$ rpki-client -vvf rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft File: X48BYbesuyVfE88IG2ZTYZtOLAI.mft (raw, json) Hash identifier: qv/58kzcN82vR06Hh4Hbt9KuLrGSntnrAOI0opEcWSA= Subject key identifier: FD:3F:8D:8A:83:CD:F7:20:AC:F5:DE:3F:1E:12:04:05:FE:D5:9E:0B Authority key identifier: 5F:8F:01:61:B7:AC:BB:25:5F:13:CF:08:1B:66:53:61:9B:4E:2C:02 Certificate issuer: /CN=A9149A0D/serialNumber=5F8F0161B7ACBB255F13CF081B6653619B4E2C02 Certificate serial: 06FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft Manifest number: 06FD Signing time: Fri 31 May 2024 23:30:05 +0000 Manifest this update: Fri 31 May 2024 23:30:04 +0000 Manifest next update: Fri 07 Jun 2024 23:30:04 +0000 Files and hashes: 1: X48BYbesuyVfE88IG2ZTYZtOLAI.crl (hash: /m/ecC9fmCNT3DhaiiZU2A6KDFOZpAlUMZnUDGSxo5k=) 2: 799C6AD8149711EFB0CB9E0AC4F9AE02.roa (hash: OvEMaTDL1tgtcZ9K+aKpw88u0wsiPOdL45WKnaEEXFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.crl rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:30:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1790 (0x6fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149A0D/serialNumber=5F8F0161B7ACBB255F13CF081B6653619B4E2C02 Validity Not Before: May 31 23:30:04 2024 GMT Not After : Jun 7 23:30:04 2024 GMT Subject: CN=665a5d7d-26f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:fc:11:3e:65:38:fd:42:dc:db:d7:eb:ce:c5: 04:f1:a7:7d:e5:7f:a3:9b:dd:ad:79:9a:b5:79:56: e6:9a:c3:f8:a7:25:5d:3a:0b:a5:14:18:48:85:f1: df:0a:de:e6:a8:90:89:1a:b8:17:89:20:15:1c:a4: ce:13:1e:ef:48:da:ca:43:46:39:d0:24:1d:1f:41: af:03:20:90:d5:b2:36:5d:d1:f9:f9:1f:22:56:f2: c2:28:25:2a:4b:41:89:a4:cc:06:11:66:31:de:a2: 1f:88:ed:59:92:ef:6e:09:d5:f6:f6:eb:cd:93:b6: 1b:e4:56:06:57:02:1d:06:92:66:d2:7c:6b:00:ee: 15:9a:e1:73:9d:39:be:e7:f0:be:b5:77:cf:b8:f0: 86:6b:4f:82:39:49:9e:9c:e9:f0:28:f7:3b:b1:d3: 1f:85:6c:0c:50:01:5a:f2:ad:21:9c:c0:e7:21:ff: 8e:b5:77:ca:d5:0d:ec:62:d5:95:a1:06:81:f4:0d: 58:ce:3a:e0:0d:d0:ac:45:77:48:44:5c:02:04:e3: 48:a1:c2:f8:f2:68:0b:a2:90:a8:9e:78:1e:d9:24: b7:e7:d3:3e:10:3a:ac:3e:16:00:fc:88:ac:08:2d: e9:b5:33:8d:9c:6d:f0:15:36:5a:ab:ae:67:8d:d8: 8d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:3F:8D:8A:83:CD:F7:20:AC:F5:DE:3F:1E:12:04:05:FE:D5:9E:0B X509v3 Authority Key Identifier: keyid:5F:8F:01:61:B7:AC:BB:25:5F:13:CF:08:1B:66:53:61:9B:4E:2C:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:5a:56:7c:d2:5b:f0:56:f5:5b:35:9d:1b:56:cd:48:35:c3: