$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft File: d5zZIVaek_nSaxOlqn43bPtfBpA.mft (raw, json) Hash identifier: M0zc8k6Vt8rNvqDJKrLjH40vdX8itafWRmuUDXmFwC0= Subject key identifier: BB:AB:78:DC:64:45:EF:AA:12:07:69:B1:71:95:74:19:8F:64:B9:2B Authority key identifier: 77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 Certificate issuer: /CN=A91AF317/serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Certificate serial: 0584 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft Manifest number: 057F Signing time: Thu 25 Apr 2024 00:31:45 +0000 Manifest this update: Thu 25 Apr 2024 00:31:45 +0000 Manifest next update: Thu 02 May 2024 00:31:45 +0000 Files and hashes: 1: d5zZIVaek_nSaxOlqn43bPtfBpA.crl (hash: 8UYP21eVkIig4CYZnL6ruSZSrDQ7E6DrVRSUEhQhSQQ=) 2: 291E55288C7111EBA752313FC4F9AE02.roa (hash: gN20eSl2skswrdrcUqtb74Ij5G3tYV7HZBj24U3U0oo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1412 (0x584) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF317/serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Validity Not Before: Apr 25 00:31:45 2024 GMT Not After : May 2 00:31:45 2024 GMT Subject: CN=6629a471-fb56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8a:d3:83:36:dd:c2:cb:05:4e:9a:4d:f5:4c: a2:b3:d9:b0:21:44:c2:1d:85:07:e2:6b:7b:61:c7: 1a:c7:0f:1e:a7:5a:41:bd:dc:e5:c1:14:c4:55:5c: 5b:69:68:a6:a6:1d:08:9b:4f:1e:85:04:64:18:f4: 98:15:a6:f3:2a:03:f8:e8:d2:26:a8:ad:e9:44:8d: 72:82:22:0a:aa:76:b2:44:f7:08:19:08:4e:81:30: 38:6e:e3:dc:8e:5e:c7:d2:58:fb:7e:6b:c7:87:94: e3:8d:07:12:dd:25:3a:27:30:cd:6e:d6:62:01:3e: 4a:e8:ca:f1:89:7e:89:4a:df:b1:7a:5e:e6:dd:d1: 90:c8:8d:56:ac:78:60:95:da:a7:8c:9e:1d:c5:0d: 11:0e:d3:a4:80:08:7a:7a:ed:c1:fd:89:ef:ac:02: f5:1a:14:0d:b9:6f:48:f1:39:28:c0:f0:47:fb:15: 0e:b6:58:06:8d:6c:4c:f8:62:98:8e:4f:a5:4f:3b: 3f:e6:7f:8b:8d:69:b2:60:98:b6:1f:e0:6f:ef:be: 2c:3d:fb:12:8d:a7:04:42:ea:58:59:3f:6b:79:57: 33:4a:6c:f2:ff:36:18:c9:1a:61:b6:83:b7:6a:aa: 10:78:3d:0f:b0:5a:ea:e1:21:bf:39:b6:7a:42:ea: 6c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:AB:78:DC:64:45:EF:AA:12:07:69:B1:71:95:74:19:8F:64:B9:2B X509v3 Authority Key Identifier: keyid:77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:7b:fb:99:01:c9:29:19:68:06:65:e2:ee:f4:9e:69:c5:ef: 37:6f:59:d9:38:51:05:24:fb:21:2a:c5:52:40:c0:7e:ef:ee: 8a:1d:37:0a:31:86:38:19:38:7c:57:22:50:5d:3d:f7:fe:c4: 2e:be:2e:cc:9c:05:e5:ae:ab:e5:f5:9a:c8:a9:d0:04:a3:c3: 5c:09:5b:e5:ba:c9:e4:59:36:78:05:ab:f0:bb:6c:04:6c:cc: 88:97:7b:b0:9b:d9:b5:10:8d:02:0b:ab:02:ce:55:e9:54:8d: 84:13:aa:37:d4:46:e1:97:49:4d:9f:63:b4:1a:a3:d7:e0:32: ba:8b:87:19:04:56:13:1a:59:f3:e6:f0:a6:a7:00:9d:69:00: 05:b2:b3:c8:33:d5:f9:68:a0:db:8a:f9:73:1f:b8:ca:23:69: 76:23:cd:9c:4f:9d:ac:50:69:58:bd:73:2d:33:f3:83:bf:1d: 43:8d:f1:11:a9:fa:d1:b8:2b:df:f8:26:34:aa:26:4f:f2:74: 25:83:71:59:d8:a2:81:0f:40:5f:6f:2f:d7:79:e0:bd:b8:05: 01:df:e3:63:cf:2c:54:14:d1:55:05:86:40:32:6e:72:d9:5b: 07:d0:6b:ac:9f:99:05:69:93:75:03:f4:b9:05:e5:54:52:7f: 9b:aa:c7:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzMTcxMTAvBgNVBAUTKDc3OUNEOTIxNTY5RTkzRjlEMjZCMTNBNUFBN0UzNzZD RkI1RjA2OTAwHhcNMjQwNDI1MDAzMTQ1WhcNMjQwNTAyMDAzMTQ1WjAYMRYwFAYD VQQDEw02NjI5YTQ3MS1mYjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxIrTgzbdwssFTppN9Uyis9mwIUTCHYUH4mt7Yccaxw8ep1pBvdzlwRTEVVxb aWimph0Im08ehQRkGPSYFabzKgP46NImqK3pRI1ygiIKqnayRPcIGQhOgTA4buPc jl7H0lj7fmvHh5TjjQcS3SU6JzDNbtZiAT5K6MrxiX6JSt+xel7m3dGQyI1WrHhg ldqnjJ4dxQ0RDtOkgAh6eu3B/YnvrAL1GhQNuW9I8TkowPBH+xUOtlgGjWxM+GKY jk+lTzs/5n+LjWmyYJi2H+Bv774sPfsSjacEQupYWT9reVczSmzy/zYYyRphtoO3 aqoQeD0PsFrq4SG/ObZ6Qups1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLureNxk Re+qEgdpsXGVdBmPZLkrMB8GA1UdIwQYMBaAFHec2SFWnpP50msTpap+N2z7XwaQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjMxNy80RkQ1NzY4MDhD NkYxMUVCQkE4MTlGMzFDNEY5QUUwMi9kNXpaSVZhZWtfblNheE9scW40M2JQdGZC cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q1elpJVmFla19uU2F4T2xxbjQzYlB0ZkJwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjMxNy80RkQ1NzY4MDhDNkYxMUVCQkE4MTlGMzFDNEY5QUUwMi9kNXpaSVZhZWtf blNheE9scW40M2JQdGZCcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGe/uZAckpGWgGZeLu9J5pxe83b1nZOFEFJPshKsVSQMB+7+6KHTcK MYY4GTh8VyJQXT33/sQuvi7MnAXlrqvl9ZrIqdAEo8NcCVvlusnkWTZ4Bavwu2wE bMyIl3uwm9m1EI0CC6sCzlXpVI2EE6o31Ebhl0lNn2O0GqPX4DK6i4cZBFYTGlnz 5vCmpwCdaQAFsrPIM9X5aKDbivlzH7jKI2l2I82cT52sUGlYvXMtM/ODvx1DjfER qfrRuCvf+CY0qiZP8nQlg3FZ2KKBD0Bfby/XeeC9uAUB3+NjzyxUFNFVBYZAMm5y 2VsH0Gusn5kFaZN1A/S5BeVUUn+bqscN -----END CERTIFICATE-----Generated at Thu Apr 25 01:20:42 2024 by rpki-client on console-fra.rpki-client.org