$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft File: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft (raw, json) Hash identifier: lZevg19V79wymnuviEaKRUZ9H1z5lP248i7UX93dQSE= Subject key identifier: 71:5D:6E:43:36:07:2C:8C:01:9D:72:F6:9A:8B:07:30:19:2A:CC:C3 Authority key identifier: 5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 Certificate issuer: /CN=A91E4BD2/serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Certificate serial: 0836 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft Manifest number: 0831 Signing time: Sat 18 May 2024 21:44:55 +0000 Manifest this update: Sat 18 May 2024 21:44:55 +0000 Manifest next update: Sat 25 May 2024 21:44:55 +0000 Files and hashes: 1: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl (hash: qUEd0Ed95yLcNl1INgqwbf53qKNgeD24Sz+j+6QBAmc=) 2: A862F866AA3111EA9E08C324C4F9AE02.roa (hash: P6WUwOG3h2hLZW1yORkyhvXGUkpkZnArYZ915ZC7GaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2102 (0x836) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4BD2/serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Validity Not Before: May 18 21:44:55 2024 GMT Not After : May 25 21:44:55 2024 GMT Subject: CN=66492157-8d18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:51:9a:0a:19:85:76:3b:62:ca:a4:13:cc:e9: 06:26:d0:c1:2a:ae:36:84:3f:c6:14:68:ac:a9:af: c7:90:ea:78:f3:83:32:c8:c1:67:31:f3:11:9c:b3: 28:b6:47:e6:3b:63:d8:9b:d5:8f:58:a1:bc:c9:ef: d1:d7:32:7d:da:e1:20:54:ec:22:cb:af:4d:6b:5a: 87:c9:c4:29:b9:96:7f:23:63:c1:ae:3d:c6:ad:f3: 09:4b:f4:6b:e0:ab:82:38:14:cc:b5:cc:ed:ab:9a: eb:e4:89:cb:04:4e:a2:67:3f:e6:1e:b4:b8:66:00: b7:53:13:9a:90:0d:6f:70:35:05:4e:27:fa:b5:5c: bf:ff:75:9c:99:13:15:29:29:27:a5:86:27:70:5e: cb:b9:c7:ae:82:91:2f:2e:77:be:af:99:f2:c7:a7: fa:e0:31:66:90:d1:8a:74:80:6d:4d:9c:5e:00:15: 1d:1d:b9:1d:e5:3e:3b:ea:82:62:99:cf:8a:42:e7: fb:07:95:24:91:5f:08:26:a3:28:28:1d:45:75:0d: 5b:b8:f1:00:54:5c:d6:0a:f6:2a:d0:bb:d1:5b:a4: 04:1d:e1:9a:1f:2c:75:a5:b1:02:ba:76:93:fe:ef: 2a:30:bf:58:36:f3:03:a7:78:85:61:a4:1b:40:c9: 75:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:5D:6E:43:36:07:2C:8C:01:9D:72:F6:9A:8B:07:30:19:2A:CC:C3 X509v3 Authority Key Identifier: keyid:5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:2b:f2:86:65:56:af:34:17:bd:61:a7:08:26:5b:23:6b:e8: 73:c8:17:5c:95:76:ac:88:b1:a3:c6:2b:a6:37:06:3a:e9:a6: 29:d7:03:ec:57:af:78:e4:b9:fc:6f:01:51:f3:02:d9:03:b5: 1d:e5:92:22:f2:56:66:f8:1f:18:54:2c:f1:0d:38:ca:8a:3f: 02:60:59:69:ad:7a:57:a3:20:dc:54:74:e1:78:85:b7:f1:ce: f8:d6:c4:62:c1:6d:a9:e9:fe:4c:4f:f3:ec:0e:1b:d7:34:3a: 22:60:d2:03:b8:e5:60:3a:e8:18:b7:d0:07:bd:08:09:01:e6: 1e:1f:e1:b8:c8:78:80:d3:b7:38:7b:68:6b:6f:65:a2:a1:2d: 0b:07:88:35:06:20:d2:3f:1b:1e:22:42:e0:50:c9:4a:3e:49: 31:a4:1d:aa:c4:0f:8c:3c:68:15:4a:ad:d3:f5:19:b5:90:8f: a1:c2:74:ae:8e:6b:ee:90:b6:15:be:d7:9e:74:99:5e:1a:80: 9f:6f:6e:7c:54:24:fd:ad:e8:45:60:5f:6c:d4:f7:4e:fd:a7: 58:a9:19:fa:7a:39:27:56:6e:0d:a7:cd:f6:34:e8:2c:67:10: d4:34:4f:87:66:43:f2:fd:37:3d:59:6e:fb:5b:e1:52:c0:49: a7:bb:4f:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRCRDIxMTAvBgNVBAUTKDVEQ0E0NTI4QjlFNDBDODhFNDY3QTQzRkRDMTJCNzhG MkIzNTQ1RTMwHhcNMjQwNTE4MjE0NDU1WhcNMjQwNTI1MjE0NDU1WjAYMRYwFAYD VQQDEw02NjQ5MjE1Ny04ZDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1FGaChmFdjtiyqQTzOkGJtDBKq42hD/GFGisqa/HkOp484MyyMFnMfMRnLMo tkfmO2PYm9WPWKG8ye/R1zJ92uEgVOwiy69Na1qHycQpuZZ/I2PBrj3GrfMJS/Rr 4KuCOBTMtcztq5rr5InLBE6iZz/mHrS4ZgC3UxOakA1vcDUFTif6tVy//3WcmRMV KSknpYYncF7LuceugpEvLne+r5nyx6f64DFmkNGKdIBtTZxeABUdHbkd5T476oJi mc+KQuf7B5UkkV8IJqMoKB1FdQ1buPEAVFzWCvYq0LvRW6QEHeGaHyx1pbECunaT /u8qML9YNvMDp3iFYaQbQMl13QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFdbkM2 ByyMAZ1y9pqLBzAZKszDMB8GA1UdIwQYMBaAFF3KRSi55AyI5GekP9wSt48rNUXj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEJEMi9GNDBCMTE2QUFB MkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJamtaNlFfM0JLM2p5czFS ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjcEZLTG5rRElqa1o2UV8zQkszanlzMVJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEJEMi9GNDBCMTE2QUFBMkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJ amtaNlFfM0JLM2p5czFSZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4K/KGZVavNBe9YacIJlsja+hzyBdclXasiLGjxiumNwY66aYp1wPs V6945Ln8bwFR8wLZA7Ud5ZIi8lZm+B8YVCzxDTjKij8CYFlprXpXoyDcVHTheIW3 8c741sRiwW2p6f5MT/PsDhvXNDoiYNIDuOVgOugYt9AHvQgJAeYeH+G4yHiA07c4 e2hrb2WioS0LB4g1BiDSPxseIkLgUMlKPkkxpB2qxA+MPGgVSq3T9Rm1kI+hwnSu jmvukLYVvteedJleGoCfb258VCT9rehFYF9s1PdO/adYqRn6ejknVm4Np832NOgs ZxDUNE+HZkPy/Tc9WW77W+FSwEmnu098 -----END CERTIFICATE-----Generated at Sat May 18 22:28:01 2024 by rpki-client on console-ams.rpki-client.org