$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft File: r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft (raw, json) Hash identifier: d1AlMXxrd205C9K9f36XWJ6d9dIMTo9/AqnjE0DQI7s= Subject key identifier: 56:3B:B6:86:8A:81:8F:38:AF:B2:9F:9A:5A:10:92:A0:37:68:10:19 Authority key identifier: AF:A6:D7:BD:C3:7B:64:C8:F1:46:EE:A6:17:36:D3:D4:51:78:FB:37 Certificate issuer: /CN=A91E8CB0/serialNumber=AFA6D7BDC37B64C8F146EEA61736D3D45178FB37 Certificate serial: 0116 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft Manifest number: 0112 Signing time: Wed 01 May 2024 05:39:51 +0000 Manifest this update: Wed 01 May 2024 05:39:51 +0000 Manifest next update: Wed 08 May 2024 05:39:50 +0000 Files and hashes: 1: r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl (hash: dYPyPh95b2ssQuNRt/DdsHgECVAjOFgousu2tDRyHPg=) 2: F11BA4EA75B811EDA34F9687C4F9AE02.roa (hash: FDlBQttiAjfW5cf3WMiGkJNbaMYuBenMKHgdFn6C9uo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 05:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8CB0/serialNumber=AFA6D7BDC37B64C8F146EEA61736D3D45178FB37 Validity Not Before: May 1 05:39:51 2024 GMT Not After : May 8 05:39:50 2024 GMT Subject: CN=6631d5a7-338f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ac:30:96:f8:f9:45:38:77:a7:ea:cd:e8:e7: a2:1f:2e:19:b8:d1:2f:2b:8d:68:84:eb:86:54:da: 55:9b:f2:9a:69:3a:2b:87:24:d3:fb:88:e0:33:54: 5b:82:6b:81:c1:b1:1f:df:be:c7:41:f2:d7:c5:e3: 90:20:ce:b3:19:fc:6c:f8:bf:c7:8f:5f:a6:9f:76: a8:1e:dc:c9:31:eb:68:a9:d7:21:04:29:5c:0f:51: a4:b3:07:15:39:2b:7a:c8:a0:a8:00:3f:45:d1:4a: 78:f5:18:6b:51:c6:d1:a4:f7:03:22:09:bb:93:c5: 25:99:77:6c:d3:0b:fb:6c:70:e4:57:66:9b:0a:e7: 32:ef:03:81:40:05:09:4e:77:e7:d0:0a:12:a6:96: 29:dc:32:59:c9:4b:81:66:04:a2:0c:41:48:5c:b9: d2:6d:cf:2c:83:fa:a3:fd:96:ea:48:e3:67:de:be: c7:e2:55:76:d4:63:b7:67:b1:07:fb:c5:aa:20:52: 0d:e9:86:39:f5:7f:cb:8f:58:df:b5:26:d2:d4:55: 0b:2d:a3:c2:c3:60:a3:cf:2c:20:3a:e8:6a:ab:cd: c9:39:a3:87:8f:f6:19:46:61:22:17:1f:2c:de:75: c5:43:40:6d:39:57:e3:db:d7:5b:5a:bd:ae:1c:61: 5a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:3B:B6:86:8A:81:8F:38:AF:B2:9F:9A:5A:10:92:A0:37:68:10:19 X509v3 Authority Key Identifier: keyid:AF:A6:D7:BD:C3:7B:64:C8:F1:46:EE:A6:17:36:D3:D4:51:78:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:3f:8c:fd:86:be:eb:3f:2d:81:78:df:d7:61:42:9d:ff:1f: 