$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft File: xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft (raw, json) Hash identifier: If+Yn1Ioc1CvunUEHHFMv3gVayno6Fx89valwVqJ7yw= Subject key identifier: 59:93:D9:30:AF:4E:60:4A:D0:32:C0:D2:62:2D:61:42:05:13:4E:81 Authority key identifier: C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 Certificate issuer: /CN=A9157B66/serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Certificate serial: 0580 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft Manifest number: 057C Signing time: Sun 19 May 2024 00:34:37 +0000 Manifest this update: Sun 19 May 2024 00:34:37 +0000 Manifest next update: Sun 26 May 2024 00:34:37 +0000 Files and hashes: 1: xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl (hash: DXNKlg76YDM6urLU375jAc9CCXoP+BcHwIthzjm6cKg=) 2: 807CB298903A11EBA9783756C4F9AE02.roa (hash: VRlOw4U0zK5u1Vp0LZloOBpL4DGdSHt/Hph/KRzLuAc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1408 (0x580) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B66/serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Validity Not Before: May 19 00:34:37 2024 GMT Not After : May 26 00:34:37 2024 GMT Subject: CN=6649491d-2ce0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:89:2b:c1:95:69:55:16:10:1d:0b:bd:4a:d2: 3d:5a:e4:de:37:53:ae:34:b7:9c:3a:20:68:67:cd: 17:ef:32:02:e7:41:5d:2a:dc:b4:e4:6c:70:87:da: 79:ec:f4:ad:a7:e0:ec:cc:db:1f:3e:6e:29:91:c2: 0c:19:bd:1f:23:3b:f0:66:76:78:eb:b8:08:50:1c: 05:41:99:8f:51:70:78:fe:0f:ce:c3:e3:60:9b:fc: 4f:96:b6:78:14:35:5d:83:c9:24:25:a0:c7:49:f0: 9d:e5:91:e6:71:45:18:f0:99:44:c2:5a:88:cf:6d: d4:81:cc:1f:11:02:e4:17:9b:27:26:ce:60:d0:7c: c0:2b:e6:10:a6:14:15:f7:d5:c6:78:3f:2a:71:dc: 60:ea:f9:4d:e0:fe:cc:87:21:ce:53:1c:7f:47:9f: 84:e2:63:86:8e:7a:9f:c2:7b:33:7d:a8:33:36:82: f7:5b:82:72:2b:b1:43:8f:78:18:dc:e8:d0:6d:48: 1e:0e:78:9a:9b:0f:d7:32:21:7d:2f:5f:06:f4:d2: 35:bc:1d:d0:88:cf:a0:4a:40:b8:6b:a9:00:a3:be: 50:a8:25:ca:d9:d5:16:5d:c5:97:67:88:13:89:56: 31:41:84:41:28:29:fd:b4:5c:88:65:37:16:8e:6e: aa:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:93:D9:30:AF:4E:60:4A:D0:32:C0:D2:62:2D:61:42:05:13:4E:81 X509v3 Authority Key Identifier: keyid:C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:77:43:cc:3d:ae:85:96:34:ed:55:38:c5:89:7f:1e:83:92: 7d:3a:e7:be:02:07:63:c9:35:a1:9d:4d:5b:ff:f0:23:f4:78: 20:f7:16:55:fa:eb:5d:ea:ca:bf:a6:a5:c7:ce:20:fc:8e:1d: 3f:b0:92:61:d4:9e:16:a1:74:8f:ea:d7:27:04:61:03:8f:76: 98:f7:6e:33:70:d2:80:dc:03:1c:61:ac:58:6a:7a:fe:0a:69: 49:58:02:da:0c:c7:a4:0a:a3:b6:05:22:d9:00:62:0a:1e:36: 1b:0d:86:ae:e6:65:35:9e:dd:9d:55:e9:05:3b:30:8c:8f:24: e7:ff:49:10:f8:2c:c0:b6:16:85:44:b2:8b:c3:da:e6:cf:c1: 53:16:9f:bd:f2:09:a8:e0:46:aa:ac:55:cf:67:45:a2:da:eb: c0:0f:ae:e2:de:75:fa:3e:1c:5c:11:24:65:49:99:90:57:fa: e0:fe:77:b6:d9:10:b8:6b:b1:c0:9b:f8:e1:86:7b:4a:e0:f5: b4:55:a6:75:7b:ac:15:12:54:c7:f1:75:09:61:e7:64:fe:64: 9b:e0:f1:16:db:98:4a:43:7f:55:9d:73:d0:eb:9f:bb:bc:ef: 38:48:6f:95:ec:c3:1e:e3:03:58:60:a6:34:9c:14:8f:6f:97: 31:ad:86:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCNjYxMTAvBgNVBAUTKEM0NTVCMDg2QkFCODY0N0NEMjUxMENBODMyNDFFNzAw MTRDRDhBNDQwHhcNMjQwNTE5MDAzNDM3WhcNMjQwNTI2MDAzNDM3WjAYMRYwFAYD VQQDEw02NjQ5NDkxZC0yY2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIkrwZVpVRYQHQu9StI9WuTeN1OuNLecOiBoZ80X7zIC50FdKty05Gxwh9p5 7PStp+DszNsfPm4pkcIMGb0fIzvwZnZ467gIUBwFQZmPUXB4/g/Ow+Ngm/xPlrZ4 FDVdg8kkJaDHSfCd5ZHmcUUY8JlEwlqIz23UgcwfEQLkF5snJs5g0HzAK+YQphQV 99XGeD8qcdxg6vlN4P7MhyHOUxx/R5+E4mOGjnqfwnszfagzNoL3W4JyK7FDj3gY 3OjQbUgeDniamw/XMiF9L18G9NI1vB3QiM+gSkC4a6kAo75QqCXK2dUWXcWXZ4gT iVYxQYRBKCn9tFyIZTcWjm6qeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFmT2TCv TmBK0DLA0mItYUIFE06BMB8GA1UdIwQYMBaAFMRVsIa6uGR80lEMqDJB5wAUzYpE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I2Ni9FNUM0RDMyNjkw MzgxMUVCQTREQzVBNTRDNEY5QUUwMi94Rld3aHJxNFpIelNVUXlvTWtIbkFCVE5p a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hGV3docnE0Wkh6U1VReW9Na0huQUJUTmlrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I2Ni9FNUM0RDMyNjkwMzgxMUVCQTREQzVBNTRDNEY5QUUwMi94Rld3aHJxNFpI elNVUXlvTWtIbkFCVE5pa1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEd0PMPa6FljTtVTjFiX8eg5J9Oue+AgdjyTWhnU1b//Aj9Hgg9xZV +utd6sq/pqXHziD8jh0/sJJh1J4WoXSP6tcnBGEDj3aY924zcNKA3AMcYaxYanr+ CmlJWALaDMekCqO2BSLZAGIKHjYbDYau5mU1nt2dVekFOzCMjyTn/0kQ+CzAthaF RLKLw9rmz8FTFp+98gmo4EaqrFXPZ0Wi2uvAD67i3nX6PhxcESRlSZmQV/rg/ne2 2RC4a7HAm/jhhntK4PW0VaZ1e6wVElTH8XUJYedk/mSb4PEW25hKQ39VnXPQ65+7 vO84SG+V7MMe4wNYYKY0nBSPb5cxrYbb -----END CERTIFICATE-----Generated at Sun May 19 01:47:13 2024 by rpki-client on console-ams.rpki-client.org