$ rpki-client -vvf rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft File: xGIlbhG2PuqR1z02Q867tRojUK8.mft (raw, json) Hash identifier: c2WsLODfxlUKODJYf82fNFeBa2oym3TaLof88I40rM8= Subject key identifier: 5A:39:B0:A8:A7:97:E1:35:44:33:E3:85:DD:45:18:9F:FD:90:2B:BC Authority key identifier: C4:62:25:6E:11:B6:3E:EA:91:D7:3D:36:43:CE:BB:B5:1A:23:50:AF Certificate issuer: /CN=A91A210A/serialNumber=C462256E11B63EEA91D73D3643CEBBB51A2350AF Certificate serial: 0F94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft Manifest number: 0F8B Signing time: Sat 18 May 2024 18:07:25 +0000 Manifest this update: Sat 18 May 2024 18:07:25 +0000 Manifest next update: Sat 25 May 2024 18:07:25 +0000 Files and hashes: 1: xGIlbhG2PuqR1z02Q867tRojUK8.crl (hash: d4ZsQOi+ybwG1d6hgNpufO8h2OQRUqXt2r851tTrlsk=) 2: 691023063A8311E99AF5572DC4F9AE02.roa (hash: l1yNy5wosDr6TY3WBCB5bde6OHwXT+S3VSRcd8EQWZk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.crl rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3988 (0xf94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A210A/serialNumber=C462256E11B63EEA91D73D3643CEBBB51A2350AF Validity Not Before: May 18 18:07:25 2024 GMT Not After : May 25 18:07:25 2024 GMT Subject: CN=6648ee5d-f298 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a6:86:28:ba:8f:71:70:ad:d2:0a:6e:fb:c1: 4b:62:d9:88:0d:e9:59:61:01:bb:9c:53:b4:8a:a5: e9:4f:56:0e:42:ae:79:ea:d6:3f:74:8b:d6:7b:cf: 8b:cc:1d:67:9c:0d:e6:a9:8f:64:fc:ee:bb:43:d2: 39:e0:b4:36:05:b1:df:6c:a9:8a:7e:61:43:84:28: 29:2d:71:ae:3b:df:4c:51:8c:9e:c6:2f:51:b2:d5: 92:b4:34:30:2d:9a:17:3a:6b:5e:60:98:71:21:48: eb:d7:e2:88:8e:03:2d:01:f2:90:bd:7c:65:96:5e: 0c:ff:cb:0c:d8:32:51:0b:d6:46:2a:0c:b3:7b:cb: 2c:36:e0:e6:ff:df:79:bf:1b:bf:d6:b2:08:31:ce: c6:25:cf:90:6c:5f:67:53:69:52:59:ed:56:e6:6e: fe:ac:1e:9a:fe:03:16:5b:c4:fd:6a:f4:99:a4:56: b9:c4:07:a2:66:96:00:f9:ce:de:73:6d:fa:3a:7a: f1:c5:43:00:f4:c7:15:dc:9d:45:8b:62:91:1c:64: a8:9e:21:78:42:b5:83:60:a3:04:41:99:d5:7a:ef: 66:e1:27:d4:ee:30:8f:ea:b3:8c:11:48:bd:3c:12: c3:31:8a:d2:a9:13:51:d3:e9:c4:a0:59:6b:4b:c5: 25:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:39:B0:A8:A7:97:E1:35:44:33:E3:85:DD:45:18:9F:FD:90:2B:BC X509v3 Authority Key Identifier: keyid:C4:62:25:6E:11:B6:3E:EA:91:D7:3D:36:43:CE:BB:B5:1A:23:50:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:df:1f:56:71:67:ff:89:12:b7:bc:a6:bc:7b:81:91:cf:22: 