a3:b8:40:fe:9d:6b:f1:2a:31:d5:e5:d6:0f:40:c5:1a:7a:b2: a5:a7:08:d9:86:a3:a8:83:c0:8a:ae:07:54:1e:9c:29:0a:01: ba:ae:5b:a6:e1:95:25:44:9b:ee:6b:7e:af:bc:a9:81:34:e5: 19:ff:c9:91:32:e7:60:f7:51:89:a4:1f:23:e8:79:c3:2e:1c: b7:56:5a:9a:4a:59:d7:3e:3b:0f:51:3e:34:38:39:05:29:37: 50:8f:6d:42:ce:68:1c:25:ae:36:aa:5a:6c:92:4c:81:22:42: 00:d7:40:8f:59:3f:30:80:49:75:81:4d:66:9e:fe:ba:a8:4e: 41:10:bd:d3:44:80:82:50:38:67:dc:d5:36:1c:4c:93:c5:62: 50:54:48:6b:bb:53:20:87:c1:b8:c4:20:ad:18:e0:e0:1a:66: fb:44:2b:cf:dd:c1:61:b1:11:a2:30:60:53:8f:e2:31:bc:41: d1:e0:5b:9d:53:97:8b:74:0e:3f:b8:f9:da:ba:d3:81:67:0a: e3:64:b5:26:22:1c:ea:f0:73:25:88:c4:d7:ec:4a:81:f1:7b: 44:73:a3:4d:4c:8f:20:af:2a:75:a1:3a:23:3a:71:0f:17:03: 5c:07:c3:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBv4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlBMEQxMTAvBgNVBAUTKDVGOEYwMTYxQjdBQ0JCMjU1RjEzQ0YwODFCNjY1MzYx OUI0RTJDMDIwHhcNMjQwNTMxMjMzMDA0WhcNMjQwNjA3MjMzMDA0WjAYMRYwFAYD VQQDEw02NjVhNWQ3ZC0yNmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoPwRPmU4/ULc29frzsUE8ad95X+jm92teZq1eVbmmsP4pyVdOgulFBhIhfHf Ct7mqJCJGrgXiSAVHKTOEx7vSNrKQ0Y50CQdH0GvAyCQ1bI2XdH5+R8iVvLCKCUq S0GJpMwGEWYx3qIfiO1Zku9uCdX29uvNk7Yb5FYGVwIdBpJm0nxrAO4VmuFznTm+ 5/C+tXfPuPCGa0+COUmenOnwKPc7sdMfhWwMUAFa8q0hnMDnIf+OtXfK1Q3sYtWV oQaB9A1YzjrgDdCsRXdIRFwCBONIocL48mgLopConnge2SS359M+EDqsPhYA/Iis CC3ptTONnG3wFTZaq65njdiN0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP0/jYqD zfcgrPXePx4SBAX+1Z4LMB8GA1UdIwQYMBaAFF+PAWG3rLslXxPPCBtmU2GbTiwC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUEwRC8wRkI3OTE2NEZC MTUxMUVBQjAxMUVDNkVDNEY5QUUwMi9YNDhCWWJlc3V5VmZFODhJRzJaVFladE9M QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0OEJZYmVzdXlWZkU4OElHMlpUWVp0T0xBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUEwRC8wRkI3OTE2NEZCMTUxMUVBQjAxMUVDNkVDNEY5QUUwMi9YNDhCWWJlc3V5 VmZFODhJRzJaVFladE9MQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxWlZ80lvwVvVbNZ0bVs1INcOjuED+nWvxKjHV5dYPQMUaerKlpwjZ hqOog8CKrgdUHpwpCgG6rlum4ZUlRJvua36vvKmBNOUZ/8mRMudg91GJpB8j6HnD Lhy3VlqaSlnXPjsPUT40ODkFKTdQj21CzmgcJa42qlpskkyBIkIA10CPWT8wgEl1 gU1mnv66qE5BEL3TRICCUDhn3NU2HEyTxWJQVEhru1Mgh8G4xCCtGODgGmb7RCvP 3cFhsRGiMGBTj+IxvEHR4FudU5eLdA4/uPnautOBZwrjZLUmIhzq8HMliMTX7EqB 8XtEc6NNTI8gryp1oTojOnEPFwNcB8PL -----END CERTIFICATE-----Generated at Sat Jun 1 00:32:58 2024 by rpki-client on console-fra.rpki-client.org