$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft File: xdQJ-106qXOpUMnDHMMBVfNJP2I.mft (raw, json) Hash identifier: cP1PDNs+ILZ4tKaJb9NKBnBKBnB80J4brSUVryiEk9s= Subject key identifier: F5:CB:DF:BD:3F:5A:75:89:96:29:7A:E6:EF:11:A4:42:D2:C6:29:63 Authority key identifier: C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 Certificate issuer: /CN=A91D6884/serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft Manifest number: 72 Signing time: Sun 19 May 2024 07:26:06 +0000 Manifest this update: Sun 19 May 2024 07:26:06 +0000 Manifest next update: Sun 26 May 2024 07:26:06 +0000 Files and hashes: 1: xdQJ-106qXOpUMnDHMMBVfNJP2I.crl (hash: q0aaQ9+rtMcoc2gL3co0A4hMiy2pkTbdeaOKOdBQRyc=) 2: 5CF4C0D4FADD11EE8083D572C4F9AE02.roa (hash: FMEa50CaRfULd6cfo4tSIUoG249epzgdwD0JCTtzESo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6884/serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Validity Not Before: May 19 07:26:06 2024 GMT Not After : May 26 07:26:06 2024 GMT Subject: CN=6649a98e-13ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5a:65:65:57:3e:10:6b:88:9a:ed:2d:29:87: a5:1a:a7:ca:5a:5e:0b:5f:cf:e9:71:97:70:73:95: 54:94:a1:a1:ea:ac:49:4b:e1:63:e5:7e:d7:8c:31: 9e:30:cc:42:f1:9d:bb:5e:ff:2f:a7:85:3d:83:94: 59:12:bd:88:09:c5:ae:bf:da:3d:dd:b9:fd:9c:ae: bd:86:c3:03:35:4a:7a:78:e5:fe:6e:52:f2:f4:d2: 21:d0:43:0a:cc:12:3a:ee:a6:fb:18:3f:38:7f:7e: df:f9:b4:3c:73:dd:6e:c7:65:92:ea:bd:c5:ec:b8: 71:3d:62:6b:5e:26:a4:4f:2c:9f:dc:db:04:28:ca: ca:3d:54:fb:ec:8b:c9:86:b4:13:25:b4:3a:a2:9f: 60:fe:ee:e2:99:0b:98:8c:60:02:80:1a:80:d5:8f: 78:f9:af:80:ff:ad:ac:36:b8:07:ff:0c:5d:fb:d9: f7:c4:22:a3:b1:fd:ec:07:41:c7:09:44:88:49:46: 1b:79:01:02:9d:7c:51:b8:03:49:74:e1:b0:9a:10: ad:06:af:be:74:b4:54:6b:e3:aa:a4:0e:aa:59:03: ad:1d:e4:28:3b:00:f7:09:ac:f7:c2:8d:e9:fa:d0: a5:34:23:5b:3f:2c:a5:e3:eb:c6:08:5e:73:df:21: 9e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:CB:DF:BD:3F:5A:75:89:96:29:7A:E6:EF:11:A4:42:D2:C6:29:63 X509v3 Authority Key Identifier: keyid:C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:62:4a:ba:02:fe:de:e2:e7:86:96:0c:e7:6b:65:f5:0c:9f: 2c:63:06:37:bf:7b:12:cb:1d:90:b7:73:4d:65:ab:0e:85:63: 11:c0:d4:71:36:b7:2c:cc:fc:45:44:6b:2d:3a:ea:c5:6b:82: 03:9f:8d:85:17:fc:41:1c:dc:3c:7c:cd:2b:4e:df:b2:ae:f4: 56:ee:a6:08:46:c3:55:79:f4:8f:60:76:82:d0:34:cf:d9:b8: 25:e5:c3:ee:72:71:18:00:44:79:f1:17:b3:e6:11:47:86:d5: 54:48:b1:7e:47:6d:c9:65:90:77:a0:85:07:75:59:02:ce:2c: 8a:fe:c9:ba:e1:3f:ec:e9:09:1a:25:24:d7:e5:e4:4f:d3:6c: 84:8b:5f:cc:5a:5f:6d:c8:8d:6e:f1:e3:70:22:5b:22:a9:a4: a1:f9:62:bf:ab:ac:eb:34:cd:fa:3c:c8:47:3c:90:ca:ff:f6: e5:19:98:b4:ad:b8:3e:63:a9:e8:0e:bc:cf:87:d0:3b:4e:80: 54:df:80:54:86:33:8e:58:32:04:23:2f:7c:32:a4:46:e7:4e: 09:3e:97:08:6a:85:10:2a:4a:58:dd:10:bf:4c:91:67:fe:d6: 9b:29:95:b6:a1:e7:b8:7e:6b:fa:2b:76:21:cf:60:fc:6f:35: a3:5b:ed:e5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Njg4NDExMC8GA1UEBRMoQzVENDA5RkI1RDNBQTk3M0E5NTBDOUMzMUNDMzAxNTVG MzQ5M0Y2MjAeFw0yNDA1MTkwNzI2MDZaFw0yNDA1MjYwNzI2MDZaMBgxFjAUBgNV BAMTDTY2NDlhOThlLTEzZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyWmVlVz4Qa4ia7S0ph6Uap8paXgtfz+lxl3BzlVSUoaHqrElL4WPlfteMMZ4w zELxnbte/y+nhT2DlFkSvYgJxa6/2j3duf2crr2GwwM1Snp45f5uUvL00iHQQwrM EjrupvsYPzh/ft/5tDxz3W7HZZLqvcXsuHE9YmteJqRPLJ/c2wQoyso9VPvsi8mG tBMltDqin2D+7uKZC5iMYAKAGoDVj3j5r4D/raw2uAf/DF372ffEIqOx/ewHQccJ RIhJRht5AQKdfFG4A0l04bCaEK0Gr750tFRr46qkDqpZA60d5Cg7APcJrPfCjen6 0KU0I1s/LKXj68YIXnPfIZ4rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9cvfvT9a dYmWKXrm7xGkQtLGKWMwHwYDVR0jBBgwFoAUxdQJ+106qXOpUMnDHMMBVfNJP2Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2ODg0LzJBOTUwMjU2Njk3 NTExRUVCNzBBNTUwRUM0RjlBRTAyL3hkUUotMTA2cVhPcFVNbkRITU1CVmZOSlAy SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveGRRSi0xMDZxWE9wVU1uREhNTUJWZk5KUDJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2 ODg0LzJBOTUwMjU2Njk3NTExRUVCNzBBNTUwRUM0RjlBRTAyL3hkUUotMTA2cVhP cFVNbkRITU1CVmZOSlAySS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFFiSroC/t7i54aWDOdrZfUMnyxjBje/exLLHZC3c01lqw6FYxHA1HE2 tyzM/EVEay066sVrggOfjYUX/EEc3Dx8zStO37Ku9FbupghGw1V59I9gdoLQNM/Z uCXlw+5ycRgARHnxF7PmEUeG1VRIsX5HbcllkHeghQd1WQLOLIr+ybrhP+zpCRol JNfl5E/TbISLX8xaX23IjW7x43AiWyKppKH5Yr+rrOs0zfo8yEc8kMr/9uUZmLSt uD5jqegOvM+H0DtOgFTfgFSGM45YMgQjL3wypEbnTgk+lwhqhRAqSljdEL9MkWf+ 1psplbah57h+a/ordiHPYPxvNaNb7eU= -----END CERTIFICATE-----Generated at Sun May 19 08:25:08 2024 by rpki-client on console-ams.rpki-client.org