$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft File: XDfN_Mjp6QxBFko5HukDtN5U37E.mft (raw, json) Hash identifier: jaQpPPCVnPSbkSwcSrSt/4j9E3PCMx0NKwx3oexDi6k= Subject key identifier: BD:BB:58:6A:69:BD:B5:51:DF:1A:FD:AC:9A:A5:79:5F:53:B4:07:5E Authority key identifier: 5C:37:CD:FC:C8:E9:E9:0C:41:16:4A:39:1E:E9:03:B4:DE:54:DF:B1 Certificate issuer: /CN=A91D1EBA/serialNumber=5C37CDFCC8E9E90C41164A391EE903B4DE54DFB1 Certificate serial: 0581 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft Manifest number: 057C Signing time: Sun 19 May 2024 00:38:13 +0000 Manifest this update: Sun 19 May 2024 00:38:13 +0000 Manifest next update: Sun 26 May 2024 00:38:13 +0000 Files and hashes: 1: XDfN_Mjp6QxBFko5HukDtN5U37E.crl (hash: c1NJPIOZ/6NaP1tYIHC4/2fDtAo02zrk1SaYGZvJ6D0=) 2: A14BDCE491EB11EBAD7A1530C4F9AE02.roa (hash: oheVgwgcc5IUYSIleOKjSz3O1d0TWSDn9p0tlk0co7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.crl rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1409 (0x581) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1EBA/serialNumber=5C37CDFCC8E9E90C41164A391EE903B4DE54DFB1 Validity Not Before: May 19 00:38:13 2024 GMT Not After : May 26 00:38:13 2024 GMT Subject: CN=664949f5-e95d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:14:85:c4:9e:41:43:a7:36:a0:a3:5a:89:f5: 89:6d:29:06:be:06:5a:d0:54:ef:48:8e:4a:cb:34: 25:7e:18:64:69:42:40:46:8b:23:8a:1f:9a:19:f9: 10:6c:b9:46:22:6a:17:7a:67:12:8f:8c:c3:0b:c6: 59:c5:ee:45:41:f6:1b:bc:c4:7b:7c:17:10:46:f0: fb:97:f6:38:76:2b:bf:ec:3a:13:76:16:b8:1d:4e: 3e:9c:4d:bc:ce:df:c4:b0:9e:a8:32:cc:15:3e:da: b8:5a:c1:56:c3:db:70:bb:46:b7:5b:f6:d0:39:bc: 7c:47:a4:18:3f:c2:64:fb:08:7d:52:51:d4:8b:ae: 7b:26:9f:0b:31:12:e5:98:47:14:8a:f4:d4:d6:12: f3:70:a2:59:1b:a6:e8:5a:12:3f:63:5d:9c:8d:ce: 07:90:49:f7:35:ea:bb:98:a0:58:60:98:bf:6f:b9: 55:60:a4:62:95:5a:e5:e3:3d:cf:fa:79:31:30:8e: 56:ca:27:03:25:2d:25:56:3e:e4:18:2d:cc:57:85: a7:86:e4:cf:af:e7:b9:d4:42:45:aa:eb:30:38:c9: 8c:9f:6c:d2:67:fc:bb:5a:b8:ea:13:76:e0:14:d9: c0:e2:bd:26:1a:29:cb:6f:81:4d:e7:f6:1e:85:6f: 0d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:BB:58:6A:69:BD:B5:51:DF:1A:FD:AC:9A:A5:79:5F:53:B4:07:5E X509v3 Authority Key Identifier: keyid:5C:37:CD:FC:C8:E9:E9:0C:41:16:4A:39:1E:E9:03:B4:DE:54:DF:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:f5:be:03:9f:28:89:f3:80:d9:8c:35:84:25:da:a4:86:c3: e4:de:ff:14:df:63:64:c7:5e:87:2a:38:e5:ab:b5:25:cf:5a: 20:63:66:b0:57:92:2c:0d:dc:3b:f7:9b:fc:cf:eb:fa:ac:a3: f7:54:2f:15:f3:df:61:1a:f7:29:7a:e2:2a:2a:75:6b:73:42: b1:48:87:f1:89:43:31:86:df:06:e9:01:5b:b8:cd:6d:39:32: e2:c4:e0:9c:c3:e8:87:94:45:da:0b:4a:70:3c:9f:72:83:ff: 79:14:12:f8:ca:d5:22:26:5e:07:ed:90:5f:06:b8:74:40:4c: 8e:d2:cc:91:b5:55:32:f1:27:c7:ca:f6:ca:c2:b4:d7:dc:61: ee:c2:cc:d6:8e:00:48:e1:83:d0:0d:33:fd:4d:c8:d4:c7:80: 16:5c:b8:70:03:c2:09:09:b9:13:ae:36:25:77:4c:d8:ad:5f: a3:d6:a1:26:24:ee:12:2d:eb:75:4d:6b:4b:c9:af:7d:7e:26: 80:9e:e1:d6:60:9e:6c:cc:7f:ea:2a:98:8c:3f:0d:61:fb:38: b5:37:9e:b2:77:2a:cb:0e:91:a6:60:2e:a5:14:a3:06:9f:46: f6:1a:17:1b:50:61:23:52:bd:30:e4:b5:28:e1:ad:d9:41:9c: 04:1e:72:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFQkExMTAvBgNVBAUTKDVDMzdDREZDQzhFOUU5MEM0MTE2NEEzOTFFRTkwM0I0 REU1NERGQjEwHhcNMjQwNTE5MDAzODEzWhcNMjQwNTI2MDAzODEzWjAYMRYwFAYD VQQDEw02NjQ5NDlmNS1lOTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmBSFxJ5BQ6c2oKNaifWJbSkGvgZa0FTvSI5KyzQlfhhkaUJARosjih+aGfkQ bLlGImoXemcSj4zDC8ZZxe5FQfYbvMR7fBcQRvD7l/Y4diu/7DoTdha4HU4+nE28 zt/EsJ6oMswVPtq4WsFWw9twu0a3W/bQObx8R6QYP8Jk+wh9UlHUi657Jp8LMRLl mEcUivTU1hLzcKJZG6boWhI/Y12cjc4HkEn3Neq7mKBYYJi/b7lVYKRilVrl4z3P +nkxMI5WyicDJS0lVj7kGC3MV4WnhuTPr+e51EJFquswOMmMn2zSZ/y7WrjqE3bg FNnA4r0mGinLb4FN5/YehW8NwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL27WGpp vbVR3xr9rJqleV9TtAdeMB8GA1UdIwQYMBaAFFw3zfzI6ekMQRZKOR7pA7TeVN+x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUVCQS84Mzk0RTI1MDkx RUExMUVCQUFEQkY5MkZDNEY5QUUwMi9YRGZOX01qcDZReEJGa281SHVrRHRONVUz N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEZk5fTWpwNlF4QkZrbzVIdWtEdE41VTM3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUVCQS84Mzk0RTI1MDkxRUExMUVCQUFEQkY5MkZDNEY5QUUwMi9YRGZOX01qcDZR eEJGa281SHVrRHRONVUzN0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAE9b4DnyiJ84DZjDWEJdqkhsPk3v8U32Nkx16HKjjlq7Ulz1ogY2aw V5IsDdw795v8z+v6rKP3VC8V899hGvcpeuIqKnVrc0KxSIfxiUMxht8G6QFbuM1t OTLixOCcw+iHlEXaC0pwPJ9yg/95FBL4ytUiJl4H7ZBfBrh0QEyO0syRtVUy8SfH yvbKwrTX3GHuwszWjgBI4YPQDTP9TcjUx4AWXLhwA8IJCbkTrjYld0zYrV+j1qEm JO4SLet1TWtLya99fiaAnuHWYJ5szH/qKpiMPw1h+zi1N56ydyrLDpGmYC6lFKMG n0b2GhcbUGEjUr0w5LUo4a3ZQZwEHnKn -----END CERTIFICATE-----Generated at Sun May 19 01:47:16 2024 by rpki-client on console-ams.rpki-client.org