5a:93:c7:59:f3:4f:da:c6:93:d7:1e:68:e7: 6d:dc:4f:79:7b:a0:44:64:5a:13:28:a4:63:df:98: 26:bd:c1:ce:20:77:51:2f:de:72:21:13:b2:cd:9c: 88:33:52:23:18:d3:a2:aa:de:14:8b:c4:2c:72:29: d0:a1:ec:f0:00:62:b9:c6:90:99:34:02:b0:28:f3: b8:0f:56:16:a2:91:f4:89:6e:30:a1:b7:32:00:ae: dd:65:6d:74:76:5c:70:6f:3b:0a:ac:83:51:68:53: 33:30:1f:50:79:73:cc:f0:93:97:db:44:68:d4:04: be:88:34:fd:f7:a7:e8:0f:79:5a:98:c3:28:e3:66: d0:19:22:20:ad:d9:2b:e2:3c:79:45:de:3e:9a:b4: 90:02:92:b7:61:47:fd:a6:c8:4f:89:b3:5c:b7:e2: 49:f3:5e:08:10:db:b9:c3:2d:2b:21:90:f8:d5:ab: f4:99:79:47:6e:1b:07:39:ea:a6:52:47:a4:ef:86: 3d:fe:8d:d1:4f:22:97:0e:5c:65:29:4b:35:ba:f1: ca:84:f6:b6:0e:e5:1b:76:2c:96:07:6e:21:87:b3: 70:f0:d4:55:b3:e3:3a:c3:c3:73:93:3c:eb:9b:23: 74:14:28:92:d5:b9:46:aa:0c:ef:f3:f5:58:85:30: 49:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:AF:AA:F2:65:21:50:7D:27:86:1E:84:F5:14:F4:BE:03:49:4A:42 X509v3 Authority Key Identifier: keyid:66:9F:B3:A8:CA:2A:20:EA:3B:81:A6:3A:7F:6D:BB:15:9F:BB:D5:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C812/6ABC5B32B3D111EC91BF3C22C4F9AE02/Zp-zqMoqIOo7gaY6f227FZ-71XQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Zp-zqMoqIOo7gaY6f227FZ-71XQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C812/6ABC5B32B3D111EC91BF3C22C4F9AE02/Zp-zqMoqIOo7gaY6f227FZ-71XQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:2e:24:64:22:ba:dd:28:9f:e4:38:92:2b:51:7b:be:2a:51: e8:a7:5a:d1:8b:f0:5a:7f:32:10:73:42:fc:eb:83:ec:8f:07: 8f:ca:66:3d:93:4e:6d:b7:64:16:fb:c9:8d:96:c0:94:df:89: 83:76:b7:36:78:78:40:12:04:43:23:9e:17:5d:3e:40:37:de: 31:54:91:29:e8:0f:e4:7d:88:fa:49:1e:55:dd:55:d5:ae:74: 0c:be:e0:23:26:97:c1:79:f5:70:8f:48:80:73:6d:8c:c6:22: 48:b2:f5:4e:6d:e1:c6:93:62:bc:6b:3f:74:da:7d:10:81:bd: 7e:98:c3:4a:d2:73:cc:69:13:a9:2c:ee:b0:b4:ff:7a:f8:7c: 5b:c8:e6:33:31:7c:3d:13:d2:0e:01:cc:48:57:f2:6e:6c:6d: f6:6c:a2:d4:7c:ca:f6:72:ff:7b:44:2b:aa:77:dc:06:f0:a2: 24:e9:99:67:d2:15:af:0c:ee:1a:97:e5:a5:95:d6:ec:03:79: 6e:47:f3:bc:52:18:66:a0:4e:7e:12:14:22:c0:e0:46:74:ae: b1:a3:34:1c:74:f4:f5:cc:7e:b6:ad:b3:cc:7c:27:b9:65:b2: cd:2a:f6:2e:df:0c:d7:e8:24:19:74:31:ab:1b:06:09:db:48: c3:94:e4:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4MTIxMTAvBgNVBAUTKDY2OUZCM0E4Q0EyQTIwRUEzQjgxQTYzQTdGNkRCQjE1 OUZCQkQ1NzQwHhcNMjQwNTI2MjIzNTMwWhcNMjQwNjAyMjIzNTMwWjAYMRYwFAYD VQQDEw02NjUzYjkzMi0yNmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1qTx1nzT9rGk9ceaOdt3E95e6BEZFoTKKRj35gmvcHOIHdRL95yIROyzZyI M1IjGNOiqt4Ui8QscinQoezwAGK5xpCZNAKwKPO4D1YWopH0iW4wobcyAK7dZW10 dlxwbzsKrINRaFMzMB9QeXPM8JOX20Ro1AS+iDT996foD3lamMMo42bQGSIgrdkr 4jx5Rd4+mrSQApK3YUf9pshPibNct+JJ814IENu5wy0rIZD41av0mXlHbhsHOeqm Ukek74Y9/o3RTyKXDlxlKUs1uvHKhPa2DuUbdiyWB24hh7Nw8NRVs+M6w8Nzkzzr myN0FCiS1blGqgzv8/VYhTBJGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGivqvJl IVB9J4YehPUU9L4DSUpCMB8GA1UdIwQYMBaAFGafs6jKKiDqO4GmOn9tuxWfu9V0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzgxMi82QUJDNUIzMkIz RDExMUVDOTFCRjNDMjJDNEY5QUUwMi9acC16cU1vcUlPbzdnYVk2ZjIyN0ZaLTcx WFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1pwLXpxTW9xSU9vN2dhWTZmMjI3RlotNzFYUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzgxMi82QUJDNUIzMkIzRDExMUVDOTFCRjNDMjJDNEY5QUUwMi9acC16cU1vcUlP bzdnYVk2ZjIyN0ZaLTcxWFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZLiRkIrrdKJ/kOJIrUXu+KlHop1rRi/BafzIQc0L864PsjwePymY9 k05tt2QW+8mNlsCU34mDdrc2eHhAEgRDI54XXT5AN94xVJEp6A/kfYj6SR5V3VXV rnQMvuAjJpfBefVwj0iAc22MxiJIsvVObeHGk2K8az902n0Qgb1+mMNK0nPMaROp LO6wtP96+HxbyOYzMXw9E9IOAcxIV/JubG32bKLUfMr2cv97RCuqd9wG8KIk6Zln 0hWvDO4al+WlldbsA3luR/O8UhhmoE5+EhQiwOBGdK6xozQcdPT1zH62rbPMfCe5 ZbLNKvYu3wzX6CQZdDGrGwYJ20jDlOTh -----END CERTIFICATE-----Generated at Mon May 27 00:39:30 2024 by rpki-client on console-ams.rpki-client.org