$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: r5IDAKLj93ULd/zG1KjQl6Ci+5M/LpFRGzlgm/T4ZtE= Subject key identifier: BE:22:F8:D0:BE:35:B4:06:0F:26:8F:E8:8F:DA:2E:59:B4:68:9A:CF Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: FB Signing time: Sun 19 May 2024 05:41:19 +0000 Manifest this update: Sun 19 May 2024 05:41:18 +0000 Manifest next update: Sun 26 May 2024 05:41:18 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: PVhHrMlsA7jSUe6UnpXG4qTogzI3mPvDDoVDKplGbuc=) 2: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: J9lQZhRy8nlJurek/6TmeBBfcqfbhz3LFug7IIYnNuk=) 3: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: G7v93sM93gzZ4BgWqisV58Q1qgwmrLJ0bo2fkE0d3wQ=) 4: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: Ta/ZWvPosDSPnLIBb0P0lxVE7uAqrQxU6Y7zoCnFQ8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: May 19 05:41:18 2024 GMT Not After : May 26 05:41:18 2024 GMT Subject: CN=664990fe-0e27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e1:6d:5a:aa:60:84:51:e1:c0:37:22:50:89: 41:98:e9:45:70:cc:34:e6:55:55:5b:33:69:d2:0e: a7:76:13:96:6d:83:49:2c:39:94:61:a9:05:7e:bc: 9f:05:10:b3:2d:7a:7b:eb:f6:07:26:db:1b:d2:64: aa:31:3c:7f:d4:a2:7c:e7:56:6d:78:9f:5f:6e:96: d4:8d:4e:a8:b5:7e:8b:60:58:9a:54:67:c9:4c:f9: dc:3c:b3:24:51:94:63:12:70:66:16:7a:42:6b:a1: 90:53:42:14:1d:ca:e4:46:90:9c:2b:c1:e1:eb:f2: c1:20:23:e1:6f:e7:a6:06:a9:a3:3c:b0:09:cd:56: af:23:a8:0f:3f:4f:68:a5:ce:64:0a:0f:b7:34:64: 44:a2:d1:63:71:03:48:be:a7:77:28:c1:57:43:1a: e9:ac:7b:ba:24:25:ec:1b:a5:ae:a7:6e:1b:54:2a: 8f:dc:52:b3:81:c0:69:40:a1:9c:1e:f9:fe:aa:44: 1f:d5:8f:af:7d:94:85:40:bb:53:5c:94:77:9a:ce: 9f:2a:2f:af:ea:18:d1:1b:64:24:74:21:f0:a9:92: 6a:e2:0a:97:d3:c0:56:da:39:e5:5b:84:2e:a7:de: 5e:e6:c8:cb:f4:b2:60:45:b6:d7:75:3d:68:44:32: a6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:22:F8:D0:BE:35:B4:06:0F:26:8F:E8:8F:DA:2E:59:B4:68:9A:CF X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:ab:f0:64:f4:5a:fa:47:73:ca:ce:a9:4a:4d:90:12:18:d4: 8a:1f:c6:d6:83:c6:01:b0:fe:a9:05:de:23:a5:cf:22:2a:22: 12:aa:3c:ff:a5:ad:d7:24:2b:95:52:4f:be:d7:fc:22:a2:df: 8f:ae:9c:af:a4:8d:7d:47:f1:dc:10:a2:5e:fa:2d:51:54:cd: 58:39:dc:44:e3:fd:dc:29:b4:ed:f1:d0:e5:ae:43:a8:80:c0: e7:c1:7a:f0:4c:7e:16:9e:96:37:47:5d:68:91:c1:c8:2b:8e: 24:68:d0:76:1c:34:0b:44:cd:ad:e4:aa:52:fd:83:fe:fb:5b: 88:f6:be:04:ab:b1:a8:36:0d:ef:21:bc:0b:52:53:a0:94:3f: a0:12:41:a6:5c:92:8f:25:87:ea:24:38:5a:3b:84:c2:d5:a8: 71:e0:13:95:d9:d8:13:ef:d8:a0:1e:2c:75:70:31:cb:55:3c: c2:7f:d6:40:5a:04:d1:9e:b5:77:e2:f8:03:7d:8b:b4:53:a6: 28:d0:88:9c:77:bd:b2:e1:2b:d1:62:4a:d8:30:69:fb:45:d1: 14:72:8e:97:72:2c:8e:46:29:9a:15:d1:bc:77:cf:72:7b:9f: 09:63:e3:9b:7b:a3:b7:bf:27:1c:7a:a3:24:12:36:c6:47:52: e9:4e:84:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjQwNTE5MDU0MTE4WhcNMjQwNTI2MDU0MTE4WjAYMRYwFAYD VQQDEw02NjQ5OTBmZS0wZTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOFtWqpghFHhwDciUIlBmOlFcMw05lVVWzNp0g6ndhOWbYNJLDmUYakFfryf BRCzLXp76/YHJtsb0mSqMTx/1KJ851ZteJ9fbpbUjU6otX6LYFiaVGfJTPncPLMk UZRjEnBmFnpCa6GQU0IUHcrkRpCcK8Hh6/LBICPhb+emBqmjPLAJzVavI6gPP09o pc5kCg+3NGREotFjcQNIvqd3KMFXQxrprHu6JCXsG6Wup24bVCqP3FKzgcBpQKGc Hvn+qkQf1Y+vfZSFQLtTXJR3ms6fKi+v6hjRG2QkdCHwqZJq4gqX08BW2jnlW4Qu p95e5sjL9LJgRbbXdT1oRDKmqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL4i+NC+ NbQGDyaP6I/aLlm0aJrPMB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvq/Bk9Fr6R3PKzqlKTZASGNSKH8bWg8YBsP6pBd4jpc8iKiISqjz/ pa3XJCuVUk++1/wiot+PrpyvpI19R/HcEKJe+i1RVM1YOdxE4/3cKbTt8dDlrkOo gMDnwXrwTH4WnpY3R11okcHIK44kaNB2HDQLRM2t5KpS/YP++1uI9r4Eq7GoNg3v IbwLUlOglD+gEkGmXJKPJYfqJDhaO4TC1ahx4BOV2dgT79igHix1cDHLVTzCf9ZA WgTRnrV34vgDfYu0U6Yo0Iicd72y4SvRYkrYMGn7RdEUco6XciyORimaFdG8d89y e58JY+Obe6O3vycceqMkEjbGR1LpToRL -----END CERTIFICATE-----Generated at Sun May 19 06:14:36 2024 by rpki-client on console-ams.rpki-client.org