$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft File: x5XlnAMMfJKfy-R0Gfxexp4frP0.mft (raw, json) Hash identifier: rKClF3B9ThHVpXdimjA8u3r4zqptXB6CP6dsqvY+jHg= Subject key identifier: 48:36:BC:61:AF:44:14:19:C5:D4:F4:90:15:19:C6:89:52:BA:BA:87 Authority key identifier: C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD Certificate issuer: /CN=A91A3FEB/serialNumber=C795E59C030C7C929FCBE47419FC5EC69E1FACFD Certificate serial: 068D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft Manifest number: 0688 Signing time: Sat 18 May 2024 23:22:37 +0000 Manifest this update: Sat 18 May 2024 23:22:36 +0000 Manifest next update: Sat 25 May 2024 23:22:36 +0000 Files and hashes: 1: x5XlnAMMfJKfy-R0Gfxexp4frP0.crl (hash: YZuOoY1R8Uqd+ERA+Z0vUszpa1RzEL9a/Wf2UeSkst8=) 2: B722FC542A0411EB992DD32EC4F9AE02.roa (hash: T2Lsfba/5wcE3DtMzCheps9cMl47tWjTgMCBmWf+3eA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.crl rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1677 (0x68d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3FEB/serialNumber=C795E59C030C7C929FCBE47419FC5EC69E1FACFD Validity Not Before: May 18 23:22:36 2024 GMT Not After : May 25 23:22:36 2024 GMT Subject: CN=6649383c-5977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0b:90:40:82:06:76:27:a3:45:c4:c7:cf:ae: 6c:ee:f8:1e:bf:93:1f:49:88:95:6c:b1:05:3b:7a: 1b:62:d2:50:98:ec:3f:0b:47:ee:5e:c3:57:62:4c: 40:ea:58:d8:da:53:56:79:a9:1e:6d:95:c0:5d:93: 8c:1a:50:48:f5:8f:ed:9d:c8:c3:23:fb:a6:d5:4b: 78:84:a0:b8:a7:5e:13:ff:31:f0:7e:d4:8d:b0:45: c1:83:0f:50:2e:bc:f5:ac:a0:1f:61:2d:fb:af:b0: 9d:7e:70:40:1f:64:c9:39:2f:1c:1f:1c:f0:f0:f8: 34:53:c5:72:a9:4e:88:a6:3b:a8:cf:51:4e:c9:46: d9:45:98:1a:ed:6b:6c:dc:ed:08:04:e2:cb:b6:8e: 04:fa:a6:d6:3e:c4:0a:e9:0b:76:36:24:de:ee:08: 21:a9:ae:13:53:4d:61:02:29:4e:85:43:ca:55:e6: 86:07:46:01:ef:da:31:24:f0:c5:39:74:80:8d:70: 37:f8:32:27:6b:91:02:67:45:3c:0a:b4:4f:26:05: 8b:21:e3:d7:c2:eb:5e:e0:0f:a5:96:92:d4:8d:0a: bf:4c:6a:94:ec:77:62:de:10:c8:ec:7c:8d:55:17: 76:98:f1:05:c9:49:ba:ab:7c:23:f7:1f:96:13:23: 41:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:36:BC:61:AF:44:14:19:C5:D4:F4:90:15:19:C6:89:52:BA:BA:87 X509v3 Authority Key Identifier: keyid:C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:62:99:e5:c2:bd:56:72:01:63:d5:1e:df:2c:74:61:4c:85: 