$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft File: XdRoWi6WsUFvfNM1zetK0YIvfes.mft (raw, json) Hash identifier: /5v6wVxZkSuwRrjBvJjsF9OPEOR3nUB2Ns6kLoLzRss= Subject key identifier: B4:6E:78:B6:4C:5C:84:2B:0A:77:04:F8:A3:DE:0E:8A:AD:08:FD:66 Authority key identifier: 5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB Certificate issuer: /CN=A91AF01C/serialNumber=5DD4685A2E96B1416F7CD335CDEB4AD1822F7DEB Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft Manifest number: C0 Signing time: Sun 19 May 2024 06:26:35 +0000 Manifest this update: Sun 19 May 2024 06:26:34 +0000 Manifest next update: Sun 26 May 2024 06:26:34 +0000 Files and hashes: 1: XdRoWi6WsUFvfNM1zetK0YIvfes.crl (hash: ndYxzmxP6s6fFqci2E6/TA+kg7ti5v2G6avqpmllTqc=) 2: 3474AD64FAD311ED9CEE0E29C4F9AE02.roa (hash: Ij8n0A7jJx7QKOhE7hk56zcntIaXQI6rZH6/sGN7Fvk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.crl rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF01C/serialNumber=5DD4685A2E96B1416F7CD335CDEB4AD1822F7DEB Validity Not Before: May 19 06:26:34 2024 GMT Not After : May 26 06:26:34 2024 GMT Subject: CN=66499b9b-f4cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:28:85:58:ea:30:ce:69:f6:ae:ae:66:3e:12: 82:02:8a:39:61:b7:93:3b:ba:99:5c:74:e2:bc:17: ab:e7:82:00:b5:8c:09:48:b8:64:2b:60:04:d1:41: dc:e0:89:53:5b:8d:61:55:a4:0d:f5:45:90:8e:c7: 34:9b:df:07:82:ed:11:5d:7d:da:7c:f5:a5:1c:0d: d4:4d:29:e8:68:16:60:4a:d7:00:2b:01:72:25:09: 79:08:21:d4:b8:7f:12:02:95:b6:27:8e:93:90:a5: c2:92:88:04:e1:ba:cc:a8:c4:c2:cf:f6:d1:b9:c9: 24:89:a1:bc:15:07:13:44:75:2f:2c:36:8f:6a:9d: e7:6d:4c:d5:7c:61:e5:33:db:91:1e:5b:29:8c:c9: 02:92:9b:7e:33:4c:57:bc:78:43:e3:4f:0d:ff:0e: 13:d1:d2:29:3f:7d:47:3b:31:d8:40:62:d8:2a:39: a9:55:f0:17:c8:87:a2:69:b9:5d:3a:01:7f:35:85: 8c:bf:06:e8:de:6f:35:3a:39:a4:e8:ff:b4:db:55: 65:b6:0b:6b:3c:1d:5c:2e:d6:4c:3b:2b:e3:89:c9: 16:a5:c4:9c:8f:6f:9a:2a:da:54:d8:d2:5f:fb:9f: 23:c7:fb:0d:2b:70:6b:c5:8d:9a:b7:e6:41:e2:94: 14:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:6E:78:B6:4C:5C:84:2B:0A:77:04:F8:A3:DE:0E:8A:AD:08:FD:66 X509v3 Authority Key Identifier: keyid:5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:de:35:2a:8e:e9:49:0b:7e:ad:51:ed:2e:38:e2:27:ea:6e: ed:d3:f8:70:e1:c4:c8:d3:1a:b0:91:22:3e:6c:c7:06:72:f3: 