$ rpki-client -vvf rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft File: xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft (raw, json) Hash identifier: 5JDfEEWKO4fwsQlAQLi5oM1Ppw9hboONEXRWoUja01A= Subject key identifier: B2:2D:86:8F:3E:8B:1E:0B:7D:A0:7B:A8:F1:0A:AF:FC:42:65:73:C2 Authority key identifier: C4:B6:25:03:E6:D6:70:2A:C2:9D:00:BF:35:0C:8B:2C:12:E7:9F:05 Certificate issuer: /CN=A91A76AD/serialNumber=C4B62503E6D6702AC29D00BF350C8B2C12E79F05 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft Manifest number: 3A Signing time: Sun 19 May 2024 08:15:02 +0000 Manifest this update: Sun 19 May 2024 08:15:01 +0000 Manifest next update: Sun 26 May 2024 08:15:01 +0000 Files and hashes: 1: xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl (hash: wKcCkGvg7maNfSQiD3X+TOTbrNC3FkSCBgCXKZCb65M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A76AD/serialNumber=C4B62503E6D6702AC29D00BF350C8B2C12E79F05 Validity Not Before: May 19 08:15:01 2024 GMT Not After : May 26 08:15:01 2024 GMT Subject: CN=6649b506-c331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1b:fe:e8:48:99:c8:16:02:f0:c0:61:6e:8c: b0:42:6e:ec:4e:52:7d:44:e9:46:d7:d3:8e:d9:f7: a3:29:ee:3c:40:c0:62:04:3f:4f:b7:b5:22:40:36: a4:b6:3a:b0:a3:fa:d1:f6:ce:59:bc:be:ff:f9:11: 9e:37:96:5c:f1:a7:7d:eb:44:18:a0:bc:a7:70:94: 04:d0:0f:66:72:e3:d2:30:bd:d1:7d:bd:e6:b0:3f: cc:e4:4a:73:e3:a7:25:f1:14:5c:fd:9f:51:bd:ff: 94:7e:81:f8:d2:33:dc:74:0c:b6:be:ba:c5:22:5c: 12:62:46:fe:29:35:c4:5a:2b:75:b9:61:c1:9f:30: eb:95:12:d3:51:46:2c:be:2d:57:42:e9:72:93:4f: 32:c3:75:a9:54:b0:2c:16:95:2d:48:26:90:3b:73: b2:40:43:4e:ee:db:97:06:d0:be:60:06:29:11:b4: 43:5d:bf:24:67:43:23:3b:42:dd:33:6e:bd:45:18: 2b:4d:13:78:af:f7:e7:b1:54:56:ef:a1:f4:87:fe: 29:e9:5a:77:dd:a7:78:3a:4c:9b:80:0e:de:56:66: 01:7d:53:da:cc:52:9d:fc:f4:cd:f4:68:fb:de:06: 6e:95:0e:71:80:48:b3:0a:d3:aa:fb:f5:ca:f0:6a: 1e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:2D:86:8F:3E:8B:1E:0B:7D:A0:7B:A8:F1:0A:AF:FC:42:65:73:C2 X509v3 Authority Key Identifier: keyid:C4:B6:25:03:E6:D6:70:2A:C2:9D:00:BF:35:0C:8B:2C:12:E7:9F:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:dc:62:34:9d:60:15:c4:e9:58:01:df:48:34:3f:f4:fb:ea: 0f:d2:5a:ff:f1:a6:ff:4f:4b:89:96:05:05:8d:3a:1c:d5:c6: