$ rpki-client -vvf rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.mft File: XnPt2W_yeohfYTVup3sfVDXIT8w.mft (raw, json) Hash identifier: ll5Te61c3tXOtaWiqVft4odz/j/ce23HEIU02mJSBsk= Subject key identifier: AB:82:EE:72:15:F5:51:DE:7B:8C:95:8E:88:6E:AD:CD:49:47:B4:FF Authority key identifier: 5E:73:ED:D9:6F:F2:7A:88:5F:61:35:6E:A7:7B:1F:54:35:C8:4F:CC Certificate issuer: /CN=A912759E/serialNumber=5E73EDD96FF27A885F61356EA77B1F5435C84FCC Certificate serial: 01BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnPt2W_yeohfYTVup3sfVDXIT8w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.mft Manifest number: 01BA Signing time: Sun 19 May 2024 04:30:49 +0000 Manifest this update: Sun 19 May 2024 04:30:49 +0000 Manifest next update: Sun 26 May 2024 04:30:49 +0000 Files and hashes: 1: XnPt2W_yeohfYTVup3sfVDXIT8w.crl (hash: SXG6t/rwepi8svquA5TtGfZDfUWy0FkVQe04lxqd/t8=) 2: 7F0509300CCE11ED97C94316C4F9AE02.roa (hash: bOpqKtoUUkZY1Vo/uDO1nFHnYqU89wbFOp8GDPcmuDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.crl rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnPt2W_yeohfYTVup3sfVDXIT8w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912759E/serialNumber=5E73EDD96FF27A885F61356EA77B1F5435C84FCC Validity Not Before: May 19 04:30:49 2024 GMT Not After : May 26 04:30:49 2024 GMT Subject: CN=66498079-77d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:dd:23:bf:f8:10:80:4d:ef:f9:3b:b5:34:e3: e4:7d:81:4d:3c:da:84:0d:f0:85:34:57:f6:56:92: 4a:68:9e:95:49:cd:46:d5:60:3f:ff:45:69:e7:e4: 46:f2:c3:80:cb:5f:e4:be:3f:98:1a:a8:9c:2b:1b: cb:fe:4f:22:a9:48:18:3f:61:1b:72:a8:86:d4:9a: f2:8e:4d:20:38:c1:81:21:5b:d3:74:eb:d9:b3:52: 8a:0f:7e:5c:8c:c4:18:40:66:16:16:59:a0:d3:da: fe:c3:a0:dc:2c:b7:7c:19:c6:c7:61:7e:99:42:97: 73:27:2f:9c:98:a8:3d:9f:8a:c5:12:ac:81:63:b7: 42:78:28:30:1c:eb:04:42:d5:0f:fd:a7:1d:61:cc: 5f:c8:dd:1d:15:e9:42:38:64:5e:cb:5e:e1:cf:76: 7b:d0:ad:f6:fc:98:b8:a9:67:0e:af:62:e1:d6:e1: e7:80:99:a2:99:b1:69:12:96:86:b8:85:29:a3:fb: c8:15:75:75:7d:2b:f0:5d:25:60:d4:e0:e8:79:62: 1a:50:9d:a7:9c:7e:e4:53:a3:93:bc:fd:e0:dc:8a: fb:ca:4d:7c:2c:c5:2a:9f:03:a5:71:95:3d:34:30: 1f:fe:68:27:64:d8:ba:e0:64:9e:ae:83:1e:1d:97: 44:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:82:EE:72:15:F5:51:DE:7B:8C:95:8E:88:6E:AD:CD:49:47:B4:FF X509v3 Authority Key Identifier: keyid:5E:73:ED:D9:6F:F2:7A:88:5F:61:35:6E:A7:7B:1F:54:35:C8:4F:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnPt2W_yeohfYTVup3sfVDXIT8w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:72:ee:2f:7a:92:0e:d4:b6:a9:4d:5e:23:af:fc:5d:b9:dd: 