$ rpki-client -vvf rpki.apnic.net/member_repository/A9134B2D/031F451E837B11ED805D402EC4F9AE02/1rdRTL8L4gRsE8oNf10iNS_aWO4.mft File: 1rdRTL8L4gRsE8oNf10iNS_aWO4.mft (raw, json) Hash identifier: 96wFOizgq0TNZPn2pjfbDS2YKTbrC902G9GCUOQeIXU= Subject key identifier: 96:37:EF:B1:98:72:A9:47:93:58:F4:F4:42:C9:EA:06:C8:AF:49:D8 Authority key identifier: D6:B7:51:4C:BF:0B:E2:04:6C:13:CA:0D:7F:5D:22:35:2F:DA:58:EE Certificate issuer: /CN=A9134B2D/serialNumber=D6B7514CBF0BE2046C13CA0D7F5D22352FDA58EE Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1rdRTL8L4gRsE8oNf10iNS_aWO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134B2D/031F451E837B11ED805D402EC4F9AE02/1rdRTL8L4gRsE8oNf10iNS_aWO4.mft Manifest number: 0102 Signing time: Wed 01 May 2024 05:53:15 +0000 Manifest this update: Wed 01 May 2024 05:53:14 +0000 Manifest next update: Wed 08 May 2024 05:53:14 +0000 Files and hashes: 1: 1rdRTL8L4gRsE8oNf10iNS_aWO4.crl (hash: OrJE7cTLXH+PY+xmRFRYn7fIiNDiYukd0Ol3VYGe2mg=) 2: 8E3128B4837D11EDB082012FC4F9AE02.roa (hash: eQ2WRGlkPYQhR/9zYv45ZwxC5Ts9bN3eQubOpmDwz/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134B2D/031F451E837B11ED805D402EC4F9AE02/1rdRTL8L4gRsE8oNf10iNS_aWO4.crl rsync://rpki.apnic.net/member_repository/A9134B2D/031F451E837B11ED805D402EC4F9AE02/1rdRTL8L4gRsE8oNf10iNS_aWO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1rdRTL8L4gRsE8oNf10iNS_aWO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134B2D/serialNumber=D6B7514CBF0BE2046C13CA0D7F5D22352FDA58EE Validity Not Before: May 1 05:53:14 2024 GMT Not After : May 8 05:53:14 2024 GMT Subject: CN=6631d8cb-0b22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1f:4f:a4:bc:7b:c1:e7:81:b5:22:88:64:b1: 72:b3:c9:57:31:0b:bc:c8:7c:c9:de:51:e7:fc:05: 91:56:fe:ee:c1:87:8e:5a:99:8e:ae:94:80:dd:a5: 72:34:94:20:57:a8:4f:26:5c:c5:35:0c:aa:a9:c2: 57:ab:1c:18:99:ff:02:ad:fc:24:56:3e:2f:cf:fb: 8f:88:f6:53:e3:75:d9:01:bc:10:32:02:ec:e2:cd: ba:05:c5:ed:2c:a0:21:bf:42:bb:6c:76:b1:c3:82: c2:68:3d:0b:ac:77:8e:73:6a:db:3d:05:aa:b0:88: 4f:74:cd:12:4e:7d:80:72:34:89:5c:1d:c1:39:64: b4:e0:1c:f1:b1:c9:c2:51:27:43:d5:4d:67:ee:b8: e5:57:1d:54:12:1c:d3:67:c1:ef:cb:a6:7c:1d:5a: 73:c2:c7:4d:1d:85:7b:b2:dc:c7:7e:43:7a:d7:7e: 91:72:f3:6b:66:bb:e5:9e:8e:8d:c0:4e:a1:55:27: 30:70:c1:a1:e0:ec:f3:57:62:05:fd:db:68:e6:fb: 1d:6d:e9:c9:a3:6b:b1:f4:b9:03:58:6b:3d:88:75: 83:a1:5a:36:33:10:38:2e:38:fd:c1:0c:ad:0f:5d: 87:60:3b:fd:87:f9:ef:2e:81:78:4c:fc:2a:4e:1f: 68:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:37:EF:B1:98:72:A9:47:93:58:F4:F4:42:C9:EA:06:C8:AF:49:D8 X509v3 Authority Key Identifier: