$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft File: sgd9XTkKxy472IWxHzrm0qUmqe0.mft (raw, json) Hash identifier: 8ulz5gKgx3vHj4bYZK6ohhbnE8MoEDqxSIv2Jsb1SXU= Subject key identifier: FB:34:44:7B:C4:DC:0F:72:02:8C:87:3D:54:98:73:E9:BB:32:53:1B Authority key identifier: B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED Certificate issuer: /CN=A91C9B85/serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Certificate serial: 06C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft Manifest number: 06B9 Signing time: Thu 02 May 2024 23:15:45 +0000 Manifest this update: Thu 02 May 2024 23:15:44 +0000 Manifest next update: Thu 09 May 2024 23:15:44 +0000 Files and hashes: 1: sgd9XTkKxy472IWxHzrm0qUmqe0.crl (hash: HYxgVsc94uXj4aU+0kNGaSV1pmTZMdmT2JomnFlpJKw=) 2: 53B6E5D212CF11EBA8D2C037C4F9AE02.roa (hash: UHLbtcY+MssUReji2ZDnPxouuMqAchFNbY9lf4jGoV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:53:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1729 (0x6c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B85/serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Validity Not Before: May 2 23:15:44 2024 GMT Not After : May 9 23:15:44 2024 GMT Subject: CN=66341ea0-4e5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:43:50:dd:d1:0c:d2:d0:1d:f1:c9:93:0e:36: cf:b9:64:8c:09:42:fc:b6:62:39:6e:84:25:ae:c4: 21:45:d8:c1:29:e0:73:a8:5c:2a:e2:a3:c5:e4:3a: 43:ba:b2:ba:8b:29:45:0d:04:ce:2b:f1:02:99:0a: 79:82:03:49:ce:92:94:c7:9c:0a:88:92:52:17:e3: c9:bb:57:d2:84:a8:d4:7d:e7:87:78:e8:78:62:76: 3b:3a:3a:e1:ea:1a:13:16:70:09:9d:02:c1:6b:1a: 6e:a9:ad:be:1d:52:9a:7f:bb:a2:92:c3:84:6e:f1: 8e:78:ec:bc:b4:c9:00:01:76:0e:08:d0:27:f5:3b: 0c:45:fb:44:a8:8a:6d:2c:0a:ca:5c:53:c8:c6:51: f9:b0:a4:8d:0b:1f:1b:25:03:04:5e:f2:0a:0d:27: 26:4d:a8:52:24:ec:c3:df:c5:96:0a:6f:36:04:ee: c2:59:44:76:97:eb:88:20:0b:c1:9e:10:e8:14:bc: 52:04:58:50:60:9a:cf:d3:7a:d9:9f:b0:00:d6:92: 72:53:b7:43:01:13:e0:d0:a4:8b:fa:be:bf:56:28: 1f:56:b4:81:cf:0d:27:b7:cf:25:aa:b2:82:0d:30: 6e:6d:3b:c7:21:61:00:8f:5c:62:ce:1d:15:b8:ad: a2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:34:44:7B:C4:DC:0F:72:02:8C:87:3D:54:98:73:E9:BB:32:53:1B X509v3 Authority Key Identifier: keyid:B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:c9:b3:06:0f:70:0f:5e:09:72:e1:e8:fb:6c:77:85:ed:f7: dd:74:07:4d:45:64:6f:20:7b:b1:b8:9c:6a:c4:08:26:fc:ba: 92:a5:d6:65:11:e9:26:24:c0:82:2a:37:de:8f:50:b8:47:e6: 41:fc:a6:ad:ae:7a:09:70:d0:b7:43:36:56:f2:1e:b5:2b:fa: de:cf:82:c3:fc:f5:fb:ea:65:28:4c:7a:56:49:5e:88:58:d3: f1:67:53:16:9c:09:b6:0d:58:64:43:9d:cb:e6:08:26:35:2e: 0f:a7:2c:86:61:58:61:fa:c6:7e:19:a6:0c:ae:cb:75:c1:48: 1e:c7:18:a2:f1:d1:e4:19:ee:9c:83:be:89:5e:0f:54:87:a7: c7:7b:81:8c:60:34:54:21:63:24:09:76:e5:f6:da:bc:6f:d4: 93:42:e2:03:12:1b:b3:4d:ae:6a:42:3b:40:4f:6f:34:85:80: f9:b7:5b:65:00:9d:46:22:09:5a:48:35:b7:3a:36:23:85:74: 01:25:2d:84:79:37:3d:49:15:cd:b8:a0:5c:a1:92:8f:2c:a0: 5e:f8:9c:70:1c:cc:2e:f9:12:2b:01:e1:fa:eb:b8:51:07:5f: 43:d6:3d:ec:c8:4d:77:0e:50:d2:11:0e:30:25:63:c5:c2:99: a3:fe:77:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCODUxMTAvBgNVBAUTKEIyMDc3RDVEMzkwQUM3MkUzQkQ4ODVCMTFGM0FFNkQy QTUyNkE5RUQwHhcNMjQwNTAyMjMxNTQ0WhcNMjQwNTA5MjMxNTQ0WjAYMRYwFAYD VQQDEw02NjM0MWVhMC00ZTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuENQ3dEM0tAd8cmTDjbPuWSMCUL8tmI5boQlrsQhRdjBKeBzqFwq4qPF5DpD urK6iylFDQTOK/ECmQp5ggNJzpKUx5wKiJJSF+PJu1fShKjUfeeHeOh4YnY7Ojrh 6hoTFnAJnQLBaxpuqa2+HVKaf7uiksOEbvGOeOy8tMkAAXYOCNAn9TsMRftEqIpt LArKXFPIxlH5sKSNCx8bJQMEXvIKDScmTahSJOzD38WWCm82BO7CWUR2l+uIIAvB nhDoFLxSBFhQYJrP03rZn7AA1pJyU7dDARPg0KSL+r6/VigfVrSBzw0nt88lqrKC DTBubTvHIWEAj1xizh0VuK2iYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPs0RHvE 3A9yAoyHPVSYc+m7MlMbMB8GA1UdIwQYMBaAFLIHfV05CscuO9iFsR865tKlJqnt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUI4NS80MkQ3QzAwQzEy Q0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5NDcySVd4SHpybTBxVW1x ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnZDlYVGtLeHk0NzJJV3hIenJtMHFVbXFlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUI4NS80MkQ3QzAwQzEyQ0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5 NDcySVd4SHpybTBxVW1xZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3ybMGD3APXgly4ej7bHeF7ffddAdNRWRvIHuxuJxqxAgm/LqSpdZl EekmJMCCKjfej1C4R+ZB/KatrnoJcNC3QzZW8h61K/rez4LD/PX76mUoTHpWSV6I WNPxZ1MWnAm2DVhkQ53L5ggmNS4PpyyGYVhh+sZ+GaYMrst1wUgexxii8dHkGe6c g76JXg9Uh6fHe4GMYDRUIWMkCXbl9tq8b9STQuIDEhuzTa5qQjtAT280hYD5t1tl AJ1GIglaSDW3OjYjhXQBJS2EeTc9SRXNuKBcoZKPLKBe+JxwHMwu+RIrAeH667hR B19D1j3syE13DlDSEQ4wJWPFwpmj/ncI -----END CERTIFICATE-----Generated at Fri May 3 00:07:14 2024 by rpki-client on console-ams.rpki-client.org