$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft File: XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft (raw, json) Hash identifier: RopVNPW8pI+WF6uKrNYNlbf0uNIPglc4+QR6qZzswUw= Subject key identifier: 73:3C:73:DB:3F:FA:04:E7:31:DA:79:62:12:C1:1E:68:C1:6F:F0:A3 Authority key identifier: 5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 Certificate issuer: /CN=A91D0B34/serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Certificate serial: 091A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft Manifest number: 090E Signing time: Sat 18 May 2024 21:15:43 +0000 Manifest this update: Sat 18 May 2024 21:15:42 +0000 Manifest next update: Sat 25 May 2024 21:15:42 +0000 Files and hashes: 1: XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl (hash: SiJ49v7kgF+t/iNUe0U47iaJlr1AKgCDCg82dgYGMaE=) 2: 97E61FE46F2111EB85D19531C4F9AE02.roa (hash: DssmlY3zYyoAn6gxMuCReXOjnO4QTscqjjMKPq7u2r0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2330 (0x91a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B34/serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Validity Not Before: May 18 21:15:42 2024 GMT Not After : May 25 21:15:42 2024 GMT Subject: CN=66491a7e-33a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e5:31:c7:2c:19:b1:5c:58:8d:cd:65:02:14: 32:8e:31:b9:5c:50:48:bb:06:6b:fc:5f:d9:97:17: d1:6b:34:48:41:a7:6c:9f:4b:87:3f:49:77:76:97: e6:43:39:82:7d:b6:24:b4:43:1e:c1:eb:99:66:02: 47:76:f7:6e:39:e2:5e:c0:88:5a:c7:8c:e6:ca:ff: c3:ee:c2:83:6e:40:14:44:1c:7c:3b:90:bd:05:50: c5:8e:08:12:31:3b:55:b7:95:91:c9:df:92:6e:1b: 67:55:d0:a5:71:4a:5a:f2:77:5b:ed:6c:7d:8e:84: a2:5e:39:5d:aa:36:98:3d:c3:bd:6f:c0:46:0e:c3: dd:31:31:1f:48:bf:bf:59:40:85:81:02:f0:ff:a4: b2:16:67:75:b2:3a:c9:6b:95:5b:24:3f:78:7c:64: 33:03:b6:64:be:5c:20:3e:07:da:c8:1b:9a:03:83: c5:78:a5:38:6c:0c:30:6a:f2:2b:47:64:c0:20:f9: 5b:58:cd:32:35:dc:09:81:7c:bd:7e:7a:cb:f9:55: 50:ce:32:b8:60:01:a0:cd:28:99:45:f3:7c:25:d6: d9:e2:3e:57:ec:ff:c7:c6:11:1a:2b:72:4f:b0:5a: d0:db:5d:df:ce:f6:47:17:d1:68:ce:27:fe:a1:b5: 78:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:3C:73:DB:3F:FA:04:E7:31:DA:79:62:12:C1:1E:68:C1:6F:F0:A3 X509v3 Authority Key Identifier: keyid:5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:a5:56:0c:6b:fe:06:12:9e:cb:b5:08:f3:1e:5d:b1:27:02: 2a:55:00:ed:9f:bb:d4:f6:46:80:8f:d5:8e:a7:24:24:76:c1: b1:a3:5c:a2:68:7e:ae:16:35:7f:02:f6:21:cb:00:00:78:fa: b3:74:1c:d7:a8:15:c2:a6:b6:02:43:5b:8f:34:b4:5c:6d:6d: 4e:14:d3:e1:ff:06:1d:97:c8:0f:1c:67:8d:c0:f4:82:7b:69: ec:4a:52:24:e2:71:95:a6:e8:24:8d:e8:86:45:e7:45:0c:e9: 22:04:c7:19:ff:35:cb:4e:bd:c9:47:5b:a7:43:ea:99:71:38: 51:05:f4:90:a7:58:70:6e:c4:1e:32:b4:b6:42:b8:d3:08:33: 52:ed:0e:32:2a:1b:f7:69:c9:17:ab:bd:b0:cf:b4:02:83:83: 7c:e5:49:ac:22:39:30:89:4c:bf:10:6d:cb:7f:8f:df:98:be: b9:27:7d:68:22:b0:4d:4f:d3:3a:59:12:b3:41:9e:21:48:80: 19:21:2e:4c:38:e4:b9:9a:a6:32:27:f5:a9:bd:76:05:81:b8: 76:d5:c3:34:fb:46:c7:48:d0:55:f0:3c:de:9c:d8:75:c5:c8: 7f:c9:ec:c6:17:44:9e:6e:3e:2b:94:fa:8b:c1:99:05:1b:3a: 76:66:5e:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMzQxMTAvBgNVBAUTKDVERjEwMkUyQTVFNzM2NzcyMUMxMThEQkVDREE2MDJB ODAyOUVFOTQwHhcNMjQwNTE4MjExNTQyWhcNMjQwNTI1MjExNTQyWjAYMRYwFAYD VQQDEw02NjQ5MWE3ZS0zM2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruUxxywZsVxYjc1lAhQyjjG5XFBIuwZr/F/ZlxfRazRIQadsn0uHP0l3dpfm QzmCfbYktEMeweuZZgJHdvduOeJewIhax4zmyv/D7sKDbkAURBx8O5C9BVDFjggS MTtVt5WRyd+SbhtnVdClcUpa8ndb7Wx9joSiXjldqjaYPcO9b8BGDsPdMTEfSL+/ WUCFgQLw/6SyFmd1sjrJa5VbJD94fGQzA7ZkvlwgPgfayBuaA4PFeKU4bAwwavIr R2TAIPlbWM0yNdwJgXy9fnrL+VVQzjK4YAGgzSiZRfN8JdbZ4j5X7P/HxhEaK3JP sFrQ213fzvZHF9Fozif+obV46QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHM8c9s/ +gTnMdp5YhLBHmjBb/CjMB8GA1UdIwQYMBaAFF3xAuKl5zZ3IcEY2+zaYCqAKe6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIzNC82MDM3RDVEQzgy QTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5uY2h3UmpiN05wZ0tvQXA3 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmRUM0cVhuTm5jaHdSamI3TnBnS29BcDdwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIzNC82MDM3RDVEQzgyQTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5u Y2h3UmpiN05wZ0tvQXA3cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcpVYMa/4GEp7LtQjzHl2xJwIqVQDtn7vU9kaAj9WOpyQkdsGxo1yi aH6uFjV/AvYhywAAePqzdBzXqBXCprYCQ1uPNLRcbW1OFNPh/wYdl8gPHGeNwPSC e2nsSlIk4nGVpugkjeiGRedFDOkiBMcZ/zXLTr3JR1unQ+qZcThRBfSQp1hwbsQe MrS2QrjTCDNS7Q4yKhv3ackXq72wz7QCg4N85UmsIjkwiUy/EG3Lf4/fmL65J31o IrBNT9M6WRKzQZ4hSIAZIS5MOOS5mqYyJ/WpvXYFgbh21cM0+0bHSNBV8DzenNh1 xch/yezGF0Sebj4rlPqLwZkFGzp2Zl4B -----END CERTIFICATE-----Generated at Sat May 18 22:14:05 2024 by rpki-client on console-fra.rpki-client.org