$ rpki-client -vvf rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft File: X-srwGbHr1fSafdXM_D_g-mQOaM.mft (raw, json) Hash identifier: wwmTWwGAJBK2uaJNmN7tzCerVWvS9YFLhvmFeC3I4iE= Subject key identifier: 91:07:79:0D:51:91:A0:9E:18:3B:81:B9:1E:70:92:FC:1A:39:FD:C7 Authority key identifier: 5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 Certificate issuer: /CN=A914E8BF/serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3 Certificate serial: 92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft Manifest number: 8F Signing time: Sun 19 May 2024 07:02:41 +0000 Manifest this update: Sun 19 May 2024 07:02:40 +0000 Manifest next update: Sun 26 May 2024 07:02:40 +0000 Files and hashes: 1: X-srwGbHr1fSafdXM_D_g-mQOaM.crl (hash: sY+owcOOqmlxZeRtkO2Pm2lw1ZJRtJyD+hMJtXR2j98=) 2: 7664C566BE6D11EE99A9E384C4F9AE02.roa (hash: J0X863hvnPaJB+YqbSd16WKt6GmxnqfAMWDcyGO6bYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E8BF/serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3 Validity Not Before: May 19 07:02:40 2024 GMT Not After : May 26 07:02:40 2024 GMT Subject: CN=6649a411-d920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:db:66:83:d8:0a:f9:a6:23:d7:b0:7b:b7:02: 71:be:eb:04:01:36:2f:45:be:67:96:08:3b:2f:4e: 3d:5d:42:2e:d6:cb:43:93:84:23:f8:a1:f9:e3:37: 1e:bc:ae:b3:2f:72:ed:a9:28:01:38:6e:86:06:bd: 6a:4e:c2:4a:12:21:1d:a1:40:d6:d4:4f:34:2c:75: 40:ad:37:b1:98:63:75:84:22:ed:d0:75:75:e8:4c: c1:96:a1:8b:fd:61:f8:e9:8e:c3:52:38:70:d4:b2: c2:78:d0:a3:cc:a7:6e:b1:c2:3b:70:19:63:13:e7: 4c:6b:f4:cf:12:c0:be:de:af:ac:0e:e7:a5:0d:52: cd:d5:84:43:f0:98:92:53:67:35:fd:1d:a8:64:87: f5:27:c7:84:8c:04:b7:0e:3c:8d:59:9b:02:16:be: 1c:5e:95:8f:80:93:23:d7:2f:b3:ef:fd:cd:2e:8e: e5:ba:f8:dc:7f:81:e0:cc:31:8c:b8:4f:e4:e6:ee: e6:9b:18:b4:1d:32:51:7c:e0:37:51:b4:53:06:4b: bb:f7:34:db:db:b8:e8:4e:3c:d9:71:4d:2f:4c:4f: dd:87:fb:22:d9:8c:94:98:b9:48:b2:7f:bd:ec:5b: 05:c8:4f:48:7b:f3:1f:44:1f:bd:1e:05:0b:e3:e6: 5c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:07:79:0D:51:91:A0:9E:18:3B:81:B9:1E:70:92:FC:1A:39:FD:C7 X509v3 Authority Key Identifier: keyid:5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:8c:48:c8:35:21:db:cd:ef:6b:5c:91:cd:16:56:22:58:a0: 95:b8:3c:02:49:c6:5e:a7:dc:fa:02:b7:09:16:bf:eb:73:43: cb:cc:5f:4f:eb:2b:ab:47:22:e9:e8:11:2b:49:73:b5:f4:32: 25:81:21:8c:f3:bd:e0:0e:4b:1a:d0:60:4d:34:d4:12:37:54: 7a:0e:af:f7:90:23:66:54:60:d3:4f:ad:1f:e9:54:9e:eb:c8: f7:8d:00:e0:40:2e:87:e3:9a:a3:08:ff:50:82:7b:b6:d1:6c: 45:b3:a7:06:a0:7e:30:0d:d2:7c:58:91:d4:d2:05:af:d3:3a: 85:f8:99:90:ec:5a:12:e8:31:ca:38:fc:83:20:70:5f:26:3b: 88:99:3b:17:73:31:b9:59:93:84:8a:82:d6:99:62:e2:df:f3: de:23:bb:62:9e:35:10:2d:03:33:7b:f0:14:00:f2:ef:bc:17: 6c:a3:db:84:21:27:2b:78:91:83:ba:17:7e:c4:fa:8d:83:d9: 59:f5:82:9b:89:46:64:0f:46:fe:b1:5c:6b:83:a8:77:bf:7b: 34:bc:d4:34:ca:a4:60:70:ca:ec:54:e0:03:32:8f:d3:58:6e: 3b:01:4b:20:08:9f:d1:47:f2:80:44:62:3f:ed:a7:b7:2a:03: f7:e8:56:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU4QkYxMTAvBgNVBAUTKDVGRUIyQkMwNjZDN0FGNTdEMjY5Rjc1NzMzRjBGRjgz RTk5MDM5QTMwHhcNMjQwNTE5MDcwMjQwWhcNMjQwNTI2MDcwMjQwWjAYMRYwFAYD VQQDEw02NjQ5YTQxMS1kOTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdtmg9gK+aYj17B7twJxvusEATYvRb5nlgg7L049XUIu1stDk4Qj+KH54zce vK6zL3LtqSgBOG6GBr1qTsJKEiEdoUDW1E80LHVArTexmGN1hCLt0HV16EzBlqGL /WH46Y7DUjhw1LLCeNCjzKduscI7cBljE+dMa/TPEsC+3q+sDuelDVLN1YRD8JiS U2c1/R2oZIf1J8eEjAS3DjyNWZsCFr4cXpWPgJMj1y+z7/3NLo7luvjcf4HgzDGM uE/k5u7mmxi0HTJRfOA3UbRTBku79zTb27joTjzZcU0vTE/dh/si2YyUmLlIsn+9 7FsFyE9Ie/MfRB+9HgUL4+Zc3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJEHeQ1R kaCeGDuBuR5wkvwaOf3HMB8GA1UdIwQYMBaAFF/rK8Bmx69X0mn3VzPw/4PpkDmj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RThCRi9CMzg5Q0YzODQx QTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIxZlNhZmRYTV9EX2ctbVFP YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtc3J3R2JIcjFmU2FmZFhNX0RfZy1tUU9hTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RThCRi9CMzg5Q0YzODQxQTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIx ZlNhZmRYTV9EX2ctbVFPYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6jEjINSHbze9rXJHNFlYiWKCVuDwCScZep9z6ArcJFr/rc0PLzF9P 6yurRyLp6BErSXO19DIlgSGM873gDksa0GBNNNQSN1R6Dq/3kCNmVGDTT60f6VSe 68j3jQDgQC6H45qjCP9Qgnu20WxFs6cGoH4wDdJ8WJHU0gWv0zqF+JmQ7FoS6DHK OPyDIHBfJjuImTsXczG5WZOEioLWmWLi3/PeI7tinjUQLQMze/AUAPLvvBdso9uE IScreJGDuhd+xPqNg9lZ9YKbiUZkD0b+sVxrg6h3v3s0vNQ0yqRgcMrsVOADMo/T WG47AUsgCJ/RR/KARGI/7ae3KgP36Faz -----END CERTIFICATE-----Generated at Sun May 19 08:25:01 2024 by rpki-client on console-ams.rpki-client.org