$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft File: mMl-BS19mtU2CVm50-B22t126gE.mft (raw, json) Hash identifier: KWrNUPLuMM4P0lTLUmXHz8TySspjFti/n66xDLhwkc4= Subject key identifier: E8:71:D4:A6:C3:DB:B7:9E:F4:B6:F2:59:8B:24:6C:3C:87:FF:76:50 Authority key identifier: 98:C9:7E:05:2D:7D:9A:D5:36:09:59:B9:D3:E0:76:DA:DD:76:EA:01 Certificate issuer: /CN=A91CB435/serialNumber=98C97E052D7D9AD5360959B9D3E076DADD76EA01 Certificate serial: 0613 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mMl-BS19mtU2CVm50-B22t126gE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft Manifest number: 0608 Signing time: Sat 25 May 2024 00:04:14 +0000 Manifest this update: Sat 25 May 2024 00:04:13 +0000 Manifest next update: Sat 01 Jun 2024 00:04:13 +0000 Files and hashes: 1: mMl-BS19mtU2CVm50-B22t126gE.crl (hash: LyxiqI5hFrwljJxVUt2+EGkyVExfJehM18YF7EfAXn0=) 2: F07A52005BEA11EB9863331EC4F9AE02.roa (hash: JfxeOd6cRi7KX9xc58yMMc6yyj7Cm4GP42UD9FpSFGI=) 3: F1541C9C5BEA11EB9863331EC4F9AE02.roa (hash: In2tzB1kyTLYqr+oV0wjHkiLI0adEmKOWeAAfiinzls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.crl rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mMl-BS19mtU2CVm50-B22t126gE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 00:04:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1555 (0x613) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB435/serialNumber=98C97E052D7D9AD5360959B9D3E076DADD76EA01 Validity Not Before: May 25 00:04:13 2024 GMT Not After : Jun 1 00:04:13 2024 GMT Subject: CN=66512afe-db12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:91:94:c6:b1:31:ab:95:3b:25:9f:06:0a:f6: 0e:59:6c:5e:b1:64:0d:58:65:5a:85:f1:09:f9:30: b8:4e:ac:91:1a:ea:17:26:2d:a7:3a:ab:cf:93:80: 4b:f9:20:bd:d6:c5:28:eb:93:d2:03:cd:34:19:29: a3:f5:34:9b:67:79:23:85:a1:7e:ee:cf:6a:cd:d3: 99:10:f6:24:6a:87:07:37:36:ee:9d:b2:d2:52:b9: 97:52:64:95:db:99:db:73:2b:53:36:60:81:30:e0: 4d:a1:d0:63:e0:a7:4e:6f:e2:2e:a8:8d:fd:d7:b2: ce:01:36:42:3b:d5:9d:9d:6e:27:57:5b:00:d2:39: 24:7f:93:81:d2:ad:e0:af:fb:db:6d:ca:90:04:f0: 34:32:1e:b4:00:88:0e:79:eb:55:75:3b:b7:78:5e: 1f:3b:d3:b1:6c:ce:dd:94:f5:91:e3:16:ad:3c:33: 22:8b:b7:ae:3a:3d:64:32:3c:3c:62:4d:d9:7b:d1: 26:82:b3:c0:54:58:78:97:c8:4e:ba:9d:49:32:e2: 3e:63:e4:2c:01:28:df:43:2e:08:09:63:7d:99:34: 54:04:ce:51:3e:d7:84:be:50:fb:1b:a9:de:52:8a: d7:5d:aa:a4:86:4a:c4:54:7a:2c:05:0e:e0:ae:f3: e7:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:71:D4:A6:C3:DB:B7:9E:F4:B6:F2:59:8B:24:6C:3C:87:FF:76:50 X509v3 Authority Key Identifier: keyid:98:C9:7E:05:2D:7D:9A:D5:36:09:59:B9:D3:E0:76:DA:DD:76:EA:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mMl-BS19mtU2CVm50-B22t126gE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:b2:6f:36:ee:d8:13:ea:27:dc:64:50:9c:8c:74:7b:03:03: e0:11:ab:25:a4:15:66:ae:5c:a8:1a:b0:cf:0b:89:a2:e4:77: a9:80:4f:60:06:48:1e:84:45:c8:bc:a6:cf:57:20:d1:f4:3a: 19:e9:67:b2:75:fa:fb:6e:03:ab:60:68:9c:a4:e3:0a:64:a4: 99:22:45:9f:53:8d:b5:c6:58:c3:95:bb:4e:0a:b1:7d:9b:f1: ac:ba:2f:21:7d:c0:00:2f:e2:ca:9d:b5:d9:4a:71:e7:0e:19: 3c:07:48:f0:0a:f3:f3:11:a6:ee:87:a2:6c:6f:59:bb:1a:7a: 6c:de:96:c6:1c:39:71:a4:78:ad:22:bc:5a:84:95:10:dc:6d: 8f:c2:9b:42:f1:15:80:bb:c1:93:6b:b8:5d:4e:50:60:8c:d9: d3:7d:57:8b:90:97:39:2b:40:33:c2:3a:7b:ed:55:83:67:09: fd:e0:c8:a7:fe:71:12:61:8a:b4:05:08:39:22:bb:99:92:a5: c9:04:7d:04:3e:57:43:ba:1b:bc:c7:7a:c1:c0:ca:3c:e9:14: 8b:76:74:42:10:59:ba:08:e3:45:6d:a2:42:f6:d6:f5:10:f0: 51:72:b9:47:7d:08:78:79:81:4e:ed:4a:89:5f:ae:60:1e:c7: eb:34:95:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I0MzUxMTAvBgNVBAUTKDk4Qzk3RTA1MkQ3RDlBRDUzNjA5NTlCOUQzRTA3NkRB REQ3NkVBMDEwHhcNMjQwNTI1MDAwNDEzWhcNMjQwNjAxMDAwNDEzWjAYMRYwFAYD VQQDEw02NjUxMmFmZS1kYjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5GUxrExq5U7JZ8GCvYOWWxesWQNWGVahfEJ+TC4TqyRGuoXJi2nOqvPk4BL +SC91sUo65PSA800GSmj9TSbZ3kjhaF+7s9qzdOZEPYkaocHNzbunbLSUrmXUmSV 25nbcytTNmCBMOBNodBj4KdOb+IuqI3917LOATZCO9WdnW4nV1sA0jkkf5OB0q3g r/vbbcqQBPA0Mh60AIgOeetVdTu3eF4fO9OxbM7dlPWR4xatPDMii7euOj1kMjw8 Yk3Ze9EmgrPAVFh4l8hOup1JMuI+Y+QsASjfQy4ICWN9mTRUBM5RPteEvlD7G6ne UorXXaqkhkrEVHosBQ7grvPnTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOhx1KbD 27ee9LbyWYskbDyH/3ZQMB8GA1UdIwQYMBaAFJjJfgUtfZrVNglZudPgdtrdduoB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjQzNS9FQzA1OTA0NjVC RTkxMUVCOTY2ODAwMUVDNEY5QUUwMi9tTWwtQlMxOW10VTJDVm01MC1CMjJ0MTI2 Z0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL21NbC1CUzE5bXRVMkNWbTUwLUIyMnQxMjZnRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjQzNS9FQzA1OTA0NjVCRTkxMUVCOTY2ODAwMUVDNEY5QUUwMi9tTWwtQlMxOW10 VTJDVm01MC1CMjJ0MTI2Z0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDsm827tgT6ifcZFCcjHR7AwPgEaslpBVmrlyoGrDPC4mi5HepgE9g BkgehEXIvKbPVyDR9DoZ6Weydfr7bgOrYGicpOMKZKSZIkWfU421xljDlbtOCrF9 m/Gsui8hfcAAL+LKnbXZSnHnDhk8B0jwCvPzEabuh6Jsb1m7Gnps3pbGHDlxpHit IrxahJUQ3G2PwptC8RWAu8GTa7hdTlBgjNnTfVeLkJc5K0Azwjp77VWDZwn94Min /nESYYq0BQg5IruZkqXJBH0EPldDuhu8x3rBwMo86RSLdnRCEFm6CONFbaJC9tb1 EPBRcrlHfQh4eYFO7UqJX65gHsfrNJWp -----END CERTIFICATE-----Generated at Sat May 25 01:24:53 2024 by rpki-client on console-fra.rpki-client.org