3a:ed:54:ff:b2:d8:bb:5a:a7:49:44:96:1c:02:48:45:34:d8: 3b:6c:04:36:63:2a:89:c8:bf:54:26:ce:cf:9b:88:ff:91:c6: e9:4c:6e:5b:04:ce:b5:6e:f7:95:58:d7:4a:fb:89:c3:eb:91: 3a:a0:4c:bd:a5:ad:b9:47:90:9c:39:b7:62:88:93:a6:b9:e0: d6:9e:a4:74:11:bd:7e:b1:5d:fa:a4:6c:b7:97:7e:2d:9c:99: b9:96:43:4e:95:e7:e4:10:cb:72:94:6e:30:25:8e:c7:45:b0: d3:5b:05:ac:8d:f1:6d:a1:95:5a:4b:d7:f7:ba:75:d0:c5:2a: fd:eb:cb:42:ed:61:55:58:9a:2b:24:c4:d0:06:82:cc:37:1d: 2d:9a:c9:27:33:8d:68:b3:29:4c:11:ad:f9:47:fb:ba:53:7a: a8:33:cd:23:fe:67:68:e9:c5:4e:7f:0b:5e:3a:07:b8:99:15: db:8c:99:52:7c:5f:9a:19:8a:8a:6f:ca:47:2e:18:c1:ab:6f: 00:c3:c2:68:31:29:8f:7c:a3:53:e2:c7:cb:07:c7:2f:02:6d: aa:89:f6:74:0f:0b:d7:a4:d7:09:c0:e2:a4:cf:3e:11:e3:01: 37:5f:7f:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGRUIxMTAvBgNVBAUTKEM3OTVFNTlDMDMwQzdDOTI5RkNCRTQ3NDE5RkM1RUM2 OUUxRkFDRkQwHhcNMjQwNTE4MjMyMjM2WhcNMjQwNTI1MjMyMjM2WjAYMRYwFAYD VQQDEw02NjQ5MzgzYy01OTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyguQQIIGdiejRcTHz65s7vgev5MfSYiVbLEFO3obYtJQmOw/C0fuXsNXYkxA 6ljY2lNWeakebZXAXZOMGlBI9Y/tncjDI/um1Ut4hKC4p14T/zHwftSNsEXBgw9Q Lrz1rKAfYS37r7CdfnBAH2TJOS8cHxzw8Pg0U8VyqU6Ipjuoz1FOyUbZRZga7Wts 3O0IBOLLto4E+qbWPsQK6Qt2NiTe7gghqa4TU01hAilOhUPKVeaGB0YB79oxJPDF OXSAjXA3+DIna5ECZ0U8CrRPJgWLIePXwute4A+llpLUjQq/TGqU7Hdi3hDI7HyN VRd2mPEFyUm6q3wj9x+WEyNBvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEg2vGGv RBQZxdT0kBUZxolSurqHMB8GA1UdIwQYMBaAFMeV5ZwDDHySn8vkdBn8XsaeH6z9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0ZFQi9CMDE4QUQ5NjI5 MTkxMUVCOTg1NDk4NUNDNEY5QUUwMi94NVhsbkFNTWZKS2Z5LVIwR2Z4ZXhwNGZy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1WGxuQU1NZkpLZnktUjBHZnhleHA0ZnJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0ZFQi9CMDE4QUQ5NjI5MTkxMUVCOTg1NDk4NUNDNEY5QUUwMi94NVhsbkFNTWZK S2Z5LVIwR2Z4ZXhwNGZyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkYpnlwr1WcgFj1R7fLHRhTIU67VT/sti7WqdJRJYcAkhFNNg7bAQ2 YyqJyL9UJs7Pm4j/kcbpTG5bBM61bveVWNdK+4nD65E6oEy9pa25R5CcObdiiJOm ueDWnqR0Eb1+sV36pGy3l34tnJm5lkNOlefkEMtylG4wJY7HRbDTWwWsjfFtoZVa S9f3unXQxSr968tC7WFVWJorJMTQBoLMNx0tmsknM41osylMEa35R/u6U3qoM80j /mdo6cVOfwteOge4mRXbjJlSfF+aGYqKb8pHLhjBq28Aw8JoMSmPfKNT4sfLB8cv Am2qifZ0DwvXpNcJwOKkzz4R4wE3X38f -----END CERTIFICATE-----Generated at Sun May 19 00:16:17 2024 by rpki-client on console-fra.rpki-client.org