$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft File: MxG_l-IbcmqcAFa75KhbH38pXzU.mft (raw, json) Hash identifier: avqwjG/dfDnA9CE+wbMVIgc1xAoFkT6GsQhFVahNNdM= Subject key identifier: B3:D2:A0:DB:76:52:AA:54:19:74:65:36:7A:21:A5:53:D0:44:77:7E Authority key identifier: 33:11:BF:97:E2:1B:72:6A:9C:00:56:BB:E4:A8:5B:1F:7F:29:5F:35 Certificate issuer: /CN=A91D7454/serialNumber=3311BF97E21B726A9C0056BBE4A85B1F7F295F35 Certificate serial: 1088 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft Manifest number: 107E Signing time: Thu 02 May 2024 18:00:52 +0000 Manifest this update: Thu 02 May 2024 18:00:52 +0000 Manifest next update: Thu 09 May 2024 18:00:52 +0000 Files and hashes: 1: MxG_l-IbcmqcAFa75KhbH38pXzU.crl (hash: Y/AR8oiq0a41/eBbpA43sjJDoBQ0OnkvF32A30j3wAQ=) 2: 51273D9A08EE11E99E30172AC4F9AE02.roa (hash: i6cJunhUx1IUyrSi+spBz4Du5zWwhOZp61t1jw1sa98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.crl rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 18:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4232 (0x1088) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7454/serialNumber=3311BF97E21B726A9C0056BBE4A85B1F7F295F35 Validity Not Before: May 2 18:00:52 2024 GMT Not After : May 9 18:00:52 2024 GMT Subject: CN=6633d4d4-2e71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:59:68:17:0c:7c:95:03:5c:56:fa:d0:36:9b: 7c:b2:53:64:6d:9f:c8:08:ec:66:51:b7:20:f2:f6: a2:d0:e7:a5:b0:d9:c9:25:b8:c7:25:ec:9b:2a:38: aa:5d:65:b3:a5:ed:8f:0b:e8:3f:0c:ee:6d:0f:9a: aa:52:63:f2:69:c2:c1:69:6b:3d:94:a6:1c:8f:41: 06:03:f2:0f:1f:b2:ca:f8:db:ee:08:8d:e7:1d:99: bb:4c:f5:6b:da:7e:af:32:a0:f8:f4:59:ce:10:53: 79:64:35:77:0c:58:8c:5b:c3:fe:db:5d:73:19:d4: 04:6c:01:e1:7f:5a:1e:9d:53:c6:2b:31:c7:66:51: 0d:ad:32:cb:84:21:b5:d6:13:c5:4e:e0:66:02:81: ac:10:0b:da:3e:cc:fe:83:65:01:c0:bf:bd:16:4b: 0a:64:c3:03:81:58:86:fa:73:85:68:ce:9b:d8:82: 39:95:6a:04:2f:a3:7a:43:82:4a:e6:e5:e6:2a:17: f8:4c:ca:26:f5:df:e7:25:b9:ac:ec:73:8d:5c:22: dc:f7:d8:f3:33:e6:27:de:0e:47:8d:61:94:19:0c: 55:e0:ea:33:46:e5:5b:56:bb:fc:bf:42:c7:d6:9f: e2:b5:ca:f6:e7:59:85:48:9b:6a:db:b6:bf:4a:8b: e8:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:D2:A0:DB:76:52:AA:54:19:74:65:36:7A:21:A5:53:D0:44:77:7E X509v3 Authority Key Identifier: keyid:33:11:BF:97:E2:1B:72:6A:9C:00:56:BB:E4:A8:5B:1F:7F:29:5F:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:5c:53:02:70:06:b6:c7:c8:8c:26:0c:5c:0d:d6:46:87:3f: