$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft File: XytYId1DwpQ50rruW9wEMpHEe68.mft (raw, json) Hash identifier: 8M7phgkz7E+2iewjGTMucrCtPQLVIOjjLLFSuIKVNd0= Subject key identifier: EC:D8:10:DD:30:42:D5:56:6A:CB:72:BA:DB:FF:A9:B2:8E:C4:DD:19 Authority key identifier: 5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF Certificate issuer: /CN=A91BF2FD/serialNumber=5F2B5821DD43C29439D2BAEE5BDC043291C47BAF Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft Manifest number: 24 Signing time: Sun 19 May 2024 08:32:39 +0000 Manifest this update: Sun 19 May 2024 08:32:38 +0000 Manifest next update: Sun 26 May 2024 08:32:38 +0000 Files and hashes: 1: XytYId1DwpQ50rruW9wEMpHEe68.crl (hash: YFiW6njUYFKB1TVFsLYIJl846lu92Avgn6iL4IXQ5lY=) 2: 199F588CE21711EE913F3E62C4F9AE02.roa (hash: 3MMDEbkkdNFM/djNh0ORf8UHeAKMwjP4dT3GZUmqZZQ=) 3: F5A311DAE21611EEB7B0D361C4F9AE02.roa (hash: 7eg8s3nshujJWlMFILJG4nxViOoj4GxAMrDMLj0daAk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF2FD/serialNumber=5F2B5821DD43C29439D2BAEE5BDC043291C47BAF Validity Not Before: May 19 08:32:38 2024 GMT Not After : May 26 08:32:38 2024 GMT Subject: CN=6649b926-a60d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d1:cf:9a:ff:10:40:db:5f:e9:31:d2:42:03: ac:56:42:14:4b:ae:95:19:98:9e:26:80:3f:36:0e: cf:13:22:4f:ef:cc:bf:2a:24:6e:da:a3:fb:4e:1c: 0f:ca:f0:95:55:7a:75:52:e3:53:eb:2b:ac:63:9c: 89:6f:b8:65:c6:15:a4:ee:d2:39:f5:ac:b7:72:8f: 1d:25:62:69:eb:d6:0a:c7:15:f3:e6:5d:89:c9:a7: 2a:ca:ec:e7:ef:81:a2:4b:48:c7:20:a7:3f:87:07: 1e:94:42:40:9b:04:a5:0f:53:37:7f:a3:79:62:b1: 83:78:a9:ad:73:26:9e:f2:2a:bf:80:a4:32:b2:97: 76:cd:00:0e:f3:c0:bb:df:06:aa:78:62:29:8a:05: 1a:fd:ab:1f:46:7e:11:42:27:46:dd:5d:65:eb:d3: 3a:50:00:8f:89:09:c1:bc:6e:e7:da:c1:65:63:03: 80:4e:0b:b0:4d:a2:81:0a:67:c7:19:35:15:ed:f3: dd:e8:ad:75:14:ed:a9:43:67:bf:f1:54:6f:af:8b: 09:b2:d3:64:9a:bc:64:7b:2f:3c:f5:0d:ca:e8:fe: 7b:b6:26:3d:41:17:54:1c:b8:a4:b3:d2:8a:71:6e: 55:63:f2:d2:27:5e:c8:43:5d:8b:fc:16:44:a8:88: f0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:D8:10:DD:30:42:D5:56:6A:CB:72:BA:DB:FF:A9:B2:8E:C4:DD:19 X509v3 Authority Key Identifier: keyid:5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:31:84:2e:30:13:a8:28:1e:ae:a7:89:67:d3:ad:2b:18:1f: 81:90:b3:3e:01:cd:f1:ad:ce:84:29:2f:b8:e5:79:62:db:85: