$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft File: Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft (raw, json) Hash identifier: XnbGZUpFxdGSRNrS9nKQhRf8dSWINe5bRDOve7msY9c= Subject key identifier: F1:9B:6D:C4:E7:B6:71:0E:FC:84:62:A9:08:8E:25:32:1F:F2:F1:61 Authority key identifier: 0A:27:7D:26:A9:C2:40:2B:8A:1C:D4:57:79:35:E4:F3:C2:59:C1:9F Certificate issuer: /CN=A91AF5F7/serialNumber=0A277D26A9C2402B8A1CD4577935E4F3C259C19F Certificate serial: 0507 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cid9JqnCQCuKHNRXeTXk88JZwZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft Manifest number: 04FA Signing time: Tue 07 May 2024 01:16:55 +0000 Manifest this update: Tue 07 May 2024 01:16:54 +0000 Manifest next update: Tue 14 May 2024 01:16:54 +0000 Files and hashes: 1: Cid9JqnCQCuKHNRXeTXk88JZwZ8.crl (hash: PuqakQnDV2wo043yBvqLJesAtVqVKOoa8mMpGTkbXYY=) 2: E2323DE4C7A411EC8667B90EC4F9AE02.roa (hash: K/3uQxJu9KgbFW1UeOyb9Kwabzwk+mFnggL7g7/+jHo=) 3: 0DD6AB9CA4F011EC96AF7B65C4F9AE02.roa (hash: ynn/ihuAK1oGjrymoHijk8sXm5p9ewm72t3IkazLAng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.crl rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cid9JqnCQCuKHNRXeTXk88JZwZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 01:06:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1287 (0x507) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF5F7/serialNumber=0A277D26A9C2402B8A1CD4577935E4F3C259C19F Validity Not Before: May 7 01:16:54 2024 GMT Not After : May 14 01:16:54 2024 GMT Subject: CN=66398107-50ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:c7:b8:81:4c:dd:a3:ff:a3:7d:e8:13:c5:d3: bd:54:22:50:f7:7d:86:19:74:78:8b:a0:75:72:bb: 76:5e:09:b0:4e:dd:64:c5:17:96:b9:92:f0:6c:6c: 56:0a:10:03:32:53:fc:cc:b1:6f:aa:97:2f:1f:c9: b3:da:1e:11:66:e8:8f:09:c6:92:a2:b9:ad:70:9c: 2c:1d:0f:d0:a0:b2:10:cb:0d:84:e6:76:05:22:bb: fc:44:fc:da:c4:44:4d:63:dc:1c:c7:14:44:99:59: 57:3f:1f:58:41:d7:8e:c6:d4:04:d8:3a:c8:e9:0d: 1b:32:7b:79:da:fc:da:c4:d3:6a:1d:4e:e1:73:2e: bc:bc:96:41:4c:ef:d2:87:86:c9:6f:70:8a:99:e1: 39:78:26:58:4e:1d:9f:96:35:b9:7b:8a:fc:f7:11: f6:f9:39:fc:c9:f3:2e:11:09:ea:8d:8c:4f:ef:30: da:c5:0d:7c:bb:f4:18:79:65:f4:65:90:61:b7:da: 34:a4:3d:e3:d1:fc:84:5a:ef:84:bc:45:29:53:2e: 7c:52:1e:4a:23:d5:c0:60:35:b6:b1:23:20:6c:60: 39:c8:42:67:ff:78:e7:7c:38:01:24:92:fc:79:f2: 4f:47:d7:f5:01:1a:97:22:7a:a7:d6:51:b0:72:d8: be:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:9B:6D:C4:E7:B6:71:0E:FC:84:62:A9:08:8E:25:32:1F:F2:F1:61 X509v3 Authority Key Identifier: