$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft File: XDZbFzHKfOfbgd1XEwvU1kMBm14.mft (raw, json) Hash identifier: XUxMgACcmdztlF+aUh6D3neLOuoTEpF0VuvhdYsbMRA= Subject key identifier: 1A:F5:32:BB:A6:CA:15:F7:72:1B:E2:29:CD:79:CB:2E:4F:57:82:7A Authority key identifier: 5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E Certificate issuer: /CN=A91D28EB/serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Certificate serial: 04A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft Manifest number: 049F Signing time: Fri 31 May 2024 02:07:37 +0000 Manifest this update: Fri 31 May 2024 02:07:36 +0000 Manifest next update: Fri 07 Jun 2024 02:07:36 +0000 Files and hashes: 1: XDZbFzHKfOfbgd1XEwvU1kMBm14.crl (hash: WgNIKXqMxYqKDlzJBhWyXqmySEdMrR9yxdJs+KnZ/8o=) 2: 8E90AA02EB0B11EBA0B6DD84C4F9AE02.roa (hash: cGA0ZQAQhZrC4mXNbZRUDuLhz5+stSxu/w+9xlh0ErM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 02:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1189 (0x4a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28EB/serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Validity Not Before: May 31 02:07:36 2024 GMT Not After : Jun 7 02:07:36 2024 GMT Subject: CN=665930e9-a180 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bd:17:6d:d0:9a:c5:27:e0:8f:d7:f5:6d:c4: b2:5d:f7:07:1d:16:d1:6d:a6:6e:60:24:0d:d1:ee: 75:c5:2e:cc:60:2e:f0:31:da:ff:6a:f7:49:d2:8d: 44:dd:6e:33:a5:f1:93:62:50:2a:a7:07:94:6e:16: 31:d1:6c:fd:f2:f6:ba:6a:d1:68:6f:c1:f7:06:4d: 0b:12:aa:08:76:28:ce:99:a3:8d:89:58:27:66:fa: 88:dc:dc:95:29:2b:33:c8:e3:42:94:62:21:e7:16: a7:b0:d2:4c:cd:cf:34:67:c7:55:73:a2:84:e5:7e: 72:e9:d9:8a:a2:17:f6:15:36:c4:c5:79:f9:af:33: 76:d7:fb:ae:e1:40:97:07:33:8e:c0:32:8f:01:40: a4:b2:3d:5b:37:c0:82:dd:f7:a8:0c:10:06:d5:7c: b9:de:fc:45:ca:4a:29:db:df:18:26:3c:e4:78:b4: bd:59:a8:44:8b:f2:7a:09:05:e2:a0:20:8a:eb:f6: cf:65:8b:40:e9:3a:77:ba:a4:3b:eb:5a:8f:84:05: 65:75:e8:39:ac:2d:e9:62:7d:34:09:29:ef:f9:d8: 27:ef:c5:00:46:4a:c5:8a:04:a6:80:97:82:3a:2f: b9:41:1d:71:5e:28:0b:41:b6:ac:cc:54:13:bb:d4: be:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:F5:32:BB:A6:CA:15:F7:72:1B:E2:29:CD:79:CB:2E:4F:57:82:7A X509v3 Authority Key Identifier: keyid:5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:f6:58:92:8a:76:0f:25:bf:4b:e1:8a:52:19:f3:29:4e:dc: 99:e9:08:71:d0:2f:cb:85:3e:06:30:5e:35:86:d8:04:4a:b5: 21:79:5a:c6:ad:1e:d6:e2:5e:d2:1e:47:ab:08:07:0e:8b:d9: 5d:8a:d8:27:44:e2:98:e7:0a:2d:7a:da:21:6f:05:8d:9b:7e: df:7d:b1:e0:80:a4:39:25:6a:8f:c6:18:4b:70:eb:74:34:9e: fc:fe:39:50:6e:36:b5:66:73:a3:5e:f2:9e:0e:ef:21:ce:bc: 06:83:1e:0b:09:ea:13:68:c9:08:44:1b:e6:c1:e3:98:ed:61: ab:e9:22:4b:14:fc:67:49:dd:04:10:8a:93:43:80:b4:d4:f3: 17:86:19:38:c5:ab:1c:ff:c9:ab:ab:a2:3b:02:91:d1:cc:aa: 3c:a0:a1:7c:26:45:64:4e:c3:1e:73:d7:56:7c:4a:9c:84:5e: 77:2f:b8:50:1b:46:72:2b:af:c2:47:9a:94:77:f1:1e:51:b5: a8:94:c8:15:21:a7:cd:73:3b:db:9b:2a:82:ab:ee:53:b7:2b: 11:2e:34:6f:3f:7a:d7:d5:8e:33:62:0a:ae:e9:80:d4:93:bc: 0e:e8:94:86:31:46:bb:60:8f:cb:dc:d4:32:8e:8f:03:79:2c: 2a:4c:6d:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RUIxMTAvBgNVBAUTKDVDMzY1QjE3MzFDQTdDRTdEQjgxREQ1NzEzMEJENEQ2 NDMwMTlCNUUwHhcNMjQwNTMxMDIwNzM2WhcNMjQwNjA3MDIwNzM2WjAYMRYwFAYD VQQDEw02NjU5MzBlOS1hMTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsb0XbdCaxSfgj9f1bcSyXfcHHRbRbaZuYCQN0e51xS7MYC7wMdr/avdJ0o1E 3W4zpfGTYlAqpweUbhYx0Wz98va6atFob8H3Bk0LEqoIdijOmaONiVgnZvqI3NyV KSszyONClGIh5xansNJMzc80Z8dVc6KE5X5y6dmKohf2FTbExXn5rzN21/uu4UCX BzOOwDKPAUCksj1bN8CC3feoDBAG1Xy53vxFykop298YJjzkeLS9WahEi/J6CQXi oCCK6/bPZYtA6Tp3uqQ761qPhAVldeg5rC3pYn00CSnv+dgn78UARkrFigSmgJeC Oi+5QR1xXigLQbaszFQTu9S+tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBr1Mrum yhX3chviKc15yy5PV4J6MB8GA1UdIwQYMBaAFFw2Wxcxynzn24HdVxML1NZDAZte MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFQi83NzE0OEFDNkVC MDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZPZmJnZDFYRXd2VTFrTUJt MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEWmJGekhLZk9mYmdkMVhFd3ZVMWtNQm0xNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhFQi83NzE0OEFDNkVCMDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZP ZmJnZDFYRXd2VTFrTUJtMTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq9liSinYPJb9L4YpSGfMpTtyZ6Qhx0C/LhT4GMF41htgESrUheVrG rR7W4l7SHkerCAcOi9lditgnROKY5wotetohbwWNm37ffbHggKQ5JWqPxhhLcOt0 NJ78/jlQbja1ZnOjXvKeDu8hzrwGgx4LCeoTaMkIRBvmweOY7WGr6SJLFPxnSd0E EIqTQ4C01PMXhhk4xasc/8mrq6I7ApHRzKo8oKF8JkVkTsMec9dWfEqchF53L7hQ G0ZyK6/CR5qUd/EeUbWolMgVIafNczvbmyqCq+5TtysRLjRvP3rX1Y4zYgqu6YDU k7wO6JSGMUa7YI/L3NQyjo8DeSwqTG0X -----END CERTIFICATE-----Generated at Fri May 31 03:15:04 2024 by rpki-client on console-ams.rpki-client.org