$ rpki-client -vvf rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft File: dh_-bfalw4-a60XlQCWIzddef9w.mft (raw, json) Hash identifier: j9CG6rogmmgMomMyiRWq15Ycxop9hF2564A6BSk0Vtc= Subject key identifier: 5F:7A:4C:4F:7C:C1:64:35:47:D4:C0:95:66:2F:CB:B3:46:D5:A8:DC Authority key identifier: 76:1F:FE:6D:F6:A5:C3:8F:9A:EB:45:E5:40:25:88:CD:D7:5E:7F:DC Certificate issuer: /CN=A9179CA1/serialNumber=761FFE6DF6A5C38F9AEB45E5402588CDD75E7FDC Certificate serial: 06DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft Manifest number: 06D8 Signing time: Thu 02 May 2024 23:01:56 +0000 Manifest this update: Thu 02 May 2024 23:01:56 +0000 Manifest next update: Thu 09 May 2024 23:01:56 +0000 Files and hashes: 1: dh_-bfalw4-a60XlQCWIzddef9w.crl (hash: kAmX/vSp3BBTyvN0JFIsUJu6/Qt5BwF2OJtOIqA+1Vo=) 2: 7816A67E045611EB86495B26C4F9AE02.roa (hash: mu2x4RjDstwEWrJsfMZgnqbcUPiE/QrJuHYOuwVOO6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.crl rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:53:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1756 (0x6dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179CA1/serialNumber=761FFE6DF6A5C38F9AEB45E5402588CDD75E7FDC Validity Not Before: May 2 23:01:56 2024 GMT Not After : May 9 23:01:56 2024 GMT Subject: CN=66341b64-29c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:e9:24:41:73:a7:da:47:ca:78:41:1c:3f:44: ca:fb:40:b7:76:14:0b:07:32:0c:1d:2a:85:04:ba: 2c:eb:fc:61:bd:ed:5b:5f:7a:82:6b:ec:0c:3e:e4: 26:1a:9c:f5:b2:a8:af:5b:23:78:3d:4d:c8:b8:b0: 06:52:fe:4a:a8:d8:d9:db:ea:7e:47:cb:26:1c:f5: 30:76:dd:13:1b:64:1d:83:53:18:0b:e2:98:27:a7: a8:f0:90:12:fb:8c:99:3b:99:7f:66:f9:7c:3f:5d: 34:9c:59:0a:14:b8:2a:d4:fa:4f:d9:34:64:63:8c: 84:5d:05:55:dd:81:c0:38:8a:19:c2:20:97:4b:be: f6:6e:a6:d4:0f:d3:d9:67:83:cd:7c:19:14:33:38: 85:57:49:15:53:7a:f3:31:82:80:1b:eb:23:4f:a1: e3:83:f1:97:cc:86:0a:bb:53:90:7f:5d:df:a4:21: a5:06:e6:59:b2:69:0e:e7:e0:83:d1:f1:3a:8f:93: 76:06:47:f0:4d:0a:40:91:74:3b:a3:7c:f9:ba:5e: 96:d2:09:05:db:b0:5b:58:05:76:be:35:ad:a2:89: 8a:da:25:d6:07:1d:e4:b4:6c:24:55:5f:ea:b8:84: 24:96:20:c7:07:27:1a:87:fc:28:0e:6f:dd:02:f4: 0b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:7A:4C:4F:7C:C1:64:35:47:D4:C0:95:66:2F:CB:B3:46:D5:A8:DC X509v3 Authority Key Identifier: keyid:76:1F:FE:6D:F6:A5:C3:8F:9A:EB:45:E5:40:25:88:CD:D7:5E:7F:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:74:f6:a8:d5:4f:20:93:f0:90:9a:53:0a:b3:a1:ad:4d:7f: 