keyid:0A:27:7D:26:A9:C2:40:2B:8A:1C:D4:57:79:35:E4:F3:C2:59:C1:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cid9JqnCQCuKHNRXeTXk88JZwZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:f9:e3:ae:0f:bd:a5:4a:6f:0a:ed:02:bf:91:c0:20:68:88: bc:e3:55:74:2c:df:92:3c:f1:98:e3:ce:32:83:a3:f8:55:e1: 88:d3:9e:b8:fb:41:75:45:af:58:6c:4a:36:d1:47:28:a5:98: bd:e0:32:6d:ef:38:c3:cd:9c:e4:96:d2:51:e3:bb:b3:2a:56: 52:65:58:0f:b4:4b:52:62:da:02:50:ea:85:5e:4f:c6:bd:c9: cf:fb:72:39:58:ed:cc:8d:23:90:b6:d8:d7:f6:a0:35:a2:34: 33:ab:57:68:93:9e:a8:be:6c:9f:c8:61:13:78:4c:63:b1:f6: ed:b9:23:c8:e1:10:2d:9e:1d:37:27:c0:54:cd:de:e2:8b:75: c9:0e:f9:ce:d4:c0:5d:73:69:14:d6:a7:72:e1:01:4c:89:7a: 3c:5b:38:57:05:ac:84:ff:4b:25:e9:7b:ac:bf:9d:e9:54:4d: 10:f6:f1:34:4d:b7:5d:f5:e2:64:b7:c2:22:ae:52:75:ad:91: f9:e1:70:a5:6c:c1:78:4f:1a:3a:f3:61:9a:49:ce:e5:5d:60: 56:2e:cf:c1:10:e3:ff:86:a8:90:ac:b9:cd:64:6f:98:db:2b: b5:f8:be:12:ed:10:f7:0e:97:92:75:6a:85:a0:22:d6:71:f8: 71:25:f7:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY1RjcxMTAvBgNVBAUTKDBBMjc3RDI2QTlDMjQwMkI4QTFDRDQ1Nzc5MzVFNEYz QzI1OUMxOUYwHhcNMjQwNTA3MDExNjU0WhcNMjQwNTE0MDExNjU0WjAYMRYwFAYD VQQDEw02NjM5ODEwNy01MGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ce4gUzdo/+jfegTxdO9VCJQ932GGXR4i6B1crt2XgmwTt1kxReWuZLwbGxW ChADMlP8zLFvqpcvH8mz2h4RZuiPCcaSormtcJwsHQ/QoLIQyw2E5nYFIrv8RPza xERNY9wcxxREmVlXPx9YQdeOxtQE2DrI6Q0bMnt52vzaxNNqHU7hcy68vJZBTO/S h4bJb3CKmeE5eCZYTh2fljW5e4r89xH2+Tn8yfMuEQnqjYxP7zDaxQ18u/QYeWX0 ZZBht9o0pD3j0fyEWu+EvEUpUy58Uh5KI9XAYDW2sSMgbGA5yEJn/3jnfDgBJJL8 efJPR9f1ARqXInqn1lGwcti+HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPGbbcTn tnEO/IRiqQiOJTIf8vFhMB8GA1UdIwQYMBaAFAonfSapwkArihzUV3k15PPCWcGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjVGNy80NEZDRTU2OEM3 ODQxMUVCQUQ0Qzk2NTlDNEY5QUUwMi9DaWQ5SnFuQ1FDdUtITlJYZVRYazg4Slp3 WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NpZDlKcW5DUUN1S0hOUlhlVFhrODhKWndaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjVGNy80NEZDRTU2OEM3ODQxMUVCQUQ0Qzk2NTlDNEY5QUUwMi9DaWQ5SnFuQ1FD dUtITlJYZVRYazg4Slp3WjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA++eOuD72lSm8K7QK/kcAgaIi841V0LN+SPPGY484yg6P4VeGI0564 +0F1Ra9YbEo20UcopZi94DJt7zjDzZzkltJR47uzKlZSZVgPtEtSYtoCUOqFXk/G vcnP+3I5WO3MjSOQttjX9qA1ojQzq1dok56ovmyfyGETeExjsfbtuSPI4RAtnh03 J8BUzd7ii3XJDvnO1MBdc2kU1qdy4QFMiXo8WzhXBayE/0sl6Xusv53pVE0Q9vE0 Tbdd9eJkt8IirlJ1rZH54XClbMF4Txo682GaSc7lXWBWLs/BEOP/hqiQrLnNZG+Y 2yu1+L4S7RD3DpeSdWqFoCLWcfhxJfcQ -----END CERTIFICATE-----Generated at Tue May 7 01:58:26 2024 by rpki-client on console-fra.rpki-client.org