$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9A6D/A21E71D2DB8E11E9A3526224C4F9AE02/xvo-z74pzTYwaQdi6zKIEDptCKA.mft File: xvo-z74pzTYwaQdi6zKIEDptCKA.mft (raw, json) Hash identifier: MM81QUmR3qG0IctNCbFs0PfOXcfX39dCtEtfvCNWGgY= Subject key identifier: D3:8A:17:63:96:3C:14:17:77:D4:C2:E1:CD:D1:2E:D4:B9:DA:74:79 Authority key identifier: C6:FA:3E:CF:BE:29:CD:36:30:69:07:62:EB:32:88:10:3A:6D:08:A0 Certificate issuer: /CN=A91D9A6D/serialNumber=C6FA3ECFBE29CD3630690762EB3288103A6D08A0 Certificate serial: 0C5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvo-z74pzTYwaQdi6zKIEDptCKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9A6D/A21E71D2DB8E11E9A3526224C4F9AE02/xvo-z74pzTYwaQdi6zKIEDptCKA.mft Manifest number: 0C56 Signing time: Sat 18 May 2024 18:55:32 +0000 Manifest this update: Sat 18 May 2024 18:55:32 +0000 Manifest next update: Sat 25 May 2024 18:55:32 +0000 Files and hashes: 1: xvo-z74pzTYwaQdi6zKIEDptCKA.crl (hash: vtjsjQEwJpmd53yri9hziI+fQ58gpZTCUTamrZrZRzs=) 2: 959C0ABE93EA11EE91A46031C4F9AE02.roa (hash: 0dxUjAoyfFinaZkwIqk6kSJi96T7zPO0qWaQiHs4epI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9A6D/A21E71D2DB8E11E9A3526224C4F9AE02/xvo-z74pzTYwaQdi6zKIEDptCKA.crl rsync://rpki.apnic.net/member_repository/A91D9A6D/A21E71D2DB8E11E9A3526224C4F9AE02/xvo-z74pzTYwaQdi6zKIEDptCKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvo-z74pzTYwaQdi6zKIEDptCKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3166 (0xc5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9A6D/serialNumber=C6FA3ECFBE29CD3630690762EB3288103A6D08A0 Validity Not Before: May 18 18:55:32 2024 GMT Not After : May 25 18:55:32 2024 GMT Subject: CN=6648f9a4-a936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:9e:0a:9d:a6:69:6c:27:5c:e8:ba:67:0d:b5: 09:73:e5:44:99:b2:78:8a:ca:a5:b0:c6:89:06:ea: fa:1c:c0:80:b7:e0:1c:3b:f6:84:94:03:ff:e2:d3: cb:a6:31:f5:4c:05:b1:3b:08:ad:3d:4e:cd:57:84: 3b:ae:b4:55:84:12:84:07:91:ce:94:f9:6c:e2:14: 72:ba:fe:95:41:50:75:14:4a:14:49:2d:00:8f:09: be:49:a0:a0:e3:39:a4:74:ec:86:8f:62:fe:61:7f: a9:fd:60:c9:12:23:b0:9a:9e:73:f1:e2:16:99:e6: 07:d2:4e:29:45:b2:57:67:a9:a4:13:43:f0:f1:8d: 86:ce:c4:a0:ab:1d:94:22:b9:b8:4d:59:93:d5:9b: d8:d5:44:db:e7:61:61:0f:3a:86:cf:f0:72:40:cc: 69:6e:da:f3:3b:c3:cc:8b:db:00:73:06:fc:0f:54: 82:d1:39:0c:11:bf:74:ef:f7:2c:b8:6d:05:dd:7e: 23:67:5e:aa:49:59:2a:66:6c:08:07:ba:b3:71:d6: 27:02:5a:71:ec:60:ef:71:0e:b3:19:37:a7:32:1c: 09:91:b2:66:6a:94:ab:e1:83:42:ba:cd:be:30:e8: 55:93:b2:32:e4:61:33:0a:aa:de:84:17:14:24:83: 63:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:8A:17:63:96:3C:14:17:77:D4:C2:E1:CD:D1:2E:D4:B9:DA:74:79 X509v3 Authority Key Identifier: