$ rpki-client -vvf rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft File: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft (raw, json) Hash identifier: 2/Fz6KYL4qhZmzIGoZ0vfPUe1Byk4+V9QwB06y7TayQ= Subject key identifier: B7:03:C4:A2:74:84:45:C3:33:AE:30:93:1C:2C:66:18:68:5B:40:EF Authority key identifier: 5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 Certificate issuer: /CN=A91A467D/serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Certificate serial: 0A27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft Manifest number: 0A21 Signing time: Sat 18 May 2024 20:35:38 +0000 Manifest this update: Sat 18 May 2024 20:35:37 +0000 Manifest next update: Sat 25 May 2024 20:35:37 +0000 Files and hashes: 1: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl (hash: R2SzPQFxjdsxK/zGHOXYjB3FOTngG3BJp6wBYKU0Nso=) 2: 43272DE249AA11EABABC8610C4F9AE02.roa (hash: hxpdqiJcuo669SSUUPg0Lc1pfzm9vN1gIm7p4lkjs2k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2599 (0xa27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A467D/serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Validity Not Before: May 18 20:35:37 2024 GMT Not After : May 25 20:35:37 2024 GMT Subject: CN=6649111a-b502 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ef:79:7b:87:15:0f:4a:47:6b:b4:ac:20:a0: 3d:81:0e:ee:6d:4d:5f:68:29:02:51:54:c2:5a:a9: 30:72:c7:64:02:26:33:39:71:7d:8c:c7:06:8b:3e: b1:40:99:55:bd:0d:34:a2:c8:43:8b:e2:8d:0c:3d: 02:f7:6b:9b:4f:98:0d:03:18:e7:4f:1f:44:5f:d0: 92:8d:88:c7:b5:e4:83:1a:bd:f4:7a:5b:d0:27:cb: 0f:be:87:e6:ae:2a:95:31:9c:70:64:ba:74:07:9e: 80:4d:1e:5d:89:eb:20:0a:e3:ef:1b:ac:db:8b:24: a2:46:25:e4:dd:2d:df:5e:15:47:17:c8:03:e2:ce: ff:28:89:5b:bd:f6:a8:9f:76:95:6f:85:8a:27:fe: 71:77:fd:95:7f:32:eb:55:5a:3a:35:a9:d6:ea:e0: 94:7f:1d:e0:af:5b:5e:cb:19:0c:32:87:b9:28:37: c5:16:66:78:a3:70:2e:21:0b:64:b1:5d:52:23:86: 74:68:0f:c5:a1:09:70:40:bb:58:a6:98:99:c4:5f: 60:1a:a0:1d:8d:a9:37:c2:9a:2f:7b:d1:b3:c5:f3: b9:95:6f:c5:6d:3f:8e:4b:39:49:ab:1a:ee:f9:dd: b7:29:e5:2a:56:15:be:f6:39:e8:ff:89:48:54:0f: 19:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:03:C4:A2:74:84:45:C3:33:AE:30:93:1C:2C:66:18:68:5B:40:EF X509v3 Authority Key Identifier: keyid:5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:5b:94:5e:4c:fa:52:43:90:cc:3c:44:82:8f:c3:36:75:84: 78:06:e1:1d:f0:c3:94:74:a4:96:f4:77:c6:66:da:75:88:95: ad:86:f1:6f:d7:fb:45:b4:84:ae:98:60:a6:89:a0:ab:91:7d: 3b:8f:4f:ba:2a:75:0f:28:bc:6f:b2:5b:4b:2c:19:1d:3e:88: 2f:87:cc:49:ff:f8:75:fe:98:66:fb:a1:6e:39:0c:01:53:45: 5d:e8:69:2c:be:46:22:9e:4c:bf:63:af:9c:0b:a8:01:b4:cb: ba:95:c3:02:26:19:6d:e9:cb:95:dc:da:d2:47:4a:28:83:78: 5c:e0:a9:1a:70:ef:b3:70:49:c2:f7:8d:18:ff:e7:e3:3c:18: 3a:e2:d9:5e:7d:3f:16:40:ae:8a:56:1d:66:f1:1c:cf:b0:32: 10:8d:f8:e7:38:0a:60:d5:c0:eb:fd:f5:54:8b:34:70:48:ea: b8:0f:ea:b0:20:91:fc:db:9c:f2:2f:42:5a:10:4a:c1:2c:d5: 87:6f:c2:40:6b:3f:a3:32:a6:ae:9f:a7:50:b7:5a:0d:0c:46: c9:d9:45:17:c8:13:97:51:d5:8e:a1:05:88:8a:58:bc:dd:b0: fe:f9:4b:a3:ea:53:bf:a6:dd:f6:cb:d3:a1:d3:80:28:42:06: fd:d3:ee:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ2N0QxMTAvBgNVBAUTKDVGMUM1MzRBRUVGRjRFMzgwQ0U1QTA5QTEwODRCRjhG NTcwOUVEMDgwHhcNMjQwNTE4MjAzNTM3WhcNMjQwNTI1MjAzNTM3WjAYMRYwFAYD VQQDEw02NjQ5MTExYS1iNTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+95e4cVD0pHa7SsIKA9gQ7ubU1faCkCUVTCWqkwcsdkAiYzOXF9jMcGiz6x QJlVvQ00oshDi+KNDD0C92ubT5gNAxjnTx9EX9CSjYjHteSDGr30elvQJ8sPvofm riqVMZxwZLp0B56ATR5diesgCuPvG6zbiySiRiXk3S3fXhVHF8gD4s7/KIlbvfao n3aVb4WKJ/5xd/2VfzLrVVo6NanW6uCUfx3gr1teyxkMMoe5KDfFFmZ4o3AuIQtk sV1SI4Z0aA/FoQlwQLtYppiZxF9gGqAdjak3wpove9GzxfO5lW/FbT+OSzlJqxru +d23KeUqVhW+9jno/4lIVA8ZRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcDxKJ0 hEXDM64wkxwsZhhoW0DvMB8GA1UdIwQYMBaAFF8cU0ru/044DOWgmhCEv49XCe0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDY3RC84NDhFN0QxODQ5 QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1RqZ001YUNhRUlTX2oxY0o3 UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h4eFRTdTdfVGpnTTVhQ2FFSVNfajFjSjdRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDY3RC84NDhFN0QxODQ5QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1Rq Z001YUNhRUlTX2oxY0o3UWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8W5ReTPpSQ5DMPESCj8M2dYR4BuEd8MOUdKSW9HfGZtp1iJWthvFv 1/tFtISumGCmiaCrkX07j0+6KnUPKLxvsltLLBkdPogvh8xJ//h1/phm+6FuOQwB U0Vd6GksvkYinky/Y6+cC6gBtMu6lcMCJhlt6cuV3NrSR0oog3hc4KkacO+zcEnC 940Y/+fjPBg64tlefT8WQK6KVh1m8RzPsDIQjfjnOApg1cDr/fVUizRwSOq4D+qw IJH825zyL0JaEErBLNWHb8JAaz+jMqaun6dQt1oNDEbJ2UUXyBOXUdWOoQWIili8 3bD++Uuj6lO/pt32y9Oh04AoQgb90+58 -----END CERTIFICATE-----Generated at Sat May 18 21:24:22 2024 by rpki-client on console-fra.rpki-client.org