$ rpki-client -vvf rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft File: n2T-UJklN_sLQOUvnPrDEMonGRg.mft (raw, json) Hash identifier: QbcPskFJ0VuyTHH4AaV3c79/hVZOELWKoldhJsqk+k0= Subject key identifier: 34:00:F7:CD:98:90:63:ED:A3:50:62:B0:95:21:64:1C:07:1F:36:4B Authority key identifier: 9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18 Certificate issuer: /CN=A91A57F8/serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918 Certificate serial: FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft Manifest number: F3 Signing time: Sun 05 May 2024 06:03:23 +0000 Manifest this update: Sun 05 May 2024 06:03:23 +0000 Manifest next update: Sun 12 May 2024 06:03:23 +0000 Files and hashes: 1: n2T-UJklN_sLQOUvnPrDEMonGRg.crl (hash: kq8EuKRUunN9eq89C/atQO3rSFl7wanDFFsNn+Nmzug=) 2: A508D320BBC711ED8DF23C40C4F9AE02.roa (hash: L1wngMa+M4+pohh5cLExIiwcIS0yfGRYYvO2OZ5X45A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.crl rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 06:03:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A57F8/serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918 Validity Not Before: May 5 06:03:23 2024 GMT Not After : May 12 06:03:23 2024 GMT Subject: CN=6637212b-bfd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1e:33:e7:aa:f6:c4:25:d1:e4:6c:a2:d2:cf: b0:a1:cf:81:7c:2b:f2:2f:ef:bc:f7:26:cf:7f:23: 04:99:3a:10:ed:c1:06:bb:d0:e2:63:02:3e:cc:dc: 47:aa:d6:a1:d7:8f:0a:22:6e:87:dc:8b:94:55:43: d7:36:f4:67:68:21:e2:13:d4:44:53:63:97:de:53: 04:ae:c4:cf:8c:05:98:c5:12:a2:e9:0c:34:e9:81: 10:22:62:69:a6:ba:a7:6f:11:aa:de:2f:e8:62:b5: 05:e5:94:73:2f:9c:c4:bf:83:60:d2:42:ed:94:d3: 64:c9:dd:e9:43:2c:56:a8:04:46:98:00:64:76:cf: 6d:e9:d3:ab:18:06:85:0e:d5:38:3b:d4:ce:8c:77: 7b:9a:8b:90:7d:97:bc:0f:a0:4d:e3:2c:20:b1:0c: 1a:14:72:ac:af:f1:ea:9c:d0:95:67:72:81:52:dc: f0:3e:69:ac:1a:17:9b:12:09:1d:41:08:34:88:07: 7a:df:4d:7b:4f:4b:bb:18:b2:aa:f2:b6:36:47:ee: 5b:39:1f:5d:4f:af:0f:23:04:57:fc:d3:bc:61:5c: 4b:91:3b:48:2a:76:ea:3b:cd:29:77:23:54:7f:81: 7b:ca:5d:31:66:cb:47:7c:a5:8c:79:d9:ef:7c:92: 1c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:00:F7:CD:98:90:63:ED:A3:50:62:B0:95:21:64:1C:07:1F:36:4B X509v3 Authority Key Identifier: keyid:9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:b0:c0:f2:2d:10:18:0c:e5:78:21:e3:77:2a:58:79:84:22: e6:cc:dc:53:04:27:53:86:37:d0:e4:ba:e4:45:5c:98:64:73: c8:28:be:66:c8:70:c2:4e:cb:52:54:00:4e:e6:c3:ae:55:ba: f2:b2:77:5a:21:6a:a4:2c:5a:e7:4f:89:54:e4:14:1c:4d:09: ef:7a:ba:a9:24:bc:ce:05:6b:6f:dc:bf:fc:a7:11:ac:bd:c0: 80:f8:58:a8:0b:fb:c0:d9:e9:48:82:ec:ac:bb:36:74:86:7e: ac:1b:c8:12:5b:00:2c:1f:97:8f:8e:aa:80:dc:1b:a7:a7:10: aa:e1:ac:b3:f5:7b:98:7d:b8:e8:96:aa:bf:08:c9:3a:46:f9: 2e:78:1f:d6:01:86:3b:d3:15:5f:15:1c:11:cd:e6:92:8d:33: bb:ab:70:8b:98:17:3c:59:5d:e3:9f:0d:ce:ea:c4:21:54:30: 76:78:da:40:25:55:f8:61:86:61:54:0b:53:fb:e4:a5:28:a4: 87:ec:ae:1c:da:48:8f:04:a6:57:75:55:31:da:32:a2:c7:36: 50:42:e5:78:41:9b:db:b5:e0:d8:46:c5:1b:e3:82:f1:3c:9b: cc:d7:b2:c5:cf:76:2a:fd:c1:8b:d2:c2:58:29:94:b0:93:04: eb:18:1f:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU3RjgxMTAvBgNVBAUTKDlGNjRGRTUwOTkyNTM3RkIwQjQwRTUyRjlDRkFDMzEw Q0EyNzE5MTgwHhcNMjQwNTA1MDYwMzIzWhcNMjQwNTEyMDYwMzIzWjAYMRYwFAYD VQQDEw02NjM3MjEyYi1iZmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqR4z56r2xCXR5Gyi0s+woc+BfCvyL++89ybPfyMEmToQ7cEGu9DiYwI+zNxH qtah148KIm6H3IuUVUPXNvRnaCHiE9REU2OX3lMErsTPjAWYxRKi6Qw06YEQImJp prqnbxGq3i/oYrUF5ZRzL5zEv4Ng0kLtlNNkyd3pQyxWqARGmABkds9t6dOrGAaF DtU4O9TOjHd7mouQfZe8D6BN4ywgsQwaFHKsr/HqnNCVZ3KBUtzwPmmsGhebEgkd QQg0iAd63017T0u7GLKq8rY2R+5bOR9dT68PIwRX/NO8YVxLkTtIKnbqO80pdyNU f4F7yl0xZstHfKWMednvfJIcgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQA982Y kGPto1BisJUhZBwHHzZLMB8GA1UdIwQYMBaAFJ9k/lCZJTf7C0DlL5z6wxDKJxkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTdGOC8zNDUwOTQwMEI5 NzUxMUVEODA0MERFMjJDNEY5QUUwMi9uMlQtVUprbE5fc0xRT1V2blByREVNb25H UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL24yVC1VSmtsTl9zTFFPVXZuUHJERU1vbkdSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTdGOC8zNDUwOTQwMEI5NzUxMUVEODA0MERFMjJDNEY5QUUwMi9uMlQtVUprbE5f c0xRT1V2blByREVNb25HUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgsMDyLRAYDOV4IeN3Klh5hCLmzNxTBCdThjfQ5LrkRVyYZHPIKL5m yHDCTstSVABO5sOuVbrysndaIWqkLFrnT4lU5BQcTQnverqpJLzOBWtv3L/8pxGs vcCA+FioC/vA2elIguysuzZ0hn6sG8gSWwAsH5ePjqqA3BunpxCq4ayz9XuYfbjo lqq/CMk6RvkueB/WAYY70xVfFRwRzeaSjTO7q3CLmBc8WV3jnw3O6sQhVDB2eNpA JVX4YYZhVAtT++SlKKSH7K4c2kiPBKZXdVUx2jKixzZQQuV4QZvbteDYRsUb44Lx PJvM17LFz3Yq/cGL0sJYKZSwkwTrGB+7 -----END CERTIFICATE-----Generated at Sun May 5 08:21:09 2024 by rpki-client on console-ams.rpki-client.org