c8:e4:8c:1f:39:c2:23:12:ac:09:ba:15:01:67:53:c8:27:1c: 7e:fc:e4:72:df:77:9d:b2:e8:29:2a:d0:81:ee:6a:e3:0a:f2: 39:0a:23:68:4f:f7:26:70:35:03:99:2f:ea:8d:3a:b0:cb:d5: 0d:24:11:5f:a9:53:ee:e2:a6:c0:5b:9d:19:34:fd:9d:5f:8c: fc:6a:69:17:49:90:2c:5d:9a:c1:5e:94:ed:f0:a1:31:08:a5: a1:14:f1:e4:7a:ac:69:73:b0:9e:cc:79:5d:0f:b4:39:02:c4: 03:84:6a:06:6e:39:95:f3:8b:cf:7f:2b:12:09:2e:3f:04:84: ca:ff:93:74:69:5c:3c:96:17:0e:09:56:ec:22:ab:e1:43:62: ae:81:e3:5e:52:36:f6:67:65:4f:e3:f1:85:67:71:3b:30:34: 3b:47:69:08:52:a2:f4:90:37:1c:55:f4:4b:cd:de:c5:33:30: 48:4b:d7:9f:5b:85:bf:33:90:8d:59:cc:85:a6:e4:30:7a:08: c5:39:6c:2f:02:39:1d:fc:20:20:7a:04:9c:04:dd:f0:1c:42: 83:9f:3a:26:21:03:9d:b9:68:30:7a:97:28:ec:9a:96:76:91: 41:bd:cc:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc0NTQxMTAvBgNVBAUTKDMzMTFCRjk3RTIxQjcyNkE5QzAwNTZCQkU0QTg1QjFG N0YyOTVGMzUwHhcNMjQwNTAyMTgwMDUyWhcNMjQwNTA5MTgwMDUyWjAYMRYwFAYD VQQDEw02NjMzZDRkNC0yZTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+VloFwx8lQNcVvrQNpt8slNkbZ/ICOxmUbcg8vai0OelsNnJJbjHJeybKjiq XWWzpe2PC+g/DO5tD5qqUmPyacLBaWs9lKYcj0EGA/IPH7LK+NvuCI3nHZm7TPVr 2n6vMqD49FnOEFN5ZDV3DFiMW8P+211zGdQEbAHhf1oenVPGKzHHZlENrTLLhCG1 1hPFTuBmAoGsEAvaPsz+g2UBwL+9FksKZMMDgViG+nOFaM6b2II5lWoEL6N6Q4JK 5uXmKhf4TMom9d/nJbms7HONXCLc99jzM+Yn3g5HjWGUGQxV4OozRuVbVrv8v0LH 1p/itcr251mFSJtq27a/SovoAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLPSoNt2 UqpUGXRlNnohpVPQRHd+MB8GA1UdIwQYMBaAFDMRv5fiG3JqnABWu+SoWx9/KV81 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzQ1NC83OUM2MUU3QzA4 RUIxMUU5QUY4QkNEMjNDNEY5QUUwMi9NeEdfbC1JYmNtcWNBRmE3NUtoYkgzOHBY elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL014R19sLUliY21xY0FGYTc1S2hiSDM4cFh6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzQ1NC83OUM2MUU3QzA4RUIxMUU5QUY4QkNEMjNDNEY5QUUwMi9NeEdfbC1JYmNt cWNBRmE3NUtoYkgzOHBYelUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARXFMCcAa2x8iMJgxcDdZGhz/I5IwfOcIjEqwJuhUBZ1PIJxx+/ORy 33edsugpKtCB7mrjCvI5CiNoT/cmcDUDmS/qjTqwy9UNJBFfqVPu4qbAW50ZNP2d X4z8amkXSZAsXZrBXpTt8KExCKWhFPHkeqxpc7CezHldD7Q5AsQDhGoGbjmV84vP fysSCS4/BITK/5N0aVw8lhcOCVbsIqvhQ2KugeNeUjb2Z2VP4/GFZ3E7MDQ7R2kI UqL0kDccVfRLzd7FMzBIS9efW4W/M5CNWcyFpuQwegjFOWwvAjkd/CAgegScBN3w HEKDnzomIQOduWgwepco7JqWdpFBvcw+ -----END CERTIFICATE-----Generated at Thu May 2 20:04:59 2024 by rpki-client on console-ams.rpki-client.org