$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft File: XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json) Hash identifier: M+cp+swPoeqhth8jz+IDl8zS7obmULoQZlC8oIkwT9M= Subject key identifier: 86:3E:05:5D:F7:55:52:84:07:55:C3:E5:25:75:36:CF:BE:F2:5E:E0 Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Certificate serial: 03A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft Manifest number: 039E Signing time: Sat 01 Jun 2024 03:40:35 +0000 Manifest this update: Sat 01 Jun 2024 03:40:35 +0000 Manifest next update: Sat 08 Jun 2024 03:40:34 +0000 Files and hashes: 1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: W/HZlROKLxFSBftA9B1UhcppO3PNMLT9TL+prnzxzT8=) 2: 2CDB14025F0D11EC8C2C2820C4F9AE02.roa (hash: vbAv8jFpcKGkTBbQKVUR1BzPpCcxmGf0d9qtp3KoN/M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 03:40:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 930 (0x3a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Validity Not Before: Jun 1 03:40:35 2024 GMT Not After : Jun 8 03:40:34 2024 GMT Subject: CN=665a9833-4c0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a7:d7:32:5d:91:6d:96:53:59:06:54:31:7e: 0f:d9:85:f0:a3:84:89:49:fa:07:53:b2:19:06:43: 40:bf:a1:fc:35:68:87:26:7b:e7:f3:56:7b:33:18: 9e:c1:9a:9b:b6:b7:3f:d4:2d:ac:39:eb:1d:75:08: 5d:e9:e5:22:69:1a:47:81:5a:b3:d9:50:93:e9:ec: 88:79:3c:9c:e7:ab:e2:e6:73:be:dc:11:c8:c4:f2: 55:c2:d6:13:3b:34:e2:52:c4:29:fe:e1:fb:3b:2d: 4a:f1:4c:7e:df:31:a9:b1:85:53:ef:2d:07:5c:b3: cd:1e:a6:24:28:38:1c:d2:fc:50:69:94:61:fc:bc: ee:b0:b9:8d:c3:df:b6:a6:19:03:35:71:22:db:f0: 85:e7:ab:79:23:87:59:91:c0:3a:2a:0c:c6:cf:8c: bd:d8:b1:18:8b:91:68:d6:90:57:af:b9:0c:72:db: ae:14:74:d8:4b:ad:7a:6c:19:26:3a:3c:f1:40:f0: 26:c4:8f:38:fa:59:a1:88:1d:7f:e4:ba:bb:60:11: 50:10:22:03:73:32:9c:d4:53:7d:a3:3e:8e:f9:7e: 9f:a5:df:1a:e0:8e:e2:e1:9d:bd:57:b3:69:a7:e5: 79:c4:58:02:56:2c:0f:1e:f5:d9:cd:40:df:fa:a6: 77:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:3E:05:5D:F7:55:52:84:07:55:C3:E5:25:75:36:CF:BE:F2:5E:E0 X509v3 Authority Key Identifier: keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:85:38:8e:7f:bf:c5:7d:06:01:23:ec:ff:28:72:d1:2e:ea: d2:36:a2:86:48:2c:82:e1:69:e5:fd:2d:54:ee:0d:44:2e:26: a6:9b:03:5d:f7:cb:36:15:af:f0:8c:fc:9f:27:2e:16:84:10: ad:8d:da:8a:2a:18:e6:0a:57:dc:7d:3c:cc:8b:03:92:2e:7c: 52:47:38:ce:88:85:8d:fe:2d:db:50:60:0d:b4:82:3a:21:68: 04:e7:03:e3:58:40:3b:83:11:62:4a:37:c8:25:58:4c:d5:de: 96:0f:a9:d9:09:f3:8e:eb:03:ab:25:dd:aa:a3:81:82:28:82: 20:7a:00:f5:3a:34:55:de:89:f3:91:31:05:45:ce:f4:59:65: 04:25:bd:73:97:38:38:d9:17:95:c7:fd:b1:8e:e5:35:e2:9a: fe:4f:93:c6:4c:3f:b0:c4:53:b6:41:23:2e:a2:4a:4a:9a:09: 01:b0:d9:56:30:52:3e:c7:f9:4b:00:d5:7f:dd:dc:82:4b:c6: 37:45:e1:14:93:e6:a1:85:ba:c6:99:36:47:06:22:aa:60:67: 5f:c5:38:e8:a6:a5:83:b3:56:ef:4f:89:ed:c8:5c:d0:a4:e9: f3:4e:2c:9d:dc:d3:a9:bb:4b:b3:65:21:69:b0:42:98:9e:a5: 05:6d:0a:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz M0JDMDI5N0EwHhcNMjQwNjAxMDM0MDM1WhcNMjQwNjA4MDM0MDM0WjAYMRYwFAYD VQQDEw02NjVhOTgzMy00YzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqfXMl2RbZZTWQZUMX4P2YXwo4SJSfoHU7IZBkNAv6H8NWiHJnvn81Z7Mxie wZqbtrc/1C2sOesddQhd6eUiaRpHgVqz2VCT6eyIeTyc56vi5nO+3BHIxPJVwtYT OzTiUsQp/uH7Oy1K8Ux+3zGpsYVT7y0HXLPNHqYkKDgc0vxQaZRh/LzusLmNw9+2 phkDNXEi2/CF56t5I4dZkcA6KgzGz4y92LEYi5Fo1pBXr7kMctuuFHTYS616bBkm OjzxQPAmxI84+lmhiB1/5Lq7YBFQECIDczKc1FN9oz6O+X6fpd8a4I7i4Z29V7Np p+V5xFgCViwPHvXZzUDf+qZ3QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIY+BV33 VVKEB1XD5SV1Ns++8l7gMB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjRBRi83NkM3RjBGNDUxRjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2 M1dMSElBWEhaRU16dkFLWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHhTiOf7/FfQYBI+z/KHLRLurSNqKGSCyC4Wnl/S1U7g1ELiammwNd 98s2Fa/wjPyfJy4WhBCtjdqKKhjmClfcfTzMiwOSLnxSRzjOiIWN/i3bUGANtII6 IWgE5wPjWEA7gxFiSjfIJVhM1d6WD6nZCfOO6wOrJd2qo4GCKIIgegD1OjRV3onz kTEFRc70WWUEJb1zlzg42ReVx/2xjuU14pr+T5PGTD+wxFO2QSMuokpKmgkBsNlW MFI+x/lLANV/3dyCS8Y3ReEUk+ahhbrGmTZHBiKqYGdfxTjopqWDs1bvT4ntyFzQ pOnzTiyd3NOpu0uzZSFpsEKYnqUFbQrh -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:16 2024 by rpki-client on console-ams.rpki-client.org