$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft File: xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft (raw, json) Hash identifier: 2ye2/I2SsacYE7gLxidTBIPt/LtGFJj9Qvy6bIaKdSY= Subject key identifier: 7D:A9:53:75:CD:15:02:A0:A0:21:85:F2:9D:5D:62:F5:4D:21:6A:C5 Authority key identifier: C4:9E:51:83:EA:2F:C4:9B:8A:83:C9:20:52:BC:E2:A8:B6:57:6C:70 Certificate issuer: /CN=A91DF937/serialNumber=C49E5183EA2FC49B8A83C92052BCE2A8B6576C70 Certificate serial: 1E5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft Manifest number: 1E4F Signing time: Sat 18 May 2024 16:24:50 +0000 Manifest this update: Sat 18 May 2024 16:24:50 +0000 Manifest next update: Sat 25 May 2024 16:24:50 +0000 Files and hashes: 1: xJ5Rg-ovxJuKg8kgUrziqLZXbHA.crl (hash: HYmT7yrO4JxeXlT/hF5FjY3VRIp/1BcisqzRXjd2cFg=) 2: E723101E553D11E7B552CE31C4F9AE02.roa (hash: rqSbu5tvwhQ6+72h64vITuj42eL1hyx0KLFY7ZNDtvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.crl rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7770 (0x1e5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF937/serialNumber=C49E5183EA2FC49B8A83C92052BCE2A8B6576C70 Validity Not Before: May 18 16:24:50 2024 GMT Not After : May 25 16:24:50 2024 GMT Subject: CN=6648d652-443e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:48:4b:1e:e0:26:97:5c:25:06:bc:a1:d9:b2: 30:a1:9f:f7:35:ce:84:d9:f7:5c:86:f5:0f:57:90: af:eb:3f:6e:23:c5:be:81:f7:bd:87:52:91:ae:35: d5:50:5c:df:74:36:04:22:27:72:8d:46:d6:5e:73: 53:70:66:51:6a:9f:ca:f0:9d:2d:ed:0e:8f:6a:cf: 3d:b8:93:56:fe:c6:06:1d:2f:3c:2d:9e:10:64:3f: 8b:62:56:de:8f:22:07:fc:5c:81:62:72:7e:84:6a: 00:6d:c5:b4:df:8d:83:f5:e0:fa:f4:46:02:df:be: 7d:eb:42:27:c8:da:d5:f2:ba:58:6d:bb:d3:3c:d8: 4e:14:b7:a6:0f:e6:2a:a5:a0:da:69:54:1b:5f:ac: 4d:f4:26:7c:46:a4:af:78:04:10:19:80:91:ad:3a: 90:27:ea:a2:a6:08:c0:6f:17:c1:71:a0:b7:9b:c3: 00:ec:c5:cd:19:3b:8e:79:0b:5a:bc:78:01:0f:0a: 74:cb:b6:0a:c0:d1:3d:f8:71:70:b5:93:91:8f:41: dd:ef:b7:7f:87:de:86:be:24:0e:92:be:e7:c0:b4: 2e:5b:92:64:2d:05:a8:ef:b5:03:b5:6d:36:6f:4a: 39:9a:a8:af:a6:db:38:f3:94:37:87:4c:24:77:4e: df:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:A9:53:75:CD:15:02:A0:A0:21:85:F2:9D:5D:62:F5:4D:21:6A:C5 X509v3 Authority Key Identifier: keyid:C4:9E:51:83:EA:2F:C4:9B:8A:83:C9:20:52:BC:E2:A8:B6:57:6C:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:66:d8:55:86:60:94:d2:d1:c4:6e:05:e2:e6:89:c4:d9:04: 