$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft File: xIoOQPt_45dbEsI-AwrFTFIFcWM.mft (raw, json) Hash identifier: BBORikI7Rx00qpoAv+YGBOssQzqK/Tbg8hbNMibmU7o= Subject key identifier: 5A:D7:14:99:9E:5A:62:02:B4:0F:FD:F7:E2:71:DF:0E:D3:0B:5F:38 Authority key identifier: C4:8A:0E:40:FB:7F:E3:97:5B:12:C2:3E:03:0A:C5:4C:52:05:71:63 Certificate issuer: /CN=A91D28BC/serialNumber=C48A0E40FB7FE3975B12C23E030AC54C52057163 Certificate serial: 0497 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft Manifest number: 0494 Signing time: Sun 19 May 2024 01:35:27 +0000 Manifest this update: Sun 19 May 2024 01:35:26 +0000 Manifest next update: Sun 26 May 2024 01:35:26 +0000 Files and hashes: 1: xIoOQPt_45dbEsI-AwrFTFIFcWM.crl (hash: 7a1549fsk/1C9h6IUQz4/qOpGUru7jS4lsm8GAEl1S4=) 2: 2B07FA82EADC11EBBE430B5EC4F9AE02.roa (hash: tOaWIn0hKgLGbTa/9KsuAGYfXUTZkuc/qe0+6/vgHdw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.crl rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1175 (0x497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28BC/serialNumber=C48A0E40FB7FE3975B12C23E030AC54C52057163 Validity Not Before: May 19 01:35:26 2024 GMT Not After : May 26 01:35:26 2024 GMT Subject: CN=6649575f-3dab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:de:97:42:29:a5:8c:19:00:d5:20:e3:40:96: a0:30:79:35:ed:fa:59:d1:bf:e3:5b:b3:a8:64:af: 1c:4e:a1:bf:9e:53:50:f8:97:19:17:67:b4:a5:48: 8f:97:45:39:3b:70:33:d7:49:51:f3:d0:7d:37:ec: 08:70:a5:90:81:64:aa:e7:46:16:58:d3:f6:b4:2a: c9:d6:87:17:8b:b9:7f:ac:c3:31:19:a8:18:55:c5: a6:99:5f:c0:91:53:ad:90:86:3c:e5:78:55:b4:7d: ad:f6:9b:03:31:ba:f9:44:44:89:bc:e6:3e:40:f9: 8d:e6:59:75:3d:13:9c:d5:08:7b:ff:d2:54:3c:9f: 80:df:00:34:7d:0c:92:42:a6:c9:cd:7b:ca:52:20: 64:5d:1d:ac:60:11:64:aa:3c:9e:37:a0:7d:80:2e: 00:38:01:bc:1f:df:b3:f3:5d:fa:33:99:29:e9:33: 97:aa:13:45:05:e1:7f:6c:0e:56:04:7e:1f:50:14: 8b:09:90:4d:5d:0f:d7:ed:a9:57:ea:d0:b8:8e:b7: 50:d8:7e:35:7c:3f:0f:cf:6c:6d:25:1e:f9:3e:2a: b4:14:36:fb:4c:23:14:60:e4:41:3a:68:d9:e8:47: a0:ba:a0:58:4a:a9:67:89:09:7d:5c:f2:b2:e4:6f: 28:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:D7:14:99:9E:5A:62:02:B4:0F:FD:F7:E2:71:DF:0E:D3:0B:5F:38 X509v3 Authority Key Identifier: keyid:C4:8A:0E:40:FB:7F:E3:97:5B:12:C2:3E:03:0A:C5:4C:52:05:71:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:a1:6b:01:4a:0f:6f:ac:5f:45:38:c3:d2:45:b5:10:a3:bb: 