$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft File: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft (raw, json) Hash identifier: 5t7txFHheefjE8B4pVpPfq93O5qSBNXKRzd7zDHoAXc= Subject key identifier: 09:43:D6:B7:A3:D0:A0:2A:AA:3C:53:CD:8F:4A:F2:2D:7C:4F:B4:B4 Authority key identifier: C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 Certificate issuer: /CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Certificate serial: 01F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft Manifest number: 01EE Signing time: Sun 19 May 2024 04:13:40 +0000 Manifest this update: Sun 19 May 2024 04:13:40 +0000 Manifest next update: Sun 26 May 2024 04:13:40 +0000 Files and hashes: 1: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl (hash: 7vXaWPRQZLJrYyriu5ab+rubETRR+thI56rzen9tjrg=) 2: 6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa (hash: kFKJqLQA8zC2Qc1Fc/Trg+ITcJC5T2EwVFP8GCs9t+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Validity Not Before: May 19 04:13:40 2024 GMT Not After : May 26 04:13:40 2024 GMT Subject: CN=66497c74-bbc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:41:81:d3:78:ea:e2:d9:26:98:9c:90:4f:6b: bb:28:68:5a:a9:05:10:76:fe:1c:2c:c7:1f:77:81: 27:62:75:a5:0d:08:a9:95:f7:31:24:86:ef:c4:85: b8:29:d4:bd:13:a5:00:fb:1b:53:aa:5c:12:a8:81: dd:56:6b:be:b8:48:e4:93:50:db:c5:13:4c:6a:b7: dd:c1:79:3f:5f:0c:d2:dd:5c:ac:d8:c6:f7:9e:b6: 70:8e:af:93:ac:0a:0f:2c:b1:64:12:7d:6a:a6:25: 92:cb:24:6c:d0:c3:fc:8a:d9:83:be:e9:ec:6b:a0: 0a:42:ac:03:89:6c:7b:43:e1:d9:50:11:32:5a:08: a8:1c:cc:0f:51:e8:8e:14:a8:96:ef:52:2d:42:02: 8b:0f:c9:05:d0:ed:9e:e9:9e:79:2e:e6:22:94:81: 28:ff:9d:d3:ad:57:7f:38:0f:d8:73:e7:31:08:bd: 55:d0:34:5b:3e:6b:cd:06:b4:47:70:80:41:09:b9: a4:08:88:96:fc:ce:47:61:8e:17:ce:6d:c0:6f:b5: 7d:72:d8:00:29:04:b8:cc:12:9e:0c:92:30:90:8e: 48:74:33:d5:1e:13:a8:77:77:44:10:ad:da:f0:f4: 3a:21:72:8b:12:7d:82:51:a5:7b:a5:4f:f4:ee:4d: 97:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:43:D6:B7:A3:D0:A0:2A:AA:3C:53:CD:8F:4A:F2:2D:7C:4F:B4:B4 X509v3 Authority Key Identifier: keyid:C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:d4:f4:ab:36:01:39:db:78:cf:66:cb:70:86:9f:00:b3:76: c0:70:f6:37:f3:d4:02:6e:4f:f5:db:0f:5e:ec:81:f6:e1:a9: 34:a4:73:3d:4d:03:71:ef:bf:32:59:ae:e0:89:5e:f0:3b:ba: 1a:f1:a8:68:50:f0:b4:08:09:b9:53:ab:d5:8e:c9:f2:22:a3: 36:2e:d7:30:f5:c8:13:7e:61:9c:7d:66:a8:02:0e:d1:44:a5: 0c:89:20:67:1d:8f:13:88:e1:32:1c:0b:6d:8b:e1:96:df:79: 0a:43:d7:c7:21:8d:a7:bb:ba:4b:1f:08:7f:20:02:a3:76:15: 86:70:7d:ef:c2:fe:50:20:e0:bb:67:9c:d1:8a:0b:6f:da:67: 57:4d:85:ff:a1:99:6d:13:e2:00:89:c7:c0:46:e2:9c:65:29: 96:07:38:0b:58:80:cf:03:64:29:d5:88:f6:ed:8f:aa:ee:2f: be:24:a7:28:cb:ee:3a:49:df:54:89:11:ec:41:24:d4:7e:f4: 17:b1:95:a2:f5:9a:39:5c:6c:c1:7a:2d:f5:d5:c7:22:54:30: 5c:4c:02:8c:37:78:27:c2:c3:64:de:c6:f1:0c:f7:e2:c4:ed: 31:cf:09:0c:b5:f9:a0:f7:64:6a:25:64:47:49:6c:4f:1b:33: 8c:45:c0:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCRjIxMTAvBgNVBAUTKEM0NzFBNTZFRTk0RjA1QjQzN0MwOUVFRTBGNDQyMDNG QTQ1OTI3MzYwHhcNMjQwNTE5MDQxMzQwWhcNMjQwNTI2MDQxMzQwWjAYMRYwFAYD VQQDEw02NjQ5N2M3NC1iYmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+UGB03jq4tkmmJyQT2u7KGhaqQUQdv4cLMcfd4EnYnWlDQiplfcxJIbvxIW4 KdS9E6UA+xtTqlwSqIHdVmu+uEjkk1DbxRNMarfdwXk/XwzS3Vys2Mb3nrZwjq+T rAoPLLFkEn1qpiWSyyRs0MP8itmDvunsa6AKQqwDiWx7Q+HZUBEyWgioHMwPUeiO FKiW71ItQgKLD8kF0O2e6Z55LuYilIEo/53TrVd/OA/Yc+cxCL1V0DRbPmvNBrRH cIBBCbmkCIiW/M5HYY4Xzm3Ab7V9ctgAKQS4zBKeDJIwkI5IdDPVHhOod3dEEK3a 8PQ6IXKLEn2CUaV7pU/07k2XSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAlD1rej 0KAqqjxTzY9K8i18T7S0MB8GA1UdIwQYMBaAFMRxpW7pTwW0N8Ce7g9EID+kWSc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JGMi81MDkwOTZBOEY2 QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJiUTN3Sjd1RDBRZ1A2UlpK elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIR2xidWxQQmJRM3dKN3VEMFFnUDZSWkp6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JGMi81MDkwOTZBOEY2QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJi UTN3Sjd1RDBRZ1A2UlpKelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp1PSrNgE523jPZstwhp8As3bAcPY389QCbk/12w9e7IH24ak0pHM9 TQNx778yWa7giV7wO7oa8ahoUPC0CAm5U6vVjsnyIqM2Ltcw9cgTfmGcfWaoAg7R RKUMiSBnHY8TiOEyHAtti+GW33kKQ9fHIY2nu7pLHwh/IAKjdhWGcH3vwv5QIOC7 Z5zRigtv2mdXTYX/oZltE+IAicfARuKcZSmWBzgLWIDPA2Qp1Yj27Y+q7i++JKco y+46Sd9UiRHsQSTUfvQXsZWi9Zo5XGzBei311cciVDBcTAKMN3gnwsNk3sbxDPfi xO0xzwkMtfmg92RqJWRHSWxPGzOMRcDD -----END CERTIFICATE-----Generated at Sun May 19 05:08:06 2024 by rpki-client on console-ams.rpki-client.org