$ rpki-client -vvf rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.mft File: xq-SXz6kP06O56MUIYIWk7Gt9qE.mft (raw, json) Hash identifier: zLolm6+M80Lzi/k0ackzdT3LrWkv9LQK9m0sOoMJgL4= Subject key identifier: 4B:25:8B:BF:54:4B:A4:70:6A:9A:17:CF:80:F6:53:B6:B4:41:BC:8C Authority key identifier: C6:AF:92:5F:3E:A4:3F:4E:8E:E7:A3:14:21:82:16:93:B1:AD:F6:A1 Certificate issuer: /CN=A911E807/serialNumber=C6AF925F3EA43F4E8EE7A31421821693B1ADF6A1 Certificate serial: 05BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xq-SXz6kP06O56MUIYIWk7Gt9qE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.mft Manifest number: 05B4 Signing time: Sun 19 May 2024 00:12:25 +0000 Manifest this update: Sun 19 May 2024 00:12:25 +0000 Manifest next update: Sun 26 May 2024 00:12:25 +0000 Files and hashes: 1: xq-SXz6kP06O56MUIYIWk7Gt9qE.crl (hash: rwW6TQ2Bo7O8OSc7eLD19ZEHHX68Yzw//IHSJrQxY8w=) 2: 1A20AAF27BD311EBA6617987C4F9AE02.roa (hash: 6eHddETss++N0efl0wYCBKU3NII6SFsuAEjJL0+ySL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.crl rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xq-SXz6kP06O56MUIYIWk7Gt9qE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1468 (0x5bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E807/serialNumber=C6AF925F3EA43F4E8EE7A31421821693B1ADF6A1 Validity Not Before: May 19 00:12:25 2024 GMT Not After : May 26 00:12:25 2024 GMT Subject: CN=664943e9-2bc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:49:8d:14:df:a5:82:62:ba:c8:17:1c:ab:f4: 9e:bc:22:e4:3a:25:d8:ae:66:5d:f0:fe:37:f5:b2: 7c:2c:10:02:5f:dc:e8:68:89:10:d6:a2:fd:b8:11: c7:81:f7:69:3c:78:7f:58:8b:eb:b1:00:32:3e:1e: a1:1c:ae:c1:ce:63:0f:83:f9:2e:44:c8:89:15:bb: d3:de:7a:63:81:d2:8e:d3:03:ef:d5:c7:5f:f6:23: 3e:fa:f3:c2:d8:87:ba:11:1e:22:aa:6d:69:20:8a: 3c:f4:9f:31:53:bb:24:41:7e:16:65:d2:f6:af:2c: 20:6d:76:03:a2:23:a1:1e:cb:d2:d6:9a:b3:d7:92: 75:41:ff:6a:e2:ab:38:48:86:0c:f4:d9:1d:33:42: bd:4b:4b:4f:46:0a:5d:83:03:76:b3:f6:d2:80:ea: dc:38:aa:51:b0:f7:ec:db:b5:b9:8f:5f:a7:7b:4c: a4:f2:60:f2:65:91:32:23:e8:9b:bb:07:4d:e6:6b: 05:14:c7:54:f1:38:68:1a:1b:c6:08:d5:3b:bc:76: cc:b4:c8:e4:fb:ef:77:ac:43:f8:14:6e:9f:ee:cb: 0e:64:82:30:80:86:48:7f:8c:c8:a5:bf:ef:f6:0b: e8:ed:6e:37:49:c9:5f:84:a6:c0:79:2d:b8:8c:a9: db:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:25:8B:BF:54:4B:A4:70:6A:9A:17:CF:80:F6:53:B6:B4:41:BC:8C X509v3 Authority Key Identifier: