$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft File: zFYVfHLcxpczY2dD21AIdZMtpB8.mft (raw, json) Hash identifier: nDLmZtVM7mZN9ayEQEHpMXpe8gOzND+tz9/WQ1qXmY8= Subject key identifier: 56:AD:E8:A3:D7:70:89:B1:1E:CC:46:98:2F:32:A0:9C:00:15:3A:7C Authority key identifier: CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F Certificate issuer: /CN=A91A6CD6/serialNumber=CC56157C72DCC69733636743DB500875932DA41F Certificate serial: 055E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft Manifest number: 0559 Signing time: Tue 07 May 2024 00:50:06 +0000 Manifest this update: Tue 07 May 2024 00:50:05 +0000 Manifest next update: Tue 14 May 2024 00:50:05 +0000 Files and hashes: 1: zFYVfHLcxpczY2dD21AIdZMtpB8.crl (hash: yxPzwZU5QMYrTWoCSsGAtjLd/TrI/+VR7dr2xN5Snyw=) 2: A210E7309CAB11EBAB87D43AC4F9AE02.roa (hash: ezJyqCdHEHR1oaJIwMsFmFHuB07wz42Uuj8n89RePS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 00:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1374 (0x55e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6CD6/serialNumber=CC56157C72DCC69733636743DB500875932DA41F Validity Not Before: May 7 00:50:05 2024 GMT Not After : May 14 00:50:05 2024 GMT Subject: CN=66397abe-b423 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ba:8d:c7:4a:9a:a7:03:82:d4:6c:5a:f4:2d: 03:ec:31:6b:33:57:25:a8:25:93:fe:98:9a:1c:82: 6e:84:93:37:7c:14:fa:47:fa:88:e7:23:57:10:58: e8:76:be:ab:6b:92:b5:86:87:d3:58:b4:b4:1e:07: 55:37:42:00:f4:61:1b:ce:55:68:0e:2c:32:04:e3: 27:b8:b7:7b:1e:9d:27:b2:4e:aa:eb:68:a2:ce:47: 17:d4:a8:e7:0a:a3:44:01:8f:63:58:6f:ba:95:34: 1f:ea:88:fb:5d:13:65:dd:92:c7:dc:fc:b4:4d:70: 79:75:6d:2d:1b:2d:59:0d:a5:b9:a6:c1:8b:1f:e2: e7:1d:d6:94:68:5c:f5:79:20:fc:7e:52:44:a1:11: 7c:6c:69:e3:2d:43:20:46:d4:41:fb:d8:e5:79:a8: 26:e3:c5:12:92:b4:b6:5e:8f:00:dd:92:b7:7f:b5: ed:e8:1c:e7:1c:df:fb:9f:ec:54:eb:21:eb:eb:38: cb:3f:03:5d:8e:f6:a0:30:95:5b:16:0a:de:04:6c: ed:36:f0:05:78:7b:cd:46:69:a2:81:c0:49:61:36: ce:4d:fc:7f:36:ff:bc:c2:77:5b:22:b9:d5:4d:b6: 68:0e:23:66:6e:79:c9:e3:45:ae:47:2e:50:ea:b0: fa:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:AD:E8:A3:D7:70:89:B1:1E:CC:46:98:2F:32:A0:9C:00:15:3A:7C X509v3 Authority Key Identifier: keyid:CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:00:ea:94:a2:d8:64:19:2e:5d:d2:0a:52:25:72:63:20:f3: 