2e:dc:ba:09:fc:c1:c1:dd:0a:f8:a0:c7:62:5d:0d:dc:39:24: 97:54:c6:4f:50:7d:e7:ca:8c:42:dc:d3:97:87:55:1e:cb:a9: 4f:cb:3f:45:9e:a1:c1:49:c0:f9:97:91:9e:bc:ed:3b:16:17: b4:d0:0e:43:88:64:b7:d0:6e:38:81:c9:4c:dc:23:12:f4:98: 60:ff:ac:43:f7:76:b0:2b:22:c2:20:03:a0:2f:dc:95:63:3d: 1c:1a:ce:b3:95:0a:7d:79:43:32:be:d3:12:3e:87:69:e8:a7: 73:4c:a2:66:6f:1b:fb:dc:91:45:7d:d4:7e:e1:40:b5:65:65: 6d:46:d8:b0:ad:96:41:52:7b:ad:fb:e7:d1:38:89:0a:a6:f3: d6:0e:e4:80:21:5d:2a:9c:9b:70:6a:45:c1:7c:7e:dd:af:3f: 63:62:17:e2:28:b7:bb:16:66:83:65:a0:50:a6:13:76:7d:43: 11:8c:5a:37:d8:65:a1:e7:83:df:a6:ea:6b:73:49:7e:4a:4e: 6a:7a:a8:b5:69:07:07:9d:b0:f5:45:ed:00:e0:7d:43:67:9d: 9f:9a:dc:1a:1b:be:3b:85:a3:ad:32:68:84:78:cc:eb:6b:4a: 85:c3:e5:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDQjAxMTAvBgNVBAUTKEFGQTZEN0JEQzM3QjY0QzhGMTQ2RUVBNjE3MzZEM0Q0 NTE3OEZCMzcwHhcNMjQwNTAxMDUzOTUxWhcNMjQwNTA4MDUzOTUwWjAYMRYwFAYD VQQDEw02NjMxZDVhNy0zMzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06wwlvj5RTh3p+rN6OeiHy4ZuNEvK41ohOuGVNpVm/KaaTorhyTT+4jgM1Rb gmuBwbEf377HQfLXxeOQIM6zGfxs+L/Hj1+mn3aoHtzJMetoqdchBClcD1GkswcV OSt6yKCoAD9F0Up49RhrUcbRpPcDIgm7k8UlmXds0wv7bHDkV2abCucy7wOBQAUJ Tnfn0AoSppYp3DJZyUuBZgSiDEFIXLnSbc8sg/qj/ZbqSONn3r7H4lV21GO3Z7EH +8WqIFIN6YY59X/Lj1jftSbS1FULLaPCw2CjzywgOuhqq83JOaOHj/YZRmEiFx8s 3nXFQ0BtOVfj29dbWr2uHGFafQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFY7toaK gY84r7KfmloQkqA3aBAZMB8GA1UdIwQYMBaAFK+m173De2TI8Ubuphc209RRePs3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOENCMC8zNzcwMTI0RTZC QzUxMUVEODY2QTdENUVDNEY5QUUwMi9yNmJYdmNON1pNanhSdTZtRnpiVDFGRjQt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I2Ylh2Y043Wk1qeFJ1Nm1GemJUMUZGNC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OENCMC8zNzcwMTI0RTZCQzUxMUVEODY2QTdENUVDNEY5QUUwMi9yNmJYdmNON1pN anhSdTZtRnpiVDFGRjQtemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuP4z9hr7rPy2BeN/XYUKd/x8u3LoJ/MHB3Qr4oMdiXQ3cOSSXVMZP UH3nyoxC3NOXh1Uey6lPyz9FnqHBScD5l5GevO07Fhe00A5DiGS30G44gclM3CMS 9Jhg/6xD93awKyLCIAOgL9yVYz0cGs6zlQp9eUMyvtMSPodp6KdzTKJmbxv73JFF fdR+4UC1ZWVtRtiwrZZBUnut++fROIkKpvPWDuSAIV0qnJtwakXBfH7drz9jYhfi KLe7FmaDZaBQphN2fUMRjFo32GWh54Pfpuprc0l+Sk5qeqi1aQcHnbD1Re0A4H1D Z52fmtwaG747haOtMmiEeMzra0qFw+UE -----END CERTIFICATE-----Generated at Wed May 1 07:07:07 2024 by rpki-client on console-fra.rpki-client.org