$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft File: mZsvZTnCPq60aeZ1OfstyTPZgEA.mft (raw, json) Hash identifier: pUH3UbXdjm219Z/a0ZXmLK22jgPh4+Y7PnCL4kQYzXQ= Subject key identifier: CF:C7:32:50:70:24:75:5E:3C:9A:E7:B5:9C:0B:D5:4B:2C:30:6E:26 Authority key identifier: 99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40 Certificate issuer: /CN=A91AB055/serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040 Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft Manifest number: 13 Signing time: Wed 15 May 2024 08:56:17 +0000 Manifest this update: Wed 15 May 2024 08:56:17 +0000 Manifest next update: Wed 22 May 2024 08:56:17 +0000 Files and hashes: 1: mZsvZTnCPq60aeZ1OfstyTPZgEA.crl (hash: C9SA+XXoB299oLVLtc1Sa1G8ge//1QEoPtGXLrqZqCU=) 2: 83CA613CF55611EE8CE6274DC4F9AE02.roa (hash: ufXYT6M8+NAM8MxgjpkUV5nxmsL/JDOXu7NiWGw3BFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB055/serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040 Validity Not Before: May 15 08:56:17 2024 GMT Not After : May 22 08:56:17 2024 GMT Subject: CN=664478b1-7ec8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:58:b4:9f:5c:a2:a1:23:09:68:c1:bb:eb:80: 0b:b1:bf:c6:23:e5:5e:c6:34:d9:7f:61:bc:fc:89: 30:60:0d:cd:59:96:e9:00:35:6b:97:ae:ad:ce:bd: ed:34:8e:29:8c:6e:56:e5:da:fa:65:22:3a:bc:54: 7f:f0:93:e9:50:71:96:46:f9:0f:61:39:f4:ab:e1: 87:41:53:f6:3c:61:e8:a8:74:26:09:82:5d:de:e8: 97:0a:21:2a:df:c9:9c:e0:43:8a:1c:10:98:26:7f: 75:ea:0f:db:df:a4:af:16:36:a4:64:a3:e1:ec:8b: ba:f4:89:a2:d0:77:75:1d:c6:98:bc:17:7c:1e:f4: aa:1d:79:c0:a7:3a:1b:db:fe:28:0b:d8:6a:36:c3: 08:a4:2b:83:9f:ee:e8:ba:b1:08:5d:74:c3:9a:42: d4:1f:99:f8:b3:74:3b:13:e7:03:e2:13:c1:c2:7c: 73:74:ed:30:7b:2e:43:bd:ba:9c:39:40:d6:6e:df: a8:02:74:73:77:13:5f:67:8e:21:d6:a5:67:05:77: 28:ad:e0:83:fe:32:04:90:97:6d:f0:96:96:0d:a3: 5e:e8:b8:19:f0:0b:f3:75:32:4c:af:b0:87:72:37: 0f:ee:df:b6:d5:b2:b8:4d:9c:12:c9:16:a3:c1:38: 6d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:C7:32:50:70:24:75:5E:3C:9A:E7:B5:9C:0B:D5:4B:2C:30:6E:26 X509v3 Authority Key Identifier: keyid:99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:d2:52:ce:d5:fd:85:01:82:34:83:72:d9:08:75:a8:4a:d5: b1:10:47:60:03:3f:15:04:c6:ef:72:d5:ba:07:8a:d3:eb:95: 3d:c3:bf:a5:d3:9c:d3:00:90:fa:30:be:d4:54:95:2b:6d:a1: 