$ rpki-client -vvf rpki.apnic.net/member_repository/A9170ADF/B85F0E8C3ACB11EBA225AD17C4F9AE02/xwv3nojjEZrpa7dhopO7UaSGFzw.mft File: xwv3nojjEZrpa7dhopO7UaSGFzw.mft (raw, json) Hash identifier: fDEO7iYj9ZuFxs6fkMjEG/0nHTEz/YYfOA30l9VaEPk= Subject key identifier: 35:19:04:CD:04:A4:5A:CF:B5:BE:51:50:20:8C:71:EF:F5:46:40:E7 Authority key identifier: C7:0B:F7:9E:88:E3:11:9A:E9:6B:B7:61:A2:93:BB:51:A4:86:17:3C Certificate issuer: /CN=A9170ADF/serialNumber=C70BF79E88E3119AE96BB761A293BB51A486173C Certificate serial: 0673 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwv3nojjEZrpa7dhopO7UaSGFzw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170ADF/B85F0E8C3ACB11EBA225AD17C4F9AE02/xwv3nojjEZrpa7dhopO7UaSGFzw.mft Manifest number: 0668 Signing time: Fri 31 May 2024 00:05:38 +0000 Manifest this update: Fri 31 May 2024 00:05:37 +0000 Manifest next update: Fri 07 Jun 2024 00:05:37 +0000 Files and hashes: 1: xwv3nojjEZrpa7dhopO7UaSGFzw.crl (hash: Mlghodegm2Uf+ozdC8viGOck4HGGWwdllwZWaMbTPe4=) 2: AC53A55C7B3611EBB7C5F122C4F9AE02.roa (hash: jT1Bl9P9Xz1bQ+LsPnCT+WT252pdmyLzXpTANcQlkCI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170ADF/B85F0E8C3ACB11EBA225AD17C4F9AE02/xwv3nojjEZrpa7dhopO7UaSGFzw.crl rsync://rpki.apnic.net/member_repository/A9170ADF/B85F0E8C3ACB11EBA225AD17C4F9AE02/xwv3nojjEZrpa7dhopO7UaSGFzw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwv3nojjEZrpa7dhopO7UaSGFzw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 00:05:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1651 (0x673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170ADF/serialNumber=C70BF79E88E3119AE96BB761A293BB51A486173C Validity Not Before: May 31 00:05:37 2024 GMT Not After : Jun 7 00:05:37 2024 GMT Subject: CN=66591451-6dd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:27:48:dc:a8:e3:e6:7f:6c:b6:37:46:aa:43: a8:d1:69:e2:43:68:33:96:32:6b:d8:0f:39:54:50: d9:bb:e4:cd:8e:55:e2:45:55:05:e4:ab:03:89:7b: 1b:f7:ab:73:db:3e:16:ae:e8:c2:d8:a7:00:b0:39: 01:b5:36:b0:f4:2e:b2:28:d5:10:48:8a:9c:8c:6d: a5:44:5e:4d:e8:45:1b:2f:20:94:ae:68:62:a8:77: e3:6d:6a:39:47:3e:7f:88:5d:0a:68:46:0b:5c:98: 92:e9:26:07:b6:ad:04:77:f5:d5:79:f3:ef:a1:0f: 2d:a8:11:42:08:30:1b:54:07:07:0e:32:60:2c:4d: b7:25:76:6d:35:95:13:ca:f2:57:72:c3:6d:e1:dc: dd:62:1d:a4:23:58:4b:e0:59:6d:67:0e:84:ad:83: d9:ba:5f:66:ed:41:03:d5:8c:8e:73:f2:09:66:98: 4e:ac:19:5c:80:47:35:64:b0:5e:1c:07:f2:01:2c: 16:aa:f7:3a:d7:da:06:a5:77:02:61:48:89:8a:91: cc:8e:21:34:8c:15:fc:75:9b:0f:8f:73:54:da:bc: 36:6c:93:9a:7f:b3:e5:cc:84:65:38:4c:95:1d:8a: 40:e5:25:eb:14:ea:b6:f4:08:ba:2f:8a:62:6b:94: e8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:19:04:CD:04:A4:5A:CF:B5:BE:51:50:20:8C:71:EF:F5:46:40:E7 X509v3 Authority Key Identifier: keyid:C7:0B:F7:9E:88:E3:11:9A:E9:6B:B7:61:A2:93:BB:51:A4:86:17:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170ADF/B85F0E8C3ACB11EBA225AD17C4F9AE02/xwv3nojjEZrpa7dhopO7UaSGFzw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwv3nojjEZrpa7dhopO7UaSGFzw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170ADF/B85F0E8C3ACB11EBA225AD17C4F9AE02/xwv3nojjEZrpa7dhopO7UaSGFzw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:54:8a:7a:01:24:16:8d:fd:41:9d:6e:3a:f0:91:96:e0:70: c8:4f:c6:f5:12:5a:41:9d:7a:d1:b4:8a:4a:6c:39:58:fc:49: 48:c8:a0:31:f5:dc:e2:4f:55:ec:18:5a:fc:98:6b:ff:fb:60: 53:45:95:c7:b3:ae:22:62:cb:d2:7e:45:19:8c:b1:f3:c9:1e: 99:89:db:ea:f2:69:db:60:ec:31:7a:33:24:5e:bb:92:49:0b: f9:c5:02:bc:95:9a:74:7a:f3:ba:1f:c0:db:81:1d:49:1e:a6: 6f:69:e7:b5:60:ce:cb:b6:42:30:32:3e:15:55:00:9d:cc:c4: f4:45:d3:91:75:23:f1:40:88:13:8f:cc:f8:c5:b2:4c:b7:02: 2d:72:ee:cf:f9:cc:36:7a:ba:f6:0a:24:e8:b9:3f:3c:b0:d4: 78:c5:0e:71:e5:65:59:b2:82:53:07:38:5f:2f:fe:a3:a3:c8: 34:37:05:be:f0:89:3c:24:bc:a3:ec:49:99:ba:a1:5a:c5:67: c0:9c:13:98:31:1f:c2:50:f7:96:b1:24:6d:9c:98:74:5e:0b: 8c:1e:0d:ca:d8:af:2b:19:d5:c5:3a:36:08:10:cf:f2:da:8e: d7:f7:45:08:91:fb:a0:47:36:9f:3e:fe:fe:30:4c:4f:2e:ef: 02:c0:b2:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBREYxMTAvBgNVBAUTKEM3MEJGNzlFODhFMzExOUFFOTZCQjc2MUEyOTNCQjUx QTQ4NjE3M0MwHhcNMjQwNTMxMDAwNTM3WhcNMjQwNjA3MDAwNTM3WjAYMRYwFAYD VQQDEw02NjU5MTQ1MS02ZGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyydI3Kjj5n9stjdGqkOo0WniQ2gzljJr2A85VFDZu+TNjlXiRVUF5KsDiXsb 96tz2z4WrujC2KcAsDkBtTaw9C6yKNUQSIqcjG2lRF5N6EUbLyCUrmhiqHfjbWo5 Rz5/iF0KaEYLXJiS6SYHtq0Ed/XVefPvoQ8tqBFCCDAbVAcHDjJgLE23JXZtNZUT yvJXcsNt4dzdYh2kI1hL4FltZw6ErYPZul9m7UED1YyOc/IJZphOrBlcgEc1ZLBe HAfyASwWqvc619oGpXcCYUiJipHMjiE0jBX8dZsPj3NU2rw2bJOaf7PlzIRlOEyV HYpA5SXrFOq29Ai6L4pia5ToQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUZBM0E pFrPtb5RUCCMce/1RkDnMB8GA1UdIwQYMBaAFMcL956I4xGa6Wu3YaKTu1Gkhhc8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFERi9CODVGMEU4QzNB Q0IxMUVCQTIyNUFEMTdDNEY5QUUwMi94d3Yzbm9qakVacnBhN2Rob3BPN1VhU0dG encuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3djNub2pqRVpycGE3ZGhvcE83VWFTR0Z6dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFERi9CODVGMEU4QzNBQ0IxMUVCQTIyNUFEMTdDNEY5QUUwMi94d3Yzbm9qakVa cnBhN2Rob3BPN1VhU0dGencubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqVIp6ASQWjf1BnW468JGW4HDIT8b1ElpBnXrRtIpKbDlY/ElIyKAx 9dziT1XsGFr8mGv/+2BTRZXHs64iYsvSfkUZjLHzyR6Zidvq8mnbYOwxejMkXruS SQv5xQK8lZp0evO6H8DbgR1JHqZvaee1YM7LtkIwMj4VVQCdzMT0RdORdSPxQIgT j8z4xbJMtwItcu7P+cw2err2CiTouT88sNR4xQ5x5WVZsoJTBzhfL/6jo8g0NwW+ 8Ik8JLyj7EmZuqFaxWfAnBOYMR/CUPeWsSRtnJh0XguMHg3K2K8rGdXFOjYIEM/y 2o7X90UIkfugRzafPv7+MExPLu8CwLI4 -----END CERTIFICATE-----Generated at Fri May 31 01:33:49 2024 by rpki-client on console-ams.rpki-client.org