96:73:b0:47:58:19:13:0b:26:8e:cc:20:b1:9c:34:5d:10:f9: ed:dc:90:cb:8c:18:9b:fb:b7:59:af:70:96:ab:4c:44:b6:0e: 5a:6e:d1:fb:ac:ea:43:94:b1:82:0d:14:ed:84:4c:fd:42:99: 01:6a:a1:32:a7:0f:aa:6d:38:61:d3:e5:7f:9a:c1:b2:5c:93: a7:cc:d2:92:00:4e:7b:14:3a:53:63:77:ca:fd:72:a5:31:be: 33:cf:87:48:b3:a2:06:f7:c3:7d:14:da:52:b0:43:32:6c:21: 15:1e:6a:7a:16:2b:28:bb:10:eb:0a:c9:b9:e1:b6:71:56:ee: 02:62:74:4e:51:2f:8c:a2:d9:21:e6:b3:d9:0f:96:18:cc:cf: 00:9e:39:c6:44:f2:72:37:79:52:29:65:28:87:b3:ff:4d:ad: 6c:b7:a9:cc:c5:2b:87:71:b2:19:3a:b5:f2:49:0d:59:59:06: 25:4d:dc:c8:3b:eb:31:b2:f8:00:26:96:e2:7c:41:9d:de:22: 6f:c8:45:e6:b6:8e:30:d1:51:82:3e:9e:a2:2a:af:af:68:cb: 23:cd:96:3d:b3:d6:41:9d:72:ff:d8:3b:8b:57:75:5a:f4:b1: a0:f6:85:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTIxMEExMTAvBgNVBAUTKEM0NjIyNTZFMTFCNjNFRUE5MUQ3M0QzNjQzQ0VCQkI1 MUEyMzUwQUYwHhcNMjQwNTE4MTgwNzI1WhcNMjQwNTI1MTgwNzI1WjAYMRYwFAYD VQQDEw02NjQ4ZWU1ZC1mMjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuaaGKLqPcXCt0gpu+8FLYtmIDelZYQG7nFO0iqXpT1YOQq556tY/dIvWe8+L zB1nnA3mqY9k/O67Q9I54LQ2BbHfbKmKfmFDhCgpLXGuO99MUYyexi9RstWStDQw LZoXOmteYJhxIUjr1+KIjgMtAfKQvXxlll4M/8sM2DJRC9ZGKgyze8ssNuDm/995 vxu/1rIIMc7GJc+QbF9nU2lSWe1W5m7+rB6a/gMWW8T9avSZpFa5xAeiZpYA+c7e c236OnrxxUMA9McV3J1Fi2KRHGSoniF4QrWDYKMEQZnVeu9m4SfU7jCP6rOMEUi9 PBLDMYrSqRNR0+nEoFlrS8UlgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFo5sKin l+E1RDPjhd1FGJ/9kCu8MB8GA1UdIwQYMBaAFMRiJW4Rtj7qkdc9NkPOu7UaI1Cv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjEwQS9BNTM4QURCODNB ODIxMUU5QTRDMjgxMkNDNEY5QUUwMi94R0lsYmhHMlB1cVIxejAyUTg2N3RSb2pV SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHSWxiaEcyUHVxUjF6MDJRODY3dFJvalVLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjEwQS9BNTM4QURCODNBODIxMUU5QTRDMjgxMkNDNEY5QUUwMi94R0lsYmhHMlB1 cVIxejAyUTg2N3RSb2pVSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj3x9WcWf/iRK3vKa8e4GRzyKWc7BHWBkTCyaOzCCxnDRdEPnt3JDL jBib+7dZr3CWq0xEtg5abtH7rOpDlLGCDRTthEz9QpkBaqEypw+qbThh0+V/msGy XJOnzNKSAE57FDpTY3fK/XKlMb4zz4dIs6IG98N9FNpSsEMybCEVHmp6FisouxDr Csm54bZxVu4CYnROUS+Motkh5rPZD5YYzM8AnjnGRPJyN3lSKWUoh7P/Ta1st6nM xSuHcbIZOrXySQ1ZWQYlTdzIO+sxsvgAJpbifEGd3iJvyEXmto4w0VGCPp6iKq+v aMsjzZY9s9ZBnXL/2DuLV3Va9LGg9oVe -----END CERTIFICATE-----Generated at Sat May 18 19:15:25 2024 by rpki-client on console-ams.rpki-client.org