$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft File: 4kPzvoJVabsWrLN0vJjavmkLF8E.mft (raw, json) Hash identifier: 9CLeCqr6dqqo/ZTFbSvO7e+HbbqH49+7gN9U5JOnO28= Subject key identifier: 2F:57:80:01:4E:64:FC:FA:2F:F4:93:45:7B:DC:D6:73:AA:DA:57:62 Authority key identifier: E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 Certificate issuer: /CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Certificate serial: 0596 Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft Manifest number: 058E Signing time: Fri 10 May 2024 17:36:00 +0000 Manifest this update: Fri 10 May 2024 17:36:00 +0000 Manifest next update: Fri 17 May 2024 17:36:00 +0000 Files and hashes: 1: 4kPzvoJVabsWrLN0vJjavmkLF8E.crl (hash: vZQX1FMKIyLIFMYaWtWv7NB5V7xPzecFBXTVkQErQ5U=) 2: 5BE68D46CF7611ED85A2E84EC4F9AE02.roa (hash: VvhvTMMvXBeqYgZfOoMB+UXmxIfdJwDgYKrDyaLLmc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1430 (0x596) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Validity Not Before: May 10 17:36:00 2024 GMT Not After : May 17 17:36:00 2024 GMT Subject: CN=663e5b00-0867 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c4:b3:4d:e8:4a:5f:b1:ee:ae:6a:36:d2:27: 46:4c:2a:dc:87:1c:03:f2:ba:48:26:eb:12:9c:d3: d2:67:4c:5f:01:54:74:6f:7f:b8:35:69:37:83:b2: a0:f3:0a:bf:28:6e:56:8f:36:5b:93:c8:de:fb:bc: 98:29:ec:10:e3:0d:2e:16:f4:a5:63:60:e9:3b:eb: b1:9a:8e:e6:ad:27:e6:d9:81:98:bc:98:2a:68:a9: 88:90:f4:87:59:1d:ce:60:7a:e8:7c:03:c9:d7:59: 46:93:5c:4d:33:ee:e8:2c:0e:b0:25:39:04:f2:95: 71:ca:7b:7e:c5:a1:af:46:9c:f0:73:f7:db:b3:5f: d4:47:7a:e9:72:9f:1f:ab:8a:ed:29:83:ed:17:e0: e7:aa:59:46:4c:33:85:63:0c:b4:b3:8d:80:c7:a2: 3f:60:e1:3f:0d:c6:c4:79:19:1d:64:24:5f:ec:f4: c5:53:23:0c:87:50:5e:f6:6c:8d:6a:6d:56:55:4f: a1:33:34:39:55:48:eb:eb:38:2e:fe:30:97:37:ea: a4:23:54:8a:93:a0:f9:3d:16:b7:e1:be:a6:e4:10: f5:3d:14:f8:e0:96:cd:f8:da:5e:8e:e1:7e:ff:d0: 12:08:12:6c:92:72:55:af:b2:10:01:65:9f:30:6c: c5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:57:80:01:4E:64:FC:FA:2F:F4:93:45:7B:DC:D6:73:AA:DA:57:62 X509v3 Authority Key Identifier: keyid:E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:ba:d9:26:f9:b6:db:f0:2b:17:19:38:31:ab:42:af:2a:ac: 8c:a6:59:de:35:ca:15:94:9e:64:a4:d1:d0:0d:29:8b:6a:a1: aa:62:5b:9a:12:e8:d7:7e:a3:3c:f9:f7:48:4d:19:7f:24:86: 90:4a:5a:30:5d:db:ce:c8:cf:08:4d:72:fa:e3:d9:9e:9b:70: d4:d9:ad:5d:cb:9c:b6:df:c9:47:26:e4:e9:8b:e1:64:cc:be: 5a:ad:93:d7:44:20:86:c2:ad:d1:4c:4f:da:4c:03:fb:f2:86: 9b:26:8d:2c:72:51:08:0c:45:08:40:97:92:55:6c:4e:24:b9: 82:a4:35:bb:79:de:65:b2:ab:ef:5d:59:a6:16:f4:a2:e8:16: 15:f1:11:ef:33:7b:86:e2:ff:9f:bf:33:cd:41:2c:1a:a3:94: 84:86:8c:81:97:36:09:76:26:ec:2d:a0:99:3f:99:5f:18:fb: 62:d2:7e:2f:92:8f:28:50:43:58:43:62:b5:ca:fc:02:92:a6: 5a:16:0e:99:4b:c0:5a:a9:4d:51:37:09:49:7e:23:2f:9b:f4: 63:f0:5f:df:14:95:fe:81:a7:9d:2d:18:73:5a:aa:ed:76:a1: e8:18:71:40:97:b1:4b:3c:dd:68:b5:10:36:73:23:c7:df:a4: bd:0e:87:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKEUyNDNGM0JFODI1NTY5QkIxNkFDQjM3NEJDOThEQUJF NjkwQjE3QzEwHhcNMjQwNTEwMTczNjAwWhcNMjQwNTE3MTczNjAwWjAYMRYwFAYD VQQDEw02NjNlNWIwMC0wODY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcSzTehKX7Hurmo20idGTCrchxwD8rpIJusSnNPSZ0xfAVR0b3+4NWk3g7Kg 8wq/KG5WjzZbk8je+7yYKewQ4w0uFvSlY2DpO+uxmo7mrSfm2YGYvJgqaKmIkPSH WR3OYHrofAPJ11lGk1xNM+7oLA6wJTkE8pVxynt+xaGvRpzwc/fbs1/UR3rpcp8f q4rtKYPtF+DnqllGTDOFYwy0s42Ax6I/YOE/DcbEeRkdZCRf7PTFUyMMh1Be9myN am1WVU+hMzQ5VUjr6zgu/jCXN+qkI1SKk6D5PRa34b6m5BD1PRT44JbN+NpejuF+ /9ASCBJsknJVr7IQAWWfMGzFtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC9XgAFO ZPz6L/STRXvc1nOq2ldiMB8GA1UdIwQYMBaAFOJD876CVWm7FqyzdLyY2r5pCxfB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC9CODk3QzU4MkEx OUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFic1dyTE4wdkpqYXZta0xG OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0QTFCRUE2MUQ2NjExRTJCMkNEOEI3Qzcy RkQxRkYyLzRrUHp2b0pWYWJzV3JMTjB2Smphdm1rTEY4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC9CODk3QzU4MkExOUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFi c1dyTE4wdkpqYXZta0xGOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrutkm+bbb8CsXGTgxq0KvKqyMplneNcoVlJ5kpNHQDSmLaqGqYlua EujXfqM8+fdITRl/JIaQSlowXdvOyM8ITXL649mem3DU2a1dy5y238lHJuTpi+Fk zL5arZPXRCCGwq3RTE/aTAP78oabJo0sclEIDEUIQJeSVWxOJLmCpDW7ed5lsqvv XVmmFvSi6BYV8RHvM3uG4v+fvzPNQSwao5SEhoyBlzYJdibsLaCZP5lfGPti0n4v ko8oUENYQ2K1yvwCkqZaFg6ZS8BaqU1RNwlJfiMvm/Rj8F/fFJX+gaedLRhzWqrt dqHoGHFAl7FLPN1otRA2cyPH36S9Docb -----END CERTIFICATE-----Generated at Fri May 10 20:05:29 2024 by rpki-client on console-fra.rpki-client.org