$ rpki-client -vvf rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft File: 5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft (raw, json) Hash identifier: caj8uP0mDZd+fdCXf92gWHAM4TUthMSh7neUWmM7b+w= Subject key identifier: 43:BF:B5:D4:B9:EC:13:DD:79:E7:74:27:08:3F:76:9F:E1:96:56:F7 Authority key identifier: E5:88:C7:3E:6C:B4:FD:B3:8B:84:EE:40:F8:F9:B6:4C:50:BE:4B:73 Certificate issuer: /CN=A913ABFE/serialNumber=E588C73E6CB4FDB38B84EE40F8F9B64C50BE4B73 Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft Manifest number: A4 Signing time: Wed 15 May 2024 06:54:46 +0000 Manifest this update: Wed 15 May 2024 06:54:46 +0000 Manifest next update: Wed 22 May 2024 06:54:46 +0000 Files and hashes: 1: 5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl (hash: aVC/M4R0+ETuzaTYzD+8p+0Hkbuq34zREPJyQpkaxuQ=) 2: B507E28636AE11EE9BDDAA12C4F9AE02.roa (hash: oI37If83NAUgjTbDjK+wmvX3KwqGuzvC8OGyTcK+SK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 06:54:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ABFE/serialNumber=E588C73E6CB4FDB38B84EE40F8F9B64C50BE4B73 Validity Not Before: May 15 06:54:46 2024 GMT Not After : May 22 06:54:46 2024 GMT Subject: CN=66445c36-7a3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:de:97:f2:63:eb:12:88:3e:69:78:e7:f8:39: 27:57:7a:7b:8b:44:0d:ce:ac:06:8f:47:01:0b:ce: 25:51:43:97:34:3a:56:29:84:4b:b7:e3:f5:68:03: d8:6d:5e:ba:76:44:68:0b:5a:4a:92:04:2c:0a:90: b9:9a:db:3e:82:88:2c:22:f1:90:1a:1b:32:1a:bf: 0f:99:6a:99:87:29:4e:7d:6b:4b:b8:a2:75:e4:4a: 4d:15:38:ae:fe:85:4a:8f:56:35:26:4e:c5:06:89: a0:bc:6f:55:9f:04:c5:e0:4d:be:d8:8c:d7:27:16: 47:38:e8:78:0e:27:7c:a6:72:f0:bc:8f:f5:69:6b: 94:2b:56:b8:5c:83:3c:eb:d8:9d:1a:37:f2:b4:dc: 81:d3:05:61:31:77:1b:6b:3a:98:7c:1a:9a:21:23: 84:84:ce:77:48:78:97:e1:76:c8:63:5b:f2:3d:d1: 3c:50:b6:90:a3:4d:fa:4f:8c:f9:bf:b7:88:61:59: 23:46:2b:1d:23:3b:c5:6d:3d:87:38:a9:66:2e:93: 53:25:9d:e9:c8:6f:ac:19:35:9f:c6:32:1d:28:75: 1d:42:87:be:40:fd:56:14:ee:0b:39:a6:bf:be:a2: ca:6f:c7:e1:10:ce:d6:a8:09:f8:da:b7:d2:50:da: f8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:BF:B5:D4:B9:EC:13:DD:79:E7:74:27:08:3F:76:9F:E1:96:56:F7 X509v3 Authority Key Identifier: keyid:E5:88:C7:3E:6C:B4:FD:B3:8B:84:EE:40:F8:F9:B6:4C:50:BE:4B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:ad:dc:55:d8:cf:a5:cf:1b:d4:c9:d9:59:6b:d1:80:fe:9e: f9:3f:ed:23:0c:51:32:1e:d6:16:57:a7:4a:af:5b:83:d4:f0: 2e:61:f5:8a:9a:1c:57:42:a0:35:fb:6c:81:cc:d7:2a:84:1e: b8:a6:43:2f:09:ae:c4:33:f7:77:36:a5:7e:d0:cc:08:d1:68: ff:e1:f5:d0:e1:cf:b0:a2:30:67:3d:ff:22:31:b1:91:fd:77: 30:75:c7:95:49:c9:96:b1:22:2b:42:c9:5c:d5:e3:4b:62:8c: 63:86:95:e8:f5:77:a0:5c:7e:2e:eb:7f:b3:63:a6:74:6a:41: 87:fb:8a:c8:c8:72:9a:e9:c8:93:a8:76:d0:33:11:f0:74:da: f0:0e:b2:07:d2:8e:c5:81:ca:4d:6a:b6:ec:e6:25:3b:35:7a: 4e:82:b2:d6:80:e3:7f:87:66:d5:93:b3:bf:02:53:03:65:ca: 72:f8:38:ad:e3:1a:ec:c0:49:68:4e:aa:9b:05:e9:98:22:c6: 0e:e2:3c:20:2f:35:dd:5e:6f:0b:81:c5:be:56:ab:77:a3:f3: a1:f9:1d:12:06:f0:aa:37:9a:d4:95:3d:cf:f8:29:80:76:18: a4:16:78:24:14:b2:dd:0d:c9:1b:ca:5a:01:ce:dd:83:aa:14: f9:6d:1e:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FCRkUxMTAvBgNVBAUTKEU1ODhDNzNFNkNCNEZEQjM4Qjg0RUU0MEY4RjlCNjRD NTBCRTRCNzMwHhcNMjQwNTE1MDY1NDQ2WhcNMjQwNTIyMDY1NDQ2WjAYMRYwFAYD VQQDEw02NjQ0NWMzNi03YTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5t6X8mPrEog+aXjn+DknV3p7i0QNzqwGj0cBC84lUUOXNDpWKYRLt+P1aAPY bV66dkRoC1pKkgQsCpC5mts+gogsIvGQGhsyGr8PmWqZhylOfWtLuKJ15EpNFTiu /oVKj1Y1Jk7FBomgvG9VnwTF4E2+2IzXJxZHOOh4Did8pnLwvI/1aWuUK1a4XIM8 69idGjfytNyB0wVhMXcbazqYfBqaISOEhM53SHiX4XbIY1vyPdE8ULaQo036T4z5 v7eIYVkjRisdIzvFbT2HOKlmLpNTJZ3pyG+sGTWfxjIdKHUdQoe+QP1WFO4LOaa/ vqLKb8fhEM7WqAn42rfSUNr4XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEO/tdS5 7BPdeed0Jwg/dp/hllb3MB8GA1UdIwQYMBaAFOWIxz5stP2zi4TuQPj5tkxQvktz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUJGRS9GMUQ1NTg3RTI1 RjExMUVFQjdCNDgwNThDNEY5QUUwMi81WWpIUG15MF9iT0xoTzVBLVBtMlRGQy1T M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVZakhQbXkwX2JPTGhPNUEtUG0yVEZDLVMzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUJGRS9GMUQ1NTg3RTI1RjExMUVFQjdCNDgwNThDNEY5QUUwMi81WWpIUG15MF9i T0xoTzVBLVBtMlRGQy1TM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7rdxV2M+lzxvUydlZa9GA/p75P+0jDFEyHtYWV6dKr1uD1PAuYfWK mhxXQqA1+2yBzNcqhB64pkMvCa7EM/d3NqV+0MwI0Wj/4fXQ4c+wojBnPf8iMbGR /XcwdceVScmWsSIrQslc1eNLYoxjhpXo9XegXH4u63+zY6Z0akGH+4rIyHKa6ciT qHbQMxHwdNrwDrIH0o7FgcpNarbs5iU7NXpOgrLWgON/h2bVk7O/AlMDZcpy+Dit 4xrswEloTqqbBemYIsYO4jwgLzXdXm8LgcW+Vqt3o/Oh+R0SBvCqN5rUlT3P+CmA dhikFngkFLLdDckbyloBzt2DqhT5bR71 -----END CERTIFICATE-----Generated at Wed May 15 09:04:08 2024 by rpki-client on console-ams.rpki-client.org