$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft File: cx5XsN_ep5G6TV1xly2oEF3JPos.mft (raw, json) Hash identifier: wffE3ddftPpz/JO6O7/yLD9csfoCzStTN7DGMGn6AtU= Subject key identifier: 4F:34:92:8E:21:02:49:06:FA:E4:91:DD:7E:E2:A2:51:47:D9:61:2B Authority key identifier: 73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B Certificate issuer: /CN=A91AA444/serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Certificate serial: 48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft Manifest number: 48 Signing time: Wed 29 May 2024 08:43:23 +0000 Manifest this update: Wed 29 May 2024 08:43:23 +0000 Manifest next update: Wed 05 Jun 2024 08:43:23 +0000 Files and hashes: 1: cx5XsN_ep5G6TV1xly2oEF3JPos.crl (hash: sMpr74TR2HvOXG7a7zdTqvLk7BvzUsknUK8cs/UFSwg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:43:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA444/serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Validity Not Before: May 29 08:43:23 2024 GMT Not After : Jun 5 08:43:23 2024 GMT Subject: CN=6656eaab-1166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e7:25:2e:ed:ed:21:cf:72:b3:1d:83:7c:12: 46:b9:5e:dc:9d:37:48:b9:3e:7d:ec:95:88:5f:ad: 73:6f:06:0a:72:75:16:2e:97:74:5a:bb:b8:01:cd: dd:31:a4:d4:1a:32:61:e9:42:80:4b:1b:24:21:5d: 3f:02:b6:d3:79:5c:5b:aa:46:5a:07:c4:f2:1b:7c: f1:54:88:49:5e:42:23:2f:28:cb:f6:1d:4d:13:13: 8e:2c:97:00:65:36:fd:90:a5:6f:81:7f:6a:1f:db: d0:6c:28:e6:a0:18:a4:4b:e9:7e:e6:3d:58:31:74: 00:57:d6:67:c0:01:67:dc:50:d1:a2:76:68:37:10: d8:ac:58:e6:8f:a5:63:7e:54:50:f5:ff:80:59:86: 00:2f:e6:cc:1d:0a:e8:ea:c9:82:cc:eb:46:e4:ac: 8d:00:1b:66:d8:5d:af:4f:32:6a:bd:53:c3:d6:d4: 66:31:10:10:05:79:4a:87:3c:fe:b1:8d:fe:69:02: 0a:e8:43:e2:00:4a:9a:9f:8e:94:67:85:2a:bd:07: 65:90:37:04:5b:ef:91:62:7f:64:d9:17:ff:6c:57: 47:bb:36:92:6f:4c:8c:ec:bb:40:c1:c4:4b:42:ce: 29:d2:88:ff:e9:82:ca:0e:c4:70:3e:96:99:53:d9: fe:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:34:92:8E:21:02:49:06:FA:E4:91:DD:7E:E2:A2:51:47:D9:61:2B X509v3 Authority Key Identifier: keyid:73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:a1:f4:86:35:16:c7:96:38:18:ac:c4:5d:54:fc:cb:3f:a7: 4b:82:e2:c9:f9:f2:b5:3c:bb:16:02:98:8d:80:86:5f:df:e5: 2e:85:28:e2:02:82:f8:67:34:68:ec:5c:a6:e4:6a:c1:4f:9b: 29:30:91:e5:1a:39:45:ad:fd:e2:09:0e:6b:3d:8f:6a:f0:59: ee:f5:a9:52:b9:57:05:2f:3d:ae:fe:50:88:62:49:f5:69:f0: b9:19:24:ad:a1:e4:c1:89:71:a9:58:cc:c7:f4:bd:ae:6e:a8: 8b:d9:31:c4:cf:05:db:9b:1b:ce:3c:bd:fe:72:46:fc:0e:af: 5b:e1:c1:6e:8c:a1:23:9b:68:30:62:87:dc:d7:f2:25:f5:14: d9:42:3e:8f:7c:c9:7f:54:79:8b:6d:a0:e0:19:2b:ad:66:e7: 79:f5:07:76:43:b1:e6:a0:70:d9:ff:34:d8:5f:66:55:09:cc: 81:1d:8d:e0:6e:bc:19:19:09:f6:98:bf:f4:42:bb:19:13:3f: 92:a6:ec:3b:58:71:be:de:0e:99:e3:2e:00:54:f6:58:8d:4d: 75:a7:50:7f:a0:89:c4:c1:01:95:6e:a8:72:ec:4c:cc:da:26: 78:8e:70:f7:69:c3:0f:02:70:aa:50:bb:42:ea:d2:d1:f9:ac: 65:0c:6f:99 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QTQ0NDExMC8GA1UEBRMoNzMxRTU3QjBERkRFQTc5MUJBNEQ1RDcxOTcyREE4MTA1 REM5M0U4QjAeFw0yNDA1MjkwODQzMjNaFw0yNDA2MDUwODQzMjNaMBgxFjAUBgNV BAMTDTY2NTZlYWFiLTExNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDI5yUu7e0hz3KzHYN8Eka5XtydN0i5Pn3slYhfrXNvBgpydRYul3Rau7gBzd0x pNQaMmHpQoBLGyQhXT8CttN5XFuqRloHxPIbfPFUiEleQiMvKMv2HU0TE44slwBl Nv2QpW+Bf2of29BsKOagGKRL6X7mPVgxdABX1mfAAWfcUNGidmg3ENisWOaPpWN+ VFD1/4BZhgAv5swdCujqyYLM60bkrI0AG2bYXa9PMmq9U8PW1GYxEBAFeUqHPP6x jf5pAgroQ+IASpqfjpRnhSq9B2WQNwRb75Fif2TZF/9sV0e7NpJvTIzsu0DBxEtC zinSiP/pgsoOxHA+lplT2f7nAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTzSSjiEC SQb65JHdfuKiUUfZYSswHwYDVR0jBBgwFoAUcx5XsN/ep5G6TV1xly2oEF3JPosw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBNDQ0LzhEQ0UyNzRBQjEx RDExRUVBMzM2MzMxOUM0RjlBRTAyL2N4NVhzTl9lcDVHNlRWMXhseTJvRUYzSlBv cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY3g1WHNOX2VwNUc2VFYxeGx5Mm9FRjNKUG9zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB NDQ0LzhEQ0UyNzRBQjExRDExRUVBMzM2MzMxOUM0RjlBRTAyL2N4NVhzTl9lcDVH NlRWMXhseTJvRUYzSlBvcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGmh9IY1FseWOBisxF1U/Ms/p0uC4sn58rU8uxYCmI2Ahl/f5S6FKOIC gvhnNGjsXKbkasFPmykwkeUaOUWt/eIJDms9j2rwWe71qVK5VwUvPa7+UIhiSfVp 8LkZJK2h5MGJcalYzMf0va5uqIvZMcTPBdubG848vf5yRvwOr1vhwW6MoSObaDBi h9zX8iX1FNlCPo98yX9UeYttoOAZK61m53n1B3ZDseagcNn/NNhfZlUJzIEdjeBu vBkZCfaYv/RCuxkTP5Km7DtYcb7eDpnjLgBU9liNTXWnUH+gicTBAZVuqHLsTMza JniOcPdpww8CcKpQu0Lq0tH5rGUMb5k= -----END CERTIFICATE-----Generated at Wed May 29 10:43:58 2024 by rpki-client on console-ams.rpki-client.org