$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft File: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft (raw, json) Hash identifier: FdHejdw7Buq5Ap4NXZ6kQhx7grvf1/a4u/ZKCKCan7A= Subject key identifier: 94:3E:81:2C:17:09:2D:35:40:2B:A4:2B:1E:F9:48:18:41:3B:8E:84 Authority key identifier: 68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 Certificate issuer: /CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Certificate serial: 06EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft Manifest number: 06E8 Signing time: Sun 28 Apr 2024 22:46:34 +0000 Manifest this update: Sun 28 Apr 2024 22:46:34 +0000 Manifest next update: Sun 05 May 2024 22:46:34 +0000 Files and hashes: 1: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl (hash: JaXcXcU1lSUhNptCW1JiqmgZdoprZleBdv6JYg52LJM=) 2: 7F2355F2FE2A11EA8A51B85AC4F9AE02.roa (hash: k1OCR/hebk2sDyU2kQY6MZJlVjmexhMLICsY/iovIDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 21:11:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1772 (0x6ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Validity Not Before: Apr 28 22:46:34 2024 GMT Not After : May 5 22:46:34 2024 GMT Subject: CN=662ed1ca-741e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:34:57:0f:3b:98:23:04:1a:60:89:14:c3:5f: ab:9d:36:e6:54:41:69:85:52:d1:b5:1e:cd:57:e4: 8f:5e:32:b6:fd:00:59:b9:35:d8:66:ae:52:5f:57: f3:87:0a:55:69:c4:43:ec:89:4a:22:60:c4:fc:6e: 85:8d:be:f2:8e:c3:e9:78:0a:2d:5f:f5:74:a3:52: d8:c3:08:20:ec:cc:31:5a:df:09:fa:a5:62:ab:54: fd:1c:c4:58:be:b8:c2:35:7b:28:f0:be:b8:62:dc: 19:0a:e7:30:88:db:4c:b2:cc:16:84:ab:d3:f4:a7: 41:fa:38:a2:c7:42:e3:c2:61:4d:2f:e6:61:31:a1: 7a:2f:70:45:21:26:23:0c:2d:e4:a6:ab:92:e1:3d: 6e:8b:e2:32:7b:df:0e:b7:e4:b7:f2:79:b2:63:52: 0a:dc:3d:5a:b9:9c:99:0d:6e:cf:e1:6d:88:b4:aa: ce:bd:2f:99:19:ec:80:22:1c:98:d6:2d:ef:1d:1c: 8b:87:e3:be:21:21:88:89:16:f5:e9:96:a2:22:22: 3d:2a:35:b2:e9:10:16:b5:63:31:da:5d:83:2e:89: 40:5d:f8:68:66:b1:d9:b1:e9:57:92:f2:20:54:ca: ab:a2:fd:f3:7d:72:b9:e5:6d:1a:2a:c6:6f:f1:04: 0a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:3E:81:2C:17:09:2D:35:40:2B:A4:2B:1E:F9:48:18:41:3B:8E:84 X509v3 Authority Key Identifier: keyid:68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:7c:66:db:36:61:b5:ca:60:c6:01:bb:45:3c:df:74:12:1e: ee:df:1a:1a:25:ce:e6:ba:6c:dd:67:fc:a1:d7:10:33:2e:cf: 26:73:72:98:cc:cb:64:51:d3:0b:ca:47:0b:6c:82:53:29:3a: 37:95:f2:dc:2d:d9:01:29:c6:d9:fd:ec:4d:b3:33:0f:96:cc: 09:a8:dd:32:20:3d:cb:9e:6d:99:91:95:ee:c5:0f:e8:15:71: 65:79:97:ea:6e:6e:25:a0:0a:a7:74:c7:19:07:d0:7c:22:ee: 47:21:da:bc:af:b3:37:e7:d8:dc:73:d6:0a:b5:89:e9:05:fa: dc:91:be:84:f1:62:db:42:8a:be:fb:bc:5b:d9:0b:7e:29:2d: 57:ad:35:bc:f0:b4:ac:39:e5:50:96:ef:09:43:c9:ef:db:13: 35:04:bf:31:0d:2b:34:32:94:4f:d2:b0:88:be:44:b2:b2:47: 83:3d:a2:c9:28:53:e9:5f:5c:bc:dc:98:8f:3b:44:2b:a7:23: 53:7b:30:5a:1b:b1:e6:ad:c5:47:98:b7:2d:89:c7:43:ed:e5: 3a:69:c0:f7:b0:c5:e4:03:58:a0:20:62:48:41:dc:02:8e:33: 43:6b:19:fe:00:23:77:36:f5:b0:19:c9:b0:65:fe:0e:1b:c4: ef:69:82:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyMTYxMTAvBgNVBAUTKDY4QTRGQzgxMkQwMTkxMzYzRTFDNEExMzA5OUY1M0Iw MjczNzY1NzkwHhcNMjQwNDI4MjI0NjM0WhcNMjQwNTA1MjI0NjM0WjAYMRYwFAYD VQQDEw02NjJlZDFjYS03NDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTRXDzuYIwQaYIkUw1+rnTbmVEFphVLRtR7NV+SPXjK2/QBZuTXYZq5SX1fz hwpVacRD7IlKImDE/G6Fjb7yjsPpeAotX/V0o1LYwwgg7MwxWt8J+qViq1T9HMRY vrjCNXso8L64YtwZCucwiNtMsswWhKvT9KdB+jiix0LjwmFNL+ZhMaF6L3BFISYj DC3kpquS4T1ui+Iye98Ot+S38nmyY1IK3D1auZyZDW7P4W2ItKrOvS+ZGeyAIhyY 1i3vHRyLh+O+ISGIiRb16ZaiIiI9KjWy6RAWtWMx2l2DLolAXfhoZrHZselXkvIg VMqrov3zfXK55W0aKsZv8QQKhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJQ+gSwX CS01QCukKx75SBhBO46EMB8GA1UdIwQYMBaAFGik/IEtAZE2PhxKEwmfU7AnN2V5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTIxNi9BRjU3QjZGQ0ZF MjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtUWS1IRW9UQ1o5VHNDYzNa WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLVDhnUzBCa1RZLUhFb1RDWjlUc0NjM1pYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTIxNi9BRjU3QjZGQ0ZFMjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtU WS1IRW9UQ1o5VHNDYzNaWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTfGbbNmG1ymDGAbtFPN90Eh7u3xoaJc7mumzdZ/yh1xAzLs8mc3KY zMtkUdMLykcLbIJTKTo3lfLcLdkBKcbZ/exNszMPlswJqN0yID3Lnm2ZkZXuxQ/o FXFleZfqbm4loAqndMcZB9B8Iu5HIdq8r7M359jcc9YKtYnpBfrckb6E8WLbQoq+ +7xb2Qt+KS1XrTW88LSsOeVQlu8JQ8nv2xM1BL8xDSs0MpRP0rCIvkSyskeDPaLJ KFPpX1y83JiPO0QrpyNTezBaG7HmrcVHmLcticdD7eU6acD3sMXkA1igIGJIQdwC jjNDaxn+ACN3NvWwGcmwZf4OG8TvaYKj -----END CERTIFICATE-----Generated at Mon Apr 29 00:40:50 2024 by rpki-client on console-fra.rpki-client.org