11:2e:66:64:1a:c9:bf:70:93:e3:0a:9a:0d:5d:95:79:6e:5c: 40:a0:57:15:7b:69:38:c5:4a:4f:5d:38:fb:6e:8e:2b:3a:41: c9:64:2e:a3:6d:ad:8c:d0:af:55:91:be:a3:9a:9e:cd:81:fa: 2d:4c:4d:75:21:bf:aa:0c:ef:f9:66:ae:4e:aa:7f:47:d9:27: a8:8e:6c:97:f7:43:ab:44:ef:48:b2:39:55:88:2e:96:9c:54: 05:10:39:19:9f:34:f7:3a:f7:e7:d4:09:90:96:e9:46:4e:c9: 53:f3:01:ca:39:3a:0d:70:2a:f9:5e:2e:19:50:9f:9e:bd:ae: ec:cf:92:4d:8e:eb:fb:9d:49:1c:5c:ba:2d:66:a6:46:17:fb: a7:14:a8:8a:26:62:e7:a0:07:7f:8e:17:0c:18:c5:fa:e2:ad: 9c:c7:54:73:7f:43:08:f4:4b:d0:e3:df:6c:ec:08:a4:75:17: c3:fe:de:19:f0:cb:6b:94:c9:48:04:17:14:e4:a8:69:ac:5c: 3a:72:15:2d:0e:a5:43:a4:d3:d8:93:46:8a:f5:00:3f:9f:2d: ef:fa:93:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwMUMxMTAvBgNVBAUTKDVERDQ2ODVBMkU5NkIxNDE2RjdDRDMzNUNERUI0QUQx ODIyRjdERUIwHhcNMjQwNTE5MDYyNjM0WhcNMjQwNTI2MDYyNjM0WjAYMRYwFAYD VQQDEw02NjQ5OWI5Yi1mNGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsiiFWOowzmn2rq5mPhKCAoo5YbeTO7qZXHTivBer54IAtYwJSLhkK2AE0UHc 4IlTW41hVaQN9UWQjsc0m98Hgu0RXX3afPWlHA3UTSnoaBZgStcAKwFyJQl5CCHU uH8SApW2J46TkKXCkogE4brMqMTCz/bRuckkiaG8FQcTRHUvLDaPap3nbUzVfGHl M9uRHlspjMkCkpt+M0xXvHhD408N/w4T0dIpP31HOzHYQGLYKjmpVfAXyIeiabld OgF/NYWMvwbo3m81Ojmk6P+021VltgtrPB1cLtZMOyvjickWpcScj2+aKtpU2NJf +58jx/sNK3BrxY2at+ZB4pQUsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLRueLZM XIQrCncE+KPeDoqtCP1mMB8GA1UdIwQYMBaAFF3UaFoulrFBb3zTNc3rStGCL33r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjAxQy9FNUQ5RTczNEZB Q0IxMUVEQjhGOTdEODVDNEY5QUUwMi9YZFJvV2k2V3NVRnZmTk0xemV0SzBZSXZm ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hkUm9XaTZXc1VGdmZOTTF6ZXRLMFlJdmZlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjAxQy9FNUQ5RTczNEZBQ0IxMUVEQjhGOTdEODVDNEY5QUUwMi9YZFJvV2k2V3NV RnZmTk0xemV0SzBZSXZmZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR3jUqjulJC36tUe0uOOIn6m7t0/hw4cTI0xqwkSI+bMcGcvMRLmZk Gsm/cJPjCpoNXZV5blxAoFcVe2k4xUpPXTj7bo4rOkHJZC6jba2M0K9Vkb6jmp7N gfotTE11Ib+qDO/5Zq5Oqn9H2SeojmyX90OrRO9IsjlViC6WnFQFEDkZnzT3Ovfn 1AmQlulGTslT8wHKOToNcCr5Xi4ZUJ+eva7sz5JNjuv7nUkcXLotZqZGF/unFKiK JmLnoAd/jhcMGMX64q2cx1Rzf0MI9EvQ499s7AikdRfD/t4Z8MtrlMlIBBcU5Khp rFw6chUtDqVDpNPYk0aK9QA/ny3v+pMC -----END CERTIFICATE-----Generated at Sun May 19 07:40:44 2024 by rpki-client on console-fra.rpki-client.org