$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft File: xgie68VWt39k5EJJpouV1b2UHkA.mft (raw, json) Hash identifier: 6nD9Sa+vGE+vq+DdELW+6fJ0NVu2sjjxdp2qs8P3cPs= Subject key identifier: D4:79:DE:A6:40:07:5F:F6:EC:2C:AF:5A:37:CC:91:B4:BB:66:88:EE Authority key identifier: C6:08:9E:EB:C5:56:B7:7F:64:E4:42:49:A6:8B:95:D5:BD:94:1E:40 Certificate issuer: /CN=A91ADFD3/serialNumber=C6089EEBC556B77F64E44249A68B95D5BD941E40 Certificate serial: 2275 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft Manifest number: 2249 Signing time: Fri 31 May 2024 16:21:39 +0000 Manifest this update: Fri 31 May 2024 16:21:38 +0000 Manifest next update: Fri 07 Jun 2024 16:21:38 +0000 Files and hashes: 1: xgie68VWt39k5EJJpouV1b2UHkA.crl (hash: TzqDMVMhUaZu9iwAKNigtSRfdnQoIdk/hVAcEV/Kmo8=) 2: 6880FA2C59D211EAB77C8C13C4F9AE02.roa (hash: IhQ7eTqBdRib/DA5N6YpIbUC+S3mXMSoqBokw69dd1M=) 3: 678DA8FE59D211EAB77C8C13C4F9AE02.roa (hash: UOaxMQztH6OfRmI3k4wAxIdXb76oWhevbZkXsQ8dCZc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.crl rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:21:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8821 (0x2275) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADFD3/serialNumber=C6089EEBC556B77F64E44249A68B95D5BD941E40 Validity Not Before: May 31 16:21:38 2024 GMT Not After : Jun 7 16:21:38 2024 GMT Subject: CN=6659f913-d700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:36:80:40:b6:74:8d:54:20:d9:67:98:df:76: 15:60:eb:58:dd:01:52:9a:ae:02:14:5b:15:f9:ed: 23:be:1f:b4:02:4e:49:05:2f:a9:5c:c4:ff:4d:72: d6:e4:89:04:9a:aa:4c:d9:58:8d:e5:55:ef:d1:30: 89:3c:ed:f9:8a:44:69:75:48:96:25:48:6a:5a:99: be:fc:68:20:4d:a8:61:86:74:5b:a9:33:2d:07:a9: 1b:3c:0e:8d:a4:67:67:ce:e6:ef:ce:e6:e5:78:d8: 00:1a:3f:5c:aa:a5:02:d1:53:06:a0:a1:22:54:22: 56:c7:c4:b6:4e:15:77:62:04:55:9e:05:3b:dd:9f: cf:81:6a:31:97:0f:1e:ce:b0:a5:57:29:36:7b:ed: 79:56:0f:7a:0a:a5:e4:ad:92:f8:ac:37:9d:22:30: 76:d1:b0:70:10:cb:c5:f8:1c:58:cc:ea:f9:0c:c7: 79:91:25:82:13:b4:4d:e9:d8:bf:45:e9:9d:88:6e: f8:bc:bc:fc:64:ba:47:10:4c:a9:eb:e0:b4:ca:d1: 14:1e:61:50:49:0d:37:a4:43:cc:54:67:b3:e7:9e: 97:47:e6:ae:fc:2d:32:73:2a:2b:97:da:b3:9c:e7: ab:fc:ad:18:3b:9e:d7:18:9f:91:54:44:39:61:8f: cd:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:79:DE:A6:40:07:5F:F6:EC:2C:AF:5A:37:CC:91:B4:BB:66:88:EE X509v3 Authority Key Identifier: keyid:C6:08:9E:EB:C5:56:B7:7F:64:E4:42:49:A6:8B:95:D5:BD:94:1E:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:8b:4e:85:44:37:20:17:36:fa:30:b0:d9:7c:0b:d8:ac:d7: 