$ rpki-client -vvf rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.mft File: XotdlW6b29kHcBQqxw_fm2OIxtg.mft (raw, json) Hash identifier: PHBbAmmkPxYml1Ir1eAS38jSMTgXAPs0h0NRYBGC43A= Subject key identifier: 05:73:67:6D:29:D5:E4:28:FA:1D:31:F1:A2:5D:AA:0F:45:9F:AE:9C Authority key identifier: 5E:8B:5D:95:6E:9B:DB:D9:07:70:14:2A:C7:0F:DF:9B:63:88:C6:D8 Certificate issuer: /CN=A919D2EE/serialNumber=5E8B5D956E9BDBD90770142AC70FDF9B6388C6D8 Certificate serial: 0394 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XotdlW6b29kHcBQqxw_fm2OIxtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.mft Manifest number: 0390 Signing time: Fri 31 May 2024 03:15:08 +0000 Manifest this update: Fri 31 May 2024 03:15:08 +0000 Manifest next update: Fri 07 Jun 2024 03:15:08 +0000 Files and hashes: 1: XotdlW6b29kHcBQqxw_fm2OIxtg.crl (hash: 0u+EfjAWIHv0/qU9T3Ba6DmtVHxSS7Ad3g+d5GUI+Sg=) 2: 097C49CC56FC11EC8032440FC4F9AE02.roa (hash: Bb+G2V63u2dqjlyGiP2E0iWy3Onnk60qnkfJKD3kZF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.crl rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XotdlW6b29kHcBQqxw_fm2OIxtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 03:15:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 916 (0x394) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D2EE/serialNumber=5E8B5D956E9BDBD90770142AC70FDF9B6388C6D8 Validity Not Before: May 31 03:15:08 2024 GMT Not After : Jun 7 03:15:08 2024 GMT Subject: CN=665940bc-2471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:4b:d1:f3:28:7a:53:1c:0d:bd:03:68:cd:93: 07:3d:34:a2:67:3b:0c:39:48:0f:39:cd:66:5d:08: f7:2f:4c:37:90:83:eb:36:c7:73:66:e7:2f:bf:b6: 9e:1a:4a:6a:4d:0e:f2:40:1c:4f:85:66:6e:03:3a: c7:c9:2d:02:bf:99:09:ad:0d:d5:4e:e6:18:bc:06: 9e:b5:96:63:2b:b2:9e:0a:d7:39:01:e4:ee:47:a6: 05:e8:9a:dc:15:e3:98:04:80:50:2f:90:d8:e6:dc: b3:c4:85:fb:cf:3a:27:ab:ff:a2:cc:0e:cc:22:35: c1:4a:d6:ae:7b:6e:1e:16:5b:30:01:cd:82:3e:02: 7f:7e:a0:7c:0c:f0:0b:2a:c2:c0:19:cc:e7:ca:69: 03:7f:12:c2:04:72:23:8d:99:a0:aa:b3:dc:bb:57: e4:38:d5:d2:4c:60:28:e8:a0:a2:82:b0:53:e9:b5: e4:ab:b0:3e:fc:d0:79:19:70:db:cb:89:ab:d1:71: 49:4b:2a:42:e5:9c:c2:c4:b3:19:77:85:e0:2c:96: 27:34:81:16:6a:e5:b9:e7:40:e2:57:40:c4:8b:10: ab:cf:0f:74:07:3a:ee:7a:1d:e1:7b:82:15:a5:dc: c0:6d:6c:97:18:aa:21:2d:c2:10:a3:e3:96:c2:76: 6f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:73:67:6D:29:D5:E4:28:FA:1D:31:F1:A2:5D:AA:0F:45:9F:AE:9C X509v3 Authority Key Identifier: keyid:5E:8B:5D:95:6E:9B:DB:D9:07:70:14:2A:C7:0F:DF:9B:63:88:C6:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XotdlW6b29kHcBQqxw_fm2OIxtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:4f:f6:8c:64:c8:2c:7d:b8:0d:c2:d5:ea:23:ab:47:4c:36: c5:58:ec:1c:2d:d3:58:07:35:d5:6d:3c:59:34:f5:ed:4a:28: 32:43:25:31:37:40:b8:7f:cc:8d:80:5f:03:16:45:50:4b:1b: 18:b6:18:7b:43:ac:3f:73:75:20:3b:06:e4:95:10:10:93:5a: 62:4f:b9:4f:ac:3e:42:79:1a:e8:27:1f:6e:86:df:0d:94:db: d4:d8:f7:70:3a:c2:ca:12:31:c8:52:2b:52:56:18:f9:83:4b: 3b:d3:14:fa:5e:09:c1:ef:85:25:88:1d:3a:61:6e:f2:42:37: a6:e6:85:97:e1:8f:71:44:2a:29:90:bc:07:cc:cd:ad:56:1e: b1:99:8f:45:f6:b8:eb:db:44:2b:07:5a:35:7f:de:0e:8e:7c: ff:a6:5e:a5:3c:a2:4e:9d:76:14:a2:ce:cc:6c:21:ca:cb:2a: fb:59:ea:60:d6:d0:b6:d6:9b:60:05:8f:a7:aa:47:dc:8e:99: 3e:4a:c7:7b:82:cd:cd:f2:ae:af:a4:32:1b:22:ef:00:ee:48: cc:5c:36:a4:cd:dd:66:5e:ef:ed:2f:24:3d:4e:aa:8b:64:2e: 31:cf:4f:f5:5d:7f:d1:48:f0:96:b6:da:d6:0b:b4:59:97:57: 94:05:fd:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQyRUUxMTAvBgNVBAUTKDVFOEI1RDk1NkU5QkRCRDkwNzcwMTQyQUM3MEZERjlC NjM4OEM2RDgwHhcNMjQwNTMxMDMxNTA4WhcNMjQwNjA3MDMxNTA4WjAYMRYwFAYD VQQDEw02NjU5NDBiYy0yNDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnkvR8yh6UxwNvQNozZMHPTSiZzsMOUgPOc1mXQj3L0w3kIPrNsdzZucvv7ae GkpqTQ7yQBxPhWZuAzrHyS0Cv5kJrQ3VTuYYvAaetZZjK7KeCtc5AeTuR6YF6Jrc FeOYBIBQL5DY5tyzxIX7zzonq/+izA7MIjXBStaue24eFlswAc2CPgJ/fqB8DPAL KsLAGcznymkDfxLCBHIjjZmgqrPcu1fkONXSTGAo6KCigrBT6bXkq7A+/NB5GXDb y4mr0XFJSypC5ZzCxLMZd4XgLJYnNIEWauW550DiV0DEixCrzw90Bzrueh3he4IV pdzAbWyXGKohLcIQo+OWwnZvqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAVzZ20p 1eQo+h0x8aJdqg9Fn66cMB8GA1UdIwQYMBaAFF6LXZVum9vZB3AUKscP35tjiMbY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDJFRS84RDk2Njc1NDU2 RjkxMUVDQjAyMUY2MENDNEY5QUUwMi9Yb3RkbFc2YjI5a0hjQlFxeHdfZm0yT0l4 dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvdGRsVzZiMjlrSGNCUXF4d19mbTJPSXh0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDJFRS84RDk2Njc1NDU2RjkxMUVDQjAyMUY2MENDNEY5QUUwMi9Yb3RkbFc2YjI5 a0hjQlFxeHdfZm0yT0l4dGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcT/aMZMgsfbgNwtXqI6tHTDbFWOwcLdNYBzXVbTxZNPXtSigyQyUx N0C4f8yNgF8DFkVQSxsYthh7Q6w/c3UgOwbklRAQk1piT7lPrD5CeRroJx9uht8N lNvU2PdwOsLKEjHIUitSVhj5g0s70xT6XgnB74UliB06YW7yQjem5oWX4Y9xRCop kLwHzM2tVh6xmY9F9rjr20QrB1o1f94Ojnz/pl6lPKJOnXYUos7MbCHKyyr7Wepg 1tC21ptgBY+nqkfcjpk+Ssd7gs3N8q6vpDIbIu8A7kjMXDakzd1mXu/tLyQ9TqqL ZC4xz0/1XX/RSPCWttrWC7RZl1eUBf2M -----END CERTIFICATE-----Generated at Fri May 31 06:49:21 2024 by rpki-client on console-ams.rpki-client.org