$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft File: zFfgNkMaXqPBcqpyg0Aa88StXFk.mft (raw, json) Hash identifier: bYHwfklJbaYD3aPwFs0sr36ggYAq4xHnebyf/osWhNM= Subject key identifier: 14:4D:F2:3D:74:81:84:89:8A:04:10:DA:F8:48:3A:49:AA:52:03:BB Authority key identifier: CC:57:E0:36:43:1A:5E:A3:C1:72:AA:72:83:40:1A:F3:C4:AD:5C:59 Certificate issuer: /CN=A91FDC78/serialNumber=CC57E036431A5EA3C172AA7283401AF3C4AD5C59 Certificate serial: 0830 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft Manifest number: 0823 Signing time: Mon 06 May 2024 21:55:09 +0000 Manifest this update: Mon 06 May 2024 21:55:08 +0000 Manifest next update: Mon 13 May 2024 21:55:08 +0000 Files and hashes: 1: zFfgNkMaXqPBcqpyg0Aa88StXFk.crl (hash: BtPZPGQz61oTQb+bXXPTUzmhCd1OpzQxxjY8gkdVRJc=) 2: 6BC3CFFCAEAF11EAB092EE6BC4F9AE02.roa (hash: XGbDDV66bAzoojuwchkvz9g9032oFFLBbcaVWzJ0vHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.crl rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2096 (0x830) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDC78/serialNumber=CC57E036431A5EA3C172AA7283401AF3C4AD5C59 Validity Not Before: May 6 21:55:08 2024 GMT Not After : May 13 21:55:08 2024 GMT Subject: CN=663951bc-91d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0e:15:d1:57:05:57:d6:93:78:e9:ca:4b:85: 83:ba:81:f5:93:d9:46:38:ed:16:ca:37:db:4d:e8: 1c:6d:0c:ef:58:1d:67:e4:e9:58:d5:89:9c:ac:c1: 05:03:34:97:39:3c:b5:0f:9b:64:60:42:aa:c9:a0: 6c:46:84:af:a3:b3:1e:ea:1c:be:cd:2f:ed:f4:37: b9:ea:90:61:e4:20:bd:86:82:55:8d:d9:9e:ca:bb: 58:71:f1:9b:37:a5:3f:b9:37:0a:51:95:c5:81:5b: 12:4c:e4:63:56:7c:81:32:a3:76:35:03:dd:52:a0: 16:8c:77:b2:ce:ae:3b:68:29:e6:9c:5f:47:39:14: b3:ce:ef:38:b7:a5:b5:c3:d8:c0:63:f6:90:ec:8a: 17:54:fb:2d:c5:c8:e8:2d:a1:d3:f2:bd:03:5e:8b: 53:02:1f:f3:f7:21:fc:54:04:84:9b:bc:89:fa:a0: 1e:7b:da:56:d9:54:35:2d:24:96:1b:ee:86:87:a5: 8b:77:18:72:05:62:56:9a:fc:0d:fe:0e:2e:6f:80: 8b:dd:25:5d:65:67:80:0b:14:35:86:01:d2:4e:c8: 33:fb:42:ec:73:5a:3a:b1:1a:af:35:be:53:3c:74: 67:a1:43:fa:83:22:00:ae:39:f3:43:ad:aa:81:83: 65:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:4D:F2:3D:74:81:84:89:8A:04:10:DA:F8:48:3A:49:AA:52:03:BB X509v3 Authority Key Identifier: keyid:CC:57:E0:36:43:1A:5E:A3:C1:72:AA:72:83:40:1A:F3:C4:AD:5C:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:03:be:ce:87:54:96:dd:9d:e7:eb:f2:d1:96:f4:de:ff:49: 