fb:97:15:68:4d:ad:d5:dd:eb:67:e5:e2:14:c9:2a:05:76:1e: 5a:3f:23:62:c2:79:d6:21:fb:ba:b1:fc:59:cc:c7:24:d5:a5: cb:65:2a:48:3f:ad:51:ec:a7:ce:c6:34:c5:3b:91:69:3c:f9: 06:cf:1f:90:ab:84:14:f6:41:ab:93:bd:4b:06:be:ac:66:1d: ab:f6:25:4f:19:25:29:02:e7:3d:4c:15:83:de:bd:b1:f0:c3: 30:da:70:b2:fa:8d:09:d4:82:13:97:5c:a6:12:ed:fd:75:b2: 7b:1b:b0:c3:c9:66:a3:4e:8d:fc:8b:b8:d0:8c:0e:e1:c9:3e: 8d:9e:9e:ab:19:22:b8:99:dd:38:0c:a0:1b:1c:42:6f:2e:3d: 79:04:6f:01:c7:9b:f4:d8:20:f2:dd:36:e8:03:96:d6:f3:f9: d0:0e:95:93:68:9e:c6:59:e8:97:3c:71:99:70:08:1d:7f:45: c1:62:28:ad:86:95:41:2b:de:3b:5a:3c:d6:38:71:0a:14:73: 1e:05:ef:72:57:95:d7:ac:24:a9:d4:3a:73:6c:93:5c:e3:44: a7:4f:4c:17 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RjJGRDExMC8GA1UEBRMoNUYyQjU4MjFERDQzQzI5NDM5RDJCQUVFNUJEQzA0MzI5 MUM0N0JBRjAeFw0yNDA1MTkwODMyMzhaFw0yNDA1MjYwODMyMzhaMBgxFjAUBgNV BAMTDTY2NDliOTI2LWE2MGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZ0c+a/xBA21/pMdJCA6xWQhRLrpUZmJ4mgD82Ds8TIk/vzL8qJG7ao/tOHA/K 8JVVenVS41PrK6xjnIlvuGXGFaTu0jn1rLdyjx0lYmnr1grHFfPmXYnJpyrK7Ofv gaJLSMcgpz+HBx6UQkCbBKUPUzd/o3lisYN4qa1zJp7yKr+ApDKyl3bNAA7zwLvf Bqp4YimKBRr9qx9GfhFCJ0bdXWXr0zpQAI+JCcG8bufawWVjA4BOC7BNooEKZ8cZ NRXt893orXUU7alDZ7/xVG+viwmy02SavGR7Lzz1Dcro/nu2Jj1BF1QcuKSz0opx blVj8tInXshDXYv8FkSoiPBPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7NgQ3TBC 1VZqy3K62/+pso7E3RkwHwYDVR0jBBgwFoAUXytYId1DwpQ50rruW9wEMpHEe68w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGMkZELzYzOEQ2MkEwRTEx MjExRUVBQzc4NjEzOEM0RjlBRTAyL1h5dFlJZDFEd3BRNTBycnVXOXdFTXBIRWU2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWHl0WUlkMUR3cFE1MHJydVc5d0VNcEhFZTY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJG MkZELzYzOEQ2MkEwRTExMjExRUVBQzc4NjEzOEM0RjlBRTAyL1h5dFlJZDFEd3BR NTBycnVXOXdFTXBIRWU2OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGIxhC4wE6goHq6niWfTrSsYH4GQsz4BzfGtzoQpL7jleWLbhfuXFWhN rdXd62fl4hTJKgV2Hlo/I2LCedYh+7qx/FnMxyTVpctlKkg/rVHsp87GNMU7kWk8 +QbPH5CrhBT2QauTvUsGvqxmHav2JU8ZJSkC5z1MFYPevbHwwzDacLL6jQnUghOX XKYS7f11snsbsMPJZqNOjfyLuNCMDuHJPo2enqsZIriZ3TgMoBscQm8uPXkEbwHH m/TYIPLdNugDltbz+dAOlZNonsZZ6Jc8cZlwCB1/RcFiKK2GlUEr3jtaPNY4cQoU cx4F73JXldesJKnUOnNsk1zjRKdPTBc= -----END CERTIFICATE-----Generated at Sun May 19 09:04:14 2024 by rpki-client on console-fra.rpki-client.org