$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft File: xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft (raw, json) Hash identifier: rNR1DgMKTtXCznLzj7nVr2TtGpoB9LqQj3h3ZrWPY+g= Subject key identifier: 43:11:34:E3:C8:05:31:27:08:A1:5B:5A:D7:B6:15:BB:65:FE:BA:1A Authority key identifier: C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 Certificate issuer: /CN=A91D51A0/serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Certificate serial: 0365 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft Manifest number: 0344 Signing time: Fri 31 May 2024 03:39:01 +0000 Manifest this update: Fri 31 May 2024 03:39:00 +0000 Manifest next update: Fri 07 Jun 2024 03:39:00 +0000 Files and hashes: 1: xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl (hash: bafuryfvpksOMKPLJ4/cJ4PXIVZTmvQtpiBl41Bayyw=) 2: 5CA964A68AC111EC91D19A11C4F9AE02.roa (hash: 8KtiWKOE+f6CmnRLcL50w77UQzV0t3NNmPGCD+UiN2Y=) 3: 5A83C666350211EEB33A9B71C4F9AE02.roa (hash: 5hXuLPUl1oznYiZYUW2nmt4xTeI47MtrNRFOzwu+lXg=) 4: D46B2C087F8711EC81E76A59C4F9AE02.roa (hash: 2EXYCICBvAeJltk6VH8XYxe2JtqWcKEjv0iqiczQGfw=) 5: C3261EF826DF11ED94E18118C4F9AE02.roa (hash: 7CVfnyqnIiLW71WuBjnEZ7aaTtwRTAZvuVVY0lHLWVc=) 6: 86131D8AEA5D11ED80641166C4F9AE02.roa (hash: e7+o0oFCUhzzHHgIWSNACl9jZuC2f8qoowBsWPxw+Fs=) 7: 6F8A81CCF30C11ED94750772C4F9AE02.roa (hash: KeTueCm3z2LBug4KnXXzF4iTTZQ8It6Q070daguo0jI=) 8: 8FD0B12E400311EEBF5A8B52C4F9AE02.roa (hash: P0OlJRLvIMDdrF/RijM8YcE19SRlKeRCGV8u4qFW30s=) 9: D83192B0152B11EE85ED4B1DC4F9AE02.roa (hash: b/gp19EaEtfqCK263TvkCdJtfuwUtevQan/MP233wis=) 10: 350FEB88D40611EDADEE3D1EC4F9AE02.roa (hash: EMqyfxPHhDkEirOZ3LxPHg+w+AohZeB5bS2RIkYA/qk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 03:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 869 (0x365) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51A0/serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Validity Not Before: May 31 03:39:00 2024 GMT Not After : Jun 7 03:39:00 2024 GMT Subject: CN=66594654-f805 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ec:23:d1:a5:12:6c:10:99:69:4a:5f:4f:fc: ff:9a:ff:63:86:77:47:f9:40:34:54:6b:fa:57:8d: 8c:01:82:0c:b6:57:a3:82:6b:5b:8d:9c:d1:a6:38: 85:2c:a6:44:4b:f5:79:bf:4b:d1:e6:6d:76:3d:6e: 12:ca:0a:a2:f4:48:12:6c:1f:bf:f0:fc:0e:c3:9a: aa:10:be:86:0e:b5:97:84:51:5b:0c:1a:54:6d:d6: 4c:5d:4e:20:16:c1:75:0e:c3:f9:24:85:56:4f:95: 4a:57:0b:9a:b1:5f:1b:e6:a7:b5:5e:2f:e6:77:d8: e7:42:8d:03:3e:f8:93:23:43:85:62:a7:0f:29:6a: 6f:56:17:c6:96:f3:2b:3b:52:9f:08:1b:34:1c:ec: 20:22:19:9a:2a:c5:49:20:7e:0a:ae:eb:a1:96:1b: 34:0b:13:90:00:7c:45:cd:6c:05:1a:69:51:62:36: 2d:91:9b:67:e7:a8:41:5f:59:b5:9a:71:4c:64:d0: 06:26:b0:9a:fa:a6:f4:34:99:88:46:16:7e:8f:27: 