$ rpki-client -vvf rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft File: vNgnSl8YLOQAgCwIPo0VQi-bthE.mft (raw, json) Hash identifier: txN9RWSMFidYBgYQZcTosIerk0JTXkzk+VjiLzspIKM= Subject key identifier: 9B:6B:98:D8:B4:31:CE:69:41:6A:88:7E:6D:F9:98:6E:2E:C1:2C:9F Authority key identifier: BC:D8:27:4A:5F:18:2C:E4:00:80:2C:08:3E:8D:15:42:2F:9B:B6:11 Certificate issuer: /CN=A91554E6/serialNumber=BCD8274A5F182CE400802C083E8D15422F9BB611 Certificate serial: 0208 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNgnSl8YLOQAgCwIPo0VQi-bthE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft Manifest number: 026A Signing time: Wed 01 May 2024 04:29:24 +0000 Manifest this update: Wed 01 May 2024 04:29:24 +0000 Manifest next update: Wed 08 May 2024 04:29:24 +0000 Files and hashes: 1: vNgnSl8YLOQAgCwIPo0VQi-bthE.crl (hash: xJxnSrSmQ6tp8/qGt5LQScPr9GHD9+M7V2eB84SYSFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.crl rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNgnSl8YLOQAgCwIPo0VQi-bthE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91554E6/serialNumber=BCD8274A5F182CE400802C083E8D15422F9BB611 Validity Not Before: May 1 04:29:24 2024 GMT Not After : May 8 04:29:24 2024 GMT Subject: CN=6631c524-eb6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8c:fe:6e:24:0d:a2:e2:8c:73:da:6d:da:b4: 5e:98:9b:d2:f4:c4:1c:c2:6b:ef:66:d1:82:6e:49: cd:19:cb:86:0c:e8:69:78:45:d2:2c:0c:cd:15:61: fb:02:ea:3d:5f:c6:fc:d0:95:8b:ef:16:85:3a:0d: 3f:93:2e:45:ed:ac:b0:51:a1:25:95:55:69:13:fa: 6c:47:5c:be:b1:4e:c0:5c:59:75:0f:a5:3f:65:f9: a6:02:cb:bc:82:a1:0f:81:11:ee:3f:8f:4c:02:23: 65:32:aa:f5:5e:88:89:67:b8:aa:5b:5a:f3:c1:65: 77:fd:26:e7:e1:e1:cf:f8:40:03:fd:7b:d0:b6:73: 24:75:69:56:cf:55:f3:ea:47:b5:4b:52:e7:8c:8b: 11:ec:0a:a7:92:85:67:33:0e:ac:67:55:0a:b8:8d: fb:c1:f3:fd:02:32:49:ab:f6:49:aa:8e:0d:27:30: b4:19:97:ac:c5:a3:96:9f:50:6f:23:70:05:87:58: 53:d1:4c:8f:c3:a1:f6:06:ad:86:ab:11:aa:88:f1: 17:83:d9:52:3a:b3:46:8c:b2:7d:7f:b3:e3:60:1a: d3:25:75:b4:ef:73:d8:25:f2:23:2f:59:3c:7a:f9: 93:d8:d1:6a:fa:0e:a8:04:a0:27:d6:f1:2a:95:52: 09:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:6B:98:D8:B4:31:CE:69:41:6A:88:7E:6D:F9:98:6E:2E:C1:2C:9F X509v3 Authority Key Identifier: keyid:BC:D8:27:4A:5F:18:2C:E4:00:80:2C:08:3E:8D:15:42:2F:9B:B6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNgnSl8YLOQAgCwIPo0VQi-bthE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:d4:1f:2f:b2:5c:55:8a:bb:d4:e4:17:0a:da:45:44:46:ef: f2:8b:52:8e:94:d9:ff:b8:c7:e9:29:69:ff:ac:10:1f:13:05: 29:f3:87:99:13:cc:38:9c:5d:41:1f:c3:35:3b:73:79:a4:39: 91:94:43:67:91:3b:a5:1e:eb:57:d3:ce:d5:b2:b9:a4:25:e9: 75:04:d1:a1:36:1d:a7:b4:2f:6e:57:00:bf:4c:8c:41:17:40: 55:ef:ab:30:a2:75:12:94:6b:9a:66:78:19:f8:37:1b:e8:1f: f3:87:c5:81:90:f0:fb:30:4d:cb:27:f9:19:01:a6:f1:a7:8c: 29:15:5d:f3:3f:71:26:ba:b4:b0:0e:12:ef:3d:c4:12:91:ab: 9d:29:48:14:29:bb:37:ae:0b:0c:b5:dd:36:f2:b6:a4:7a:8c: 91:91:24:48:7d:2e:cc:9b:96:08:77:35:a3:5f:f2:54:50:b9: 3d:64:9b:a7:2d:5b:ac:4b:0c:7f:ad:ba:57:ea:aa:e5:fb:db: eb:22:48:f6:7c:2c:81:65:2d:88:97:3b:b8:85:d8:ed:4d:0d: cc:59:b5:7c:ca:cb:88:71:c2:6c:28:7f:e0:16:d3:4e:52:c0: 11:81:f8:e6:55:f5:d1:ef:af:e0:5e:c1:43:af:37:6f:2d:7e: 13:50:1f:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU0RTYxMTAvBgNVBAUTKEJDRDgyNzRBNUYxODJDRTQwMDgwMkMwODNFOEQxNTQy MkY5QkI2MTEwHhcNMjQwNTAxMDQyOTI0WhcNMjQwNTA4MDQyOTI0WjAYMRYwFAYD VQQDEw02NjMxYzUyNC1lYjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyoz+biQNouKMc9pt2rRemJvS9MQcwmvvZtGCbknNGcuGDOhpeEXSLAzNFWH7 Auo9X8b80JWL7xaFOg0/ky5F7aywUaEllVVpE/psR1y+sU7AXFl1D6U/ZfmmAsu8 gqEPgRHuP49MAiNlMqr1XoiJZ7iqW1rzwWV3/Sbn4eHP+EAD/XvQtnMkdWlWz1Xz 6ke1S1LnjIsR7AqnkoVnMw6sZ1UKuI37wfP9AjJJq/ZJqo4NJzC0GZesxaOWn1Bv I3AFh1hT0UyPw6H2Bq2GqxGqiPEXg9lSOrNGjLJ9f7PjYBrTJXW073PYJfIjL1k8 evmT2NFq+g6oBKAn1vEqlVIJqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJtrmNi0 Mc5pQWqIfm35mG4uwSyfMB8GA1UdIwQYMBaAFLzYJ0pfGCzkAIAsCD6NFUIvm7YR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTRFNi85RjA2Nzc0OEVE NEIxMUVDQUI4RkFBNzdDNEY5QUUwMi92TmduU2w4WUxPUUFnQ3dJUG8wVlFpLWJ0 aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZOZ25TbDhZTE9RQWdDd0lQbzBWUWktYnRoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTRFNi85RjA2Nzc0OEVENEIxMUVDQUI4RkFBNzdDNEY5QUUwMi92TmduU2w4WUxP UUFnQ3dJUG8wVlFpLWJ0aEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB11B8vslxVirvU5BcK2kVERu/yi1KOlNn/uMfpKWn/rBAfEwUp84eZ E8w4nF1BH8M1O3N5pDmRlENnkTulHutX087VsrmkJel1BNGhNh2ntC9uVwC/TIxB F0BV76swonUSlGuaZngZ+Dcb6B/zh8WBkPD7ME3LJ/kZAabxp4wpFV3zP3EmurSw DhLvPcQSkaudKUgUKbs3rgsMtd028rakeoyRkSRIfS7Mm5YIdzWjX/JUULk9ZJun LVusSwx/rbpX6qrl+9vrIkj2fCyBZS2Ilzu4hdjtTQ3MWbV8ysuIccJsKH/gFtNO UsARgfjmVfXR76/gXsFDrzdvLX4TUB+4 -----END CERTIFICATE-----Generated at Wed May 1 05:55:40 2024 by rpki-client on console-ams.rpki-client.org