$ rpki-client -vvf rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft File: XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft (raw, json) Hash identifier: k6OyKYzp8a107qbQzOIYeRQmYCaHNlWcykEvw8uG42Q= Subject key identifier: 60:AD:72:4F:AA:59:D1:DA:54:37:FE:93:A4:74:84:02:4A:E8:99:42 Authority key identifier: 5C:2C:58:27:C4:E8:99:BC:2A:50:34:06:C5:CB:09:B1:8E:13:3F:C6 Certificate issuer: /CN=A9153F9E/serialNumber=5C2C5827C4E899BC2A503406C5CB09B18E133FC6 Certificate serial: 0611 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft Manifest number: 0611 Signing time: Sat 18 May 2024 23:47:44 +0000 Manifest this update: Sat 18 May 2024 23:47:44 +0000 Manifest next update: Sat 25 May 2024 23:47:44 +0000 Files and hashes: 1: XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl (hash: e71FJHcEnqD6WCc+bYLm6+1xADy0GCRMmj8f373AYSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1553 (0x611) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153F9E/serialNumber=5C2C5827C4E899BC2A503406C5CB09B18E133FC6 Validity Not Before: May 18 23:47:44 2024 GMT Not After : May 25 23:47:44 2024 GMT Subject: CN=66493e20-bd16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e6:ce:05:26:50:59:22:69:37:85:48:bc:8b: a9:d7:7f:f7:61:19:54:ef:f9:28:78:98:85:48:2d: e1:f8:96:e3:46:1d:f4:65:f6:c1:34:ca:d7:e2:87: 42:c3:3b:d1:0b:cb:49:11:9f:cd:c8:89:3e:bc:56: d3:b5:d2:82:7a:d6:fe:92:d5:aa:d4:94:c6:b4:cd: 7a:c1:26:e4:7e:ba:f9:70:23:c5:28:19:93:d3:41: 34:05:ca:39:dc:45:0c:70:f3:19:62:08:07:76:04: 63:27:30:89:8c:88:b7:8f:58:ec:ad:c1:00:c2:00: b7:65:47:b7:25:d8:b9:87:9f:f2:7d:ee:90:cf:26: 99:c2:5e:fc:d2:49:e6:6e:5f:83:cf:5f:30:3e:15: 92:ca:e1:f9:e6:fe:47:43:a1:4f:88:a2:fa:ba:48: 52:bf:6b:43:43:67:f1:28:c3:ba:a1:28:cc:6f:87: 48:20:34:18:90:b7:91:60:77:d2:23:31:19:e2:0c: a3:53:5e:58:c6:5c:00:f5:fd:5e:34:b1:11:63:90: 77:ad:4f:ee:19:d2:36:a9:8b:b0:05:84:dc:33:ad: 1d:a8:38:af:cb:41:af:10:79:00:8e:1f:92:5d:02: 16:7d:81:29:bf:b3:94:91:b9:32:e5:1d:3b:fe:19: 1a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:AD:72:4F:AA:59:D1:DA:54:37:FE:93:A4:74:84:02:4A:E8:99:42 X509v3 Authority Key Identifier: keyid:5C:2C:58:27:C4:E8:99:BC:2A:50:34:06:C5:CB:09:B1:8E:13:3F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:3d:c9:35:7d:6f:b2:0f:3f:7a:5b:f5:fe:ab:db:9c:09:5a: ba:98:7e:be:c5:ff:99:23:ee:1e:77:98:07:87:a0:3d:85:26: 73:d1:81:dd:bd:6a:68:79:c2:cf:0c:b7:52:86:91:0d:49:fc: 22:bb:98:e7:42:fe:0e:70:c4:84:71:44:de:28:15:89:9a:38: 35:2a:87:b9:86:23:41:0d:54:4e:15:8c:af:ab:76:4a:58:50: 83:62:4e:16:80:ba:5d:ea:e7:de:41:74:48:f7:ec:79:61:26: 16:19:74:4b:4f:08:66:2f:11:96:c6:45:6e:7d:a3:43:dc:80: 03:61:43:23:86:aa:23:ff:f6:24:7d:fc:43:9a:04:76:1c:91: 9a:bf:6b:0e:b5:45:49:6b:dc:90:f7:5f:68:c9:b6:c8:03:2f: 5e:ba:a0:50:1c:1d:e2:9f:c6:2c:21:93:15:fd:29:48:03:bd: 1f:70:10:40:42:55:ab:4c:94:b4:d6:8a:8d:b8:0d:49:14:d2: 0d:99:2f:f0:4d:f3:da:e0:e7:f0:16:b2:43:fc:39:da:51:29: a4:b1:e1:31:9d:79:bf:22:ad:58:cf:0c:72:21:11:0b:ee:72: 36:01:27:13:67:f4:ef:d6:b3:cd:27:1c:66:8e:de:1e:80:27: cc:eb:78:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNGOUUxMTAvBgNVBAUTKDVDMkM1ODI3QzRFODk5QkMyQTUwMzQwNkM1Q0IwOUIx OEUxMzNGQzYwHhcNMjQwNTE4MjM0NzQ0WhcNMjQwNTI1MjM0NzQ0WjAYMRYwFAYD VQQDEw02NjQ5M2UyMC1iZDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+bOBSZQWSJpN4VIvIup13/3YRlU7/koeJiFSC3h+JbjRh30ZfbBNMrX4odC wzvRC8tJEZ/NyIk+vFbTtdKCetb+ktWq1JTGtM16wSbkfrr5cCPFKBmT00E0Bco5 3EUMcPMZYggHdgRjJzCJjIi3j1jsrcEAwgC3ZUe3Jdi5h5/yfe6QzyaZwl780knm bl+Dz18wPhWSyuH55v5HQ6FPiKL6ukhSv2tDQ2fxKMO6oSjMb4dIIDQYkLeRYHfS IzEZ4gyjU15YxlwA9f1eNLERY5B3rU/uGdI2qYuwBYTcM60dqDivy0GvEHkAjh+S XQIWfYEpv7OUkbky5R07/hkaGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCtck+q WdHaVDf+k6R0hAJK6JlCMB8GA1UdIwQYMBaAFFwsWCfE6Jm8KlA0BsXLCbGOEz/G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Y5RS8wMEQ4Qzg4QzUz QUYxMUVCOTkzMDA5MTZDNEY5QUUwMi9YQ3hZSjhUb21id3FVRFFHeGNzSnNZNFRQ OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hDeFlKOFRvbWJ3cVVEUUd4Y3NKc1k0VFA4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Y5RS8wMEQ4Qzg4QzUzQUYxMUVCOTkzMDA5MTZDNEY5QUUwMi9YQ3hZSjhUb21i d3FVRFFHeGNzSnNZNFRQOFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPPck1fW+yDz96W/X+q9ucCVq6mH6+xf+ZI+4ed5gHh6A9hSZz0YHd vWpoecLPDLdShpENSfwiu5jnQv4OcMSEcUTeKBWJmjg1Koe5hiNBDVROFYyvq3ZK WFCDYk4WgLpd6ufeQXRI9+x5YSYWGXRLTwhmLxGWxkVufaND3IADYUMjhqoj//Yk ffxDmgR2HJGav2sOtUVJa9yQ919oybbIAy9euqBQHB3in8YsIZMV/SlIA70fcBBA QlWrTJS01oqNuA1JFNINmS/wTfPa4OfwFrJD/DnaUSmkseExnXm/Iq1YzwxyIREL 7nI2AScTZ/Tv1rPNJxxmjt4egCfM63hA -----END CERTIFICATE-----Generated at Sun May 19 00:30:15 2024 by rpki-client on console-ams.rpki-client.org