8a:8b:9d:43:3c:41:13:a2:88:eb:e6:49:9a:0e:af: f2:cd:94:0d:35:35:f1:85:e7:30:79:d4:c1:7f:49: 25:10:66:03:19:dd:17:0a:60:b5:c9:71:62:be:d0: dc:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:11:34:E3:C8:05:31:27:08:A1:5B:5A:D7:B6:15:BB:65:FE:BA:1A X509v3 Authority Key Identifier: keyid:C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:ee:76:ca:28:36:a9:72:29:76:34:e5:a7:3d:6d:a0:56:a1: a6:52:7d:2a:88:e4:44:3e:10:16:f5:ee:11:f1:35:90:76:d0: 37:8b:d0:88:76:62:21:8d:92:6c:5d:0d:5c:5e:ec:13:f7:65: 6b:89:3e:a3:22:b2:ec:7c:39:fd:f4:e8:e8:1d:5b:59:c1:b6: 5f:2f:e1:5f:6b:18:1d:0e:b3:79:ba:cf:fb:29:36:71:6a:9c: a0:74:6b:c8:21:1d:93:20:72:be:42:e5:7e:20:ee:69:28:e9: 3f:6a:f2:b2:43:2b:f5:f3:32:82:95:d6:a7:ab:ef:51:c0:84: bd:5d:93:c5:98:4d:e8:74:69:eb:cb:ed:72:6a:a9:08:a0:4b: 96:ef:16:7d:93:3b:0e:b8:20:4b:c0:34:7b:3b:fa:f3:e8:15: 41:0b:84:f2:de:01:e3:5d:1d:38:20:32:a3:bb:ab:bd:af:33: 5e:31:f7:95:26:16:47:53:30:b9:f7:71:d9:97:92:66:a0:b0: d2:45:77:86:f4:38:49:77:6d:c9:99:69:46:b8:a1:14:67:fa: e0:a3:c1:de:fb:bf:1d:44:e2:4d:c6:07:09:18:52:f2:32:d5: 3e:7f:78:de:f0:e6:22:5d:0c:19:42:18:02:eb:6f:93:65:1a: c0:93:1f:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQTAxMTAvBgNVBAUTKEM2RUFCRUI5M0UxRDA2RTJDMzJFMUM0Q0JFMTQ3Q0ZC Mzk5OTI1MzkwHhcNMjQwNTMxMDMzOTAwWhcNMjQwNjA3MDMzOTAwWjAYMRYwFAYD VQQDEw02NjU5NDY1NC1mODA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOwj0aUSbBCZaUpfT/z/mv9jhndH+UA0VGv6V42MAYIMtlejgmtbjZzRpjiF LKZES/V5v0vR5m12PW4Sygqi9EgSbB+/8PwOw5qqEL6GDrWXhFFbDBpUbdZMXU4g FsF1DsP5JIVWT5VKVwuasV8b5qe1Xi/md9jnQo0DPviTI0OFYqcPKWpvVhfGlvMr O1KfCBs0HOwgIhmaKsVJIH4Kruuhlhs0CxOQAHxFzWwFGmlRYjYtkZtn56hBX1m1 mnFMZNAGJrCa+qb0NJmIRhZ+jyeKi51DPEEToojr5kmaDq/yzZQNNTXxhecwedTB f0klEGYDGd0XCmC1yXFivtDcrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMRNOPI BTEnCKFbWte2Fbtl/roaMB8GA1UdIwQYMBaAFMbqvrk+HQbiwy4cTL4UfPs5mSU5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFBMC83QzUzOTEwQzdG ODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1TERMaHhNdmhSOC16bVpK VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h1cS11VDRkQnVMRExoeE12aFI4LXptWkpUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFBMC83QzUzOTEwQzdGODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1 TERMaHhNdmhSOC16bVpKVGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp7nbKKDapcil2NOWnPW2gVqGmUn0qiOREPhAW9e4R8TWQdtA3i9CI dmIhjZJsXQ1cXuwT92VriT6jIrLsfDn99OjoHVtZwbZfL+FfaxgdDrN5us/7KTZx apygdGvIIR2TIHK+QuV+IO5pKOk/avKyQyv18zKCldanq+9RwIS9XZPFmE3odGnr y+1yaqkIoEuW7xZ9kzsOuCBLwDR7O/rz6BVBC4Ty3gHjXR04IDKju6u9rzNeMfeV JhZHUzC593HZl5JmoLDSRXeG9DhJd23JmWlGuKEUZ/rgo8He+78dROJNxgcJGFLy MtU+f3je8OYiXQwZQhgC62+TZRrAkx9l -----END CERTIFICATE-----Generated at Fri May 31 06:49:27 2024 by rpki-client on console-ams.rpki-client.org