$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft File: cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft (raw, json) Hash identifier: YAj8al6e+toLVqg9u76xF7BvTvPmDO7PLsyQGweJ8Ck= Subject key identifier: 2E:00:DD:87:65:3D:E9:7C:2C:F2:04:DD:E2:6C:22:48:A3:E5:7E:9C Authority key identifier: 71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 Certificate issuer: /CN=A9125C31/serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Certificate serial: 0B2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft Manifest number: 0B27 Signing time: Mon 06 May 2024 19:55:33 +0000 Manifest this update: Mon 06 May 2024 19:55:33 +0000 Manifest next update: Mon 13 May 2024 19:55:33 +0000 Files and hashes: 1: cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl (hash: BYOlt176blNDjnUiLvtf1zxRPGyJjf54tNcpL2GIgOE=) 2: 4697751815B111EA8277BA34C4F9AE02.roa (hash: 2owkOPv5cf70JDjVVaT6RIFBzLMnz6Rb03IohYtEZXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 19:55:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2861 (0xb2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C31/serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Validity Not Before: May 6 19:55:33 2024 GMT Not After : May 13 19:55:33 2024 GMT Subject: CN=663935b5-dc41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:59:d9:91:f7:18:ca:7d:e3:bb:36:91:70:39: d4:ec:05:b9:e8:78:a0:a2:7c:58:f0:e2:6f:14:e2: 82:07:40:2d:8f:24:04:f4:1a:3e:1b:9b:91:6c:b9: 6b:06:09:84:bb:0e:85:b5:21:0b:30:6f:b2:05:3c: 3b:25:d1:6b:f4:bd:aa:e0:c0:42:03:4b:ed:78:77: 80:ba:e4:8e:7d:9b:12:2c:49:5d:8f:d9:21:10:f4: 60:09:cd:66:47:76:15:82:34:8e:0f:60:f0:74:db: c1:94:bf:bb:72:b0:9a:23:60:76:63:ba:d1:a8:2d: 78:c8:3d:8b:c4:f2:89:58:df:37:6c:94:7c:b7:97: 27:bc:1c:40:2d:7a:03:32:16:82:01:7c:f0:a9:55: ba:a4:9a:aa:bb:d0:e5:b2:67:95:92:99:4e:f3:a8: 19:b6:e9:b6:68:ec:49:51:b8:42:a8:b7:a7:6e:cb: 30:d9:94:8f:24:02:78:4a:0b:ae:ec:75:87:56:a5: 38:0f:e3:c7:ff:bc:44:ec:7d:18:60:ff:3a:96:2d: b7:55:96:57:48:bf:22:7f:b5:33:72:29:df:14:f6: 4a:ef:f0:96:df:15:c6:b8:46:e6:a3:9b:34:ce:1b: 68:2e:e8:47:4e:37:4f:9f:23:bc:e9:7f:1c:bf:01: d0:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:00:DD:87:65:3D:E9:7C:2C:F2:04:DD:E2:6C:22:48:A3:E5:7E:9C X509v3 Authority Key Identifier: keyid:71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:ed:44:0a:d1:4e:d5:1f:2b:95:a8:24:7e:55:17:e7:fa:87: ca:07:fb:54:05:15:2f:5f:52:23:ca:7c:42:7e:c1:92:5a:ac: 63:4e:b2:e0:1d:0d:37:56:c9:10:0c:94:f5:cf:c9:96:64:33: a3:4d:62:42:5e:41:05:ce:ab:5f:42:f4:29:9b:39:9c:32:f2: ef:57:4b:47:66:cf:76:ed:b1:42:4f:ea:39:0f:6f:40:75:34: a5:cb:b5:3b:28:ae:9b:61:4e:67:45:45:55:46:2a:86:33:92: 6d:a6:91:e3:d5:2e:d1:b3:ed:62:01:4d:14:e6:cb:1c:48:81: 80:e3:14:a3:6c:8b:aa:f5:8d:9f:d9:8f:74:24:87:4f:7e:71: bd:fe:78:66:7b:01:de:5c:fd:b3:04:25:91:15:1c:2a:c0:c3: ff:c0:bd:09:12:bc:b0:e5:1d:77:80:bc:e6:41:42:80:fb:71: 82:61:f4:59:94:04:a3:66:1e:7b:e0:c8:5a:71:66:0b:69:34: 34:bf:72:26:11:66:f9:bd:67:c9:c6:c9:db:b1:d0:4e:0f:09: 69:d3:0d:a5:a6:24:cd:f6:3c:d2:6f:8e:09:8a:23:7f:5f:15: 0f:9d:89:58:d5:5c:ca:55:a0:a1:ee:b5:93:ea:2f:8a:3f:11: d6:8d:83:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMzExMTAvBgNVBAUTKDcxMDUzNzI0NDZBMjA2NDU0NkQ5NjI5RjQyMUMzNzZG RENFRjIxRDYwHhcNMjQwNTA2MTk1NTMzWhcNMjQwNTEzMTk1NTMzWjAYMRYwFAYD VQQDEw02NjM5MzViNS1kYzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FnZkfcYyn3juzaRcDnU7AW56HigonxY8OJvFOKCB0AtjyQE9Bo+G5uRbLlr BgmEuw6FtSELMG+yBTw7JdFr9L2q4MBCA0vteHeAuuSOfZsSLEldj9khEPRgCc1m R3YVgjSOD2DwdNvBlL+7crCaI2B2Y7rRqC14yD2LxPKJWN83bJR8t5cnvBxALXoD MhaCAXzwqVW6pJqqu9DlsmeVkplO86gZtum2aOxJUbhCqLenbssw2ZSPJAJ4Sguu 7HWHVqU4D+PH/7xE7H0YYP86li23VZZXSL8if7UzcinfFPZK7/CW3xXGuEbmo5s0 zhtoLuhHTjdPnyO86X8cvwHQywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4A3Ydl Pel8LPIE3eJsIkij5X6cMB8GA1UdIwQYMBaAFHEFNyRGogZFRtlin0IcN2/c7yHW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzMS8zOEJGNDA5QTE1 OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJrVkcyV0tmUWh3M2I5enZJ ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NRVTNKRWFpQmtWRzJXS2ZRaHczYjl6dklkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzMS8zOEJGNDA5QTE1OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJr VkcyV0tmUWh3M2I5enZJZFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc7UQK0U7VHyuVqCR+VRfn+ofKB/tUBRUvX1IjynxCfsGSWqxjTrLg HQ03VskQDJT1z8mWZDOjTWJCXkEFzqtfQvQpmzmcMvLvV0tHZs927bFCT+o5D29A dTSly7U7KK6bYU5nRUVVRiqGM5JtppHj1S7Rs+1iAU0U5sscSIGA4xSjbIuq9Y2f 2Y90JIdPfnG9/nhmewHeXP2zBCWRFRwqwMP/wL0JEryw5R13gLzmQUKA+3GCYfRZ lASjZh574MhacWYLaTQ0v3ImEWb5vWfJxsnbsdBODwlp0w2lpiTN9jzSb44JiiN/ XxUPnYlY1VzKVaCh7rWT6i+KPxHWjYPO -----END CERTIFICATE-----Generated at Mon May 6 22:40:53 2024 by rpki-client on console-ams.rpki-client.org