$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DF8/EB831BD8013711EAB94D7D3CC4F9AE02/XENrkWFWuLhSZ8SPuJc7ibST9YE.mft File: XENrkWFWuLhSZ8SPuJc7ibST9YE.mft (raw, json) Hash identifier: HahpVJjNFNtKIwSIN2wF+WRlG7nnzGF0qwcC50AB088= Subject key identifier: A5:8B:1D:88:18:19:0F:74:4C:8B:4B:95:F5:6A:7E:2A:F9:22:84:80 Authority key identifier: 5C:43:6B:91:61:56:B8:B8:52:67:C4:8F:B8:97:3B:89:B4:93:F5:81 Certificate issuer: /CN=A91C1DF8/serialNumber=5C436B916156B8B85267C48FB8973B89B493F581 Certificate serial: 07A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XENrkWFWuLhSZ8SPuJc7ibST9YE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DF8/EB831BD8013711EAB94D7D3CC4F9AE02/XENrkWFWuLhSZ8SPuJc7ibST9YE.mft Manifest number: 1330 Signing time: Thu 30 May 2024 19:42:01 +0000 Manifest this update: Thu 30 May 2024 19:42:01 +0000 Manifest next update: Thu 06 Jun 2024 19:42:01 +0000 Files and hashes: 1: XENrkWFWuLhSZ8SPuJc7ibST9YE.crl (hash: o7rrX3uQGydrQJClAjiziCFmTAXkA0lk71ZisXSZcJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DF8/EB831BD8013711EAB94D7D3CC4F9AE02/XENrkWFWuLhSZ8SPuJc7ibST9YE.crl rsync://rpki.apnic.net/member_repository/A91C1DF8/EB831BD8013711EAB94D7D3CC4F9AE02/XENrkWFWuLhSZ8SPuJc7ibST9YE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XENrkWFWuLhSZ8SPuJc7ibST9YE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 19:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1955 (0x7a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DF8/serialNumber=5C436B916156B8B85267C48FB8973B89B493F581 Validity Not Before: May 30 19:42:01 2024 GMT Not After : Jun 6 19:42:01 2024 GMT Subject: CN=6658d689-ac1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:bf:b6:36:be:0a:b8:f2:6d:50:5e:5f:4a:03: f2:88:05:63:10:02:f2:d3:b8:0a:b7:dd:e2:f9:bd: f5:59:ed:eb:a4:d0:0e:92:2f:7b:53:fe:ea:7d:a8: be:92:e4:02:b4:db:80:7f:3f:34:bb:8a:5e:cd:82: 9b:09:eb:ef:d8:bc:89:08:39:9f:c3:83:91:04:ea: 0f:72:9a:ac:68:93:e0:5f:92:45:dc:ce:f7:7c:81: e7:4f:de:fb:6e:40:06:27:88:64:07:33:38:69:0b: f7:fe:26:1f:c3:d0:99:42:5e:23:cd:fc:ba:81:e2: ee:7b:29:03:6d:9b:b7:89:96:5c:b3:b6:63:da:63: 05:b1:8f:be:d6:a2:d6:83:d8:df:85:f4:14:96:0c: 71:d5:df:06:0a:e4:8e:30:84:6b:2b:44:56:d1:18: d1:79:0e:de:f1:f9:8a:b7:74:e9:c3:f7:ed:99:76: 91:87:1c:1b:0e:a9:81:59:87:ab:d8:3c:7a:d9:c5: 14:db:63:23:64:69:09:1d:c5:ad:73:db:9c:80:20: e4:18:ff:58:f2:c6:a1:b5:95:26:1f:a9:48:82:b9: 9f:ae:e8:c2:5d:8a:1c:7b:aa:9f:78:6f:04:67:8d: 66:f0:d1:59:1d:68:77:7a:80:13:bc:68:23:a1:a3: fe:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:8B:1D:88:18:19:0F:74:4C:8B:4B:95:F5:6A:7E:2A:F9:22:84:80 X509v3 Authority Key Identifier: keyid:5C:43:6B:91:61:56:B8:B8:52:67:C4:8F:B8:97:3B:89:B4:93:F5:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DF8/EB831BD8013711EAB94D7D3CC4F9AE02/XENrkWFWuLhSZ8SPuJc7ibST9YE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XENrkWFWuLhSZ8SPuJc7ibST9YE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DF8/EB831BD8013711EAB94D7D3CC4F9AE02/XENrkWFWuLhSZ8SPuJc7ibST9YE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:06:01:00:c8:bc:6d:1a:81:0e:48:bc:71:63:48:d4:56:19: b8:9e:d0:de:0a:3a:88:65:f3:35:d3:fe:33:3f:62:e0:c2:7c: 97:03:97:1f:a5:7e:c4:83:16:f9:00:82:86:2c:5e:c3:16:39: f3:55:58:de:e0:0f:ed:4b:48:c3:42:cd:6d:fd:11:b4:7f:a2: f0:e9:72:52:d2:b0:82:17:a1:80:94:0d:54:a0:d5:c8:1c:7e: f3:e2:f9:d0:8a:6c:ac:34:5f:13:c5:64:ea:f1:6f:71:97:d1: 3d:c5:1a:90:f8:d5:9c:42:2f:53:e1:e2:f8:07:4b:eb:1b:76: 24:7c:db:43:68:25:96:22:29:98:57:d7:28:8d:06:bd:94:f8: 7f:be:89:24:93:4f:8f:4c:18:b4:cc:03:fc:ed:72:93:46:f8: 2b:c3:bd:23:96:9f:0c:fa:20:27:59:3e:eb:4c:25:a7:ec:41: 3e:b7:61:ea:7f:55:e8:81:ab:bd:45:cc:92:41:5a:bf:a3:c7: 89:62:05:6c:97:02:c8:ba:d8:93:c0:e3:e7:1c:ed:f1:0f:d9: e5:67:79:bb:a0:aa:07:b5:59:88:10:1d:8d:95:57:7d:e5:43: 4e:17:ae:05:1e:c1:09:81:76:9e:0e:4c:db:68:8f:8c:4a:c3: 21:c7:98:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFERjgxMTAvBgNVBAUTKDVDNDM2QjkxNjE1NkI4Qjg1MjY3QzQ4RkI4OTczQjg5 QjQ5M0Y1ODEwHhcNMjQwNTMwMTk0MjAxWhcNMjQwNjA2MTk0MjAxWjAYMRYwFAYD VQQDEw02NjU4ZDY4OS1hYzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA47+2Nr4KuPJtUF5fSgPyiAVjEALy07gKt93i+b31We3rpNAOki97U/7qfai+ kuQCtNuAfz80u4pezYKbCevv2LyJCDmfw4ORBOoPcpqsaJPgX5JF3M73fIHnT977 bkAGJ4hkBzM4aQv3/iYfw9CZQl4jzfy6geLueykDbZu3iZZcs7Zj2mMFsY++1qLW g9jfhfQUlgxx1d8GCuSOMIRrK0RW0RjReQ7e8fmKt3Tpw/ftmXaRhxwbDqmBWYer 2Dx62cUU22MjZGkJHcWtc9ucgCDkGP9Y8sahtZUmH6lIgrmfrujCXYoce6qfeG8E Z41m8NFZHWh3eoATvGgjoaP+CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKWLHYgY GQ90TItLlfVqfir5IoSAMB8GA1UdIwQYMBaAFFxDa5FhVri4UmfEj7iXO4m0k/WB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURGOC9FQjgzMUJEODAx MzcxMUVBQjk0RDdEM0NDNEY5QUUwMi9YRU5ya1dGV3VMaFNaOFNQdUpjN2liU1Q5 WUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFTnJrV0ZXdUxoU1o4U1B1SmM3aWJTVDlZRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MURGOC9FQjgzMUJEODAxMzcxMUVBQjk0RDdEM0NDNEY5QUUwMi9YRU5ya1dGV3VM aFNaOFNQdUpjN2liU1Q5WUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkBgEAyLxtGoEOSLxxY0jUVhm4ntDeCjqIZfM10/4zP2LgwnyXA5cf pX7Egxb5AIKGLF7DFjnzVVje4A/tS0jDQs1t/RG0f6Lw6XJS0rCCF6GAlA1UoNXI HH7z4vnQimysNF8TxWTq8W9xl9E9xRqQ+NWcQi9T4eL4B0vrG3YkfNtDaCWWIimY V9cojQa9lPh/vokkk0+PTBi0zAP87XKTRvgrw70jlp8M+iAnWT7rTCWn7EE+t2Hq f1Xogau9RcySQVq/o8eJYgVslwLIutiTwOPnHO3xD9nlZ3m7oKoHtVmIEB2NlVd9 5UNOF64FHsEJgXaeDkzbaI+MSsMhx5hP -----END CERTIFICATE-----Generated at Thu May 30 20:35:37 2024 by rpki-client on console-fra.rpki-client.org