keyid:C6:AF:92:5F:3E:A4:3F:4E:8E:E7:A3:14:21:82:16:93:B1:AD:F6:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xq-SXz6kP06O56MUIYIWk7Gt9qE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:1a:ca:6e:b1:fe:15:6a:f0:9b:b8:55:5b:45:4a:88:4d:d1: 27:7d:8e:de:81:af:cb:45:d2:58:04:80:8d:b0:90:7e:b1:12: 4c:ad:1c:ca:9a:6d:9f:d1:d4:38:5b:d7:4f:63:eb:91:76:46: df:45:9d:11:50:07:78:c6:99:6c:93:ab:36:52:5b:48:cb:96: 6a:c3:ed:0d:e1:28:62:dc:b4:65:42:3d:9c:55:37:13:03:2c: 53:bd:60:43:52:8c:55:4f:ff:44:60:ab:45:25:3a:5c:e0:af: 1d:e3:d4:cd:e3:83:c1:10:26:31:4f:1a:b5:c1:ea:da:f6:ef: eb:89:fe:9e:63:35:17:47:d3:4c:03:82:37:d9:84:b1:be:f7: 1b:8b:c2:88:55:5d:70:33:70:5d:69:d9:df:98:5e:95:bc:e6: bc:f2:48:e8:b8:ad:e6:de:a9:fa:24:33:3a:2c:3f:c2:18:8f: 15:52:ea:17:b2:3d:04:38:ab:07:89:fa:9e:63:89:0c:5a:bb: 94:c8:c4:dd:58:0d:f3:04:08:f2:23:68:07:5f:19:ae:22:97: 52:9f:39:80:7e:7e:4d:71:61:c2:fc:2f:6e:a8:cd:87:bf:23: f2:de:b3:65:27:b6:2a:d3:05:de:b1:57:11:f0:93:e6:14:96: 1a:72:c1:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU4MDcxMTAvBgNVBAUTKEM2QUY5MjVGM0VBNDNGNEU4RUU3QTMxNDIxODIxNjkz QjFBREY2QTEwHhcNMjQwNTE5MDAxMjI1WhcNMjQwNTI2MDAxMjI1WjAYMRYwFAYD VQQDEw02NjQ5NDNlOS0yYmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUmNFN+lgmK6yBccq/SevCLkOiXYrmZd8P439bJ8LBACX9zoaIkQ1qL9uBHH gfdpPHh/WIvrsQAyPh6hHK7BzmMPg/kuRMiJFbvT3npjgdKO0wPv1cdf9iM++vPC 2Ie6ER4iqm1pIIo89J8xU7skQX4WZdL2rywgbXYDoiOhHsvS1pqz15J1Qf9q4qs4 SIYM9NkdM0K9S0tPRgpdgwN2s/bSgOrcOKpRsPfs27W5j1+ne0yk8mDyZZEyI+ib uwdN5msFFMdU8ThoGhvGCNU7vHbMtMjk++93rEP4FG6f7ssOZIIwgIZIf4zIpb/v 9gvo7W43SclfhKbAeS24jKnbowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEsli79U S6RwapoXz4D2U7a0QbyMMB8GA1UdIwQYMBaAFMavkl8+pD9OjuejFCGCFpOxrfah MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTgwNy8yNjk2RjZDNjdC MzYxMUVCQkU4NzY0NjFDNEY5QUUwMi94cS1TWHo2a1AwNk81Nk1VSVlJV2s3R3Q5 cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hxLVNYejZrUDA2TzU2TVVJWUlXazdHdDlxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTgwNy8yNjk2RjZDNjdCMzYxMUVCQkU4NzY0NjFDNEY5QUUwMi94cS1TWHo2a1Aw Nk81Nk1VSVlJV2s3R3Q5cUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9Gspusf4VavCbuFVbRUqITdEnfY7ega/LRdJYBICNsJB+sRJMrRzK mm2f0dQ4W9dPY+uRdkbfRZ0RUAd4xplsk6s2UltIy5Zqw+0N4Shi3LRlQj2cVTcT AyxTvWBDUoxVT/9EYKtFJTpc4K8d49TN44PBECYxTxq1wera9u/rif6eYzUXR9NM A4I32YSxvvcbi8KIVV1wM3BdadnfmF6VvOa88kjouK3m3qn6JDM6LD/CGI8VUuoX sj0EOKsHifqeY4kMWruUyMTdWA3zBAjyI2gHXxmuIpdSnzmAfn5NcWHC/C9uqM2H vyPy3rNlJ7Yq0wXesVcR8JPmFJYacsG3 -----END CERTIFICATE-----Generated at Sun May 19 00:59:40 2024 by rpki-client on console-fra.rpki-client.org