22:03:0f:93:b7:e6:8c:30:7f:fb:f4:5a:9b:60:35:3a:02:0c: f2:e5:6d:0d:d5:3c:c5:d5:29:5b:35:82:66:37:e7:bc:7d:37: db:eb:3f:01:1d:c1:57:d0:d1:a5:57:a0:6b:76:40:ff:81:fb: ec:b9:16:95:0a:af:1d:7d:04:45:90:7a:44:79:65:0a:c5:c0: bd:53:cd:db:a6:d2:61:7d:17:55:a1:a4:81:a5:c0:5b:01:54: 30:fb:f1:dd:bb:eb:93:96:f8:67:05:0e:cf:ae:29:c4:ea:74: 1c:9f:4a:d0:3d:f0:75:1c:f3:ec:80:85:74:ea:64:14:89:ec: 01:9d:46:b0:e6:1b:cb:a1:26:55:61:92:34:93:b2:75:8c:04: bc:05:ad:ff:5d:3a:f6:a0:7c:56:c7:cb:19:c0:3a:04:e5:84: 25:79:67:2f:80:d4:aa:95:a6:fa:d2:12:b5:f7:18:65:f3:81: 17:b9:d4:3a:b3:68:bc:69:e2:d7:b6:25:2e:ec:9e:4a:38:59: 7f:89:e9:4b:e7:e8:07:27:fd:23:e9:8e:33:b6:36:f9:fd:4d: e4:79:28:17:62:c7:e1:1c:4d:74:9c:bf:cc:65:c8:b8:cc:fb: 07:b7:c0:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRDNzgxMTAvBgNVBAUTKENDNTdFMDM2NDMxQTVFQTNDMTcyQUE3MjgzNDAxQUYz QzRBRDVDNTkwHhcNMjQwNTA2MjE1NTA4WhcNMjQwNTEzMjE1NTA4WjAYMRYwFAYD VQQDEw02NjM5NTFiYy05MWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2w4V0VcFV9aTeOnKS4WDuoH1k9lGOO0WyjfbTegcbQzvWB1n5OlY1YmcrMEF AzSXOTy1D5tkYEKqyaBsRoSvo7Me6hy+zS/t9De56pBh5CC9hoJVjdmeyrtYcfGb N6U/uTcKUZXFgVsSTORjVnyBMqN2NQPdUqAWjHeyzq47aCnmnF9HORSzzu84t6W1 w9jAY/aQ7IoXVPstxcjoLaHT8r0DXotTAh/z9yH8VASEm7yJ+qAee9pW2VQ1LSSW G+6Gh6WLdxhyBWJWmvwN/g4ub4CL3SVdZWeACxQ1hgHSTsgz+0Lsc1o6sRqvNb5T PHRnoUP6gyIArjnzQ62qgYNlcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBRN8j10 gYSJigQQ2vhIOkmqUgO7MB8GA1UdIwQYMBaAFMxX4DZDGl6jwXKqcoNAGvPErVxZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREM3OC8xNTQ3NDAwOEFF QUMxMUVBQTZDMUQ3NjFDNEY5QUUwMi96RmZnTmtNYVhxUEJjcXB5ZzBBYTg4U3RY RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGZmdOa01hWHFQQmNxcHlnMEFhODhTdFhGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REM3OC8xNTQ3NDAwOEFFQUMxMUVBQTZDMUQ3NjFDNEY5QUUwMi96RmZnTmtNYVhx UEJjcXB5ZzBBYTg4U3RYRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8A77Oh1SW3Z3n6/LRlvTe/0kiAw+Tt+aMMH/79FqbYDU6Agzy5W0N 1TzF1SlbNYJmN+e8fTfb6z8BHcFX0NGlV6BrdkD/gfvsuRaVCq8dfQRFkHpEeWUK xcC9U83bptJhfRdVoaSBpcBbAVQw+/Hdu+uTlvhnBQ7PrinE6nQcn0rQPfB1HPPs gIV06mQUiewBnUaw5hvLoSZVYZI0k7J1jAS8Ba3/XTr2oHxWx8sZwDoE5YQleWcv gNSqlab60hK19xhl84EXudQ6s2i8aeLXtiUu7J5KOFl/ielL5+gHJ/0j6Y4ztjb5 /U3keSgXYsfhHE10nL/MZci4zPsHt8BH -----END CERTIFICATE-----Generated at Mon May 6 22:41:06 2024 by rpki-client on console-ams.rpki-client.org