$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft File: 5KlM-o0vn1s570Y1BZHOMS5RT7M.mft (raw, json) Hash identifier: z9bNmHqeWmkiq8bbbNSRVyzqon4pJJMYRSGwKtyDmhk= Subject key identifier: AD:66:C7:10:94:47:C4:B6:82:03:5B:12:28:54:16:CA:15:97:B4:60 Authority key identifier: E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3 Certificate issuer: /CN=A91A3AB3/serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft Manifest number: 01A3 Signing time: Fri 03 May 2024 05:17:43 +0000 Manifest this update: Fri 03 May 2024 05:17:43 +0000 Manifest next update: Fri 10 May 2024 05:17:43 +0000 Files and hashes: 1: 5KlM-o0vn1s570Y1BZHOMS5RT7M.crl (hash: JtnheUgsjHRHiODBeJJMfYVc53TbPdQgpcYslX0is6M=) 2: 81C7EE088DF111EEBAF5601BC4F9AE02.roa (hash: CRI92XbMS3q/rRPmQg3wO3RSp8ZmrhL7Jbxpo/V0XVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3AB3/serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3 Validity Not Before: May 3 05:17:43 2024 GMT Not After : May 10 05:17:43 2024 GMT Subject: CN=66347377-950c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3e:b7:09:b9:52:f7:8e:db:72:13:9e:ec:2e: fc:4b:70:17:2b:15:72:e4:7e:c3:42:e0:9b:d7:b1: 52:9b:99:56:21:30:3c:73:da:15:92:ab:6e:d5:49: 2c:ce:32:c7:2e:b4:25:76:af:c6:76:04:36:9a:33: d9:f6:f7:82:2f:c3:9a:51:06:cf:c9:f4:42:2d:54: af:b0:1d:5d:d5:13:d5:5b:95:08:3e:6f:6b:c7:4c: b7:45:4a:aa:21:53:31:0c:2a:37:06:ff:0f:26:81: e6:c5:9b:c2:84:c3:1a:ea:ea:08:df:b5:84:0e:fa: 1a:bd:77:ec:85:59:0e:82:81:1b:7d:3e:a9:17:f6: 12:1b:75:a0:ab:eb:ff:62:dd:7c:41:ff:14:8e:87: 9b:bd:64:1f:ee:f9:5a:08:7b:f2:40:c7:06:78:3f: 7e:1d:a9:ab:de:3c:5d:5b:bb:8a:51:a3:79:cf:ef: 28:5c:0c:3a:b0:c2:6e:08:a8:53:0d:46:ee:33:17: c4:80:53:d5:95:74:a2:0c:9c:f3:65:5a:c0:7e:10: cc:b7:d3:44:50:63:5a:db:5f:b3:a8:13:7a:c5:cf: c4:50:bf:d7:92:22:ad:35:60:38:6d:cb:a4:55:30: 79:0c:fe:f5:61:81:36:12:03:13:5d:56:75:bd:1d: 6c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:66:C7:10:94:47:C4:B6:82:03:5B:12:28:54:16:CA:15:97:B4:60 X509v3 Authority Key Identifier: keyid:E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:24:6a:4b:78:f7:b0:36:d1:82:6a:5b:cb:d6:4f:df:79:b6: 76:cd:1e:af:4e:be:41:9e:21:43:49:07:3c:4b:3a:c6:b6:f8: de:39:10:27:8d:5d:eb:2b:70:c9:d7:2d:ac:ad:74:b7:63:d7: b4:a2:6a:24:13:42:71:d6:c7:78:27:ed:5c:04:b6:de:0e:6a: 46:4f:ed:9d:3f:be:47:e1:c0:59:9a:fc:01:aa:e3:05:f4:fc: 20:89:08:4e:5d:61:fe:69:32:aa:a1:08:ba:11:4b:54:c8:de: 2f:b1:f8:16:c0:33:fb:d9:2b:7a:67:40:22:38:b7:14:91:16: 5b:e1:12:69:6f:38:af:20:c0:da:24:be:ad:b8:bf:43:6e:3c: 76:f9:75:b2:50:23:78:60:34:6b:d5:14:a6:50:d1:c6:7a:e2: 7c:74:f7:a5:b4:f0:e0:e5:e4:42:51:ad:15:a8:aa:05:ad:1c: 86:32:b3:58:33:20:d7:6e:85:06:11:f9:a4:67:8c:66:56:57: 2a:ae:05:4c:5c:49:8c:f8:c7:ba:b1:e9:1f:68:8f:ba:aa:65: 8d:b0:1f:aa:8f:9f:6a:ce:44:c9:37:d6:71:a0:06:83:cc:1a: 64:9a:de:f7:c9:6d:66:b7:ed:48:72:e2:98:16:51:34:3f:07: 56:3a:7f:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNBQjMxMTAvBgNVBAUTKEU0QTk0Q0ZBOEQyRjlGNUIzOUVGNDYzNTA1OTFDRTMx MkU1MTRGQjMwHhcNMjQwNTAzMDUxNzQzWhcNMjQwNTEwMDUxNzQzWjAYMRYwFAYD VQQDEw02NjM0NzM3Ny05NTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsz63CblS947bchOe7C78S3AXKxVy5H7DQuCb17FSm5lWITA8c9oVkqtu1Uks zjLHLrQldq/GdgQ2mjPZ9veCL8OaUQbPyfRCLVSvsB1d1RPVW5UIPm9rx0y3RUqq IVMxDCo3Bv8PJoHmxZvChMMa6uoI37WEDvoavXfshVkOgoEbfT6pF/YSG3Wgq+v/ Yt18Qf8UjoebvWQf7vlaCHvyQMcGeD9+Hamr3jxdW7uKUaN5z+8oXAw6sMJuCKhT DUbuMxfEgFPVlXSiDJzzZVrAfhDMt9NEUGNa21+zqBN6xc/EUL/XkiKtNWA4bcuk VTB5DP71YYE2EgMTXVZ1vR1sXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1mxxCU R8S2ggNbEihUFsoVl7RgMB8GA1UdIwQYMBaAFOSpTPqNL59bOe9GNQWRzjEuUU+z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0FCMy8wNUVEOTRDRTE5 NEMxMUVEQUQzOEYyMkJDNEY5QUUwMi81S2xNLW8wdm4xczU3MFkxQlpIT01TNVJU N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVLbE0tbzB2bjFzNTcwWTFCWkhPTVM1UlQ3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0FCMy8wNUVEOTRDRTE5NEMxMUVEQUQzOEYyMkJDNEY5QUUwMi81S2xNLW8wdm4x czU3MFkxQlpIT01TNVJUN00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2JGpLePewNtGCalvL1k/febZ2zR6vTr5BniFDSQc8SzrGtvjeORAn jV3rK3DJ1y2srXS3Y9e0omokE0Jx1sd4J+1cBLbeDmpGT+2dP75H4cBZmvwBquMF 9PwgiQhOXWH+aTKqoQi6EUtUyN4vsfgWwDP72St6Z0AiOLcUkRZb4RJpbzivIMDa JL6tuL9Dbjx2+XWyUCN4YDRr1RSmUNHGeuJ8dPeltPDg5eRCUa0VqKoFrRyGMrNY MyDXboUGEfmkZ4xmVlcqrgVMXEmM+Me6sekfaI+6qmWNsB+qj59qzkTJN9ZxoAaD zBpkmt73yW1mt+1IcuKYFlE0PwdWOn9y -----END CERTIFICATE-----Generated at Fri May 3 06:18:53 2024 by rpki-client on console-ams.rpki-client.org