$ rpki-client -vvf rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft File: ahpG6ANoiAaY7zBCQgW5d5voseA.mft (raw, json) Hash identifier: q698VtVQOGFGLgFjnbbHZPl8nMeTup8KvdTrDtHUn/Q= Subject key identifier: 80:52:B2:85:C0:01:66:EA:7C:B4:85:DB:27:C0:51:8D:29:E0:95:3A Authority key identifier: 6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 Certificate issuer: /CN=A91442DE/serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Certificate serial: 0526 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft Manifest number: 0523 Signing time: Fri 17 May 2024 01:10:14 +0000 Manifest this update: Fri 17 May 2024 01:10:14 +0000 Manifest next update: Fri 24 May 2024 01:10:14 +0000 Files and hashes: 1: ahpG6ANoiAaY7zBCQgW5d5voseA.crl (hash: Ubo6SqFtw/Ilb8n6Ulmo6G6/GlORqGM/dH3fldaf0BQ=) 2: 0D5812C4B2E711EB8A61B44EC4F9AE02.roa (hash: IbCoRwYr/4DXyvLH8bDhbZfIDkg3A10G0xmWCSRxGPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1318 (0x526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442DE/serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Validity Not Before: May 17 01:10:14 2024 GMT Not After : May 24 01:10:14 2024 GMT Subject: CN=6646ae76-7942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c4:3e:35:53:8e:20:55:eb:0c:16:f0:00:10: 9e:c4:09:53:0d:4a:21:b3:33:2f:d4:00:d4:1f:53: 25:6b:c7:75:7b:d8:10:ac:21:97:93:cd:c0:64:ea: 0b:1b:7b:e5:9f:9e:64:e9:bf:da:0c:ff:2d:6f:2f: 1e:22:16:c5:0b:87:84:d9:b6:4b:9f:43:8c:2f:42: 9c:41:1f:17:84:de:79:b4:2d:46:a8:ef:fa:ff:89: dd:46:62:87:6f:f6:9a:cd:36:b3:93:e0:1e:aa:28: cb:7c:19:10:e3:70:12:6a:4a:a2:77:f5:ff:7e:e7: 13:0d:7d:32:af:1e:62:4e:f3:8d:f0:cf:f2:44:7f: 40:be:17:e7:49:96:af:5e:a4:82:fa:01:51:68:cf: 7e:92:48:e5:75:7d:5d:c7:66:7e:b8:d6:8e:7d:54: 0d:31:8e:fb:b9:60:8d:84:e0:0c:ae:c2:e3:c4:14: cb:c1:03:3a:65:99:f1:c1:ba:e7:af:70:2a:a8:1c: 9d:e5:42:39:08:73:1a:bc:66:0a:2a:ce:a4:1d:50: 8b:cf:68:d1:a9:8d:be:98:f7:6d:24:7b:b6:09:91: bc:9a:70:dd:11:e5:2f:97:37:be:f9:07:7a:17:f6: e1:dc:ac:fa:3e:04:af:46:85:50:02:51:5e:60:c0: 30:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:52:B2:85:C0:01:66:EA:7C:B4:85:DB:27:C0:51:8D:29:E0:95:3A X509v3 Authority Key Identifier: keyid:6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:5d:65:dd:5a:70:67:85:72:57:2d:a8:aa:3b:2b:35:09:e9: 25:b0:c7:59:d2:7e:d1:6c:47:99:fa:be:05:80:7e:2c:2b:30: 40:79:3b:54:af:1f:f8:d5:3e:16:51:b2:ca:25:a4:11:b6:8d: 38:39:a9:44:da:19:6f:2e:e2:66:88:80:3f:b3:0b:c5:0f:9b: d2:fa:7d:e5:c8:55:f3:a6:ae:0b:08:52:24:2d:51:c9:78:f0: 77:16:8a:f2:a7:55:75:03:d2:fd:c1:cf:2b:80:9f:f3:7c:be: ac:38:99:8a:59:c4:bb:ff:57:38:8b:9a:cf:64:68:af:0d:09: c0:51:00:2c:47:c3:56:8a:19:dd:11:ee:e5:74:41:86:12:76: 6b:a4:21:c6:43:77:06:ae:28:b8:67:8e:4a:46:92:c4:74:fb: 90:62:5d:25:ff:36:31:4a:ab:3a:b3:30:9d:f2:af:b9:2f:c3: 0b:d1:63:fc:d1:a6:fd:94:37:58:4b:51:9c:19:39:d8:53:e7: 26:f3:ab:c3:cb:28:d6:e6:32:8e:5f:66:7e:c2:7c:b9:ae:b2: d5:cc:44:ce:9e:a6:e5:05:a4:b2:0c:97:a8:95:fc:35:6d:f5: 0e:17:a0:c1:43:51:f4:b6:b2:a2:31:d0:f3:b1:bb:a4:65:d6: 17:74:29:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyREUxMTAvBgNVBAUTKDZBMUE0NkU4MDM2ODg4MDY5OEVGMzA0MjQyMDVCOTc3 OUJFOEIxRTAwHhcNMjQwNTE3MDExMDE0WhcNMjQwNTI0MDExMDE0WjAYMRYwFAYD VQQDEw02NjQ2YWU3Ni03OTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcQ+NVOOIFXrDBbwABCexAlTDUohszMv1ADUH1Mla8d1e9gQrCGXk83AZOoL G3vln55k6b/aDP8tby8eIhbFC4eE2bZLn0OML0KcQR8XhN55tC1GqO/6/4ndRmKH b/aazTazk+AeqijLfBkQ43ASakqid/X/fucTDX0yrx5iTvON8M/yRH9AvhfnSZav XqSC+gFRaM9+kkjldX1dx2Z+uNaOfVQNMY77uWCNhOAMrsLjxBTLwQM6ZZnxwbrn r3AqqByd5UI5CHMavGYKKs6kHVCLz2jRqY2+mPdtJHu2CZG8mnDdEeUvlze++Qd6 F/bh3Kz6PgSvRoVQAlFeYMAwewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIBSsoXA AWbqfLSF2yfAUY0p4JU6MB8GA1UdIwQYMBaAFGoaRugDaIgGmO8wQkIFuXeb6LHg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJERS81MjA0MzQxNEIy M0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lBYVk3ekJDUWdXNWQ1dm9z ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FocEc2QU5vaUFhWTd6QkNRZ1c1ZDV2b3NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJERS81MjA0MzQxNEIyM0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lB YVk3ekJDUWdXNWQ1dm9zZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpXWXdWnBnhXJXLaiqOys1CeklsMdZ0n7RbEeZ+r4FgH4sKzBAeTtU rx/41T4WUbLKJaQRto04OalE2hlvLuJmiIA/swvFD5vS+n3lyFXzpq4LCFIkLVHJ ePB3Foryp1V1A9L9wc8rgJ/zfL6sOJmKWcS7/1c4i5rPZGivDQnAUQAsR8NWihnd Ee7ldEGGEnZrpCHGQ3cGrii4Z45KRpLEdPuQYl0l/zYxSqs6szCd8q+5L8ML0WP8 0ab9lDdYS1GcGTnYU+cm86vDyyjW5jKOX2Z+wny5rrLVzETOnqblBaSyDJeolfw1 bfUOF6DBQ1H0trKiMdDzsbukZdYXdCnw -----END CERTIFICATE-----Generated at Fri May 17 01:47:17 2024 by rpki-client on console-fra.rpki-client.org