$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft File: a9bIzoghkMgWnoE2ReDt2bdX6xk.mft (raw, json) Hash identifier: zLW9L8QOOoSuJRqxdP8DIOCwKJlFKCDk6xy0q8VBCb0= Subject key identifier: 6E:46:43:91:41:3B:CE:92:E5:C6:B1:1C:EA:B4:E3:52:7A:0B:63:F4 Authority key identifier: 6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 Certificate issuer: /CN=A91398E5/serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Certificate serial: 1647 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft Manifest number: 1EB8 Signing time: Thu 02 May 2024 17:13:51 +0000 Manifest this update: Thu 02 May 2024 17:13:50 +0000 Manifest next update: Thu 09 May 2024 17:13:50 +0000 Files and hashes: 1: a9bIzoghkMgWnoE2ReDt2bdX6xk.crl (hash: kxIbvG8zciXk8t1bTrcqrZx26fOsNXz/j2DSslyqW6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 17:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5703 (0x1647) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5/serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Validity Not Before: May 2 17:13:50 2024 GMT Not After : May 9 17:13:50 2024 GMT Subject: CN=6633c9ce-903f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1e:b2:dd:24:4d:28:95:b7:13:78:07:b4:27: 3a:2a:36:3a:07:31:c9:e3:06:c0:22:cb:df:f3:c7: cb:cd:b8:f4:f0:4a:8e:2f:15:51:74:ee:ef:02:5a: 50:34:37:d4:28:c7:81:05:c0:4b:e2:66:a9:b8:10: 75:16:23:28:19:cb:fc:3e:4d:d9:b4:51:21:54:90: 51:51:cd:d5:78:d8:04:4f:cd:09:c2:8f:c4:66:b7: 22:f8:74:e2:71:0b:23:8e:88:e3:5f:5d:6a:89:43: d2:f8:af:e2:38:fb:47:dd:2a:ff:a3:af:d5:e4:37: 33:e9:7f:f6:38:7d:86:c3:83:f0:71:09:09:64:a3: c5:81:dc:31:8e:52:07:76:d4:6a:5a:67:52:3d:c3: 6d:4e:f0:9a:99:ac:9c:c1:75:cf:3a:6f:64:2a:d2: b7:79:cb:7c:02:c4:92:aa:d7:b8:cc:df:c0:dc:c1: ec:ba:1b:ee:e7:3a:60:79:66:3a:36:4f:f9:6f:67: 27:df:ee:e9:9b:d1:df:98:d3:4c:71:56:66:de:34: 6f:7f:e6:83:3c:b0:e0:15:0c:06:79:1f:2f:83:85: c2:ef:f1:85:75:cb:08:00:b3:d5:f5:d2:aa:29:3e: 2c:59:52:92:02:82:01:06:66:d8:85:d5:36:d3:7d: 92:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:46:43:91:41:3B:CE:92:E5:C6:B1:1C:EA:B4:E3:52:7A:0B:63:F4 X509v3 Authority Key Identifier: keyid:6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:e8:3c:18:4e:a8:c8:30:1b:3e:78:b9:fd:7a:60:30:52:22: bf:1c:17:d4:dd:50:ab:3f:39:3e:8a:66:db:9b:4f:26:fa:41: 45:6d:4d:3f:27:a8:e4:aa:61:a2:6b:f1:04:b5:b5:35:92:ef: 7d:c3:a5:06:c2:88:2c:1e:3f:10:a7:2b:70:2f:1c:01:6c:07: 2e:f6:75:f3:6e:db:1d:b7:e5:84:04:36:8d:67:90:0c:34:d0: 4a:c3:77:38:ee:71:e5:a9:14:ba:93:a0:c5:b3:ea:97:19:bf: 44:19:df:52:62:66:73:2f:58:0d:13:03:1d:75:b3:92:4d:dd: 15:f2:fd:79:62:fb:21:92:cc:de:52:43:55:25:cc:52:1b:5a: de:e7:3e:16:18:fd:9a:40:08:8d:d5:1b:db:ef:49:ff:ae:d4: a0:10:60:49:12:0a:f2:92:db:7a:cd:5a:79:86:f9:f5:ec:54: 21:9d:4c:5a:72:dd:2f:ee:79:d7:d2:c4:e2:93:1c:d7:da:9a: ec:5a:13:4a:9a:d9:39:d4:1c:b4:39:39:28:25:73:5a:e0:e3: 07:b6:cd:6b:73:4e:e8:1e:80:56:ce:49:d6:5b:e7:3a:0c:63: 09:05:a1:e7:76:4b:2d:ff:1d:52:5a:02:1e:39:03:33:ab:04: 32:65:e8:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKDZCRDZDOENFODgyMTkwQzgxNjlFODEzNjQ1RTBFREQ5 Qjc1N0VCMTkwHhcNMjQwNTAyMTcxMzUwWhcNMjQwNTA5MTcxMzUwWjAYMRYwFAYD VQQDEw02NjMzYzljZS05MDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxh6y3SRNKJW3E3gHtCc6KjY6BzHJ4wbAIsvf88fLzbj08EqOLxVRdO7vAlpQ NDfUKMeBBcBL4mapuBB1FiMoGcv8Pk3ZtFEhVJBRUc3VeNgET80Jwo/EZrci+HTi cQsjjojjX11qiUPS+K/iOPtH3Sr/o6/V5Dcz6X/2OH2Gw4PwcQkJZKPFgdwxjlIH dtRqWmdSPcNtTvCamaycwXXPOm9kKtK3ect8AsSSqte4zN/A3MHsuhvu5zpgeWY6 Nk/5b2cn3+7pm9HfmNNMcVZm3jRvf+aDPLDgFQwGeR8vg4XC7/GFdcsIALPV9dKq KT4sWVKSAoIBBmbYhdU2032SRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG5GQ5FB O86S5caxHOq041J6C2P0MB8GA1UdIwQYMBaAFGvWyM6IIZDIFp6BNkXg7dm3V+sZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtNZ1dub0UyUmVEdDJiZFg2 eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5Ykl6b2doa01nV25vRTJSZUR0MmJkWDZ4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtN Z1dub0UyUmVEdDJiZFg2eGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW6DwYTqjIMBs+eLn9emAwUiK/HBfU3VCrPzk+imbbm08m+kFFbU0/ J6jkqmGia/EEtbU1ku99w6UGwogsHj8QpytwLxwBbAcu9nXzbtsdt+WEBDaNZ5AM NNBKw3c47nHlqRS6k6DFs+qXGb9EGd9SYmZzL1gNEwMddbOSTd0V8v15Yvshksze UkNVJcxSG1re5z4WGP2aQAiN1Rvb70n/rtSgEGBJEgryktt6zVp5hvn17FQhnUxa ct0v7nnX0sTikxzX2prsWhNKmtk51By0OTkoJXNa4OMHts1rc07oHoBWzknWW+c6 DGMJBaHndkst/x1SWgIeOQMzqwQyZej3 -----END CERTIFICATE-----Generated at Thu May 2 20:04:27 2024 by rpki-client on console-ams.rpki-client.org