$ rpki-client -vvf rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft File: U_b3klO824sdFxgs5PGdOf1JnfU.mft (raw, json) Hash identifier: Gt31b327GDtVjzbdDnandaQ7X19AsO/T88JpLuwmB20= Subject key identifier: 65:D6:06:D4:3D:65:21:D7:1F:DB:2A:4C:C7:A9:26:82:B3:F8:48:A5 Authority key identifier: 53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 Certificate issuer: /CN=A9154340/serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Certificate serial: 0575 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft Manifest number: 0571 Signing time: Sat 27 Apr 2024 00:38:55 +0000 Manifest this update: Sat 27 Apr 2024 00:38:55 +0000 Manifest next update: Sat 04 May 2024 00:38:55 +0000 Files and hashes: 1: U_b3klO824sdFxgs5PGdOf1JnfU.crl (hash: BdnkFYj0PdMEtSs+p6WsMfTGVOu+ZudUlhCYEGm2Erc=) 2: 28D1785891E311EBA138E330C4F9AE02.roa (hash: ZXRE/wzu5lKhs8MxseA6/JZbA6gFP0KL6bGQMwyeb1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 00:38:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1397 (0x575) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154340/serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Validity Not Before: Apr 27 00:38:55 2024 GMT Not After : May 4 00:38:55 2024 GMT Subject: CN=662c491f-d711 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:28:8e:1d:c8:73:7c:c0:54:10:ae:b7:06:89: cc:43:12:9e:de:81:cc:ac:57:fa:5d:31:83:26:c9: 83:68:a0:5b:7b:d1:a6:9f:d5:61:20:9f:cf:7e:e1: b4:71:9f:43:fc:63:bd:0b:18:78:c6:d5:7f:8e:57: 6d:ea:e7:08:11:e9:45:bc:66:4b:4c:57:46:79:c0: 71:18:d9:27:5c:60:51:dd:91:3e:8f:56:9a:b2:76: be:17:45:a0:f6:68:d9:52:91:03:e3:ec:88:d6:d0: 4d:ca:98:fd:af:67:65:0f:65:d4:cd:68:07:4f:f6: cf:d5:32:c0:1f:32:40:0d:0b:f4:3f:2f:92:08:1b: 8f:98:2d:54:d6:af:9f:89:06:2e:86:c2:cd:5d:48: 37:74:69:bb:97:41:7e:95:69:78:bc:12:00:11:c9: 54:e8:c0:ca:2d:64:c3:33:f2:70:00:c8:e0:ec:fd: e1:cb:51:9f:43:bb:4a:6a:4b:18:76:7b:29:9b:63: a9:55:f7:fa:aa:df:29:43:8d:e7:c0:8e:13:1f:65: 09:95:5a:5a:47:4b:c5:a4:c0:e2:f8:1a:77:e0:a0: 06:ce:63:85:67:32:cf:f7:bd:5d:9f:69:6c:6b:8b: e6:c3:24:c6:d8:38:29:bf:fa:4c:6e:11:39:68:ec: 37:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:D6:06:D4:3D:65:21:D7:1F:DB:2A:4C:C7:A9:26:82:B3:F8:48:A5 X509v3 Authority Key Identifier: keyid:53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:ed:ff:42:39:80:c1:0d:aa:39:82:6f:f2:ee:6e:4c:4e:5d: 44:31:7a:99:17:c2:ee:31:11:da:86:fc:47:21:e7:ed:75:47: c7:50:00:7f:bd:37:0f:25:fd:18:58:1d:10:1a:da:e7:01:9e: ee:d2:3b:b2:4d:94:da:cc:44:bc:6f:32:3c:fd:b8:26:60:6d: 56:f1:86:f4:b9:7c:ac:ec:3f:4c:ae:e5:f4:25:49:3d:f3:98: d6:17:47:de:16:51:2f:32:50:6e:a9:cc:3b:73:14:da:7d:d9: 30:35:c9:4a:5f:a9:22:99:c6:16:b2:5d:fd:77:d9:3a:93:b0: 8b:ca:cc:b6:28:34:93:90:b7:6f:61:cc:e6:b0:3c:50:09:da: 05:fc:bf:39:e9:2d:a9:db:15:27:27:ac:50:0c:63:a7:48:b0: 58:c0:ed:0c:df:79:10:03:3d:54:c5:85:f9:2a:2f:f8:a5:a0: b9:de:c4:03:2b:a4:09:db:f1:48:dd:af:e5:84:3a:f5:9c:b3: 70:79:b8:bb:5b:43:00:72:34:2a:33:3d:15:b6:51:f8:b6:49: 64:ba:07:2c:a4:ea:20:d1:bc:4b:17:9a:f3:6b:78:d8:55:4b: 57:7f:33:89:96:1c:f0:03:70:4c:78:38:b7:2e:eb:66:af:91: 90:54:22:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzNDAxMTAvBgNVBAUTKDUzRjZGNzkyNTNCQ0RCOEIxRDE3MTgyQ0U0RjE5RDM5 RkQ0OTlERjUwHhcNMjQwNDI3MDAzODU1WhcNMjQwNTA0MDAzODU1WjAYMRYwFAYD VQQDEw02NjJjNDkxZi1kNzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7iiOHchzfMBUEK63BonMQxKe3oHMrFf6XTGDJsmDaKBbe9Gmn9VhIJ/PfuG0 cZ9D/GO9Cxh4xtV/jldt6ucIEelFvGZLTFdGecBxGNknXGBR3ZE+j1aasna+F0Wg 9mjZUpED4+yI1tBNypj9r2dlD2XUzWgHT/bP1TLAHzJADQv0Py+SCBuPmC1U1q+f iQYuhsLNXUg3dGm7l0F+lWl4vBIAEclU6MDKLWTDM/JwAMjg7P3hy1GfQ7tKaksY dnspm2OpVff6qt8pQ43nwI4TH2UJlVpaR0vFpMDi+Bp34KAGzmOFZzLP971dn2ls a4vmwyTG2Dgpv/pMbhE5aOw3MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGXWBtQ9 ZSHXH9sqTMepJoKz+EilMB8GA1UdIwQYMBaAFFP295JTvNuLHRcYLOTxnTn9SZ31 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDM0MC83QzFGRDFEMjkx RTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0c2RGeGdzNVBHZE9mMUpu ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VfYjNrbE84MjRzZEZ4Z3M1UEdkT2YxSm5mVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDM0MC83QzFGRDFEMjkxRTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0 c2RGeGdzNVBHZE9mMUpuZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBY7f9COYDBDao5gm/y7m5MTl1EMXqZF8LuMRHahvxHIeftdUfHUAB/ vTcPJf0YWB0QGtrnAZ7u0juyTZTazES8bzI8/bgmYG1W8Yb0uXys7D9MruX0JUk9 85jWF0feFlEvMlBuqcw7cxTafdkwNclKX6kimcYWsl39d9k6k7CLysy2KDSTkLdv YczmsDxQCdoF/L856S2p2xUnJ6xQDGOnSLBYwO0M33kQAz1UxYX5Ki/4paC53sQD K6QJ2/FI3a/lhDr1nLNwebi7W0MAcjQqMz0VtlH4tklkugcspOog0bxLF5rza3jY VUtXfzOJlhzwA3BMeDi3Lutmr5GQVCLF -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:55 2024 by rpki-client on console-ams.rpki-client.org