$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft File: XRhbcS2TBWvydLi3qJjGklTruYM.mft (raw, json) Hash identifier: AC9zyp1wl/Z2zEzdvrzUFqBY8gHn3f+cNrRTirAU1+Q= Subject key identifier: CA:DC:10:A5:DB:28:D6:EC:21:64:D3:3F:03:A1:28:0C:B2:24:98:AD Authority key identifier: 5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 Certificate issuer: /CN=A91AE972/serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft Manifest number: 54 Signing time: Sun 19 May 2024 07:59:36 +0000 Manifest this update: Sun 19 May 2024 07:59:35 +0000 Manifest next update: Sun 26 May 2024 07:59:35 +0000 Files and hashes: 1: XRhbcS2TBWvydLi3qJjGklTruYM.crl (hash: P/jOKac/JQ0rJi/s9mDeC53xNg7tzwSjgYbYNtjark8=) 2: 79124A64AD5F11EE8824985BC4F9AE02.roa (hash: B9BQyy3CDZZSMJBX+GCW4rWICLdCrlm/SrcOF/YLMFQ=) 3: DCCEA912A3EB11EE8049E335C4F9AE02.roa (hash: n/QHjH1nEODvbvzFyy3xLe3FzdFcDXtcGXLBP+1lw5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE972/serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Validity Not Before: May 19 07:59:35 2024 GMT Not After : May 26 07:59:35 2024 GMT Subject: CN=6649b168-ae0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:59:df:38:64:9a:d5:51:47:58:6f:e0:92:f6: f5:d5:26:54:ba:ef:94:65:07:29:35:ad:6b:d8:19: 38:17:95:f5:6b:34:3d:11:e8:fa:54:72:39:ce:d6: 0b:13:6d:eb:be:b4:41:73:f9:7d:64:cd:af:38:bd: a1:e6:ff:4b:b4:34:69:ad:9f:6c:ed:1a:4a:c2:6c: 54:35:a0:3d:f3:ce:b4:23:b0:70:4a:6b:95:eb:c0: 1f:6b:6f:8a:0b:71:04:62:95:af:f2:7a:87:08:13: 5c:bd:12:40:3c:0e:8b:43:79:fe:08:10:00:3b:dc: c1:b3:b6:28:d4:22:d4:83:92:f1:ac:15:8b:93:b2: 8e:87:03:56:66:3a:43:06:26:5d:48:1f:71:d4:e9: c9:92:b3:8f:f1:0c:c8:a1:c5:60:23:c9:2a:09:a5: 8f:f1:6c:7a:24:f6:c6:63:db:24:78:8c:c9:c6:18: f9:7c:64:86:79:44:6d:ab:31:4b:bb:05:a5:ea:a3: eb:4c:e2:a2:77:29:2f:e7:6c:2b:e9:b5:10:2e:ca: b4:6b:ac:2a:6b:2c:c7:c6:20:3c:bf:3a:9e:23:cf: 6e:fb:3a:30:49:ba:b3:43:35:d4:b4:a6:3d:bc:7c: 57:06:01:d5:7a:3f:6e:c7:a9:cb:88:76:db:0d:fd: b3:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:DC:10:A5:DB:28:D6:EC:21:64:D3:3F:03:A1:28:0C:B2:24:98:AD X509v3 Authority Key Identifier: keyid:5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:bf:d4:f8:da:6b:12:53:27:50:4c:69:d4:6e:02:24:e4:ff: 89:6e:b9:58:13:cf:f8:db:c8:50:26:0d:65:f0:04:dc:4b:fe: 