$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft File: X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft (raw, json) Hash identifier: v/poM5ZQNDwLDNvmOBgIPZ/HDbQ6IQOYGva+VW5RcZs= Subject key identifier: 5C:69:39:93:2C:F3:7F:A9:C9:2F:83:B9:B2:E5:E2:A1:C3:E9:EA:15 Authority key identifier: 5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 Certificate issuer: /CN=A91CE285/serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Certificate serial: 08F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft Manifest number: 08F3 Signing time: Sat 18 May 2024 21:19:47 +0000 Manifest this update: Sat 18 May 2024 21:19:47 +0000 Manifest next update: Sat 25 May 2024 21:19:47 +0000 Files and hashes: 1: X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl (hash: pdZsiOdmb5TLc2s5uzzb/2KoWgdPzwkQNHbbBF8wnWM=) 2: E5C4974689CF11EAA39AF441C4F9AE02.roa (hash: FJBYOIrltpRMrNwPrut4yj3xc+CpMT9AOJtC+2kI31Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2297 (0x8f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE285/serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Validity Not Before: May 18 21:19:47 2024 GMT Not After : May 25 21:19:47 2024 GMT Subject: CN=66491b73-914f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fc:5b:e6:07:70:9b:cd:53:82:91:73:80:6c: 30:22:14:43:d4:89:8f:86:08:d8:57:d2:a8:56:53: 53:2c:e4:56:21:58:17:03:7b:53:ca:95:29:f1:81: 49:e9:49:3c:20:6a:72:f2:a7:dc:f4:48:15:09:ef: 85:76:7d:cd:14:14:3e:ca:37:5e:51:37:dd:42:ba: f5:63:f9:df:8f:62:7c:0a:a3:e3:b3:f4:17:0b:4a: d2:2e:50:ee:98:e0:e3:9d:6c:cb:10:2a:ff:ca:9a: 4f:61:4a:12:22:93:c3:6b:59:35:5b:25:7e:ae:7c: 75:78:76:10:bd:39:fa:0a:ae:d0:88:8e:6c:02:40: 94:94:0f:28:2f:90:9f:81:4f:72:3f:7c:ee:69:ab: eb:07:48:f3:08:dc:b0:37:a4:31:cf:7f:b6:f7:64: 96:e9:11:99:6d:c2:ae:ba:3c:0b:f4:dd:ff:25:8a: d6:a1:9b:2c:4b:d7:45:6f:e7:4e:a0:48:d4:da:75: 80:22:bd:43:ba:01:80:a3:d6:55:bd:aa:e5:ff:86: 53:08:4c:bd:ac:7b:8e:19:2a:2d:08:55:2b:be:e5: 9a:c7:3a:47:fc:90:d8:1d:53:62:ba:8c:08:dd:69: 4d:db:b7:73:4c:eb:d6:72:8e:ac:72:63:05:cb:23: 57:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:69:39:93:2C:F3:7F:A9:C9:2F:83:B9:B2:E5:E2:A1:C3:E9:EA:15 X509v3 Authority Key Identifier: keyid:5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:50:69:4c:51:ee:71:03:51:ef:9e:81:fb:61:ff:1c:33:8c: ef:d7:2a:3c:78:c6:ee:ac:61:c2:6b:e1:9d:17:ea:00:51:8e: e9:20:fd:5b:fe:e2:24:c0:bd:54:98:33:fa:36:fc:f3:8e:fa: e2:71:19:0b:a0:b4:f0:c3:52:b0:aa:f5:73:40:0a:dc:68:7f: d6:82:2b:27:23:4d:39:9c:ea:e5:1b:97:11:53:e6:5e:6f:11: 78:56:94:5a:f4:a8:0b:f0:32:cf:06:ff:fb:53:6d:48:46:1c: 23:18:03:e7:fd:0a:9f:e4:57:3e:0a:56:59:07:b7:21:e0:13: 15:1d:19:72:5f:1e:73:3c:e8:f5:e0:c7:58:65:b8:78:10:ed: 28:23:fe:41:d8:4e:99:0f:00:15:39:c2:f7:7e:07:d7:ae:88: ac:83:72:c5:c2:20:40:9f:3b:0f:a0:15:11:b5:c2:35:57:78: fa:b7:f1:08:2d:6c:31:e3:dc:ac:da:1c:38:8f:e9:63:3f:4f: dd:71:2e:a4:07:d6:12:55:ad:f0:03:6c:93:81:11:75:0e:4a: 27:28:7d:42:f3:b7:28:1f:2a:35:89:15:9b:a0:e2:98:6c:31: 7f:04:27:e3:6d:55:fd:39:78:9c:fa:e5:3f:eb:2a:ff:91:d2: 69:e7:63:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyODUxMTAvBgNVBAUTKDVGOEFGMzU5NzNGRDRGQTU2M0YzM0I3Mzc2NTM0Njgy MTA3QkM4RjkwHhcNMjQwNTE4MjExOTQ3WhcNMjQwNTI1MjExOTQ3WjAYMRYwFAYD VQQDEw02NjQ5MWI3My05MTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvxb5gdwm81TgpFzgGwwIhRD1ImPhgjYV9KoVlNTLORWIVgXA3tTypUp8YFJ 6Uk8IGpy8qfc9EgVCe+Fdn3NFBQ+yjdeUTfdQrr1Y/nfj2J8CqPjs/QXC0rSLlDu mODjnWzLECr/yppPYUoSIpPDa1k1WyV+rnx1eHYQvTn6Cq7QiI5sAkCUlA8oL5Cf gU9yP3zuaavrB0jzCNywN6Qxz3+292SW6RGZbcKuujwL9N3/JYrWoZssS9dFb+dO oEjU2nWAIr1DugGAo9ZVvarl/4ZTCEy9rHuOGSotCFUrvuWaxzpH/JDYHVNiuowI 3WlN27dzTOvWco6scmMFyyNX+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFxpOZMs 83+pyS+DubLl4qHD6eoVMB8GA1UdIwQYMBaAFF+K81lz/U+lY/M7c3ZTRoIQe8j5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTI4NS81RTE2NDhCNjg0 QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2Vmo4enR6ZGxOR2doQjd5 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0cnpXWFA5VDZWajh6dHpkbE5HZ2hCN3lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTI4NS81RTE2NDhCNjg0QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2 Vmo4enR6ZGxOR2doQjd5UGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfUGlMUe5xA1HvnoH7Yf8cM4zv1yo8eMburGHCa+GdF+oAUY7pIP1b /uIkwL1UmDP6NvzzjvricRkLoLTww1KwqvVzQArcaH/WgisnI005nOrlG5cRU+Ze bxF4VpRa9KgL8DLPBv/7U21IRhwjGAPn/Qqf5Fc+ClZZB7ch4BMVHRlyXx5zPOj1 4MdYZbh4EO0oI/5B2E6ZDwAVOcL3fgfXroisg3LFwiBAnzsPoBURtcI1V3j6t/EI LWwx49ys2hw4j+ljP0/dcS6kB9YSVa3wA2yTgRF1DkonKH1C87coHyo1iRWboOKY bDF/BCfjbVX9OXic+uU/6yr/kdJp52NW -----END CERTIFICATE-----Generated at Sat May 18 22:28:01 2024 by rpki-client on console-ams.rpki-client.org