$ rpki-client -vvf rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft File: XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft (raw, json) Hash identifier: vn1XRVJ49qKqMDfVpYg55mwWZGtKrxzyh3i+50vr+kE= Subject key identifier: B2:B6:4D:E8:AC:04:29:9B:24:49:7A:72:8C:EE:E8:C9:C2:70:60:D7 Authority key identifier: 5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5 Certificate issuer: /CN=A91D318A/serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft Manifest number: 5C Signing time: Sun 19 May 2024 07:42:56 +0000 Manifest this update: Sun 19 May 2024 07:42:55 +0000 Manifest next update: Sun 26 May 2024 07:42:55 +0000 Files and hashes: 1: XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl (hash: +w+CBQVsi7xSadulUQPRwRF+cSicC+C7KsW64zHjDIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D318A/serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5 Validity Not Before: May 19 07:42:55 2024 GMT Not After : May 26 07:42:55 2024 GMT Subject: CN=6649ad80-b184 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:30:23:61:8f:3d:21:51:89:45:dd:41:9a:0a: fa:d0:e6:72:9e:01:db:0e:fe:f5:ee:ad:61:6c:1a: 8b:9c:72:7d:ab:ba:ea:3f:37:bb:0c:02:df:94:03: e9:bf:d5:19:9b:ae:0a:f6:f6:5b:e2:3b:55:de:cd: 0a:81:b0:ba:a3:05:d9:1e:1d:26:19:c5:4b:67:bc: bd:cf:09:bd:ee:93:6c:77:55:a9:13:0e:ce:e1:69: 12:a8:25:5d:98:70:e0:fb:11:35:1e:e9:6d:11:89: 1e:4e:3e:87:d2:a7:97:80:02:00:53:31:c2:aa:13: 4b:92:0b:28:12:5c:70:89:84:52:fa:78:8f:a9:ce: 1a:42:d6:91:94:b7:3b:d1:ba:81:1c:4e:e0:a2:1b: 0e:4a:c9:47:78:87:cd:8b:27:c8:41:95:dd:3f:e8: bf:b8:3a:b9:2c:a1:c6:63:1e:3b:f2:4d:9f:51:b3: 19:67:73:ac:2d:da:22:da:5f:db:c7:9a:e9:28:90: ab:b6:73:22:20:1d:e9:4c:d5:7a:2d:f2:f6:1b:52: 4f:76:8f:16:57:d1:ee:47:b9:77:ed:e9:03:ac:d1: 2c:b7:5c:98:1d:c1:96:3b:4c:27:33:44:d0:d4:68: 34:26:7c:63:87:0b:53:fc:77:13:9d:e4:28:21:16: 35:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:B6:4D:E8:AC:04:29:9B:24:49:7A:72:8C:EE:E8:C9:C2:70:60:D7 X509v3 Authority Key Identifier: keyid:5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:f7:b9:4d:e5:f5:41:e6:2d:f7:b1:44:5c:c6:0a:53:68:ea: 4c:b5:16:cb:73:41:a6:d0:3b:27:58:9d:54:72:33:95:51:ce: 05:6d:95:56:c1:c3:47:6e:b0:1c:d9:da:5e:3a:59:8f:ba:dc: 08:75:53:47:97:b4:45:f8:fe:d3:1f:ef:3d:25:ba:0a:84:11: b4:c2:8f:5f:f0:9b:98:7a:73:e7:c2:6c:46:7c:e6:4e:04:47: 69:db:19:f5:a3:58:50:d4:9d:21:81:93:c5:73:af:b8:83:e1: 22:a6:46:2b:91:ec:46:c9:9c:38:8c:2e:5a:fa:f8:6a:b8:15: ca:5a:28:20:a7:fe:85:6d:36:26:58:28:a0:7d:da:38:72:d8: 79:bd:44:a2:5b:ee:bb:55:79:ac:66:2b:1e:2e:b2:83:f7:1d: 01:f1:14:63:37:69:28:8a:5b:ce:b4:59:12:e5:21:75:ec:cc: bf:d5:85:ae:7a:e8:21:4b:34:4e:04:3e:ea:04:22:cd:f6:bd: a6:05:87:0f:85:6f:a6:69:3f:87:da:89:4a:a2:b3:25:96:53: 03:68:d9:e1:79:9a:7e:0e:ea:5e:94:41:22:62:9d:dd:a1:cc: 27:9b:02:f1:33:30:8e:66:3d:16:ba:af:0b:e7:ec:b6:35:c0: 72:0c:78:31 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MzE4QTExMC8GA1UEBRMoNUNGNTVCODhBNjY5REM3RTgyMTE1RjgwNjA2OUYzQzkz Q0U2NUNCNTAeFw0yNDA1MTkwNzQyNTVaFw0yNDA1MjYwNzQyNTVaMBgxFjAUBgNV BAMTDTY2NDlhZDgwLWIxODQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJMCNhjz0hUYlF3UGaCvrQ5nKeAdsO/vXurWFsGouccn2ruuo/N7sMAt+UA+m/ 1Rmbrgr29lviO1XezQqBsLqjBdkeHSYZxUtnvL3PCb3uk2x3VakTDs7haRKoJV2Y cOD7ETUe6W0RiR5OPofSp5eAAgBTMcKqE0uSCygSXHCJhFL6eI+pzhpC1pGUtzvR uoEcTuCiGw5KyUd4h82LJ8hBld0/6L+4OrksocZjHjvyTZ9Rsxlnc6wt2iLaX9vH mukokKu2cyIgHelM1Xot8vYbUk92jxZX0e5HuXft6QOs0Sy3XJgdwZY7TCczRNDU aDQmfGOHC1P8dxOd5CghFjVfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsrZN6KwE KZskSXpyjO7oycJwYNcwHwYDVR0jBBgwFoAUXPVbiKZp3H6CEV+AYGnzyTzmXLUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQzMThBL0Y1QjVDQTgwODdF NjExRUU5N0U2Qzc0NkM0RjlBRTAyL1hQVmJpS1pwM0g2Q0VWLUFZR256eVR6bVhM VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWFBWYmlLWnAzSDZDRVYtQVlHbnp5VHptWExVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQz MThBL0Y1QjVDQTgwODdFNjExRUU5N0U2Qzc0NkM0RjlBRTAyL1hQVmJpS1pwM0g2 Q0VWLUFZR256eVR6bVhMVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB73uU3l9UHmLfexRFzGClNo6ky1FstzQabQOydYnVRyM5VRzgVtlVbB w0dusBzZ2l46WY+63Ah1U0eXtEX4/tMf7z0lugqEEbTCj1/wm5h6c+fCbEZ85k4E R2nbGfWjWFDUnSGBk8Vzr7iD4SKmRiuR7EbJnDiMLlr6+Gq4FcpaKCCn/oVtNiZY KKB92jhy2Hm9RKJb7rtVeaxmKx4usoP3HQHxFGM3aSiKW860WRLlIXXszL/Vha56 6CFLNE4EPuoEIs32vaYFhw+Fb6ZpP4faiUqisyWWUwNo2eF5mn4O6l6UQSJind2h zCebAvEzMI5mPRa6rwvn7LY1wHIMeDE= -----END CERTIFICATE-----Generated at Sun May 19 08:25:08 2024 by rpki-client on console-ams.rpki-client.org