$ rpki-client -vvf rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft File: IW4UMOXDDg0jp10HDbeJi5CEl5k.mft (raw, json) Hash identifier: IOPPXX4akw832OFNthKZ5lEei2VPm3r2zZ4c1ktpLyo= Subject key identifier: EF:18:58:3C:D9:8C:71:15:FF:C2:99:7D:7C:ED:0A:E4:D4:39:95:D4 Authority key identifier: 21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 Certificate issuer: /CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Certificate serial: 06E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft Manifest number: 06DC Signing time: Thu 02 May 2024 23:01:37 +0000 Manifest this update: Thu 02 May 2024 23:01:37 +0000 Manifest next update: Thu 09 May 2024 23:01:37 +0000 Files and hashes: 1: IW4UMOXDDg0jp10HDbeJi5CEl5k.crl (hash: 119CxF3izQceZFdj+ajvQG8uWPglqjfFdT95q12+KAY=) 2: ACD444282EC911EB99EC263DC4F9AE02.roa (hash: wbhiBTffYsutIFvVL6vDZuOV2ZB4edfZWKxQBEku9Tc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:53:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1761 (0x6e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Validity Not Before: May 2 23:01:37 2024 GMT Not After : May 9 23:01:37 2024 GMT Subject: CN=66341b51-1731 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ef:0c:5d:db:8a:42:07:cf:c6:bf:f6:1d:d3: fa:b3:72:5d:9b:bb:67:ac:8d:d8:70:84:e3:c6:de: d5:84:4e:c7:5a:7f:72:4f:ff:cf:d9:d4:7e:7a:12: 1b:6f:1c:b8:65:4b:c0:6f:8c:fd:d6:2d:25:8b:38: 91:ac:87:32:e3:57:b8:29:cf:15:0b:86:bc:f2:82: b7:ff:8a:db:06:d0:9d:94:a2:07:ad:e0:27:7c:ee: b0:1e:32:ab:46:7e:65:88:19:e6:19:04:c5:f1:70: 5d:ed:5a:18:77:9b:7f:78:fa:ec:a7:49:0c:a6:7e: 1e:d4:11:e0:c9:2b:1b:dd:1b:dc:3f:6c:6a:ee:0b: bb:a8:72:32:7f:81:92:bd:a4:70:54:b0:27:04:26: d5:d2:ea:95:c3:d0:32:b3:85:29:36:dc:f8:84:a0: d1:aa:f7:02:b7:da:d0:70:69:a6:91:bc:a2:93:11: ad:d3:7e:75:79:8d:d5:4c:3d:e8:41:6d:a7:60:45: b9:43:29:fb:10:db:85:0f:8b:48:14:fd:6e:5c:09: e2:02:e9:06:af:d2:30:54:08:80:94:eb:9a:2b:2b: a0:0d:4a:b4:91:c4:9b:49:90:01:74:2c:d4:4f:47: 14:eb:8b:84:c4:0e:06:86:87:47:d8:86:37:63:0e: 8a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:18:58:3C:D9:8C:71:15:FF:C2:99:7D:7C:ED:0A:E4:D4:39:95:D4 X509v3 Authority Key Identifier: keyid:21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:9c:3c:76:06:e1:8d:8b:3b:22:cb:d8:7a:90:47:90:c4:a8: 68:5d:ed:44:0d:97:93:e9:73:35:3c:ee:bd:7b:b9:f3:1d:94: e6:e3:f0:46:94:e1:d3:7c:8b:1e:e3:f0:f2:27:22:d7:3d:a3: 23:7e:4a:fe:b7:0f:23:2e:04:e0:33:95:42:6b:8a:c7:03:82: f0:25:94:6d:f7:65:a5:73:4f:00:02:ca:a7:87:05:e1:e1:d1: 6c:13:54:41:b7:78:4a:f8:25:c6:d8:8e:d4:49:4b:13:cd:22: bf:cc:25:6e:47:c3:fc:62:a1:10:03:fb:95:2e:55:b0:1a:43: 85:3b:86:56:6e:92:e2:46:e0:7d:27:5d:d9:9f:42:a4:db:f5: 38:f0:d2:87:32:39:07:ee:8e:ed:26:5f:53:6b:b2:bf:08:5a: ef:a0:e7:40:75:25:ed:5c:2c:8e:16:7b:d0:0a:41:a5:35:c8: b9:cf:f6:ad:31:01:61:23:bc:86:f8:8c:03:95:77:ed:45:14: a3:52:dc:e1:a4:13:76:16:63:c4:07:cd:0b:dc:46:e5:a8:b2: f5:91:23:71:e8:60:cb:a8:7c:dc:a5:8b:14:1d:88:33:b4:cd: b1:ae:b2:fb:28:a1:48:28:ac:f1:2c:f2:64:3c:bd:75:23:65: 89:4b:5f:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE1QjUxMTAvBgNVBAUTKDIxNkUxNDMwRTVDMzBFMEQyM0E3NUQwNzBEQjc4OThC OTA4NDk3OTkwHhcNMjQwNTAyMjMwMTM3WhcNMjQwNTA5MjMwMTM3WjAYMRYwFAYD VQQDEw02NjM0MWI1MS0xNzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+8MXduKQgfPxr/2HdP6s3Jdm7tnrI3YcITjxt7VhE7HWn9yT//P2dR+ehIb bxy4ZUvAb4z91i0liziRrIcy41e4Kc8VC4a88oK3/4rbBtCdlKIHreAnfO6wHjKr Rn5liBnmGQTF8XBd7VoYd5t/ePrsp0kMpn4e1BHgySsb3RvcP2xq7gu7qHIyf4GS vaRwVLAnBCbV0uqVw9Ays4UpNtz4hKDRqvcCt9rQcGmmkbyikxGt0351eY3VTD3o QW2nYEW5Qyn7ENuFD4tIFP1uXAniAukGr9IwVAiAlOuaKyugDUq0kcSbSZABdCzU T0cU64uExA4GhodH2IY3Yw6K/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8YWDzZ jHEV/8KZfXztCuTUOZXUMB8GA1UdIwQYMBaAFCFuFDDlww4NI6ddBw23iYuQhJeZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTVCNS81ODNDQzRENDAz QkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERnMGpwMTBIRGJlSmk1Q0Vs NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXNFVNT1hERGcwanAxMEhEYmVKaTVDRWw1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTVCNS81ODNDQzRENDAzQkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERn MGpwMTBIRGJlSmk1Q0VsNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqnDx2BuGNizsiy9h6kEeQxKhoXe1EDZeT6XM1PO69e7nzHZTm4/BG lOHTfIse4/DyJyLXPaMjfkr+tw8jLgTgM5VCa4rHA4LwJZRt92Wlc08AAsqnhwXh 4dFsE1RBt3hK+CXG2I7USUsTzSK/zCVuR8P8YqEQA/uVLlWwGkOFO4ZWbpLiRuB9 J13Zn0Kk2/U48NKHMjkH7o7tJl9Ta7K/CFrvoOdAdSXtXCyOFnvQCkGlNci5z/at MQFhI7yG+IwDlXftRRSjUtzhpBN2FmPEB80L3EblqLL1kSNx6GDLqHzcpYsUHYgz tM2xrrL7KKFIKKzxLPJkPL11I2WJS1/Z -----END CERTIFICATE-----Generated at Thu May 2 23:48:44 2024 by rpki-client on console-fra.rpki-client.org