keyid:D6:B7:51:4C:BF:0B:E2:04:6C:13:CA:0D:7F:5D:22:35:2F:DA:58:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134B2D/031F451E837B11ED805D402EC4F9AE02/1rdRTL8L4gRsE8oNf10iNS_aWO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1rdRTL8L4gRsE8oNf10iNS_aWO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134B2D/031F451E837B11ED805D402EC4F9AE02/1rdRTL8L4gRsE8oNf10iNS_aWO4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:7e:aa:3e:1e:a4:3f:14:58:fd:98:a5:11:9f:39:a9:f2:1a: a8:0e:17:9b:e1:81:80:c6:90:55:15:71:5e:97:74:20:da:41: c5:ca:14:37:96:3d:bf:c8:d9:3a:dd:e2:b0:16:8b:b3:1f:e8: 27:2e:3d:eb:0a:2a:b0:fd:18:8c:b4:2d:7c:21:00:0e:eb:22: ae:4b:85:1b:2c:58:70:3e:10:90:4c:35:2d:77:ca:de:86:05: 63:0a:72:69:b3:a3:7e:e4:de:86:36:48:d7:89:0c:19:c4:cf: 93:58:60:b9:e6:47:3e:75:3f:cf:04:99:b4:17:07:a1:2e:2d: cc:ae:17:48:c3:76:99:ec:53:54:79:62:01:97:52:2b:85:6e: 27:df:45:5e:52:b8:be:cd:49:bc:c4:f7:4a:f4:0e:a4:43:aa: 98:c9:9e:91:6d:54:7b:86:ad:0b:ab:19:df:07:36:62:61:5b: 86:03:c5:4a:04:86:44:92:06:e2:fc:41:de:47:c1:89:62:27: 4d:02:d5:ed:9d:9a:38:62:11:7b:64:70:17:16:eb:2b:79:aa: 0a:9a:c4:59:bc:20:16:4a:12:0a:1e:d6:19:7c:25:f5:ee:c6: 19:df:48:a3:10:f5:b5:56:f8:40:b2:26:e4:a0:13:1e:f4:39: 67:2e:1d:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCMkQxMTAvBgNVBAUTKEQ2Qjc1MTRDQkYwQkUyMDQ2QzEzQ0EwRDdGNUQyMjM1 MkZEQTU4RUUwHhcNMjQwNTAxMDU1MzE0WhcNMjQwNTA4MDU1MzE0WjAYMRYwFAYD VQQDEw02NjMxZDhjYi0wYjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3R9PpLx7weeBtSKIZLFys8lXMQu8yHzJ3lHn/AWRVv7uwYeOWpmOrpSA3aVy NJQgV6hPJlzFNQyqqcJXqxwYmf8CrfwkVj4vz/uPiPZT43XZAbwQMgLs4s26BcXt LKAhv0K7bHaxw4LCaD0LrHeOc2rbPQWqsIhPdM0STn2AcjSJXB3BOWS04BzxscnC USdD1U1n7rjlVx1UEhzTZ8Hvy6Z8HVpzwsdNHYV7stzHfkN6136RcvNrZrvlno6N wE6hVScwcMGh4OzzV2IF/dto5vsdbenJo2ux9LkDWGs9iHWDoVo2MxA4Ljj9wQyt D12HYDv9h/nvLoF4TPwqTh9ogwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJY377GY cqlHk1j09ELJ6gbIr0nYMB8GA1UdIwQYMBaAFNa3UUy/C+IEbBPKDX9dIjUv2lju MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEIyRC8wMzFGNDUxRTgz N0IxMUVEODA1RDQwMkVDNEY5QUUwMi8xcmRSVEw4TDRnUnNFOG9OZjEwaU5TX2FX TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFyZFJUTDhMNGdSc0U4b05mMTBpTlNfYVdPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEIyRC8wMzFGNDUxRTgzN0IxMUVEODA1RDQwMkVDNEY5QUUwMi8xcmRSVEw4TDRn UnNFOG9OZjEwaU5TX2FXTzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6fqo+HqQ/FFj9mKURnzmp8hqoDheb4YGAxpBVFXFel3Qg2kHFyhQ3 lj2/yNk63eKwFouzH+gnLj3rCiqw/RiMtC18IQAO6yKuS4UbLFhwPhCQTDUtd8re hgVjCnJps6N+5N6GNkjXiQwZxM+TWGC55kc+dT/PBJm0FwehLi3MrhdIw3aZ7FNU eWIBl1IrhW4n30VeUri+zUm8xPdK9A6kQ6qYyZ6RbVR7hq0LqxnfBzZiYVuGA8VK BIZEkgbi/EHeR8GJYidNAtXtnZo4YhF7ZHAXFusreaoKmsRZvCAWShIKHtYZfCX1 7sYZ30ijEPW1VvhAsibkoBMe9DlnLh09 -----END CERTIFICATE-----Generated at Wed May 1 06:34:04 2024 by rpki-client on console-ams.rpki-client.org