$ rpki-client -vvf rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft File: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft (raw, json) Hash identifier: /km0cTNVWLmh7RH4v+KOBXgZQwi5J/FpkOf68yoPhzc= Subject key identifier: AE:05:47:27:53:D2:FF:AE:04:46:AE:33:DF:0D:55:04:7A:1B:78:85 Authority key identifier: C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 Certificate issuer: /CN=A91243FE/serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Certificate serial: 02ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft Manifest number: 02EA Signing time: Sun 19 May 2024 03:17:28 +0000 Manifest this update: Sun 19 May 2024 03:17:28 +0000 Manifest next update: Sun 26 May 2024 03:17:28 +0000 Files and hashes: 1: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl (hash: eI9Nhrj2M3H6Y0XKtTZH5/khSei40HBV4NB4pwz+CJg=) 2: 5ADF4C92956811EC9028F155C4F9AE02.roa (hash: Bu3Y51K40CQI6i7+VAA30ksmXoBC9MegfCewbd1mMKY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 749 (0x2ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91243FE/serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Validity Not Before: May 19 03:17:28 2024 GMT Not After : May 26 03:17:28 2024 GMT Subject: CN=66496f48-2f4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b2:b5:a0:6b:58:5d:ff:dc:75:22:cd:80:a7: c8:0a:1e:08:3c:09:b0:f4:4b:a6:8c:ed:95:83:93: c3:71:7c:c4:3b:ed:e4:c9:36:cc:30:25:fe:7e:79: 88:32:a3:42:f9:e6:1d:61:af:aa:eb:a2:a9:06:73: 91:57:b1:1d:45:3a:ab:c4:b9:5d:0e:9f:6d:17:a1: ad:9c:e0:f4:4a:90:e9:64:a4:de:6e:f2:70:dd:d5: b0:b3:0b:83:44:a2:b0:ca:7f:a2:b5:1b:5a:ae:62: f4:b1:75:c9:0c:c7:e5:68:9e:ad:20:7e:47:1c:dc: 66:cf:da:f0:7a:35:47:d8:ef:42:5c:ad:57:b9:27: e7:1c:6f:8b:af:37:71:68:52:d0:69:ea:26:ed:13: 09:77:35:e9:2f:da:32:c4:44:c3:2d:ee:20:c7:22: 43:1f:03:2a:42:a1:19:42:7e:0a:c8:2f:28:71:00: 3e:f4:31:46:f3:9e:e9:1f:f7:c3:dd:95:4d:10:0a: 0d:f3:48:10:18:24:22:41:b9:cd:15:84:66:3f:00: 7d:47:e7:11:46:0f:52:d1:47:23:01:c7:3d:e5:f2: da:dd:a4:7f:ad:c9:47:40:48:a8:d6:10:40:cb:60: 90:ca:b4:fb:8f:3d:62:1b:3c:2e:d7:ac:28:ad:6d: 98:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:05:47:27:53:D2:FF:AE:04:46:AE:33:DF:0D:55:04:7A:1B:78:85 X509v3 Authority Key Identifier: keyid:C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:b1:98:31:70:7e:ec:5f:ba:9a:1b:e7:d6:0e:6d:f0:23:5d: de:54:4b:18:35:fe:66:2e:cd:2f:f7:45:8b:9c:32:0b:e2:96: 33:7e:c3:c5:50:2b:0f:c5:cd:7b:74:98:0d:4b:32:5f:2c:d5: 76:e9:23:a2:a5:b5:e5:9a:04:08:c2:30:cd:b8:56:0d:12:1a: b7:21:80:f3:f0:71:2a:77:23:e8:13:be:b2:55:6e:35:68:3f: a9:ae:43:0e:6d:9c:37:ac:b4:65:bd:04:52:04:59:e8:03:68: 97:c3:7e:7d:59:c9:8b:bf:06:83:ff:da:53:92:22:2d:83:f2: da:9f:28:b1:8d:62:f2:33:a4:36:2c:58:9b:97:20:d8:25:80: ff:36:e2:0d:24:a5:ee:7b:b8:a5:43:31:10:17:74:ee:2b:11: 97:f1:ab:69:5c:4d:2d:89:e4:d0:12:08:29:7f:9f:3f:ed:24: 2c:3c:a2:63:53:49:2b:70:89:42:eb:10:07:20:6e:1f:f9:cc: 5c:76:40:e3:7f:1a:0a:c9:8b:62:64:b5:2a:bd:56:16:9f:af: 74:59:47:39:c5:b3:fb:2f:a1:b1:76:ec:98:02:b1:02:e6:82: 8f:5c:ce:0c:62:b8:46:25:05:c3:08:40:d5:fa:90:e8:68:83: a2:87:e6:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzRkUxMTAvBgNVBAUTKEM3MEJGM0RGRjQ1MDIzRDQxQUY0QzRERjVENzY1MDQw QjkyNDFBQzcwHhcNMjQwNTE5MDMxNzI4WhcNMjQwNTI2MDMxNzI4WjAYMRYwFAYD VQQDEw02NjQ5NmY0OC0yZjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rK1oGtYXf/cdSLNgKfICh4IPAmw9EumjO2Vg5PDcXzEO+3kyTbMMCX+fnmI MqNC+eYdYa+q66KpBnORV7EdRTqrxLldDp9tF6GtnOD0SpDpZKTebvJw3dWwswuD RKKwyn+itRtarmL0sXXJDMflaJ6tIH5HHNxmz9rwejVH2O9CXK1XuSfnHG+Lrzdx aFLQaeom7RMJdzXpL9oyxETDLe4gxyJDHwMqQqEZQn4KyC8ocQA+9DFG857pH/fD 3ZVNEAoN80gQGCQiQbnNFYRmPwB9R+cRRg9S0UcjAcc95fLa3aR/rclHQEio1hBA y2CQyrT7jz1iGzwu16worW2YkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4FRydT 0v+uBEauM98NVQR6G3iFMB8GA1UdIwQYMBaAFMcL89/0UCPUGvTE3112UEC5JBrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDNGRS85ODE0ODA2Mjk1 NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5UWE5TVRmWFhaUVFMa2tH c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3dnozX1JRSTlRYTlNVGZYWFpRUUxra0dzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDNGRS85ODE0ODA2Mjk1NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5 UWE5TVRmWFhaUVFMa2tHc2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvsZgxcH7sX7qaG+fWDm3wI13eVEsYNf5mLs0v90WLnDIL4pYzfsPF UCsPxc17dJgNSzJfLNV26SOipbXlmgQIwjDNuFYNEhq3IYDz8HEqdyPoE76yVW41 aD+prkMObZw3rLRlvQRSBFnoA2iXw359WcmLvwaD/9pTkiItg/LanyixjWLyM6Q2 LFiblyDYJYD/NuINJKXue7ilQzEQF3TuKxGX8atpXE0tieTQEggpf58/7SQsPKJj U0krcIlC6xAHIG4f+cxcdkDjfxoKyYtiZLUqvVYWn690WUc5xbP7L6GxduyYArEC 5oKPXM4MYrhGJQXDCEDV+pDoaIOih+Zk -----END CERTIFICATE-----Generated at Sun May 19 03:48:50 2024 by rpki-client on console-fra.rpki-client.org