$ rpki-client -vvf rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft File: XiM50eqvU0mhOKR5fagtDrTfqew.mft (raw, json) Hash identifier: 07mF1NNJywJ1BDE4Cu6ufCMr3xlbvpbph9Wu3RTL3P4= Subject key identifier: D4:8D:B1:06:B7:C6:F5:9A:7A:53:BD:0D:59:DD:D0:55:F4:D7:8E:57 Authority key identifier: 5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC Certificate issuer: /CN=A918CFAD/serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft Manifest number: 1C Signing time: Sun 19 May 2024 08:39:22 +0000 Manifest this update: Sun 19 May 2024 08:39:21 +0000 Manifest next update: Sun 26 May 2024 08:39:21 +0000 Files and hashes: 1: XiM50eqvU0mhOKR5fagtDrTfqew.crl (hash: 0kuRKtyMWUs6fHpYI/ed1wxYW3nqwh+OVMXODkuAKyg=) 2: D161B1F0EA0411EE98A86A13C4F9AE02.roa (hash: f2pihyA1YpP2RflE8vg3Re0S4oO3efRwgxKNq8an+xI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CFAD/serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Validity Not Before: May 19 08:39:21 2024 GMT Not After : May 26 08:39:21 2024 GMT Subject: CN=6649baba-92fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9b:1f:05:da:30:2c:3d:96:cd:b7:ca:2e:5c: b1:17:0b:99:51:c0:11:92:65:38:68:d1:21:f5:62: ba:69:e2:df:25:63:9d:16:af:19:b7:24:8a:8b:c5: 21:d4:41:dc:39:9c:02:0a:c1:8c:36:b0:e9:46:a2: be:f5:84:e8:b8:2a:7c:fb:d1:f7:f2:01:42:d3:c4: 97:33:03:15:57:88:57:09:51:be:6e:08:8d:18:11: 0d:c1:ea:75:bd:0a:b0:df:96:8b:4f:d5:cf:95:42: 68:a5:b6:ec:0b:96:7c:23:53:5d:35:12:bc:3a:0a: 91:ac:19:ad:5b:2e:b2:17:00:b6:84:8d:0d:08:6a: 7c:9d:b8:80:73:7c:1f:ef:c9:7f:f2:76:bf:11:fe: 70:43:6c:4e:4d:3e:a5:25:66:a5:be:11:a8:57:b0: e1:b1:df:bf:8f:04:ba:8c:2c:02:83:60:c5:0c:42: ac:45:0f:f8:9a:e9:e6:bc:37:93:17:01:1c:29:2e: cf:0e:14:95:f9:19:77:b7:54:f4:f1:3d:3f:82:3f: 14:00:27:aa:1b:b0:c9:d3:59:a7:9e:1b:a4:7d:3a: f9:97:72:e7:ce:e4:9a:d9:3f:c4:06:fc:16:d0:bb: 6c:94:ab:c7:0a:7d:17:96:03:fb:93:71:c5:60:80: 9f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:8D:B1:06:B7:C6:F5:9A:7A:53:BD:0D:59:DD:D0:55:F4:D7:8E:57 X509v3 Authority Key Identifier: keyid:5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:54:1d:73:d0:cd:e9:d3:a9:00:e9:fe:7b:01:25:c5:e1:04: b0:59:74:da:71:b8:22:a6:36:8e:aa:d6:9a:f9:5b:f5:6e:4c: 37:46:c5:ed:8b:01:45:c3:6f:28:df:9b:c6:2d:22:1d:fc:32: cb:c8:e9:fa:1a:1a:17:e0:02:5c:32:3c:b0:65:bb:0a:1d:71: b4:32:57:23:f3:26:96:3c:01:52:b8:c7:5e:3c:39:76:60:99: 9f:13:e3:1c:22:bb:61:17:1e:cc:d9:c4:60:8e:27:d7:77:a0: 43:9b:c8:0c:95:21:73:2b:9c:53:f3:56:df:2e:39:a4:4a:86: 2a:3b:46:ee:4b:ce:05:a9:87:1d:8d:b2:56:0e:13:4e:4d:ce: 79:f6:96:aa:44:a9:ee:6b:65:e1:95:8f:d2:9b:eb:0c:11:d4: 54:72:3d:c7:47:e4:b5:37:91:ce:be:64:d1:2f:c8:22:60:f7: 7b:0c:9d:9d:bd:fb:4f:52:09:e8:82:f5:a5:20:93:16:56:59: 50:09:a0:04:17:22:9a:37:59:b6:d3:9f:3c:77:57:14:48:67: e7:b9:d1:d3:97:ca:61:c4:6e:a8:28:f8:ab:c9:e7:2f:49:a2: 58:14:c3:37:59:d3:96:a7:47:da:8b:2c:0a:30:71:25:1f:e6: 59:1d:1e:ce -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 Q0ZBRDExMC8GA1UEBRMoNUUyMzM5RDFFQUFGNTM0OUExMzhBNDc5N0RBODJEMEVC NERGQTlFQzAeFw0yNDA1MTkwODM5MjFaFw0yNDA1MjYwODM5MjFaMBgxFjAUBgNV BAMTDTY2NDliYWJhLTkyZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJmx8F2jAsPZbNt8ouXLEXC5lRwBGSZTho0SH1Yrpp4t8lY50Wrxm3JIqLxSHU Qdw5nAIKwYw2sOlGor71hOi4Knz70ffyAULTxJczAxVXiFcJUb5uCI0YEQ3B6nW9 CrDflotP1c+VQmiltuwLlnwjU101Erw6CpGsGa1bLrIXALaEjQ0IanyduIBzfB/v yX/ydr8R/nBDbE5NPqUlZqW+EahXsOGx37+PBLqMLAKDYMUMQqxFD/ia6ea8N5MX ARwpLs8OFJX5GXe3VPTxPT+CPxQAJ6obsMnTWaeeG6R9OvmXcufO5JrZP8QG/BbQ u2yUq8cKfReWA/uTccVggJ8BAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1I2xBrfG 9Zp6U70NWd3QVfTXjlcwHwYDVR0jBBgwFoAUXiM50eqvU0mhOKR5fagtDrTfqeww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThDRkFELzRDOTAwRjFDRUEw NDExRUU5MkQxMDYxMUM0RjlBRTAyL1hpTTUwZXF2VTBtaE9LUjVmYWd0RHJUZnFl dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWGlNNTBlcXZVMG1oT0tSNWZhZ3REclRmcWV3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThD RkFELzRDOTAwRjFDRUEwNDExRUU5MkQxMDYxMUM0RjlBRTAyL1hpTTUwZXF2VTBt aE9LUjVmYWd0RHJUZnFldy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABtUHXPQzenTqQDp/nsBJcXhBLBZdNpxuCKmNo6q1pr5W/VuTDdGxe2L AUXDbyjfm8YtIh38MsvI6foaGhfgAlwyPLBluwodcbQyVyPzJpY8AVK4x148OXZg mZ8T4xwiu2EXHszZxGCOJ9d3oEObyAyVIXMrnFPzVt8uOaRKhio7Ru5LzgWphx2N slYOE05Nznn2lqpEqe5rZeGVj9Kb6wwR1FRyPcdH5LU3kc6+ZNEvyCJg93sMnZ29 +09SCeiC9aUgkxZWWVAJoAQXIpo3WbbTnzx3VxRIZ+e50dOXymHEbqgo+KvJ5y9J olgUwzdZ05anR9qLLAowcSUf5lkdHs4= -----END CERTIFICATE-----Generated at Sun May 19 09:32:17 2024 by rpki-client on console-ams.rpki-client.org