$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft File: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft (raw, json) Hash identifier: wllVBqdk2J1O9aGUGHjw0i1q7I1BJUmImwPE7/jC5UQ= Subject key identifier: 3C:DC:8A:ED:59:CD:B4:06:90:B9:F5:5F:98:BE:DC:50:6C:1E:AA:DC Authority key identifier: AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B Certificate issuer: /CN=A91F5972/serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B Certificate serial: 048D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft Manifest number: 0488 Signing time: Tue 07 May 2024 01:38:26 +0000 Manifest this update: Tue 07 May 2024 01:38:26 +0000 Manifest next update: Tue 14 May 2024 01:38:26 +0000 Files and hashes: 1: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl (hash: 0fhwB5wgSM6SyBA75e+xmi3NlpVeeN6Pg5cqnq57ZAQ=) 2: B52EA19A6E0B11ECA6057963C4F9AE02.roa (hash: tEUrEzbRd337eFWp/iwI3to/g2MPSAe4n5mqYfsH+mU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 01:38:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1165 (0x48d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5972/serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B Validity Not Before: May 7 01:38:26 2024 GMT Not After : May 14 01:38:26 2024 GMT Subject: CN=66398612-039c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:38:84:75:54:b8:4f:04:af:61:2f:30:29:41: 08:d9:30:56:79:0a:9c:43:df:60:65:d3:f9:7e:f9: 17:9b:35:68:04:f1:eb:b3:7a:a5:ee:1f:32:4f:55: 7f:5a:ea:d6:f3:c4:65:d7:fc:60:97:78:6e:85:fd: eb:70:04:1e:5d:b4:db:c0:71:2c:3b:8f:92:5a:4c: 52:ee:1d:d6:92:96:02:a3:53:89:3f:11:c0:65:82: 74:99:d2:86:a4:47:61:f3:b7:66:93:d0:a2:18:b9: ef:65:1d:81:93:f0:cd:bd:32:65:a8:82:a5:27:d2: 20:ff:73:c3:38:87:a0:04:80:59:ae:37:0f:02:63: 8e:68:32:a1:74:fc:0e:57:5d:a0:87:d5:85:e5:ec: 5e:d4:82:a8:05:08:ab:69:fa:26:09:55:f3:0c:e8: c2:16:64:bb:df:0a:17:8b:ec:d3:d3:a8:df:6e:cb: 6b:7f:ac:e5:d7:06:f9:2d:77:92:b4:0b:91:82:ac: ef:d2:f5:dd:29:90:94:9f:93:ba:75:e8:36:3e:4e: 60:ad:ff:f4:d2:d0:c1:8c:9c:7a:61:7c:22:f4:5e: 8d:6b:30:4a:ab:89:12:61:84:6b:63:c3:56:7c:be: a2:0a:f9:8f:cf:2b:81:cb:75:2e:79:10:f6:3d:5f: 63:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:DC:8A:ED:59:CD:B4:06:90:B9:F5:5F:98:BE:DC:50:6C:1E:AA:DC X509v3 Authority Key Identifier: keyid:AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:45:35:4f:20:fa:19:4f:22:5c:2f:cf:aa:e2:9c:13:4b:db: d5:d4:a1:88:ed:a6:8d:59:22:58:67:6a:b1:88:e0:6a:c0:f2: f2:4f:85:5b:9b:4f:0b:7a:61:9f:d5:95:d3:a5:8e:78:3f:77: 6e:ae:9d:ee:ca:a2:9c:90:cd:05:8b:98:a7:57:e1:87:fd:aa: c5:b0:b0:1c:24:4d:da:18:a3:20:61:32:44:c1:6c:19:71:84: 4b:b9:96:08:ac:3c:83:4f:fc:81:d6:5b:0d:e9:ad:51:b9:d9: ef:53:de:34:79:ba:b8:28:b5:a0:0c:73:d4:85:17:23:38:53: 5c:b2:00:64:3a:04:2f:f8:d0:9c:86:c1:d5:a6:0c:0a:ec:6b: b7:b5:ea:59:c4:7f:a7:91:c0:67:18:0e:02:a2:55:f2:6a:91: 47:cc:73:bb:98:e7:f9:ed:e2:8e:ec:df:6a:1f:ac:4d:d0:03: e7:18:07:47:8b:01:d8:2a:fc:11:88:d6:04:a8:a4:27:f9:b5: 0e:4c:d6:fa:7c:b6:2d:c4:42:54:46:93:e0:f1:3e:75:f7:41: 32:ae:3c:c3:1a:6a:2c:0b:62:ea:77:ec:1d:0b:6f:4f:f8:37: 7f:14:75:d2:60:86:87:f6:d2:d9:14:9c:ec:b2:e3:90:8f:65: ac:ad:a3:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5NzIxMTAvBgNVBAUTKEFGNzk4NzQzREFCNjQ3ODY4QUI2NjY3M0FGN0ExMzZD MkVBMEVBNUIwHhcNMjQwNTA3MDEzODI2WhcNMjQwNTE0MDEzODI2WjAYMRYwFAYD VQQDEw02NjM5ODYxMi0wMzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7DiEdVS4TwSvYS8wKUEI2TBWeQqcQ99gZdP5fvkXmzVoBPHrs3ql7h8yT1V/ WurW88Rl1/xgl3huhf3rcAQeXbTbwHEsO4+SWkxS7h3WkpYCo1OJPxHAZYJ0mdKG pEdh87dmk9CiGLnvZR2Bk/DNvTJlqIKlJ9Ig/3PDOIegBIBZrjcPAmOOaDKhdPwO V12gh9WF5exe1IKoBQirafomCVXzDOjCFmS73woXi+zT06jfbstrf6zl1wb5LXeS tAuRgqzv0vXdKZCUn5O6deg2Pk5grf/00tDBjJx6YXwi9F6NazBKq4kSYYRrY8NW fL6iCvmPzyuBy3UueRD2PV9jtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDzciu1Z zbQGkLn1X5i+3FBsHqrcMB8GA1UdIwQYMBaAFK95h0PatkeGirZmc696E2wuoOpb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTk3Mi85QkY2QzQ0RUYw MzExMUVCOTVGNzY3NDhDNEY5QUUwMi9yM21IUTlxMlI0YUt0bVp6cjNvVGJDNmc2 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IzbUhROXEyUjRhS3RtWnpyM29UYkM2ZzZscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTk3Mi85QkY2QzQ0RUYwMzExMUVCOTVGNzY3NDhDNEY5QUUwMi9yM21IUTlxMlI0 YUt0bVp6cjNvVGJDNmc2bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaRTVPIPoZTyJcL8+q4pwTS9vV1KGI7aaNWSJYZ2qxiOBqwPLyT4Vb m08LemGf1ZXTpY54P3durp3uyqKckM0Fi5inV+GH/arFsLAcJE3aGKMgYTJEwWwZ cYRLuZYIrDyDT/yB1lsN6a1RudnvU940ebq4KLWgDHPUhRcjOFNcsgBkOgQv+NCc hsHVpgwK7Gu3tepZxH+nkcBnGA4ColXyapFHzHO7mOf57eKO7N9qH6xN0APnGAdH iwHYKvwRiNYEqKQn+bUOTNb6fLYtxEJURpPg8T5190EyrjzDGmosC2Lqd+wdC29P +Dd/FHXSYIaH9tLZFJzssuOQj2WsraPY -----END CERTIFICATE-----Generated at Tue May 7 03:10:24 2024 by rpki-client on console-ams.rpki-client.org