97:43:2c:0f:f3:53:24:3a:da:bc:64:5b:20:15:ff:c5:6d:b3: 95:4c:a1:f3:1a:98:30:8f:30:43:38:05:8f:ab:8b:ee:44:d9: 86:8c:63:74:ef:50:0d:96:51:f0:9d:0a:26:6c:37:95:64:60: 99:9c:f5:74:01:a8:19:17:a1:fb:a8:f5:20:8b:4b:e3:a5:a5: 4f:21:80:9b:3a:6b:4c:79:28:ea:01:68:c4:dc:e2:74:b6:d8: 16:bb:c8:77:59:38:3e:3f:49:69:59:c5:c6:09:52:3b:cf:31: b9:cf:a3:e8:d8:32:94:34:45:e3:88:38:da:b7:56:87:a0:d6: 89:68:a0:e5:8d:9b:33:ea:63:8b:28:34:63:3c:ce:db:60:22: 1d:69:38:65:9d:a0:45:ef:f6:9e:e5:a3:24:24:2e:3c:d4:78: c2:de:19:2e:3d:0a:74:12:a3:ff:b1:8b:90:b7:78:50:f3:02: bb:61:b8:16:e3:74:07:30:52:af:56:0d:db:80:02:4a:fc:4a: 0e:a5:d8:47:dc:88:06:a3:1f:d0:67:f5:55:6e:42:c9:97:3d: 09:6e:2c:d0:01:c1:ee:c9:0f:16:e9:12:a2:44:fe:65:64:0a: 4c:d7:94:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICInUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURGRDMxMTAvBgNVBAUTKEM2MDg5RUVCQzU1NkI3N0Y2NEU0NDI0OUE2OEI5NUQ1 QkQ5NDFFNDAwHhcNMjQwNTMxMTYyMTM4WhcNMjQwNjA3MTYyMTM4WjAYMRYwFAYD VQQDEw02NjU5ZjkxMy1kNzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjaAQLZ0jVQg2WeY33YVYOtY3QFSmq4CFFsV+e0jvh+0Ak5JBS+pXMT/TXLW 5IkEmqpM2ViN5VXv0TCJPO35ikRpdUiWJUhqWpm+/GggTahhhnRbqTMtB6kbPA6N pGdnzubvzubleNgAGj9cqqUC0VMGoKEiVCJWx8S2ThV3YgRVngU73Z/PgWoxlw8e zrClVyk2e+15Vg96CqXkrZL4rDedIjB20bBwEMvF+BxYzOr5DMd5kSWCE7RN6di/ RemdiG74vLz8ZLpHEEyp6+C0ytEUHmFQSQ03pEPMVGez556XR+au/C0ycyorl9qz nOer/K0YO57XGJ+RVEQ5YY/NzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNR53qZA B1/27CyvWjfMkbS7ZojuMB8GA1UdIwQYMBaAFMYInuvFVrd/ZORCSaaLldW9lB5A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREZEMy8xRkQxQThCRTk0 ODYxMUU1QUUwQzhCNzJDNEY5QUUwMi94Z2llNjhWV3QzOWs1RUpKcG91VjFiMlVI a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hnaWU2OFZXdDM5azVFSkpwb3VWMWIyVUhrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REZEMy8xRkQxQThCRTk0ODYxMUU1QUUwQzhCNzJDNEY5QUUwMi94Z2llNjhWV3Qz OWs1RUpKcG91VjFiMlVIa0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDi06FRDcgFzb6MLDZfAvYrNeXQywP81MkOtq8ZFsgFf/FbbOVTKHz GpgwjzBDOAWPq4vuRNmGjGN071ANllHwnQombDeVZGCZnPV0AagZF6H7qPUgi0vj paVPIYCbOmtMeSjqAWjE3OJ0ttgWu8h3WTg+P0lpWcXGCVI7zzG5z6Po2DKUNEXj iDjat1aHoNaJaKDljZsz6mOLKDRjPM7bYCIdaThlnaBF7/ae5aMkJC481HjC3hku PQp0EqP/sYuQt3hQ8wK7YbgW43QHMFKvVg3bgAJK/EoOpdhH3IgGox/QZ/VVbkLJ lz0JbizQAcHuyQ8W6RKiRP5lZApM15Te -----END CERTIFICATE-----Generated at Fri May 31 17:44:51 2024 by rpki-client on console-fra.rpki-client.org