93:25:90:cd:56:dd:31:44:eb:8c:e1:7c:b0:72:e6:e8:53:ee: db:79:e7:53:40:ef:e0:dd:ba:17:6a:12:a8:cd:f1:f5:67:1e: 6b:c5:f5:c7:81:4e:7c:fd:95:f7:5e:1f:04:4e:9e:64:35:0f: 44:df:e1:2f:e4:dc:53:a6:f5:ec:44:5d:b8:42:f0:f9:91:57: 8a:31:ce:76:49:ec:25:eb:d1:67:81:e1:3d:59:7b:46:7f:3d: 5d:ec:5a:b2:6f:5b:2e:80:d6:fc:2b:7f:4a:5b:d2:64:fa:63: cc:f3:27:1e:b4:dc:01:97:89:58:da:6b:46:9f:0b:b1:6a:d9: 07:be:41:0b:de:0f:3d:f6:15:ea:ca:17:b4:4f:67:32:ae:47: 5e:11:a8:97:94:5e:00:93:a3:58:e0:d0:98:f9:67:79:fc:43: d5:c3:ca:d9:b8:1a:b5:8a:d0:1f:95:d9:a1:2c:f8:19:e7:68: 8c:47:0b:5d:1d:18:e9:81:a5:a3:ab:d7:e1:ca:b4:8c:c4:c3: 04:f9:b9:69 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QjA1NTExMC8GA1UEBRMoOTk5QjJGNjUzOUMyM0VBRUI0NjlFNjc1MzlGQjJEQzkz M0Q5ODA0MDAeFw0yNDA1MTUwODU2MTdaFw0yNDA1MjIwODU2MTdaMBgxFjAUBgNV BAMTDTY2NDQ3OGIxLTdlYzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClWLSfXKKhIwlowbvrgAuxv8Yj5V7GNNl/Ybz8iTBgDc1ZlukANWuXrq3Ove00 jimMblbl2vplIjq8VH/wk+lQcZZG+Q9hOfSr4YdBU/Y8YeiodCYJgl3e6JcKISrf yZzgQ4ocEJgmf3XqD9vfpK8WNqRko+Hsi7r0iaLQd3Udxpi8F3we9KodecCnOhvb /igL2Go2wwikK4Of7ui6sQhddMOaQtQfmfizdDsT5wPiE8HCfHN07TB7LkO9upw5 QNZu36gCdHN3E19njiHWpWcFdyit4IP+MgSQl23wlpYNo17ouBnwC/N1MkyvsIdy Nw/u37bVsrhNnBLJFqPBOG0vAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUz8cyUHAk dV48mue1nAvVSywwbiYwHwYDVR0jBBgwFoAUmZsvZTnCPq60aeZ1OfstyTPZgEAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFCMDU1LzRBQkJDMDFDRjU1 NTExRUVBQ0YxMjM0QkM0RjlBRTAyL21ac3ZaVG5DUHE2MGFlWjFPZnN0eVRQWmdF QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbVpzdlpUbkNQcTYwYWVaMU9mc3R5VFBaZ0VBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFC MDU1LzRBQkJDMDFDRjU1NTExRUVBQ0YxMjM0QkM0RjlBRTAyL21ac3ZaVG5DUHE2 MGFlWjFPZnN0eVRQWmdFQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABTSUs7V/YUBgjSDctkIdahK1bEQR2ADPxUExu9y1boHitPrlT3Dv6XT nNMAkPowvtRUlSttoZMlkM1W3TFE64zhfLBy5uhT7tt551NA7+DduhdqEqjN8fVn HmvF9ceBTnz9lfdeHwROnmQ1D0Tf4S/k3FOm9exEXbhC8PmRV4oxznZJ7CXr0WeB 4T1Ze0Z/PV3sWrJvWy6A1vwrf0pb0mT6Y8zzJx603AGXiVjaa0afC7Fq2Qe+QQve Dz32FerKF7RPZzKuR14RqJeUXgCTo1jg0Jj5Z3n8Q9XDytm4GrWK0B+V2aEs+Bnn aIxHC10dGOmBpaOr1+HKtIzEwwT5uWk= -----END CERTIFICATE-----Generated at Wed May 15 11:17:43 2024 by rpki-client on console-ams.rpki-client.org