26:ad:73:fb:a7:b2:cf:03:30:0a:71:f3:bf:b9:14:bb:c6:81: 3a:57:ca:0a:06:81:7c:0f:af:36:bc:92:ea:c6:f0:b4:98:ea: 04:c5:1a:d9:12:f6:b4:8a:8d:0f:63:d7:d8:d0:c5:89:a2:d3: e4:16:56:b3:b6:07:e1:96:b4:63:c3:61:4c:92:70:f6:15:ff: b7:9c:ec:17:04:63:2c:69:78:b5:7d:ff:7d:19:f3:d8:ea:c2: 1c:5b:27:48:d8:06:e1:e2:e5:8c:ec:c1:be:d5:3a:06:97:a4: 25:89:73:16:cc:6e:90:18:bd:da:11:7e:e5:02:59:2e:6a:7c: f2:6a:ba:34:5d:f2:f1:63:64:01:c1:b2:8c:dc:76:b1:69:b7: 48:25:86:a4:1a:9a:e8:55:b4:0f:d5:45:7f:10:70:ff:b6:ed: 8e:dc:9d:b0:1c:53:01:5c:0c:de:0c:d8:f4:c6:87:57:78:79: cb:70:58:bb:9e:00:b1:9e:40:51:8c:d7:df:34:b8:06:49:69: 64:40:dd:f6:70:2f:d2:0b:0f:da:3b:58:b3:9c:85:9c:ae:ff: 65:4b:e6:7c:b1:d7:97:f2:5d:dc:fc:59:4c:f2:ab:d7:80:e1: 39:c0:42:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5MzcxMTAvBgNVBAUTKEM0OUU1MTgzRUEyRkM0OUI4QTgzQzkyMDUyQkNFMkE4 QjY1NzZDNzAwHhcNMjQwNTE4MTYyNDUwWhcNMjQwNTI1MTYyNDUwWjAYMRYwFAYD VQQDEw02NjQ4ZDY1Mi00NDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUhLHuAml1wlBryh2bIwoZ/3Nc6E2fdchvUPV5Cv6z9uI8W+gfe9h1KRrjXV UFzfdDYEIidyjUbWXnNTcGZRap/K8J0t7Q6Pas89uJNW/sYGHS88LZ4QZD+LYlbe jyIH/FyBYnJ+hGoAbcW0342D9eD69EYC375960InyNrV8rpYbbvTPNhOFLemD+Yq paDaaVQbX6xN9CZ8RqSveAQQGYCRrTqQJ+qipgjAbxfBcaC3m8MA7MXNGTuOeQta vHgBDwp0y7YKwNE9+HFwtZORj0Hd77d/h96GviQOkr7nwLQuW5JkLQWo77UDtW02 b0o5mqivpts485Q3h0wkd07f/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2pU3XN FQKgoCGF8p1dYvVNIWrFMB8GA1UdIwQYMBaAFMSeUYPqL8SbioPJIFK84qi2V2xw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzNy9BNDQ3QkZEQzU1 MzAxMUU2QTM2NDI3NDVDNEY5QUUwMi94SjVSZy1vdnhKdUtnOGtnVXJ6aXFMWlhi SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hKNVJnLW92eEp1S2c4a2dVcnppcUxaWGJIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjkzNy9BNDQ3QkZEQzU1MzAxMUU2QTM2NDI3NDVDNEY5QUUwMi94SjVSZy1vdnhK dUtnOGtnVXJ6aXFMWlhiSEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1ZthVhmCU0tHEbgXi5onE2QQmrXP7p7LPAzAKcfO/uRS7xoE6V8oK BoF8D682vJLqxvC0mOoExRrZEva0io0PY9fY0MWJotPkFlaztgfhlrRjw2FMknD2 Ff+3nOwXBGMsaXi1ff99GfPY6sIcWydI2Abh4uWM7MG+1ToGl6QliXMWzG6QGL3a EX7lAlkuanzyaro0XfLxY2QBwbKM3HaxabdIJYakGproVbQP1UV/EHD/tu2O3J2w HFMBXAzeDNj0xodXeHnLcFi7ngCxnkBRjNffNLgGSWlkQN32cC/SCw/aO1iznIWc rv9lS+Z8sdeX8l3c/FlM8qvXgOE5wEIO -----END CERTIFICATE-----Generated at Sat May 18 16:57:54 2024 by rpki-client on console-fra.rpki-client.org