7e:24:d1:13:13:ac:10:72:c3:d3:b7:74:fa:e7:0c:30:b3:50: 10:dd:ad:a5:30:0b:7c:92:c6:08:eb:2d:0b:44:d1:4f:73:27: b7:15:50:ea:8f:b5:ca:28:84:7f:b9:77:9b:ed:43:b4:4f:5e: b9:79:01:db:69:56:99:27:45:e4:a6:ff:0f:49:63:1d:c1:76: 19:fa:5e:4b:c8:20:ec:18:ec:66:bf:e7:76:34:e5:fd:97:db: 5a:14:20:ac:26:a9:55:f2:43:1a:81:6b:f3:b6:2e:e8:b9:72: 97:6c:a2:c0:22:70:37:28:e0:08:70:43:d1:77:9d:bc:75:fb: 1a:d0:4e:aa:4c:71:ea:78:ad:fb:c8:16:a1:32:0b:4c:51:fd: 6d:ce:d6:32:80:6e:a1:05:55:41:fb:f5:74:02:46:da:2c:f9: 7a:1f:de:69:a8:4d:0b:99:bf:b0:e6:68:90:9e:6c:03:b9:d3: 85:f7:be:54:bc:d8:76:f5:95:66:bc:25:79:0b:d2:8f:e7:f4: 65:6d:29:05:a7:2f:c6:e6:83:5f:c5:e9:12:e5:f0:6c:0f:66: 29:60:7a:e1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RTk3MjExMC8GA1UEBRMoNUQxODVCNzEyRDkzMDU2QkYyNzRCOEI3QTg5OEM2OTI1 NEVCQjk4MzAeFw0yNDA1MTkwNzU5MzVaFw0yNDA1MjYwNzU5MzVaMBgxFjAUBgNV BAMTDTY2NDliMTY4LWFlMGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRWd84ZJrVUUdYb+CS9vXVJlS675RlByk1rWvYGTgXlfVrND0R6PpUcjnO1gsT beu+tEFz+X1kza84vaHm/0u0NGmtn2ztGkrCbFQ1oD3zzrQjsHBKa5XrwB9rb4oL cQRila/yeocIE1y9EkA8DotDef4IEAA73MGztijUItSDkvGsFYuTso6HA1ZmOkMG Jl1IH3HU6cmSs4/xDMihxWAjySoJpY/xbHok9sZj2yR4jMnGGPl8ZIZ5RG2rMUu7 BaXqo+tM4qJ3KS/nbCvptRAuyrRrrCprLMfGIDy/Op4jz277OjBJurNDNdS0pj28 fFcGAdV6P27HqcuIdtsN/bM5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUytwQpdso 1uwhZNM/A6EoDLIkmK0wHwYDVR0jBBgwFoAUXRhbcS2TBWvydLi3qJjGklTruYMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFFOTcyLzI0NUIzRERDQTNF NjExRUVBREY5NDg1NUM0RjlBRTAyL1hSaGJjUzJUQld2eWRMaTNxSmpHa2xUcnVZ TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWFJoYmNTMlRCV3Z5ZExpM3FKakdrbFRydVlNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFF OTcyLzI0NUIzRERDQTNFNjExRUVBREY5NDg1NUM0RjlBRTAyL1hSaGJjUzJUQld2 eWRMaTNxSmpHa2xUcnVZTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFK/1PjaaxJTJ1BMadRuAiTk/4luuVgTz/jbyFAmDWXwBNxL/n4k0RMT rBByw9O3dPrnDDCzUBDdraUwC3ySxgjrLQtE0U9zJ7cVUOqPtcoohH+5d5vtQ7RP Xrl5AdtpVpknReSm/w9JYx3Bdhn6XkvIIOwY7Ga/53Y05f2X21oUIKwmqVXyQxqB a/O2Lui5cpdsosAicDco4AhwQ9F3nbx1+xrQTqpMcep4rfvIFqEyC0xR/W3O1jKA bqEFVUH79XQCRtos+Xof3mmoTQuZv7DmaJCebAO504X3vlS82Hb1lWa8JXkL0o/n 9GVtKQWnL8bmg1/F6RLl8GwPZilgeuE= -----END CERTIFICATE-----Generated at Sun May 19 08:26:44 2024 by rpki-client on console-fra.rpki-client.org