1c:ec:7f:36:64:38:77:4b:71:5d:18:6b:b1:0d:0d:bc:a7:c4: 8f:de:0d:3a:8f:af:9f:60:a6:96:1b:fe:89:09:71:3e:5c:d4: c0:ef:40:e2:a5:ee:d1:b4:70:73:43:f0:ab:c7:1a:cf:0e:4b: 47:e4:92:ee:f4:b8:50:fa:7d:3f:59:68:9f:1a:fa:2d:f5:07: 04:5e:e3:8f:37:7a:b6:b4:b0:b8:5a:4d:12:a7:70:31:2c:c2: 75:4e:d9:c9:09:ee:e2:6c:f3:e7:37:2e:e1:8f:4b:a5:bc:f0: 82:b1:e2:91:ea:15:78:02:11:b8:d8:52:63:ad:65:b5:2c:00: 59:dd:48:3c:21:58:91:c3:de:b8:47:0a:35:02:a4:74:e7:8c: 17:27:b5:f9:51:85:40:c4:da:6e:4b:cb:be:e3:47:74:6e:8e: 5c:cd:9d:43:27:e8:6c:ee:27:1e:55:29:46:4f:39:7e:ea:96: 52:2b:f5:67:40:30:af:e5:7b:41:eb:d0:08:65:3d:91:96:07: 89:f6:ba:92:ff:ae:5e:7f:75:1a:73:4a:a4:09:a5:98:ab:7f: cd:72:a7:a5:4b:79:8f:b8:3c:e0:2a:92:65:ce:d7:98:dc:35: 1d:53:37:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlDQTExMTAvBgNVBAUTKDc2MUZGRTZERjZBNUMzOEY5QUVCNDVFNTQwMjU4OENE RDc1RTdGREMwHhcNMjQwNTAyMjMwMTU2WhcNMjQwNTA5MjMwMTU2WjAYMRYwFAYD VQQDEw02NjM0MWI2NC0yOWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk+kkQXOn2kfKeEEcP0TK+0C3dhQLBzIMHSqFBLos6/xhve1bX3qCa+wMPuQm Gpz1sqivWyN4PU3IuLAGUv5KqNjZ2+p+R8smHPUwdt0TG2Qdg1MYC+KYJ6eo8JAS +4yZO5l/Zvl8P100nFkKFLgq1PpP2TRkY4yEXQVV3YHAOIoZwiCXS772bqbUD9PZ Z4PNfBkUMziFV0kVU3rzMYKAG+sjT6Hjg/GXzIYKu1OQf13fpCGlBuZZsmkO5+CD 0fE6j5N2BkfwTQpAkXQ7o3z5ul6W0gkF27BbWAV2vjWtoomK2iXWBx3ktGwkVV/q uIQkliDHBycah/woDm/dAvQLCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF96TE98 wWQ1R9TAlWYvy7NG1ajcMB8GA1UdIwQYMBaAFHYf/m32pcOPmutF5UAliM3XXn/c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUNBMS84MDYzNTRBRTA0 NTUxMUVCODkxQThCMjVDNEY5QUUwMi9kaF8tYmZhbHc0LWE2MFhsUUNXSXpkZGVm OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RoXy1iZmFsdzQtYTYwWGxRQ1dJemRkZWY5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUNBMS84MDYzNTRBRTA0NTUxMUVCODkxQThCMjVDNEY5QUUwMi9kaF8tYmZhbHc0 LWE2MFhsUUNXSXpkZGVmOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBdPao1U8gk/CQmlMKs6GtTX8c7H82ZDh3S3FdGGuxDQ28p8SP3g06 j6+fYKaWG/6JCXE+XNTA70Dipe7RtHBzQ/CrxxrPDktH5JLu9LhQ+n0/WWifGvot 9QcEXuOPN3q2tLC4Wk0Sp3AxLMJ1TtnJCe7ibPPnNy7hj0ulvPCCseKR6hV4AhG4 2FJjrWW1LABZ3Ug8IViRw964Rwo1AqR054wXJ7X5UYVAxNpuS8u+40d0bo5czZ1D J+hs7iceVSlGTzl+6pZSK/VnQDCv5XtB69AIZT2RlgeJ9rqS/65ef3Uac0qkCaWY q3/NcqelS3mPuDzgKpJlzteY3DUdUzft -----END CERTIFICATE-----Generated at Thu May 2 23:48:43 2024 by rpki-client on console-fra.rpki-client.org