$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft File: xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft (raw, json) Hash identifier: gyrTAro0AvI/R658XtTb2iYi++hR+ovU0gwOh60oCXY= Subject key identifier: 20:EA:1F:82:4B:3F:0D:52:3B:7F:FF:F2:38:63:75:7C:C3:98:2F:FD Authority key identifier: C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E Certificate issuer: /CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Certificate serial: 05AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft Manifest number: 05A7 Signing time: Sun 19 May 2024 00:17:42 +0000 Manifest this update: Sun 19 May 2024 00:17:42 +0000 Manifest next update: Sun 26 May 2024 00:17:42 +0000 Files and hashes: 1: xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl (hash: yiL/REjPdkSQKz3+ptOKnhGVKxmUxFQ7z1OmAlMr9r4=) 2: 485D694A454911EEB8718378C4F9AE02.roa (hash: HR3nRfisYSDKZvt9Zn5nDd8WaOUGmkOPBRh02Z+ySnk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1450 (0x5aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Validity Not Before: May 19 00:17:42 2024 GMT Not After : May 26 00:17:42 2024 GMT Subject: CN=66494526-0c28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:58:7b:01:37:b8:ad:dd:20:bd:e0:c3:34:cb: 9e:9a:21:36:56:34:c6:c5:69:4e:7a:18:27:bd:50: 45:41:75:e6:c5:24:e3:f7:ed:bb:5d:a7:45:71:cd: 61:ae:49:9b:cf:8a:97:97:c6:4d:20:b8:b6:93:cb: 96:b7:8d:ab:fd:7d:3f:e6:a3:d5:fb:cd:10:65:2c: 55:b5:4e:2c:d1:51:49:57:9c:03:1e:76:99:43:2b: 0f:0a:2a:6c:27:51:55:17:9c:e3:54:2d:9d:0b:be: f4:c8:d3:dc:c6:20:87:a1:bd:da:93:e2:2b:d7:e2: d3:00:30:86:30:f4:e2:fb:2b:e9:36:28:af:6f:0f: de:6b:7a:48:10:13:40:0a:c2:aa:14:72:ca:70:54: bf:1c:e3:56:72:73:f3:3b:b1:46:90:eb:7b:9e:f2: 61:5d:a4:2d:2a:8c:ea:ab:9b:6c:1b:d0:1c:50:db: bf:3d:8b:5f:45:cc:3f:ae:14:24:8c:a7:8d:60:60: 4e:46:81:67:4a:16:bc:ed:f5:9d:78:fd:74:92:a4: cc:ab:6c:eb:eb:9a:d2:a9:33:93:46:86:ec:a0:47: cf:14:bf:c3:d1:22:d0:44:7d:8e:d7:37:6b:0d:f8: dd:f1:00:96:d6:12:0e:93:0a:1d:32:c0:33:9d:d6: 84:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:EA:1F:82:4B:3F:0D:52:3B:7F:FF:F2:38:63:75:7C:C3:98:2F:FD X509v3 Authority Key Identifier: keyid:C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:c0:49:6b:fc:17:9f:14:ad:38:ba:1b:ea:7b:6d:20:08:74: 87:45:90:a2:c0:78:8c:aa:53:46:09:96:4d:b2:10:5a:e8:3a: 58:5d:0c:52:b3:6b:e4:a5:f6:74:0b:77:b2:26:f2:b4:50:10: 85:88:65:33:1e:05:93:6d:b6:c2:27:8a:6a:bc:88:23:5b:9d: f8:a0:00:97:6c:29:ec:6d:58:8c:dc:a1:fd:08:31:42:10:23: 20:97:0e:ef:ff:7e:90:3d:8a:84:e2:9e:df:be:28:d4:27:07: ca:bd:da:b3:9b:68:5e:b6:3b:c0:2c:92:f8:20:16:91:fc:3b: 64:22:00:b4:31:de:87:45:41:f7:4d:f4:8c:56:10:45:b6:ab: 28:8c:fa:5a:ef:4d:ec:49:14:3f:4e:3e:2b:2e:b5:30:2b:b9: 52:86:02:c2:15:3c:59:3b:d3:eb:84:5e:78:31:ce:55:cd:a6: 09:09:44:f9:50:53:1d:20:ef:d5:0a:1a:94:42:98:2b:49:a0: 8b:ec:28:b6:ed:9e:da:1d:a7:b3:c7:8c:a4:94:ab:f6:ed:a7: d3:e9:f7:a4:d8:3c:58:62:7e:2a:19:f8:22:f9:2b:ee:67:f8: 04:f6:cd:0a:8f:2d:11:9f:0d:49:2a:ea:b3:c3:85:6a:db:0c: db:08:3b:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEM3MEI0RTA0N0NBQTczNzcyNEI4OUQ1ODREQjVDMEMx QTg1OEQyOEUwHhcNMjQwNTE5MDAxNzQyWhcNMjQwNTI2MDAxNzQyWjAYMRYwFAYD VQQDEw02NjQ5NDUyNi0wYzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1h7ATe4rd0gveDDNMuemiE2VjTGxWlOehgnvVBFQXXmxSTj9+27XadFcc1h rkmbz4qXl8ZNILi2k8uWt42r/X0/5qPV+80QZSxVtU4s0VFJV5wDHnaZQysPCips J1FVF5zjVC2dC770yNPcxiCHob3ak+Ir1+LTADCGMPTi+yvpNiivbw/ea3pIEBNA CsKqFHLKcFS/HONWcnPzO7FGkOt7nvJhXaQtKozqq5tsG9AcUNu/PYtfRcw/rhQk jKeNYGBORoFnSha87fWdeP10kqTMq2zr65rSqTOTRobsoEfPFL/D0SLQRH2O1zdr Dfjd8QCW1hIOkwodMsAzndaErQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDqH4JL Pw1SO3//8jhjdXzDmC/9MB8GA1UdIwQYMBaAFMcLTgR8qnN3JLidWE21wMGoWNKO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi9GQUNDQkM1QzdG QUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMzY2t1SjFZVGJYQXdhaFkw bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h3dE9CSHlxYzNja3VKMVlUYlhBd2FoWTBvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi9GQUNDQkM1QzdGQUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMz Y2t1SjFZVGJYQXdhaFkwbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDwElr/BefFK04uhvqe20gCHSHRZCiwHiMqlNGCZZNshBa6DpYXQxS s2vkpfZ0C3eyJvK0UBCFiGUzHgWTbbbCJ4pqvIgjW534oACXbCnsbViM3KH9CDFC ECMglw7v/36QPYqE4p7fvijUJwfKvdqzm2hetjvALJL4IBaR/DtkIgC0Md6HRUH3 TfSMVhBFtqsojPpa703sSRQ/Tj4rLrUwK7lShgLCFTxZO9PrhF54Mc5VzaYJCUT5 UFMdIO/VChqUQpgrSaCL7Ci27Z7aHaezx4yklKv27afT6fek2DxYYn4qGfgi+Svu Z/gE9s0Kjy0Rnw1JKuqzw4Vq2wzbCDtP -----END CERTIFICATE-----Generated at Sun May 19 01:47:08 2024 by rpki-client on console-ams.rpki-client.org