$ rpki-client -vvf rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft File: Xtho2ocq-NaWpcGp-ngp9lJzynk.mft (raw, json) Hash identifier: xNPOcMyiMwkTT6gXClgpur0JQBfCEPoujLIOG1GKS4A= Subject key identifier: 8D:00:8C:59:16:18:08:EA:92:B2:2C:5D:F6:80:BA:F5:EB:BC:C0:D0 Authority key identifier: 5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 Certificate issuer: /CN=A9119B43/serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Certificate serial: 03B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft Manifest number: 03AB Signing time: Sun 19 May 2024 02:32:09 +0000 Manifest this update: Sun 19 May 2024 02:32:09 +0000 Manifest next update: Sun 26 May 2024 02:32:09 +0000 Files and hashes: 1: Xtho2ocq-NaWpcGp-ngp9lJzynk.crl (hash: +RhZGm82i1KtDGMXE2EMzwtjthXXYR7EZG2m8DcWPJg=) 2: 6C27C19E4BFA11ECA6797F6DC4F9AE02.roa (hash: SODAYGPYQawO4rdlay5Bj39kX/bHXB46bA4JgyNvlAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 946 (0x3b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119B43/serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Validity Not Before: May 19 02:32:09 2024 GMT Not After : May 26 02:32:09 2024 GMT Subject: CN=664964a9-2497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ad:c9:aa:d6:cd:d2:d7:3e:ba:c9:03:8a:8c: 9b:62:3e:00:21:d5:e4:dc:dc:fc:d2:4b:ec:ce:4e: dc:e3:96:99:9d:21:fb:7e:25:f0:16:34:d0:5e:23: 63:a4:c8:26:51:4c:45:34:f6:eb:58:d4:7c:87:77: 7f:60:31:80:35:35:e1:41:47:1c:aa:83:e9:f7:00: 25:49:e1:73:5e:cd:b2:ff:66:9a:d9:94:dc:7f:a1: dc:7c:61:54:cf:34:c5:73:3d:83:1d:c1:40:01:b8: d1:93:c2:14:a9:f7:57:4f:e0:75:c5:c0:ef:85:7f: 49:d0:b9:cb:dd:b8:ac:2b:07:4f:c4:d2:23:45:49: 23:74:9e:2a:95:bd:b0:bc:bb:73:93:3b:82:3c:6b: c0:6a:f7:ef:c1:c2:13:c8:d1:ee:e8:35:71:78:66: d3:b9:4f:f6:9f:8c:2c:2c:d1:1b:0e:cf:68:d6:40: 9b:61:02:8e:fe:b0:50:43:1e:bf:f4:39:68:99:b9: 39:95:85:44:05:a3:5e:13:14:db:29:7d:54:4b:d8: a0:ce:57:42:cf:17:ef:eb:d5:c5:82:ff:08:6e:c9: aa:fd:a9:a5:5b:b8:f9:8d:1a:90:bf:54:0a:c7:57: e7:d8:30:52:cb:0f:07:32:10:ee:68:ff:fd:0d:8b: ad:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:00:8C:59:16:18:08:EA:92:B2:2C:5D:F6:80:BA:F5:EB:BC:C0:D0 X509v3 Authority Key Identifier: keyid:5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:68:c6:65:70:c7:39:14:03:f0:91:4f:76:d1:94:30:6b:3c: a1:1b:86:ba:1a:0c:aa:84:58:65:62:ae:b1:5c:e2:d2:4a:ca: 48:ff:85:65:46:01:28:6b:be:e2:e4:d1:a7:8a:d7:6d:cc:56: f1:11:96:f4:08:d5:d1:95:ca:d1:38:7a:f2:6e:48:6d:ea:d9: 82:c6:43:88:a2:d6:d1:f7:50:d5:06:65:c0:3e:9d:96:fd:88: 90:0e:16:f3:e2:e0:c8:1c:f7:e8:40:12:5f:36:70:6c:57:0d: 95:8a:d1:af:d7:ef:3c:13:38:f0:8e:6d:33:53:f5:cf:3f:80: de:d7:ee:00:b9:07:3c:15:82:5b:bd:72:7d:97:68:bf:00:27: 0a:e9:d6:15:b8:08:f5:f1:65:b8:1d:6c:b4:97:e4:00:03:40: 6e:78:9a:ba:18:2a:3b:c7:2c:e9:31:a8:0c:43:f5:2a:5e:14: 4b:44:74:ef:1e:d1:ed:e2:49:1b:6f:72:e7:29:91:c8:c2:dd: 78:04:27:d9:f7:97:29:dc:d7:a7:83:96:0b:0a:0f:df:c5:0c: f1:a4:27:48:cf:45:97:2f:56:67:ac:d5:63:f6:0d:79:9e:81: 62:d9:4b:a5:80:91:d3:46:df:0b:d8:7a:fb:25:36:d3:e5:c0: 5c:37:31:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlCNDMxMTAvBgNVBAUTKDVFRDg2OERBODcyQUY4RDY5NkE1QzFBOUZBNzgyOUY2 NTI3M0NBNzkwHhcNMjQwNTE5MDIzMjA5WhcNMjQwNTI2MDIzMjA5WjAYMRYwFAYD VQQDEw02NjQ5NjRhOS0yNDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwa3JqtbN0tc+uskDioybYj4AIdXk3Nz80kvszk7c45aZnSH7fiXwFjTQXiNj pMgmUUxFNPbrWNR8h3d/YDGANTXhQUccqoPp9wAlSeFzXs2y/2aa2ZTcf6HcfGFU zzTFcz2DHcFAAbjRk8IUqfdXT+B1xcDvhX9J0LnL3bisKwdPxNIjRUkjdJ4qlb2w vLtzkzuCPGvAavfvwcITyNHu6DVxeGbTuU/2n4wsLNEbDs9o1kCbYQKO/rBQQx6/ 9Dlombk5lYVEBaNeExTbKX1US9igzldCzxfv69XFgv8Ibsmq/amlW7j5jRqQv1QK x1fn2DBSyw8HMhDuaP/9DYut3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI0AjFkW GAjqkrIsXfaAuvXrvMDQMB8GA1UdIwQYMBaAFF7YaNqHKvjWlqXBqfp4KfZSc8p5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUI0My9FNUI4Mzk4MjRC M0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1OYVdwY0dwLW5ncDlsSnp5 bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h0aG8yb2NxLU5hV3BjR3AtbmdwOWxKenluay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUI0My9FNUI4Mzk4MjRCM0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1O YVdwY0dwLW5ncDlsSnp5bmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNaMZlcMc5FAPwkU920ZQwazyhG4a6GgyqhFhlYq6xXOLSSspI/4Vl RgEoa77i5NGnitdtzFbxEZb0CNXRlcrROHrybkht6tmCxkOIotbR91DVBmXAPp2W /YiQDhbz4uDIHPfoQBJfNnBsVw2VitGv1+88Ezjwjm0zU/XPP4De1+4AuQc8FYJb vXJ9l2i/ACcK6dYVuAj18WW4HWy0l+QAA0BueJq6GCo7xyzpMagMQ/UqXhRLRHTv HtHt4kkbb3LnKZHIwt14BCfZ95cp3Neng5YLCg/fxQzxpCdIz0WXL1ZnrNVj9g15 noFi2UulgJHTRt8L2Hr7JTbT5cBcNzEb -----END CERTIFICATE-----Generated at Sun May 19 03:14:48 2024 by rpki-client on console-fra.rpki-client.org