$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft File: sGfGu3DfDcBM5398jXZwakn2y4U.mft (raw, json) Hash identifier: fuUYM/jO9HOPjf861X17Vg+NUhTjZX0pkCYjE6Mp+WQ= Subject key identifier: AE:DA:CE:4E:B7:77:3D:B9:FB:83:AB:BE:4D:A9:08:20:C6:0A:DE:B3 Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Certificate serial: 01A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft Manifest number: 0186 Signing time: Wed 01 May 2024 05:12:33 +0000 Manifest this update: Wed 01 May 2024 05:12:33 +0000 Manifest next update: Wed 08 May 2024 05:12:33 +0000 Files and hashes: 1: sGfGu3DfDcBM5398jXZwakn2y4U.crl (hash: Ad4kGFoJ8GM70tXvwdInwgzFrTTWQ9Q4TvNRI+2zHiA=) 2: 51638C369F0D11EE829DC428C4F9AE02.roa (hash: x0XdCXr+fHMkPRUmR0MUNWWzOe9z+9CTwMrqymaTnKg=) 3: 4E65B594D35711EEB8F04828C4F9AE02.roa (hash: MvrpHktX8EBV5CRxI8wvPJU9sIwZ4JC9BJ7Tmiw/3S0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Validity Not Before: May 1 05:12:33 2024 GMT Not After : May 8 05:12:33 2024 GMT Subject: CN=6631cf41-9780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:32:4a:9e:b4:aa:de:8d:da:3c:4c:f0:b9:1d: 0d:dd:4d:7c:a3:5f:60:e7:d7:a4:f0:e5:08:76:83: e5:b9:17:89:1f:76:1b:a1:f8:f3:0a:69:54:7d:8e: 11:cd:36:2a:8d:11:14:10:b1:53:58:52:68:d0:a7: 43:06:01:9e:a2:ff:6b:80:c1:41:74:73:94:97:e0: 6e:75:b6:85:fa:9b:84:d1:71:9d:24:f8:44:30:14: bc:55:31:a1:bd:ca:39:2c:e3:1b:80:46:5a:e5:99: 30:07:f6:58:22:88:cb:fc:b9:d8:6b:12:08:8e:c1: 9e:ad:62:c2:dc:14:62:cc:cf:19:6e:7b:64:43:40: 69:19:b3:6a:83:aa:39:50:79:50:db:7f:f7:a6:40: 61:09:79:ea:7f:a6:5b:6a:31:a5:f8:c4:b1:86:3f: 31:0b:ae:87:64:de:42:c5:a4:d6:cb:c7:21:a1:69: 5f:e3:2a:c8:9b:2f:89:ce:e4:84:6a:87:0e:2a:3c: 59:8b:ab:c4:1f:77:78:53:c1:8b:8c:8b:ea:59:87: c4:15:c0:5f:68:0e:27:14:36:11:55:43:b6:5d:17: cc:3a:ba:c6:c8:bc:66:b1:bd:e9:3a:52:7c:58:d5: de:55:68:37:1f:ab:2e:48:41:ab:0c:d7:f3:e0:33: 9c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:DA:CE:4E:B7:77:3D:B9:FB:83:AB:BE:4D:A9:08:20:C6:0A:DE:B3 X509v3 Authority Key Identifier: keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:03:ea:f9:af:d1:71:81:24:65:8f:41:b8:a8:db:d1:70:f6: 1a:6c:f1:69:1e:90:06:5e:2a:35:f9:fb:1b:d9:6d:06:6c:eb: 95:76:7a:b7:c7:7e:bc:ef:bf:65:54:f0:b4:21:71:17:30:1a: 61:b9:b8:f1:4c:36:fb:4c:0f:66:7f:20:f0:42:5a:03:b2:73: 77:a2:c0:85:ee:87:df:e3:ac:e0:98:51:99:49:7e:67:e8:1b: 06:fc:1f:ba:e6:35:1f:ba:2e:38:2d:d3:3f:e5:43:00:5c:4d: 14:7d:92:4d:0e:d4:d4:e0:f3:51:43:48:48:6f:61:90:75:b5: 08:10:8e:eb:e0:87:61:02:1e:2c:36:79:81:10:65:58:e9:5e: f8:de:bb:e4:fc:5f:27:f4:f0:3a:09:25:3d:1e:68:76:2f:c8: 8f:4b:5b:83:6b:2a:d6:63:76:ba:20:59:2c:18:a3:91:ad:13: 47:4c:2a:6c:73:f1:f8:e5:e8:f4:10:43:b4:aa:42:fc:cc:27: 4e:3c:d8:60:16:94:01:ff:2c:3d:66:e0:b7:02:87:b5:32:eb: 14:6a:20:43:00:d4:dc:f3:38:9b:01:65:6a:dc:f8:b3:74:f1: 1c:96:6b:d6:c4:16:f5:d1:20:d8:bf:da:e5:16:82:e9:0f:b1: 5b:fb:bb:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2NkExMTAvBgNVBAUTKEIwNjdDNkJCNzBERjBEQzA0Q0U3N0Y3QzhENzY3MDZB NDlGNkNCODUwHhcNMjQwNTAxMDUxMjMzWhcNMjQwNTA4MDUxMjMzWjAYMRYwFAYD VQQDEw02NjMxY2Y0MS05NzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyjJKnrSq3o3aPEzwuR0N3U18o19g59ek8OUIdoPluReJH3YbofjzCmlUfY4R zTYqjREUELFTWFJo0KdDBgGeov9rgMFBdHOUl+BudbaF+puE0XGdJPhEMBS8VTGh vco5LOMbgEZa5ZkwB/ZYIojL/LnYaxIIjsGerWLC3BRizM8ZbntkQ0BpGbNqg6o5 UHlQ23/3pkBhCXnqf6ZbajGl+MSxhj8xC66HZN5CxaTWy8choWlf4yrImy+JzuSE aocOKjxZi6vEH3d4U8GLjIvqWYfEFcBfaA4nFDYRVUO2XRfMOrrGyLxmsb3pOlJ8 WNXeVWg3H6suSEGrDNfz4DOcbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7azk63 dz25+4Orvk2pCCDGCt6zMB8GA1UdIwQYMBaAFLBnxrtw3w3ATOd/fI12cGpJ9suF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzY2QS9FQzA5QUE0QTMw N0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRjQk01Mzk4alhad2FrbjJ5 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHZkd1M0RmRGNCTTUzOThqWFp3YWtuMnk0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzY2QS9FQzA5QUE0QTMwN0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRj Qk01Mzk4alhad2FrbjJ5NFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMA+r5r9FxgSRlj0G4qNvRcPYabPFpHpAGXio1+fsb2W0GbOuVdnq3 x368779lVPC0IXEXMBphubjxTDb7TA9mfyDwQloDsnN3osCF7off46zgmFGZSX5n 6BsG/B+65jUfui44LdM/5UMAXE0UfZJNDtTU4PNRQ0hIb2GQdbUIEI7r4IdhAh4s NnmBEGVY6V743rvk/F8n9PA6CSU9Hmh2L8iPS1uDayrWY3a6IFksGKORrRNHTCps c/H45ej0EEO0qkL8zCdOPNhgFpQB/yw9ZuC3Aoe1MusUaiBDANTc8zibAWVq3Piz dPEclmvWxBb10SDYv9rlFoLpD7Fb+7vY -----END CERTIFICATE-----Generated at Wed May 1 05:59:12 2024 by rpki-client on console-fra.rpki-client.org