$ rpki-client -vvf rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft File: AZcEvn5KzguhIRSzKOsCBxHvTq8.mft (raw, json) Hash identifier: ZUYld8wyOpm/HzBzA3ZgelEDs+jpFkivkVBbk2vB4sM= Subject key identifier: C4:3A:48:D5:65:3F:BD:CE:F5:1F:C7:15:E2:E2:1C:59:C7:E0:F0:C8 Authority key identifier: 01:97:04:BE:7E:4A:CE:0B:A1:21:14:B3:28:EB:02:07:11:EF:4E:AF Certificate issuer: /CN=A91728E2/serialNumber=019704BE7E4ACE0BA12114B328EB020711EF4EAF Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft Manifest number: 0126 Signing time: Sun 05 May 2024 05:14:13 +0000 Manifest this update: Sun 05 May 2024 05:14:13 +0000 Manifest next update: Sun 12 May 2024 05:14:13 +0000 Files and hashes: 1: AZcEvn5KzguhIRSzKOsCBxHvTq8.crl (hash: VVgJQhvpzfy4EtgeICd0lmJRoHc9xVROY4aFPGZoRZY=) 2: 85AEBA76504C11ED829F7D24C4F9AE02.roa (hash: NLkibe4sIvuvX1gTpb125fcvFKo+vEVtZ7WUhYt+DQk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.crl rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91728E2/serialNumber=019704BE7E4ACE0BA12114B328EB020711EF4EAF Validity Not Before: May 5 05:14:13 2024 GMT Not After : May 12 05:14:13 2024 GMT Subject: CN=663715a5-7329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:90:0b:38:83:ff:a6:65:a8:c1:15:5f:60:a5: b8:2a:c2:6f:20:3b:bc:a9:ca:9a:b2:20:e0:49:90: 39:1f:32:45:e9:22:f5:d3:e5:b1:2a:3d:3a:b5:3d: d3:c5:b1:55:60:07:1a:d3:b2:b5:85:56:0e:0d:b6: 29:53:85:69:cf:13:48:da:56:df:56:80:24:ce:9e: 8e:69:58:6e:88:02:93:66:e0:2b:98:f4:f6:a5:3e: 13:a7:1b:2a:b5:b0:34:12:92:d4:70:b8:a3:6a:b1: f8:9b:a9:88:9d:c9:f5:74:1b:ed:39:d6:e4:49:85: 4c:16:9f:b9:60:45:f3:91:3d:ad:a4:7e:aa:93:72: 82:69:2f:bc:e6:5c:84:03:da:0d:6e:45:e6:1b:7e: a1:97:39:59:22:b7:14:f8:f5:c7:84:6f:00:92:8a: 60:6c:38:b4:ad:45:b7:91:85:00:75:f6:11:f3:df: 77:5a:c5:cf:89:0c:8b:97:99:5d:fd:c4:d0:f4:ec: 04:5b:36:8a:28:19:ab:85:bf:6e:4a:65:01:48:a5: 21:fb:71:cb:20:6e:5a:79:ad:11:2e:fe:f5:b0:48: 52:92:f0:fd:b8:71:e1:30:27:0c:11:cb:66:a8:8c: 48:1a:fc:d5:ef:f1:6f:c9:51:aa:47:99:74:ae:d6: 46:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:3A:48:D5:65:3F:BD:CE:F5:1F:C7:15:E2:E2:1C:59:C7:E0:F0:C8 X509v3 Authority Key Identifier: keyid:01:97:04:BE:7E:4A:CE:0B:A1:21:14:B3:28:EB:02:07:11:EF:4E:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:f0:9c:0d:39:4a:14:61:cf:2e:ef:1e:7f:cb:ad:b7:6f:22: c2:e5:a4:6d:17:e2:20:8c:ef:f0:26:54:41:cf:df:94:cd:fe: 14:f6:5d:24:14:03:fd:26:ec:99:b9:41:15:fd:86:62:a3:bb: 38:4d:ad:be:f2:6f:b7:f9:26:45:cb:29:4b:12:e7:b2:b0:8a: 3c:2b:09:2e:f8:0b:43:7d:17:e9:93:2a:8d:e6:31:ff:5a:49: be:5b:60:1a:a0:e4:ff:fd:dd:38:64:fb:0f:ed:a5:5a:43:bb: bb:35:71:b5:0b:42:47:b7:fe:ee:69:02:e6:42:d5:b2:1a:21: c5:e0:1b:82:44:a7:32:de:c4:df:ad:53:d6:71:b2:67:68:54: cc:40:fd:7c:4c:51:ad:51:03:1c:99:58:ec:50:2a:fe:03:cb: df:8a:c0:71:bc:33:aa:00:eb:82:01:a8:5b:ba:3f:f9:29:46: 90:6f:60:94:86:e8:93:72:ff:b4:81:44:0c:d9:6f:fd:b7:07: 20:6b:2a:75:e6:44:5f:fc:f4:98:1e:46:59:33:19:08:af:b8: 07:9e:24:c3:38:29:8d:08:4b:4e:58:31:78:bb:67:81:82:24: 6f:23:fe:f8:40:cb:60:4c:c2:f3:ed:f0:70:51:d8:52:22:57: f1:60:71:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI4RTIxMTAvBgNVBAUTKDAxOTcwNEJFN0U0QUNFMEJBMTIxMTRCMzI4RUIwMjA3 MTFFRjRFQUYwHhcNMjQwNTA1MDUxNDEzWhcNMjQwNTEyMDUxNDEzWjAYMRYwFAYD VQQDEw02NjM3MTVhNS03MzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAppALOIP/pmWowRVfYKW4KsJvIDu8qcqasiDgSZA5HzJF6SL10+WxKj06tT3T xbFVYAca07K1hVYODbYpU4VpzxNI2lbfVoAkzp6OaVhuiAKTZuArmPT2pT4Tpxsq tbA0EpLUcLijarH4m6mIncn1dBvtOdbkSYVMFp+5YEXzkT2tpH6qk3KCaS+85lyE A9oNbkXmG36hlzlZIrcU+PXHhG8AkopgbDi0rUW3kYUAdfYR8993WsXPiQyLl5ld /cTQ9OwEWzaKKBmrhb9uSmUBSKUh+3HLIG5aea0RLv71sEhSkvD9uHHhMCcMEctm qIxIGvzV7/FvyVGqR5l0rtZGZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQ6SNVl P73O9R/HFeLiHFnH4PDIMB8GA1UdIwQYMBaAFAGXBL5+Ss4LoSEUsyjrAgcR706v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjhFMi85NzAxM0E0RTUw NDAxMUVEOEFFQ0FBNkZDNEY5QUUwMi9BWmNFdm41S3pndWhJUlN6S09zQ0J4SHZU cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FaY0V2bjVLemd1aElSU3pLT3NDQnhIdlRxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjhFMi85NzAxM0E0RTUwNDAxMUVEOEFFQ0FBNkZDNEY5QUUwMi9BWmNFdm41S3pn dWhJUlN6S09zQ0J4SHZUcTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM8JwNOUoUYc8u7x5/y623byLC5aRtF+IgjO/wJlRBz9+Uzf4U9l0k FAP9JuyZuUEV/YZio7s4Ta2+8m+3+SZFyylLEueysIo8Kwku+AtDfRfpkyqN5jH/ Wkm+W2AaoOT//d04ZPsP7aVaQ7u7NXG1C0JHt/7uaQLmQtWyGiHF4BuCRKcy3sTf rVPWcbJnaFTMQP18TFGtUQMcmVjsUCr+A8vfisBxvDOqAOuCAahbuj/5KUaQb2CU huiTcv+0gUQM2W/9twcgayp15kRf/PSYHkZZMxkIr7gHniTDOCmNCEtOWDF4u2eB giRvI/74QMtgTMLz7fBwUdhSIlfxYHFy -----END CERTIFICATE-----Generated at Sun May 5 06:13:35 2024 by rpki-client on console-ams.rpki-client.org