$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft File: 5TfQw0j9fcSfX8OwBmoxxYT64as.mft (raw, json) Hash identifier: noEEO7TKYqRqdArhFjIF+B11uDuoZ0s9j4AM3ioEuFI= Subject key identifier: E4:1D:8B:82:90:3D:86:E2:ED:20:F8:8B:75:7E:D1:35:C8:41:1A:BF Authority key identifier: E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB Certificate issuer: /CN=A91D4345/serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Certificate serial: 0B8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft Manifest number: 0B7F Signing time: Tue 30 Apr 2024 19:43:45 +0000 Manifest this update: Tue 30 Apr 2024 19:43:45 +0000 Manifest next update: Tue 07 May 2024 19:43:45 +0000 Files and hashes: 1: 5TfQw0j9fcSfX8OwBmoxxYT64as.crl (hash: YiosVMNTZRGg9JqvaIQ3hyAgzYnRYw/an2aFPVqsaqY=) 2: F3529CDCAE1511EE92D99E46C4F9AE02.roa (hash: vERej6PFMwMOORNrIHg1KRCb9Qq6yxbmNgCH2y9OYoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:43:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2955 (0xb8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4345/serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Validity Not Before: Apr 30 19:43:45 2024 GMT Not After : May 7 19:43:45 2024 GMT Subject: CN=663149f1-b69b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:6c:49:3c:ca:b0:f5:b0:b1:7d:08:70:33:a4: 82:97:fe:2a:49:59:a8:01:38:af:ba:62:c0:a9:a9: db:8e:78:3e:4a:7d:09:a9:0c:58:35:1e:42:00:71: 61:03:7b:96:43:fe:5e:1c:8b:6b:fd:28:b6:42:16: b0:ab:48:7b:7b:9a:b8:f9:c5:1a:4e:a0:0c:9b:6c: 76:1c:4f:c4:0c:c5:e4:9e:1e:ba:97:57:94:6f:20: 94:9a:0f:fa:fb:2c:4a:fc:77:1d:17:ff:c2:b5:08: 92:05:9d:cb:0e:0a:cd:ee:df:bd:59:9c:ca:26:b3: 25:37:ab:36:c3:f7:8d:fe:1f:2a:5c:83:77:46:29: e3:3e:4b:01:5a:62:d7:5a:f0:fe:f4:ca:e3:22:8a: b6:58:e6:c3:52:4e:0f:64:d5:bf:a6:3d:1c:26:4b: 26:da:0b:32:19:ad:38:d1:e0:b6:b2:77:07:78:e1: 9e:b2:8e:7d:1a:c0:0d:ae:4d:81:59:8c:42:2d:f2: b6:57:89:3d:56:da:80:d2:c6:ed:d3:a0:39:79:fe: 11:db:f2:ae:c9:5a:5a:c2:38:dd:a3:ef:96:fa:9b: b8:d7:b6:2e:ae:c5:ec:e7:92:62:af:40:f0:cf:0b: e2:b9:10:be:e0:d2:b9:cd:2a:7a:03:98:35:3a:8d: 5d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:1D:8B:82:90:3D:86:E2:ED:20:F8:8B:75:7E:D1:35:C8:41:1A:BF X509v3 Authority Key Identifier: keyid:E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:41:8f:27:8a:84:8d:81:e1:ce:65:b6:4e:ed:79:93:44:a7: a1:37:92:47:2b:85:c5:58:5a:9e:5f:b5:1c:9f:33:98:f7:6b: 89:2f:dd:32:83:be:03:13:d2:ef:9f:c1:dd:4d:d2:ca:c0:17: 8c:99:fa:f0:6a:1d:fc:41:52:0b:32:89:08:82:0c:a8:00:65: f1:6e:1f:d1:29:5d:aa:42:60:7e:74:18:21:9f:be:60:37:24: 11:b9:5f:35:40:2d:bf:c6:c2:27:a4:aa:8d:e9:f8:30:ed:94: b8:8e:c2:8b:14:4e:d3:66:91:37:db:0c:2b:28:86:4a:4b:9d: ce:81:85:5c:27:dc:4e:cb:3d:d4:5a:23:b7:69:77:b8:55:df: 7b:61:73:ad:e7:ab:c3:8f:40:b4:8d:69:d7:bb:e3:4b:b9:eb: 50:e3:c0:fe:9b:de:c5:f3:84:16:81:8b:2d:6f:fc:b5:b6:2d: 6d:15:8a:bc:d7:0c:dc:e4:12:1a:77:50:49:b5:72:20:72:ef: 58:86:b4:0b:c7:eb:aa:42:cc:d2:96:10:9b:c6:81:1d:33:46: be:9d:aa:90:3b:06:89:d2:f4:06:95:b4:4f:de:5a:4b:60:fb: 41:05:5d:7e:e4:88:e1:11:07:b5:3e:b4:cd:21:0b:6a:26:a7: 51:80:e2:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQzNDUxMTAvBgNVBAUTKEU1MzdEMEMzNDhGRDdEQzQ5RjVGQzNCMDA2NkEzMUM1 ODRGQUUxQUIwHhcNMjQwNDMwMTk0MzQ1WhcNMjQwNTA3MTk0MzQ1WjAYMRYwFAYD VQQDEw02NjMxNDlmMS1iNjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4WxJPMqw9bCxfQhwM6SCl/4qSVmoATivumLAqanbjng+Sn0JqQxYNR5CAHFh A3uWQ/5eHItr/Si2Qhawq0h7e5q4+cUaTqAMm2x2HE/EDMXknh66l1eUbyCUmg/6 +yxK/HcdF//CtQiSBZ3LDgrN7t+9WZzKJrMlN6s2w/eN/h8qXIN3RinjPksBWmLX WvD+9MrjIoq2WObDUk4PZNW/pj0cJksm2gsyGa040eC2sncHeOGeso59GsANrk2B WYxCLfK2V4k9VtqA0sbt06A5ef4R2/KuyVpawjjdo++W+pu417YursXs55Jir0Dw zwviuRC+4NK5zSp6A5g1Oo1drQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOQdi4KQ PYbi7SD4i3V+0TXIQRq/MB8GA1UdIwQYMBaAFOU30MNI/X3En1/DsAZqMcWE+uGr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDM0NS9FQzc4Q0REQTA1 MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZjU2ZYOE93Qm1veHhZVDY0 YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVUZlF3MGo5ZmNTZlg4T3dCbW94eFlUNjRhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDM0NS9FQzc4Q0REQTA1MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZj U2ZYOE93Qm1veHhZVDY0YXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6QY8nioSNgeHOZbZO7XmTRKehN5JHK4XFWFqeX7UcnzOY92uJL90y g74DE9Lvn8HdTdLKwBeMmfrwah38QVILMokIggyoAGXxbh/RKV2qQmB+dBghn75g NyQRuV81QC2/xsInpKqN6fgw7ZS4jsKLFE7TZpE32wwrKIZKS53OgYVcJ9xOyz3U WiO3aXe4Vd97YXOt56vDj0C0jWnXu+NLuetQ48D+m97F84QWgYstb/y1ti1tFYq8 1wzc5BIad1BJtXIgcu9YhrQLx+uqQszSlhCbxoEdM0a+naqQOwaJ0vQGlbRP3lpL YPtBBV1+5IjhEQe1PrTNIQtqJqdRgOLj -----END CERTIFICATE-----Generated at Tue Apr 30 21:38:07 2024 by rpki-client on console-fra.rpki-client.org