$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft File: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft (raw, json) Hash identifier: hkBq0ufHkbxtBPrIGugH9a5Ld/pvEziMqmBF9/5V400= Subject key identifier: 9A:D6:55:FB:1A:25:DC:D1:93:4E:F4:AF:69:76:94:71:46:E8:78:BD Authority key identifier: DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 Certificate issuer: /CN=A91BC64D/serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Certificate serial: 0575 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft Manifest number: 056C Signing time: Fri 03 May 2024 00:50:28 +0000 Manifest this update: Fri 03 May 2024 00:50:28 +0000 Manifest next update: Fri 10 May 2024 00:50:28 +0000 Files and hashes: 1: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl (hash: VnOeSRUqUbTLbiNx52F3JM++8VS6WznhdT9wU85dUfg=) 2: FC583AC6CC8511EC8D238672C4F9AE02.roa (hash: VZu5d76z9BECtg/Tj5HFrFfwRfnA0abv0g9BO+rAGf8=) 3: FD987A54CC8511EC8D238672C4F9AE02.roa (hash: AEpVxnY0R43f2daSwocrVvAC1ESwULSrijAgzj4RpB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1397 (0x575) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC64D/serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Validity Not Before: May 3 00:50:28 2024 GMT Not After : May 10 00:50:28 2024 GMT Subject: CN=663434d4-bd87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d0:d5:e0:0c:a7:1a:a5:88:99:db:6e:81:1e: d4:73:5d:cb:94:f9:7c:da:7f:e0:a5:73:b0:a1:35: bd:91:7c:42:3e:f4:a8:3b:72:90:75:26:36:8d:7e: da:c7:93:f3:be:6f:10:91:d6:b0:7c:4b:87:08:6f: b8:b9:e7:c2:48:27:2b:a2:2e:40:29:8f:13:20:80: a5:fb:40:d1:e0:d6:60:5b:df:62:f9:68:af:c2:2c: 9b:a6:5f:20:5d:53:ed:e2:05:11:27:32:2b:2c:c4: ee:c8:13:ca:64:41:39:df:d7:6d:bc:cc:84:09:af: 6d:f2:0e:46:ef:11:70:71:4e:65:26:fe:73:8e:57: e1:16:e9:d3:57:27:6c:88:3b:26:ea:f6:80:95:35: 51:dc:14:26:0e:01:e4:69:8a:c1:02:cc:a5:1b:97: 8e:16:cf:c0:54:9d:78:99:a1:c7:1d:9a:96:53:da: c9:ce:a3:fa:aa:8c:8e:c1:38:f9:6b:93:4c:5d:2e: f6:c5:30:b7:90:40:35:a1:85:1e:ba:e4:3a:31:cf: 7b:cd:02:2b:93:6c:d1:77:b7:79:7e:6f:3a:89:eb: 3d:c7:41:9d:46:fd:f3:e0:0e:17:6f:65:27:5d:88: cb:65:81:31:4e:df:65:9e:cf:ca:41:5c:d4:79:0c: cd:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:D6:55:FB:1A:25:DC:D1:93:4E:F4:AF:69:76:94:71:46:E8:78:BD X509v3 Authority Key Identifier: keyid:DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:a4:65:c6:34:e4:e8:3d:ce:b5:ce:4f:9c:b8:83:a1:f7:80: 9d:29:96:31:70:3f:2c:3a:b7:5c:7c:a4:cf:cc:bc:ba:45:20: f2:e9:b1:2f:bd:3c:a2:24:ee:00:c8:b0:7e:5b:06:57:1b:e5: ac:b8:03:9b:80:cb:f3:1f:dd:7f:6e:7b:cd:4e:77:9d:bd:f6: a3:92:b6:cf:33:59:a2:94:4e:be:53:cd:58:3c:ad:7c:d2:95: c0:f1:30:74:f9:12:c2:c6:02:4b:cb:51:de:0a:c5:13:ea:3e: 4c:11:a8:7b:37:ab:05:b0:80:19:3e:84:93:48:0a:3f:ab:9b: a2:6b:04:5f:64:1d:3d:06:da:be:b8:43:57:90:f4:60:ac:43: dc:f6:83:28:40:3a:00:90:56:1f:99:1b:bc:49:3a:bf:90:6a: f7:a5:f8:4b:5b:62:1b:2d:fb:37:9a:21:20:bd:3d:48:fd:ab: ab:c4:55:a1:c3:22:80:57:51:03:5e:ff:04:9c:a9:8c:9b:16: c9:72:b7:f9:00:c5:5d:d0:d9:b4:a7:63:17:44:ba:0e:b7:b0: b6:98:e4:aa:ee:84:fe:59:a5:94:4f:5f:4e:4c:4a:f9:10:0c: 44:8e:40:25:6c:37:df:f8:81:77:ab:2c:96:5c:e9:98:e7:90: 76:4a:01:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2NEQxMTAvBgNVBAUTKERGMTFFOTI2OEQwNkFFNTNCQUZCNzQxM0JEMzRGRjM4 NzhFNEVFRDAwHhcNMjQwNTAzMDA1MDI4WhcNMjQwNTEwMDA1MDI4WjAYMRYwFAYD VQQDEw02NjM0MzRkNC1iZDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9DV4AynGqWImdtugR7Uc13LlPl82n/gpXOwoTW9kXxCPvSoO3KQdSY2jX7a x5Pzvm8QkdawfEuHCG+4uefCSCcroi5AKY8TIICl+0DR4NZgW99i+Wivwiybpl8g XVPt4gURJzIrLMTuyBPKZEE539dtvMyECa9t8g5G7xFwcU5lJv5zjlfhFunTVyds iDsm6vaAlTVR3BQmDgHkaYrBAsylG5eOFs/AVJ14maHHHZqWU9rJzqP6qoyOwTj5 a5NMXS72xTC3kEA1oYUeuuQ6Mc97zQIrk2zRd7d5fm86ies9x0GdRv3z4A4Xb2Un XYjLZYExTt9lns/KQVzUeQzN0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJrWVfsa JdzRk070r2l2lHFG6Hi9MB8GA1UdIwQYMBaAFN8R6SaNBq5Tuvt0E700/zh45O7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzY0RC9CMkVGM0UzNDk1 RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3JsTzYtM1FUdlRUX09Iams3 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN4SHBKbzBHcmxPNi0zUVR2VFRfT0hqazd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzY0RC9CMkVGM0UzNDk1RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3Js TzYtM1FUdlRUX09Iams3dEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHpGXGNOToPc61zk+cuIOh94CdKZYxcD8sOrdcfKTPzLy6RSDy6bEv vTyiJO4AyLB+WwZXG+WsuAObgMvzH91/bnvNTnedvfajkrbPM1milE6+U81YPK18 0pXA8TB0+RLCxgJLy1HeCsUT6j5MEah7N6sFsIAZPoSTSAo/q5uiawRfZB09Btq+ uENXkPRgrEPc9oMoQDoAkFYfmRu8STq/kGr3pfhLW2IbLfs3miEgvT1I/aurxFWh wyKAV1EDXv8EnKmMmxbJcrf5AMVd0Nm0p2MXRLoOt7C2mOSq7oT+WaWUT19OTEr5 EAxEjkAlbDff+IF3qyyWXOmY55B2SgFM -----END CERTIFICATE-----Generated at Fri May 3 03:10:55 2024 by rpki-client on console-ams.rpki-client.org