13:ce:7c:78:ac:87:4a:8f:da:51:db:11:cc:a0:13:27:ba:51: 9c:95:38:43:bc:80:9b:5d:59:49:06:95:0b:61:07:06:21:35: 1a:64:6c:4e:bd:0f:d1:3d:5d:6c:de:ee:9c:f8:5b:42:10:53: 30:93:df:46:cf:15:5a:d5:87:4b:39:ea:04:14:82:03:27:75: fd:32:2c:1a:18:c3:0e:22:8c:1c:4e:16:50:d4:f3:8e:d1:63: f4:b3:ef:db:01:74:ea:0d:11:22:42:c9:e8:3c:0a:eb:ec:cb: c7:38:03:e8:f9:1a:af:54:e0:57:1d:a9:ee:0f:d7:cb:e1:f2: 1c:77:e1:2b:ee:8e:bb:9e:9f:3c:2d:82:24:87:b3:64:ce:4c: 04:88:3e:92:72:55:9e:5b:f9:b7:f7:73:79:94:91:c1:1d:d1: 03:3f:d6:e3:62:52:3f:c0:2c:0d:a3:2f:d1:72:31:17:4f:74: be:3d:6a:15:25:33:ee:08:be:25:34:68:2c:8d:5d:82:a4:b4: ed:bb:26:a9:94:97:97:1d:9d:e1:62:58:c0:a7:93:97:7a:e5: 06:0d:55:f0:28:68:29:bc:d4:39:19:07:c5:0c:00:76:5b:59: c2:60:4b:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZDRDYxMTAvBgNVBAUTKENDNTYxNTdDNzJEQ0M2OTczMzYzNjc0M0RCNTAwODc1 OTMyREE0MUYwHhcNMjQwNTA3MDA1MDA1WhcNMjQwNTE0MDA1MDA1WjAYMRYwFAYD VQQDEw02NjM5N2FiZS1iNDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLqNx0qapwOC1Gxa9C0D7DFrM1clqCWT/piaHIJuhJM3fBT6R/qI5yNXEFjo dr6ra5K1hofTWLS0HgdVN0IA9GEbzlVoDiwyBOMnuLd7Hp0nsk6q62iizkcX1Kjn CqNEAY9jWG+6lTQf6oj7XRNl3ZLH3Py0TXB5dW0tGy1ZDaW5psGLH+LnHdaUaFz1 eSD8flJEoRF8bGnjLUMgRtRB+9jleagm48USkrS2Xo8A3ZK3f7Xt6BznHN/7n+xU 6yHr6zjLPwNdjvagMJVbFgreBGztNvAFeHvNRmmigcBJYTbOTfx/Nv+8wndbIrnV TbZoDiNmbnnJ40WuRy5Q6rD6XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFat6KPX cImxHsxGmC8yoJwAFTp8MB8GA1UdIwQYMBaAFMxWFXxy3MaXM2NnQ9tQCHWTLaQf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkNENi82NUU2REJENjlD QTkxMUVCOEFGRjBGMzdDNEY5QUUwMi96RllWZkhMY3hwY3pZMmREMjFBSWRaTXRw QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGWVZmSExjeHBjelkyZEQyMUFJZFpNdHBCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkNENi82NUU2REJENjlDQTkxMUVCOEFGRjBGMzdDNEY5QUUwMi96RllWZkhMY3hw Y3pZMmREMjFBSWRaTXRwQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWAOqUothkGS5d0gpSJXJjIPMTznx4rIdKj9pR2xHMoBMnulGclThD vICbXVlJBpULYQcGITUaZGxOvQ/RPV1s3u6c+FtCEFMwk99GzxVa1YdLOeoEFIID J3X9MiwaGMMOIowcThZQ1POO0WP0s+/bAXTqDREiQsnoPArr7MvHOAPo+RqvVOBX HanuD9fL4fIcd+Er7o67np88LYIkh7NkzkwEiD6SclWeW/m393N5lJHBHdEDP9bj YlI/wCwNoy/RcjEXT3S+PWoVJTPuCL4lNGgsjV2CpLTtuyaplJeXHZ3hYljAp5OX euUGDVXwKGgpvNQ5GQfFDAB2W1nCYEsl -----END CERTIFICATE-----Generated at Tue May 7 02:01:04 2024 by rpki-client on console-ams.rpki-client.org