$ rpki-client -vvf rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft File: XUofz1MBwCdZyE7qVZFeJcFxpz8.mft (raw, json) Hash identifier: ncwbqk3POaC3WQ4MsZuMpMi6nsP1Wjg+LkzbnLhzsbM= Subject key identifier: DA:87:87:C3:EB:D2:39:DE:80:A2:36:95:61:08:96:6E:D7:1E:38:89 Authority key identifier: 5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F Certificate issuer: /CN=A91194E9/serialNumber=5D4A1FCF5301C02759C84EEA55915E25C171A73F Certificate serial: 01D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft Manifest number: 01CC Signing time: Sun 19 May 2024 04:25:07 +0000 Manifest this update: Sun 19 May 2024 04:25:07 +0000 Manifest next update: Sun 26 May 2024 04:25:07 +0000 Files and hashes: 1: XUofz1MBwCdZyE7qVZFeJcFxpz8.crl (hash: c3y/hNxr8RKksTl/1mKsnaSFWbHiQtNBsOFl7sD/Ao4=) 2: 388802BC067711EDA1DEB529C4F9AE02.roa (hash: 9JK39+YBCWgZM+DH+/r8YX8dHd7Tkhl9Fw94zVgc7kI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91194E9/serialNumber=5D4A1FCF5301C02759C84EEA55915E25C171A73F Validity Not Before: May 19 04:25:07 2024 GMT Not After : May 26 04:25:07 2024 GMT Subject: CN=66497f23-be82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:61:b1:a1:3a:d5:3b:06:56:1b:8d:85:aa:f3: c6:fb:67:76:ba:7c:e1:7c:1d:e5:07:e3:57:ad:1f: 1c:50:e1:d7:a4:c6:15:f4:66:dc:ea:a7:26:11:f0: 67:3b:ab:ee:79:71:12:d0:bf:20:74:69:f9:95:51: fc:5c:5d:e6:0c:3b:08:f5:1c:b6:cb:2d:2d:0c:b7: b5:2e:e5:b6:23:2e:08:69:73:15:ee:fd:7f:79:04: db:14:16:95:68:06:9a:40:d5:05:98:5e:47:3a:27: 4d:20:4b:62:5a:83:5f:d1:13:82:eb:4d:aa:58:d8: 1e:59:6c:f7:df:ea:82:0f:42:db:bb:32:8e:7d:ef: 67:1d:7f:5b:85:d0:85:af:70:49:0e:91:05:77:b0: 4a:d8:7c:53:c4:55:1b:5f:d7:59:23:2a:7a:f7:e2: 7b:9c:0c:0b:31:67:cf:5c:a7:43:d8:4d:45:b6:19: 42:4f:5e:68:7a:90:89:62:de:cd:72:e0:9d:dc:f0: 9a:fd:8a:14:4e:17:30:af:88:07:54:34:8f:76:8d: f6:b6:06:3a:1f:fe:55:ce:ca:1e:b9:e3:70:39:d1: ee:bd:7c:64:b5:13:0f:5b:64:61:70:0c:f1:92:25: af:a4:55:27:d4:87:3b:2e:25:c5:09:e9:ea:98:1c: 94:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:87:87:C3:EB:D2:39:DE:80:A2:36:95:61:08:96:6E:D7:1E:38:89 X509v3 Authority Key Identifier: keyid:5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:c8:71:27:fc:06:33:a2:69:8f:16:13:e9:a9:58:23:17:fb: 87:81:41:45:54:e4:e5:33:a9:64:19:5e:44:7c:00:fc:11:f8: 79:ee:23:95:f6:13:b4:5b:fc:46:5a:32:84:35:58:9f:d6:0a: 08:93:25:d1:cb:04:7d:fa:4f:c9:34:db:c1:37:64:8d:f4:1a: ed:1e:1c:43:8b:d4:e7:91:a2:8c:17:ee:51:c2:84:83:74:cd: fb:12:80:69:f8:b4:e2:c1:67:30:ac:a4:c7:21:b1:d1:ad:7f: 0d:77:54:fc:ca:3d:51:db:03:e6:56:b2:78:09:d2:33:fe:7c: fe:ee:64:af:19:27:31:22:83:f6:e8:c0:90:39:c8:2e:1e:81: 48:b1:eb:37:d7:c5:33:e5:ff:60:7e:f3:71:7e:83:a1:68:c6: 64:7d:f5:10:03:0d:93:05:ad:d6:9b:fc:0a:12:7d:09:21:8f: 05:51:e1:bc:a6:37:e2:92:33:97:e8:ce:8f:42:b9:e9:57:92: 89:1f:c4:df:c8:7b:32:a6:73:76:77:3d:ca:40:9c:8d:b8:83: 8d:c4:49:b3:a0:02:e9:78:9b:fb:26:22:5d:d3:08:12:eb:9b: 7b:b9:3d:5f:5e:12:7e:a3:89:65:ce:01:80:ed:c4:a4:31:2e: 59:1d:09:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk0RTkxMTAvBgNVBAUTKDVENEExRkNGNTMwMUMwMjc1OUM4NEVFQTU1OTE1RTI1 QzE3MUE3M0YwHhcNMjQwNTE5MDQyNTA3WhcNMjQwNTI2MDQyNTA3WjAYMRYwFAYD VQQDEw02NjQ5N2YyMy1iZTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWGxoTrVOwZWG42FqvPG+2d2unzhfB3lB+NXrR8cUOHXpMYV9Gbc6qcmEfBn O6vueXES0L8gdGn5lVH8XF3mDDsI9Ry2yy0tDLe1LuW2Iy4IaXMV7v1/eQTbFBaV aAaaQNUFmF5HOidNIEtiWoNf0ROC602qWNgeWWz33+qCD0LbuzKOfe9nHX9bhdCF r3BJDpEFd7BK2HxTxFUbX9dZIyp69+J7nAwLMWfPXKdD2E1FthlCT15oepCJYt7N cuCd3PCa/YoUThcwr4gHVDSPdo32tgY6H/5VzsoeueNwOdHuvXxktRMPW2RhcAzx kiWvpFUn1Ic7LiXFCenqmByUbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqHh8Pr 0jnegKI2lWEIlm7XHjiJMB8GA1UdIwQYMBaAFF1KH89TAcAnWchO6lWRXiXBcac/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTRFOS9DNUQ1RTRDQTA2 NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndDZFp5RTdxVlpGZUpjRnhw ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVb2Z6MU1Cd0NkWnlFN3FWWkZlSmNGeHB6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTRFOS9DNUQ1RTRDQTA2NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndD ZFp5RTdxVlpGZUpjRnhwejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmyHEn/AYzommPFhPpqVgjF/uHgUFFVOTlM6lkGV5EfAD8Efh57iOV 9hO0W/xGWjKENVif1goIkyXRywR9+k/JNNvBN2SN9BrtHhxDi9TnkaKMF+5RwoSD dM37EoBp+LTiwWcwrKTHIbHRrX8Nd1T8yj1R2wPmVrJ4CdIz/nz+7mSvGScxIoP2 6MCQOcguHoFIses318Uz5f9gfvNxfoOhaMZkffUQAw2TBa3Wm/wKEn0JIY8FUeG8 pjfikjOX6M6PQrnpV5KJH8TfyHsypnN2dz3KQJyNuIONxEmzoALpeJv7JiJd0wgS 65t7uT1fXhJ+o4llzgGA7cSkMS5ZHQk8 -----END CERTIFICATE-----Generated at Sun May 19 05:08:03 2024 by rpki-client on console-ams.rpki-client.org