keyid:C6:FA:3E:CF:BE:29:CD:36:30:69:07:62:EB:32:88:10:3A:6D:08:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9A6D/A21E71D2DB8E11E9A3526224C4F9AE02/xvo-z74pzTYwaQdi6zKIEDptCKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvo-z74pzTYwaQdi6zKIEDptCKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9A6D/A21E71D2DB8E11E9A3526224C4F9AE02/xvo-z74pzTYwaQdi6zKIEDptCKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:a3:7a:47:ba:04:5c:aa:05:d4:35:7a:b8:7b:7d:ad:53:29: a5:03:f0:5d:50:de:9c:db:38:f8:ce:1c:28:68:16:d5:12:7a: ef:8d:ee:e1:cf:2f:77:d3:e2:c2:34:98:36:21:7a:87:3e:1a: 18:5c:d6:4d:e5:59:99:c0:70:83:5e:16:c8:02:cc:6c:34:b6: 02:33:5f:d5:b9:5a:0f:3a:ba:86:26:dc:ba:f9:76:72:37:a5: 42:31:17:40:38:85:8c:a9:21:41:44:19:04:12:63:a7:bc:81: 8a:dd:d7:bf:45:e7:eb:7b:b5:ca:9a:03:1a:3f:be:b7:44:cf: 85:14:0b:78:23:8b:66:e0:f0:28:97:b4:97:5a:04:73:ae:c3: 05:19:73:cf:dd:a3:16:b8:9c:19:31:d4:ec:e9:49:33:74:72: ed:f8:bf:ea:47:cf:cf:83:30:d6:9f:aa:64:0b:67:d6:65:dc: 56:20:00:d0:fc:98:24:ba:37:9b:2e:35:b1:f9:bf:55:47:1c: a0:be:68:f3:62:78:f9:7d:ec:03:13:63:c6:a0:49:3b:ee:71: 6b:94:8f:59:52:07:89:96:fc:2c:b2:7d:0a:3b:f2:28:3e:a2: 59:d8:d7:ab:e5:b3:e0:5f:4f:28:27:53:82:9b:dc:b1:b0:90: e0:9b:56:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlBNkQxMTAvBgNVBAUTKEM2RkEzRUNGQkUyOUNEMzYzMDY5MDc2MkVCMzI4ODEw M0E2RDA4QTAwHhcNMjQwNTE4MTg1NTMyWhcNMjQwNTI1MTg1NTMyWjAYMRYwFAYD VQQDEw02NjQ4ZjlhNC1hOTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Z4KnaZpbCdc6LpnDbUJc+VEmbJ4isqlsMaJBur6HMCAt+AcO/aElAP/4tPL pjH1TAWxOwitPU7NV4Q7rrRVhBKEB5HOlPls4hRyuv6VQVB1FEoUSS0Ajwm+SaCg 4zmkdOyGj2L+YX+p/WDJEiOwmp5z8eIWmeYH0k4pRbJXZ6mkE0Pw8Y2GzsSgqx2U Irm4TVmT1ZvY1UTb52FhDzqGz/ByQMxpbtrzO8PMi9sAcwb8D1SC0TkMEb907/cs uG0F3X4jZ16qSVkqZmwIB7qzcdYnAlpx7GDvcQ6zGTenMhwJkbJmapSr4YNCus2+ MOhVk7Iy5GEzCqrehBcUJINjDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNOKF2OW PBQXd9TC4c3RLtS52nR5MB8GA1UdIwQYMBaAFMb6Ps++Kc02MGkHYusyiBA6bQig MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUE2RC9BMjFFNzFEMkRC OEUxMUU5QTM1MjYyMjRDNEY5QUUwMi94dm8tejc0cHpUWXdhUWRpNnpLSUVEcHRD S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h2by16NzRwelRZd2FRZGk2ektJRURwdENLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUE2RC9BMjFFNzFEMkRCOEUxMUU5QTM1MjYyMjRDNEY5QUUwMi94dm8tejc0cHpU WXdhUWRpNnpLSUVEcHRDS0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJo3pHugRcqgXUNXq4e32tUymlA/BdUN6c2zj4zhwoaBbVEnrvje7h zy930+LCNJg2IXqHPhoYXNZN5VmZwHCDXhbIAsxsNLYCM1/VuVoPOrqGJty6+XZy N6VCMRdAOIWMqSFBRBkEEmOnvIGK3de/Refre7XKmgMaP763RM+FFAt4I4tm4PAo l7SXWgRzrsMFGXPP3aMWuJwZMdTs6UkzdHLt+L/qR8/PgzDWn6pkC2fWZdxWIADQ /JgkujebLjWx+b9VRxygvmjzYnj5fewDE2PGoEk77nFrlI9ZUgeJlvwssn0KO/Io PqJZ2Ner5bPgX08oJ1OCm9yxsJDgm1bU -----END CERTIFICATE-----Generated at Sat May 18 20:16:07 2024 by rpki-client on console-ams.rpki-client.org