$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: 8GenXewKbR6nMMpF4N50knzhbsA/ZuzGlJWI94s4oR8= Subject key identifier: 05:89:8D:6B:C8:20:7B:AC:76:65:4B:D5:97:02:64:97:DA:01:13:6B Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: 7D Signing time: Fri 31 May 2024 08:09:16 +0000 Manifest this update: Fri 31 May 2024 08:09:15 +0000 Manifest next update: Fri 07 Jun 2024 08:09:15 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: U9NzCCoZx/Nrte9AaGDZ6EY7rodRn3B+eaLDQdCQxu4=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: PHBmU8XtEEkWx86byNZKqiqt2OH6pfWAcXf0bS09ZRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: May 31 08:09:15 2024 GMT Not After : Jun 7 08:09:15 2024 GMT Subject: CN=665985ac-d51f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:af:42:89:fc:3a:b2:59:63:60:ab:a6:04:fe: f2:65:51:cd:e1:d0:90:1a:67:bd:82:e1:2a:95:eb: a7:30:06:71:57:10:95:a5:22:61:cc:0a:17:75:70: 6d:85:ab:36:c2:e8:4c:6d:9f:f3:19:1c:99:60:13: 06:a8:b5:98:ee:7d:56:99:82:9b:8f:33:47:85:57: 93:37:13:e3:ab:bc:32:78:ac:1a:3b:85:88:3b:98: 9a:2b:a0:9d:df:f8:64:c6:8e:7f:a7:5b:2f:33:03: 06:a4:91:73:8b:b3:d9:ca:ca:45:4f:9b:83:ec:8f: e7:47:25:3e:07:b8:ad:26:7d:bd:77:7c:63:76:fa: 13:1f:8e:be:e5:70:59:69:fe:01:26:19:13:55:41: 90:3e:ad:c8:20:36:98:e8:61:7e:d8:ef:1d:46:57: 2c:5b:9a:e7:8d:e5:fd:70:00:cb:a1:78:00:72:b4: cd:71:22:fd:a7:c7:74:9c:91:ae:d6:3b:f1:c2:14: a4:f0:cc:e2:e0:12:68:21:14:20:44:d2:96:29:c2: dc:bf:2d:42:2e:05:14:ad:58:b7:3b:60:4c:3c:be: 2b:44:68:12:a9:7c:63:1d:10:e4:df:54:28:23:3c: 18:3e:71:74:9f:dd:33:be:48:8b:84:41:1d:13:ab: 86:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:89:8D:6B:C8:20:7B:AC:76:65:4B:D5:97:02:64:97:DA:01:13:6B X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:e0:2b:0d:31:f3:37:b7:49:50:1c:da:ac:36:69:df:27:29: d0:1f:54:1e:c5:2d:08:25:7d:9f:e7:2e:88:18:2c:21:4b:4b: ff:77:5c:3f:d6:c8:17:2a:2f:c2:e0:f5:4d:40:0b:73:3e:f8: 18:bd:34:e4:6f:ae:12:7b:d7:e7:d3:63:da:5f:b1:0e:e9:4f: 7b:8f:a9:78:10:6b:ab:89:bf:f9:c6:f3:5c:f8:33:41:50:da: 4f:66:48:d6:f4:7a:a3:e8:64:02:eb:d3:9e:27:ec:07:e7:56: e1:f5:23:dd:87:57:c4:5f:df:88:80:90:5d:cb:0b:32:b4:d7: 34:74:bd:bd:69:3f:64:20:3d:34:20:9d:9b:1b:c0:5c:5e:13: 47:6e:1c:5e:10:0b:12:3a:c9:0d:0e:03:7c:4e:31:06:9c:2f: 5c:b7:cb:df:ff:3d:5c:8f:66:dc:ec:5e:bd:24:d2:5e:39:63: fd:46:3b:b3:59:13:84:fb:d8:ef:f8:43:88:59:10:c8:9b:9d: cf:e4:d1:c1:a2:7a:5a:8a:57:36:c5:24:9d:27:20:59:81:1b: 31:e1:92:89:52:8d:a3:09:4c:e0:23:6b:25:7a:ff:1b:fd:40: 68:84:86:eb:5f:15:b4:f1:80:58:66:a8:ae:62:f9:a5:4f:91: 5d:d0:f4:81 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUY3MzExMC8GA1UEBRMoQzQwNUYwNjFFMzNCMDcxN0M5MDRGQzFERjNFNzlCQ0Q3 OTUyMEZBNjAeFw0yNDA1MzEwODA5MTVaFw0yNDA2MDcwODA5MTVaMBgxFjAUBgNV BAMTDTY2NTk4NWFjLWQ1MWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAr0KJ/DqyWWNgq6YE/vJlUc3h0JAaZ72C4SqV66cwBnFXEJWlImHMChd1cG2F qzbC6Extn/MZHJlgEwaotZjufVaZgpuPM0eFV5M3E+OrvDJ4rBo7hYg7mJoroJ3f +GTGjn+nWy8zAwakkXOLs9nKykVPm4Psj+dHJT4HuK0mfb13fGN2+hMfjr7lcFlp /gEmGRNVQZA+rcggNpjoYX7Y7x1GVyxbmueN5f1wAMuheABytM1xIv2nx3Scka7W O/HCFKTwzOLgEmghFCBE0pYpwty/LUIuBRStWLc7YEw8vitEaBKpfGMdEOTfVCgj PBg+cXSf3TO+SIuEQR0Tq4afAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBYmNa8gg e6x2ZUvVlwJkl9oBE2swHwYDVR0jBBgwFoAUxAXwYeM7BxfJBPwd8+ebzXlSD6Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRjczL0Q1RkYxRjQwNUU3 MjExRUVCQzJDNDkyNkM0RjlBRTAyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveEFYd1llTTdCeGZKQlB3ZDgtZWJ6WGxTRDZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB RjczL0Q1RkYxRjQwNUU3MjExRUVCQzJDNDkyNkM0RjlBRTAyL3hBWHdZZU03Qnhm SkJQd2Q4LWVielhsU0Q2WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAALgKw0x8ze3SVAc2qw2ad8nKdAfVB7FLQglfZ/nLogYLCFLS/93XD/W yBcqL8Lg9U1AC3M++Bi9NORvrhJ71+fTY9pfsQ7pT3uPqXgQa6uJv/nG81z4M0FQ 2k9mSNb0eqPoZALr054n7AfnVuH1I92HV8Rf34iAkF3LCzK01zR0vb1pP2QgPTQg nZsbwFxeE0duHF4QCxI6yQ0OA3xOMQacL1y3y9//PVyPZtzsXr0k0l45Y/1GO7NZ E4T72O/4Q4hZEMibnc/k0cGielqKVzbFJJ0nIFmBGzHhkolSjaMJTOAjayV6/xv9 QGiEhutfFbTxgFhmqK5i+aVPkV3Q9IE= -----END CERTIFICATE-----Generated at Fri May 31 10:02:40 2024 by rpki-client on console-ams.rpki-client.org