32:d7:18:1d:67:c3:21:3e:da:e8:02:19:3f:e8:41:5b:55:e7: 39:76:63:90:32:c1:a6:16:a3:e9:81:38:b0:b1:f5:d0:57:5a: ae:60:e3:d6:84:b5:a6:e8:d4:7b:f5:9e:da:07:79:33:4b:74: d3:8e:9d:44:79:85:c5:66:4b:0b:b1:42:84:10:9e:b2:ed:8a: 2b:f8:15:95:68:01:eb:b7:96:57:6e:bb:87:24:10:10:89:89: ed:a7:68:27:21:9e:a7:64:67:34:31:b5:b9:b2:de:9c:1f:e5: 51:10:17:8f:9f:ca:7d:97:97:d9:69:30:bd:50:42:05:ae:be: 2f:c2:eb:4a:4b:3f:d9:cd:be:8f:fc:64:c2:03:98:f8:4a:88: b6:49:78:2f:56:93:cb:c2:ec:aa:dd:a0:8c:1c:4a:6c:c9:b7: fb:dc:44:47:f6:58:4d:a6:5f:1b:98:92:76:c8:d6:bf:a6:bb: 13:29:c8:c5:a3:e8:f3:7b:ab:9c:f7:83:b2:62:67:34:6b:f6: 7a:0f:d1:e9:e1:b9:93:d9:89:50:b9:f6:84:86:60:bf:b1:40: 99:c9:46:23:00:4d:4c:d5:5e:ab:16:8a:14:4b:80:55:34:62: f3:30:05:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4QkMxMTAvBgNVBAUTKEM0OEEwRTQwRkI3RkUzOTc1QjEyQzIzRTAzMEFDNTRD NTIwNTcxNjMwHhcNMjQwNTE5MDEzNTI2WhcNMjQwNTI2MDEzNTI2WjAYMRYwFAYD VQQDEw02NjQ5NTc1Zi0zZGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqt6XQimljBkA1SDjQJagMHk17fpZ0b/jW7OoZK8cTqG/nlNQ+JcZF2e0pUiP l0U5O3Az10lR89B9N+wIcKWQgWSq50YWWNP2tCrJ1ocXi7l/rMMxGagYVcWmmV/A kVOtkIY85XhVtH2t9psDMbr5RESJvOY+QPmN5ll1PROc1Qh7/9JUPJ+A3wA0fQyS QqbJzXvKUiBkXR2sYBFkqjyeN6B9gC4AOAG8H9+z8136M5kp6TOXqhNFBeF/bA5W BH4fUBSLCZBNXQ/X7alX6tC4jrdQ2H41fD8Pz2xtJR75Piq0FDb7TCMUYORBOmjZ 6EeguqBYSqlniQl9XPKy5G8o6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFrXFJme WmICtA/99+Jx3w7TC184MB8GA1UdIwQYMBaAFMSKDkD7f+OXWxLCPgMKxUxSBXFj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhCQy85MjA5MjM5MEVB RDgxMUVCQkQyQ0M3NThDNEY5QUUwMi94SW9PUVB0XzQ1ZGJFc0ktQXdyRlRGSUZj V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJb09RUHRfNDVkYkVzSS1Bd3JGVEZJRmNXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhCQy85MjA5MjM5MEVBRDgxMUVCQkQyQ0M3NThDNEY5QUUwMi94SW9PUVB0XzQ1 ZGJFc0ktQXdyRlRGSUZjV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAoWsBSg9vrF9FOMPSRbUQo7sy1xgdZ8MhPtroAhk/6EFbVec5dmOQ MsGmFqPpgTiwsfXQV1quYOPWhLWm6NR79Z7aB3kzS3TTjp1EeYXFZksLsUKEEJ6y 7Yor+BWVaAHrt5ZXbruHJBAQiYntp2gnIZ6nZGc0MbW5st6cH+VREBePn8p9l5fZ aTC9UEIFrr4vwutKSz/Zzb6P/GTCA5j4Soi2SXgvVpPLwuyq3aCMHEpsybf73ERH 9lhNpl8bmJJ2yNa/prsTKcjFo+jze6uc94OyYmc0a/Z6D9Hp4bmT2YlQufaEhmC/ sUCZyUYjAE1M1V6rFooUS4BVNGLzMAUk -----END CERTIFICATE-----Generated at Sun May 19 02:59:15 2024 by rpki-client on console-ams.rpki-client.org