$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft File: 2iwTK47FBxr425BJG63bwPCntEU.mft (raw, json) Hash identifier: QsKHX9k3+ZXyLL7OpJaJr8GLNRpnKCGNIONtfu801Ng= Subject key identifier: 5E:10:DD:8E:3D:6C:41:62:FC:78:37:7B:5A:AB:1A:9B:CA:8C:B4:69 Authority key identifier: DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 Certificate issuer: /CN=A91534B8/serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Certificate serial: 01CE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft Manifest number: 01CE Signing time: Mon 27 May 2024 04:33:51 +0000 Manifest this update: Mon 27 May 2024 04:33:50 +0000 Manifest next update: Mon 03 Jun 2024 04:33:50 +0000 Files and hashes: 1: 2iwTK47FBxr425BJG63bwPCntEU.crl (hash: xx5yAHLFuuNu3rwu+SpLfE2FMGVx5V2ENEs28EDRmIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 02:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 462 (0x1ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8/serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Validity Not Before: May 27 04:33:50 2024 GMT Not After : Jun 3 04:33:50 2024 GMT Subject: CN=66540d2f-1883 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:af:8b:29:9e:83:9d:3a:15:9e:23:00:01:4d: 5d:10:78:d3:77:e2:0f:79:24:a0:25:b9:55:a5:f4: 5e:f8:bd:d9:85:0f:ba:74:95:b8:85:4a:98:cc:7e: f0:e5:7c:30:2f:a9:75:48:4d:73:ff:4e:65:95:93: 23:2e:1d:61:a6:2d:f6:c3:8b:a4:e7:34:4d:2e:6c: 7c:4b:10:0e:30:94:a6:b3:3a:06:7a:1a:ba:df:0c: 56:78:8a:80:4f:b8:f3:45:3d:51:b6:cb:02:18:83: 30:cd:41:40:25:1f:3a:33:9e:55:40:74:63:6a:81: 69:f3:8d:19:8e:59:ae:5f:ac:34:e6:cb:18:17:22: e3:d7:8a:7e:54:9f:3c:01:2b:7c:b9:97:cd:71:74: 1b:e5:8d:d0:9d:62:80:8b:a2:29:9f:35:1f:11:11: b9:20:42:60:dc:dc:99:25:ec:16:60:66:d1:dd:ad: ea:76:2f:25:c6:b1:ee:d4:4b:d9:8a:48:d5:2f:db: e4:85:3a:76:b0:b8:8b:0f:45:84:a1:ae:90:7b:6a: 63:0d:bf:6d:50:21:86:60:9b:06:6f:38:04:a1:fc: 1c:74:b7:85:b9:45:e5:8d:80:24:bb:2e:99:a3:c1: ba:11:a7:85:51:c3:57:88:5d:bd:37:2e:94:16:e2: 44:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:10:DD:8E:3D:6C:41:62:FC:78:37:7B:5A:AB:1A:9B:CA:8C:B4:69 X509v3 Authority Key Identifier: keyid:DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:55:7b:d5:a4:bd:4c:0c:eb:9e:da:8c:e5:2e:63:c9:1d:14: a2:03:7b:d9:c8:a4:99:6f:68:e0:9b:82:2e:3a:c2:34:fa:ca: 9c:2b:96:ef:22:61:1e:ad:42:12:2c:ea:cc:47:28:3a:e6:c7: 70:a1:1f:a2:11:5c:62:67:80:14:5a:fc:fb:83:ae:25:e5:42: 61:bd:68:40:ab:25:67:f5:43:87:16:1c:25:c7:ce:df:a8:f9: c1:bc:68:09:0e:e9:15:62:1e:a4:67:af:c1:42:bf:8c:aa:44: 30:60:f6:4e:e2:0b:d3:52:0f:6e:37:cd:34:49:44:b9:85:83: 9c:5e:fb:18:99:a8:f0:c7:4e:14:62:a2:80:31:89:84:9f:9b: a3:a8:ff:8a:fc:6c:ea:2e:90:ec:f0:c1:a9:34:bb:cb:73:15: 58:a3:75:49:c4:c9:1f:1d:55:0f:49:64:fa:37:a2:25:7b:9a: 9f:27:c5:5c:72:cb:17:1b:69:ee:2c:f0:51:b7:64:65:66:77: 3b:cb:46:96:92:70:63:a7:3a:50:0a:e6:f5:88:2a:4e:ea:0a: 71:c0:ad:f2:4c:87:6e:f8:21:82:7f:26:48:20:b5:c8:0d:5d: 89:c8:53:f4:8f:fb:4d:a5:f5:82:e0:b1:9b:a3:cc:3a:41:47: 13:ee:d9:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERBMkMxMzJCOEVDNTA3MUFGOERCOTA0OTFCQUREQkMw RjBBN0I0NDUwHhcNMjQwNTI3MDQzMzUwWhcNMjQwNjAzMDQzMzUwWjAYMRYwFAYD VQQDEw02NjU0MGQyZi0xODgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6+LKZ6DnToVniMAAU1dEHjTd+IPeSSgJblVpfRe+L3ZhQ+6dJW4hUqYzH7w 5XwwL6l1SE1z/05llZMjLh1hpi32w4uk5zRNLmx8SxAOMJSmszoGehq63wxWeIqA T7jzRT1RtssCGIMwzUFAJR86M55VQHRjaoFp840ZjlmuX6w05ssYFyLj14p+VJ88 ASt8uZfNcXQb5Y3QnWKAi6IpnzUfERG5IEJg3NyZJewWYGbR3a3qdi8lxrHu1EvZ ikjVL9vkhTp2sLiLD0WEoa6Qe2pjDb9tUCGGYJsGbzgEofwcdLeFuUXljYAkuy6Z o8G6EaeFUcNXiF29Ny6UFuJEYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF4Q3Y49 bEFi/Hg3e1qrGpvKjLRpMB8GA1UdIwQYMBaAFNosEyuOxQca+NuQSRut28Dwp7RF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85NjY1OTk3RTA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4cjQyNUJKRzYzYndQQ250 RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzJpd1RLNDdGQnhyNDI1QkpHNjNid1BDbnRFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85NjY1OTk3RTA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4 cjQyNUJKRzYzYndQQ250RVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiVXvVpL1MDOue2ozlLmPJHRSiA3vZyKSZb2jgm4IuOsI0+sqcK5bv ImEerUISLOrMRyg65sdwoR+iEVxiZ4AUWvz7g64l5UJhvWhAqyVn9UOHFhwlx87f qPnBvGgJDukVYh6kZ6/BQr+MqkQwYPZO4gvTUg9uN800SUS5hYOcXvsYmajwx04U YqKAMYmEn5ujqP+K/GzqLpDs8MGpNLvLcxVYo3VJxMkfHVUPSWT6N6Ile5qfJ8Vc cssXG2nuLPBRt2RlZnc7y0aWknBjpzpQCub1iCpO6gpxwK3yTIdu+CGCfyZIILXI DV2JyFP0j/tNpfWC4LGbo8w6QUcT7tmg -----END CERTIFICATE-----Generated at Mon May 27 08:07:59 2024 by rpki-client on console-ams.rpki-client.org