$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json) Hash identifier: nsgQXKkuCJwEU5L8yaJFbLG/ndSe5GdsOW3x0SQfK0o= Subject key identifier: 56:BA:6A:6D:05:FB:7F:E3:94:65:00:1C:B2:53:8C:3D:B7:2F:45:F5 Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 04BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft Manifest number: 04B6 Signing time: Wed 01 May 2024 01:48:24 +0000 Manifest this update: Wed 01 May 2024 01:48:24 +0000 Manifest next update: Wed 08 May 2024 01:48:23 +0000 Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: nx6XDStpIW703ONq8RuX+z+jUk3gz4V7MSOgsOK3gH4=) 2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: 6cOT7/wWwvYA8TTg5/JpIjAU9s6XkTFMiZJRiZFubcU=) 3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: Jbnhcb66BEFKo2GGE48yhSKdBGRqIw7fLR9CrQYiW58=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 01:48:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1212 (0x4bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: May 1 01:48:24 2024 GMT Not After : May 8 01:48:23 2024 GMT Subject: CN=66319f68-2075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5f:75:e1:83:14:d4:98:7b:94:56:7d:85:6d: f9:4d:4b:6b:b5:57:6a:28:3d:62:76:c6:ce:3f:13: 45:20:6c:41:6f:51:8d:3c:9d:8b:92:80:50:72:29: f3:a8:84:05:18:41:86:42:71:d9:82:4e:00:14:77: aa:90:44:84:ee:40:b9:19:cb:4d:2f:bf:5d:69:e3: 2d:da:16:69:79:7a:d4:13:c1:9a:ca:69:ff:2a:0e: 87:b3:31:81:9f:c7:ed:ae:f3:5c:3c:9f:78:7d:db: fa:3c:de:c4:bf:f1:58:4b:68:7a:6e:aa:da:1c:87: 5f:ed:11:d4:bd:78:e2:ec:b3:f0:98:df:47:a6:29: 25:4a:f3:dd:37:f6:e5:18:eb:08:b6:ee:4a:1f:53: 36:ea:84:f6:03:ca:37:5b:00:2e:d3:27:c5:c8:88: 8f:5b:80:5d:f7:9d:d9:39:ff:2f:1f:aa:f9:b5:df: 65:23:07:81:1d:c3:59:40:1e:83:11:d5:4b:9b:97: 9e:23:88:3b:2c:e1:ce:8b:31:d2:05:b8:f3:e1:b5: 64:79:2c:79:4d:a5:ae:65:aa:68:69:5f:ff:94:42: 64:67:04:5c:91:15:de:ae:70:1b:b6:9e:7b:91:05: 12:d6:aa:03:af:08:75:e7:e7:60:ed:5d:bf:bf:02: e6:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:BA:6A:6D:05:FB:7F:E3:94:65:00:1C:B2:53:8C:3D:B7:2F:45:F5 X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:63:71:55:61:31:a4:51:2f:df:9c:84:b8:f3:e6:89:7e:0c: ea:76:ea:8f:74:f4:0b:2c:8a:c3:11:ab:0c:27:42:c6:e2:4c: 6b:56:56:2b:79:99:3b:09:27:60:b4:56:58:39:db:87:8e:ae: a0:43:37:1f:1e:aa:d3:67:f2:aa:54:bb:28:2f:35:b8:05:b8: 5e:c9:81:35:a9:20:66:ef:cf:3e:6e:bf:55:8d:d9:0e:2c:6e: a8:03:40:60:57:f0:51:9f:00:76:6f:8d:c3:38:58:77:3a:1a: 48:e0:b1:2c:e4:91:56:3f:6a:4a:f4:5c:27:81:2b:cc:65:dd: 64:c1:cc:a5:0d:20:04:68:fb:b6:22:9e:06:82:d9:06:29:cb: a7:f5:c5:f0:b6:23:be:7b:fe:89:ea:31:f2:cf:6e:2f:f1:49: de:9e:3a:60:d3:24:5c:8f:48:7b:02:86:1f:16:1d:1f:eb:7a: b1:9e:a3:91:80:0c:ce:8c:5a:8e:08:6b:4a:7e:88:1e:35:ac: b0:55:47:d1:38:ea:fd:32:a9:9b:43:68:b5:be:7a:45:26:79: 47:a0:58:50:26:39:42:17:67:83:b9:72:fc:70:0e:87:19:0b: 76:aa:cb:82:6c:19:59:5a:1d:7e:fc:3b:6a:b3:b9:cf:62:26: b0:6e:51:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjQwNTAxMDE0ODI0WhcNMjQwNTA4MDE0ODIzWjAYMRYwFAYD VQQDEw02NjMxOWY2OC0yMDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxF914YMU1Jh7lFZ9hW35TUtrtVdqKD1idsbOPxNFIGxBb1GNPJ2LkoBQcinz qIQFGEGGQnHZgk4AFHeqkESE7kC5GctNL79daeMt2hZpeXrUE8Gaymn/Kg6HszGB n8ftrvNcPJ94fdv6PN7Ev/FYS2h6bqraHIdf7RHUvXji7LPwmN9HpiklSvPdN/bl GOsItu5KH1M26oT2A8o3WwAu0yfFyIiPW4Bd953ZOf8vH6r5td9lIweBHcNZQB6D EdVLm5eeI4g7LOHOizHSBbjz4bVkeSx5TaWuZapoaV//lEJkZwRckRXernAbtp57 kQUS1qoDrwh15+dg7V2/vwLmSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFa6am0F +3/jlGUAHLJTjD23L0X1MB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3Bh MmZhaFlyODdYSFQ1TThIZ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUY3FVYTGkUS/fnIS48+aJfgzqduqPdPQLLIrDEasMJ0LG4kxrVlYr eZk7CSdgtFZYOduHjq6gQzcfHqrTZ/KqVLsoLzW4BbheyYE1qSBm788+br9VjdkO LG6oA0BgV/BRnwB2b43DOFh3OhpI4LEs5JFWP2pK9FwngSvMZd1kwcylDSAEaPu2 Ip4GgtkGKcun9cXwtiO+e/6J6jHyz24v8Unenjpg0yRcj0h7AoYfFh0f63qxnqOR gAzOjFqOCGtKfogeNaywVUfROOr9MqmbQ2i1vnpFJnlHoFhQJjlCF2eDuXL8cA6H GQt2qsuCbBlZWh1+/Dtqs7nPYiawblED -----END CERTIFICATE-----Generated at Wed May 1 02:46:23 2024 by rpki-client on console-ams.rpki-client.org