$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft File: X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft (raw, json) Hash identifier: yjb7gy5Pu0H69N94gdTCO5CTyoUwC8sjPpxGhEVlNYs= Subject key identifier: 40:03:76:41:E9:7E:E3:C4:4C:38:16:6E:D9:57:02:4B:CE:EE:6E:E7 Authority key identifier: 5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 Certificate issuer: /CN=A91CE285/serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Certificate serial: 08F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft Manifest number: 08ED Signing time: Sat 04 May 2024 21:31:09 +0000 Manifest this update: Sat 04 May 2024 21:31:08 +0000 Manifest next update: Sat 11 May 2024 21:31:08 +0000 Files and hashes: 1: X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl (hash: DJsktaS+lEw4/9JAEeES3osjGMh7Yt1Ehi9nsOEOAv8=) 2: E5C4974689CF11EAA39AF441C4F9AE02.roa (hash: FJBYOIrltpRMrNwPrut4yj3xc+CpMT9AOJtC+2kI31Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2291 (0x8f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE285/serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Validity Not Before: May 4 21:31:08 2024 GMT Not After : May 11 21:31:08 2024 GMT Subject: CN=6636a91c-7a27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b9:c0:ba:48:1f:30:2f:cd:26:5b:aa:cb:41: ab:67:63:73:3b:bc:8d:26:73:a0:ae:90:b2:ff:b3: 60:3d:c9:f5:df:19:f8:26:ce:11:ec:81:3e:1c:e9: 14:7f:b8:78:26:2b:f6:8f:a0:07:e0:1c:49:ae:fd: f3:95:cc:f8:90:ba:de:c6:39:a2:c7:9c:16:c9:93: cd:8e:92:53:e2:28:82:a0:35:23:56:a5:fc:12:15: 5b:a8:86:b9:3b:e5:2b:b3:34:57:6c:c5:34:ba:18: f8:cb:04:8a:ee:0c:0c:17:13:ab:30:bb:35:bb:5f: ad:3f:66:be:0e:5c:5c:c3:52:97:26:9e:fb:8c:59: a2:ba:f5:6e:63:40:19:a5:23:f4:f7:23:b2:7c:3e: 2a:84:48:ad:2f:c6:39:25:ce:be:5e:2f:32:b9:93: 22:46:d2:62:0a:18:f9:04:09:98:20:00:52:2d:f7: 0f:9f:0e:d8:c2:e1:87:f6:aa:88:f6:37:f2:a0:a1: 3f:61:a9:d3:b4:35:45:b8:52:56:88:0e:43:82:e6: 00:31:01:e5:a5:da:5f:1c:53:b5:d5:f7:b5:a8:6a: f2:79:fb:56:c2:56:30:f2:2e:6b:3f:22:f6:2a:1d: 4e:aa:2e:64:e8:6e:9b:03:f5:07:1c:12:cd:6d:ef: 36:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:03:76:41:E9:7E:E3:C4:4C:38:16:6E:D9:57:02:4B:CE:EE:6E:E7 X509v3 Authority Key Identifier: keyid:5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:a9:bd:7d:ce:5a:31:9c:a0:5e:38:65:78:86:0c:02:5e:44: 58:22:73:04:74:6e:2d:ae:e3:13:7e:aa:ad:df:ea:24:22:ab: 31:30:a0:97:67:d8:9c:5f:32:b6:43:6d:e6:72:38:8a:c4:8b: d0:6f:a2:ab:e3:0a:9d:e5:da:33:c0:d8:0e:7a:c0:1e:12:dc: ba:f7:f7:71:a8:67:8a:8f:77:bb:66:ff:9d:b1:ce:74:22:b7: 3e:77:74:3f:d6:b7:d0:92:bf:4a:8e:09:58:c6:0e:75:ef:b1: 41:44:07:7a:82:ce:47:2a:30:c8:bd:79:06:b2:3c:87:8e:b4: 34:c0:53:75:18:7b:b4:b8:b1:d5:30:9b:70:d5:a8:7b:1b:33: dd:b2:17:be:dc:f4:52:95:9f:72:39:dd:66:67:fa:44:84:ac: 20:4d:95:c1:06:50:c9:05:ce:52:6a:b7:07:26:a3:21:51:d4: 10:82:c3:c8:6e:b8:51:37:97:b3:1d:66:f7:71:e5:d1:ab:35: 14:49:6d:4a:11:1a:a8:45:ff:4d:c5:37:98:0d:b1:9b:61:ec: 20:aa:40:b0:ec:f7:15:9f:53:58:4b:13:17:a9:09:30:d5:72: 33:be:59:62:7f:77:52:b4:77:9b:cf:2e:3e:a7:fa:2d:4e:f3: 74:1f:45:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyODUxMTAvBgNVBAUTKDVGOEFGMzU5NzNGRDRGQTU2M0YzM0I3Mzc2NTM0Njgy MTA3QkM4RjkwHhcNMjQwNTA0MjEzMTA4WhcNMjQwNTExMjEzMTA4WjAYMRYwFAYD VQQDEw02NjM2YTkxYy03YTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrnAukgfMC/NJluqy0GrZ2NzO7yNJnOgrpCy/7NgPcn13xn4Js4R7IE+HOkU f7h4Jiv2j6AH4BxJrv3zlcz4kLrexjmix5wWyZPNjpJT4iiCoDUjVqX8EhVbqIa5 O+UrszRXbMU0uhj4ywSK7gwMFxOrMLs1u1+tP2a+Dlxcw1KXJp77jFmiuvVuY0AZ pSP09yOyfD4qhEitL8Y5Jc6+Xi8yuZMiRtJiChj5BAmYIABSLfcPnw7YwuGH9qqI 9jfyoKE/YanTtDVFuFJWiA5DguYAMQHlpdpfHFO11fe1qGryeftWwlYw8i5rPyL2 Kh1Oqi5k6G6bA/UHHBLNbe82TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEADdkHp fuPETDgWbtlXAkvO7m7nMB8GA1UdIwQYMBaAFF+K81lz/U+lY/M7c3ZTRoIQe8j5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTI4NS81RTE2NDhCNjg0 QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2Vmo4enR6ZGxOR2doQjd5 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0cnpXWFA5VDZWajh6dHpkbE5HZ2hCN3lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTI4NS81RTE2NDhCNjg0QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2 Vmo4enR6ZGxOR2doQjd5UGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWqb19zloxnKBeOGV4hgwCXkRYInMEdG4truMTfqqt3+okIqsxMKCX Z9icXzK2Q23mcjiKxIvQb6Kr4wqd5dozwNgOesAeEty69/dxqGeKj3e7Zv+dsc50 Irc+d3Q/1rfQkr9KjglYxg5177FBRAd6gs5HKjDIvXkGsjyHjrQ0wFN1GHu0uLHV MJtw1ah7GzPdshe+3PRSlZ9yOd1mZ/pEhKwgTZXBBlDJBc5SarcHJqMhUdQQgsPI brhRN5ezHWb3ceXRqzUUSW1KERqoRf9NxTeYDbGbYewgqkCw7PcVn1NYSxMXqQkw 1XIzvllif3dStHebzy4+p/otTvN0H0V7 -----END CERTIFICATE-----Generated at Sat May 4 22:06:54 2024 by rpki-client on console-ams.rpki-client.org