5a:30:1e:9b:29:8d:76:04:ba:2c:de:ea:88:de:37:fe:5b:c4: 62:b1:db:57:5e:8b:b7:2e:32:96:cf:8c:b1:0f:50:ca:d9:92: a3:6a:ea:2a:ba:0d:e8:e2:56:79:e9:62:86:2f:a1:c8:e7:fe: 24:39:ce:05:95:ee:2a:ba:96:b0:81:fa:79:54:13:63:b1:09: e1:91:7f:ec:4b:bb:c8:8a:85:87:41:87:7a:b6:80:96:e3:54: f8:bf:c2:8e:f4:83:4f:93:50:2a:3e:93:ab:08:ed:0d:a9:87: 28:ae:91:b9:69:cb:50:df:cb:a2:db:44:b6:52:eb:33:04:63: d4:55:83:30:2f:51:fb:3f:62:47:26:72:89:62:24:ab:25:f0: 31:2e:53:d4:85:91:a9:1b:4f:36:06:04:a6:65:65:06:aa:fc: c1:a8:4f:bb:e0:6b:3a:5b:dd:9c:34:79:0a:1c:44:ec:09:9a: 07:ac:47:04:88:02:cc:82:62:3b:1b:15:ec:0a:b8:5c:0a:03: 6f:ab:d4:f7:0c:d7:10:35:0f:24:37:1e:2f:26:a5:cb:ed:34: 3f:d7:db:eb:5d:c0:d2:51:cf:02:5c:42:56:d0:a7:ab:a8:d7: 1a:f2:9e:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1OUUxMTAvBgNVBAUTKDVFNzNFREQ5NkZGMjdBODg1RjYxMzU2RUE3N0IxRjU0 MzVDODRGQ0MwHhcNMjQwNTE5MDQzMDQ5WhcNMjQwNTI2MDQzMDQ5WjAYMRYwFAYD VQQDEw02NjQ5ODA3OS03N2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArd0jv/gQgE3v+Tu1NOPkfYFNPNqEDfCFNFf2VpJKaJ6VSc1G1WA//0Vp5+RG 8sOAy1/kvj+YGqicKxvL/k8iqUgYP2EbcqiG1Jryjk0gOMGBIVvTdOvZs1KKD35c jMQYQGYWFlmg09r+w6DcLLd8GcbHYX6ZQpdzJy+cmKg9n4rFEqyBY7dCeCgwHOsE QtUP/acdYcxfyN0dFelCOGRey17hz3Z70K32/Ji4qWcOr2Lh1uHngJmimbFpEpaG uIUpo/vIFXV1fSvwXSVg1ODoeWIaUJ2nnH7kU6OTvP3g3Ir7yk18LMUqnwOlcZU9 NDAf/mgnZNi64GSeroMeHZdEuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKuC7nIV 9VHee4yVjohurc1JR7T/MB8GA1UdIwQYMBaAFF5z7dlv8nqIX2E1bqd7H1Q1yE/M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzU5RS9DQjBFQTc3NjBD Q0IxMUVEOUU3MjIzNjlDNEY5QUUwMi9YblB0MldfeWVvaGZZVFZ1cDNzZlZEWElU OHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huUHQyV195ZW9oZllUVnVwM3NmVkRYSVQ4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzU5RS9DQjBFQTc3NjBDQ0IxMUVEOUU3MjIzNjlDNEY5QUUwMi9YblB0MldfeWVv aGZZVFZ1cDNzZlZEWElUOHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMcu4vepIO1LapTV4jr/xdud1aMB6bKY12BLos3uqI3jf+W8RisdtX Xou3LjKWz4yxD1DK2ZKjauoqug3o4lZ56WKGL6HI5/4kOc4Fle4qupawgfp5VBNj sQnhkX/sS7vIioWHQYd6toCW41T4v8KO9INPk1AqPpOrCO0NqYcorpG5actQ38ui 20S2UuszBGPUVYMwL1H7P2JHJnKJYiSrJfAxLlPUhZGpG082BgSmZWUGqvzBqE+7 4Gs6W92cNHkKHETsCZoHrEcEiALMgmI7GxXsCrhcCgNvq9T3DNcQNQ8kNx4vJqXL 7TQ/19vrXcDSUc8CXEJW0KerqNca8p6E -----END CERTIFICATE-----Generated at Sun May 19 04:56:54 2024 by rpki-client on console-fra.rpki-client.org