$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft File: XucUYNY3KKxeq5GKVB0NcFFXfU0.mft (raw, json) Hash identifier: 34T8snrb8vnpsMC3R9+45xSuANc0sI+57qvi/j07+Ck= Subject key identifier: 9A:46:4E:54:0F:4D:97:1B:63:74:9D:C9:62:D0:D2:18:DC:31:58:93 Authority key identifier: 5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D Certificate issuer: /CN=A91B758E/serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft Manifest number: 2A Signing time: Sun 19 May 2024 08:27:45 +0000 Manifest this update: Sun 19 May 2024 08:27:45 +0000 Manifest next update: Sun 26 May 2024 08:27:44 +0000 Files and hashes: 1: XucUYNY3KKxeq5GKVB0NcFFXfU0.crl (hash: cbvpsSkGlkYuAM3KcLUPn5ER8kPXD54LpjVVChu7v9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E/serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Validity Not Before: May 19 08:27:45 2024 GMT Not After : May 26 08:27:44 2024 GMT Subject: CN=6649b801-11e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3f:f7:4f:0a:cb:de:61:71:96:00:f4:6a:6c: 39:39:8c:7d:cd:9b:7e:5a:ca:45:a8:1d:cb:28:fe: 85:cc:9f:92:44:5f:fb:94:0a:42:02:c1:cd:03:1f: 6c:b6:bf:7e:67:cd:39:4c:48:70:d5:39:2d:35:2d: fd:de:77:de:bd:ba:c1:64:4c:6b:05:54:04:6c:48: 44:67:28:2f:0b:6c:a6:97:19:88:ef:ed:cb:99:f0: b1:6a:b7:85:25:23:16:0c:a9:1f:a8:cb:da:12:c0: 2e:90:47:21:54:05:f8:44:cd:84:e5:e7:c2:82:af: 07:22:44:00:31:3c:b3:09:7d:66:b4:06:25:94:73: 6b:de:1b:8a:16:ad:c9:5a:05:7b:05:44:d8:7f:70: 80:ca:6e:12:d8:83:71:d9:c5:b7:9b:06:59:35:a4: d8:70:33:ee:de:54:77:61:08:9a:43:e3:13:79:ca: 09:b0:a0:d1:f0:58:8b:fc:ab:d0:a6:87:2d:8b:af: 83:3a:ac:f0:9f:0c:eb:26:5a:60:3f:8b:3d:52:de: 49:e2:4f:10:8d:8e:10:c1:40:bf:fd:39:40:03:bf: c3:1b:1d:0e:08:d0:92:e5:2a:c3:e7:0e:9f:40:50: 4d:df:20:34:f7:a2:36:2c:1a:5c:20:2a:4b:e8:a3: 52:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:46:4E:54:0F:4D:97:1B:63:74:9D:C9:62:D0:D2:18:DC:31:58:93 X509v3 Authority Key Identifier: keyid:5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:73:99:7f:3e:23:37:72:6b:d9:33:e0:08:95:0d:ee:04:99: a4:43:d2:44:ac:e4:49:23:51:18:79:28:ee:42:15:09:85:64: a9:04:99:32:41:5d:4e:75:18:89:31:c9:78:c3:63:1e:de:16: 0f:cd:4a:ed:eb:47:ce:22:eb:50:74:48:89:44:eb:d9:1d:f6: ec:ec:9b:d7:7d:e6:1f:7c:6c:64:07:22:42:fd:c9:82:64:be: c2:be:1d:4a:08:6c:40:a9:c4:ef:a9:3b:9b:d4:1a:c0:0d:29: 9c:99:3d:00:3f:41:dd:08:c3:78:f6:57:7e:df:8d:ca:62:39: da:dc:44:33:5a:3b:58:af:c4:e0:3b:e0:78:28:cf:58:0d:2f: 0a:4c:dc:8c:dd:47:73:20:4b:8b:36:f2:08:5b:cf:78:21:c5: 04:2b:7d:79:c0:d9:11:66:38:e6:65:93:b7:1d:32:ec:49:4c: 92:b0:fd:f2:a5:41:68:de:2a:44:af:15:61:31:c8:15:d8:24: 6b:89:c3:10:e4:74:0f:e9:3a:ff:eb:7e:09:4a:88:5c:12:b8: f9:cd:f9:a1:36:a4:f7:76:0a:25:f1:61:1e:7b:b6:76:f5:1a: 9d:9b:bc:b7:7a:4e:81:0a:5a:b5:d4:4f:c3:e2:e6:8a:37:23: 07:82:92:a0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NzU4RTExMC8GA1UEBRMoNUVFNzE0NjBENjM3MjhBQzVFQUI5MThBNTQxRDBENzA1 MTU3N0Q0RDAeFw0yNDA1MTkwODI3NDVaFw0yNDA1MjYwODI3NDRaMBgxFjAUBgNV BAMTDTY2NDliODAxLTExZTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5P/dPCsveYXGWAPRqbDk5jH3Nm35aykWoHcso/oXMn5JEX/uUCkICwc0DH2y2 v35nzTlMSHDVOS01Lf3ed969usFkTGsFVARsSERnKC8LbKaXGYjv7cuZ8LFqt4Ul IxYMqR+oy9oSwC6QRyFUBfhEzYTl58KCrwciRAAxPLMJfWa0BiWUc2veG4oWrcla BXsFRNh/cIDKbhLYg3HZxbebBlk1pNhwM+7eVHdhCJpD4xN5ygmwoNHwWIv8q9Cm hy2Lr4M6rPCfDOsmWmA/iz1S3kniTxCNjhDBQL/9OUADv8MbHQ4I0JLlKsPnDp9A UE3fIDT3ojYsGlwgKkvoo1LfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmkZOVA9N lxtjdJ3JYtDSGNwxWJMwHwYDVR0jBBgwFoAUXucUYNY3KKxeq5GKVB0NcFFXfU0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3NThFL0U3OTlGOTIyRDUz RDExRUU4RjFFOEE4NUM0RjlBRTAyL1h1Y1VZTlkzS0t4ZXE1R0tWQjBOY0ZGWGZV MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWHVjVVlOWTNLS3hlcTVHS1ZCME5jRkZYZlUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 NThFL0U3OTlGOTIyRDUzRDExRUU4RjFFOEE4NUM0RjlBRTAyL1h1Y1VZTlkzS0t4 ZXE1R0tWQjBOY0ZGWGZVMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADJzmX8+Izdya9kz4AiVDe4EmaRD0kSs5EkjURh5KO5CFQmFZKkEmTJB XU51GIkxyXjDYx7eFg/NSu3rR84i61B0SIlE69kd9uzsm9d95h98bGQHIkL9yYJk vsK+HUoIbECpxO+pO5vUGsANKZyZPQA/Qd0Iw3j2V37fjcpiOdrcRDNaO1ivxOA7 4Hgoz1gNLwpM3IzdR3MgS4s28ghbz3ghxQQrfXnA2RFmOOZlk7cdMuxJTJKw/fKl QWjeKkSvFWExyBXYJGuJwxDkdA/pOv/rfglKiFwSuPnN+aE2pPd2CiXxYR57tnb1 Gp2bvLd6ToEKWrXUT8Pi5oo3IweCkqA= -----END CERTIFICATE-----Generated at Sun May 19 09:32:18 2024 by rpki-client on console-ams.rpki-client.org