cf:36:16:06:50:4b:76:6d:48:15:92:e9:d6:8b:57:74:49:86: 63:cb:fb:c3:6c:e1:cb:72:a6:3d:dd:f5:fb:af:c3:a1:bb:f3: e4:b2:5d:10:a9:d8:14:a9:e4:ff:52:33:1b:8f:2d:69:ea:b3: fe:e1:e0:4a:01:10:87:f5:ad:66:21:ef:e1:81:2f:d2:98:84: 07:46:02:6c:e4:77:35:52:b0:08:7c:cc:74:bb:be:a1:d7:8a: f8:31:33:d1:20:2e:6f:3c:5c:4a:48:d8:1c:75:c5:67:8f:d0: f4:11:97:b3:67:43:2b:e3:4c:4c:2d:66:a8:fd:4e:dc:84:3d: 83:2a:ce:84:fd:e9:a6:95:3a:e8:19:55:38:a3:39:44:b1:d3: 3f:d7:cc:08:4f:73:d0:31:c0:49:9a:3c:f4:63:96:38:d7:16: 06:24:8f:e5:fe:85:aa:e9:df:8d:6b:04:33:95:67:17:81:d9: ac:2d:94:3a:be:e9:2b:0f:a6:e2:c9:e7:4c:a2:08:d5:c3:a3: 8d:77:ce:d1:37:1a:de:ed:04:9e:af:bf:44:08:21:e8:c1:e4: 0a:32:f4:71 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NzZBRDExMC8GA1UEBRMoQzRCNjI1MDNFNkQ2NzAyQUMyOUQwMEJGMzUwQzhCMkMx MkU3OUYwNTAeFw0yNDA1MTkwODE1MDFaFw0yNDA1MjYwODE1MDFaMBgxFjAUBgNV BAMTDTY2NDliNTA2LWMzMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaG/7oSJnIFgLwwGFujLBCbuxOUn1E6UbX047Z96Mp7jxAwGIEP0+3tSJANqS2 OrCj+tH2zlm8vv/5EZ43llzxp33rRBigvKdwlATQD2Zy49IwvdF9veawP8zkSnPj pyXxFFz9n1G9/5R+gfjSM9x0DLa+usUiXBJiRv4pNcRaK3W5YcGfMOuVEtNRRiy+ LVdC6XKTTzLDdalUsCwWlS1IJpA7c7JAQ07u25cG0L5gBikRtENdvyRnQyM7Qt0z br1FGCtNE3iv9+exVFbvofSH/inpWnfdp3g6TJuADt5WZgF9U9rMUp389M30aPve Bm6VDnGASLMK06r79crwah5pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsi2Gjz6L Hgt9oHuo8Qqv/EJlc8IwHwYDVR0jBBgwFoAUxLYlA+bWcCrCnQC/NQyLLBLnnwUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3NkFELzA3RjUyRTQ2QkU4 MDExRUU5Njc4NEQ2MkM0RjlBRTAyL3hMWWxBLWJXY0NyQ25RQ19OUXlMTEJMbm53 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveExZbEEtYldjQ3JDblFDX05ReUxMQkxubndVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3 NkFELzA3RjUyRTQ2QkU4MDExRUU5Njc4NEQ2MkM0RjlBRTAyL3hMWWxBLWJXY0Ny Q25RQ19OUXlMTEJMbm53VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHHcYjSdYBXE6VgB30g0P/T76g/SWv/xpv9PS4mWBQWNOhzVxs82FgZQ S3ZtSBWS6daLV3RJhmPL+8Ns4ctypj3d9fuvw6G78+SyXRCp2BSp5P9SMxuPLWnq s/7h4EoBEIf1rWYh7+GBL9KYhAdGAmzkdzVSsAh8zHS7vqHXivgxM9EgLm88XEpI 2Bx1xWeP0PQRl7NnQyvjTEwtZqj9TtyEPYMqzoT96aaVOugZVTijOUSx0z/XzAhP c9AxwEmaPPRjljjXFgYkj+X+harp341rBDOVZxeB2awtlDq+6SsPpuLJ50yiCNXD o413ztE3Gt7tBJ6vv0QIIejB5Aoy9HE= -----END CERTIFICATE-----Generated at Sun May 19 09:04:14 2024 by rpki-client on console-fra.rpki-client.org