$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft File: XlEJvjS4HAy74OQ1mneBpGJLn80.mft (raw, json) Hash identifier: /+/vnQMKCsbzLJN1ivCgjWP++xcsrLCkQnWhN2cKr+0= Subject key identifier: 35:D0:B6:1E:0F:BE:FB:44:7F:61:21:0B:ED:99:E0:5A:F7:5F:55:4C Authority key identifier: 5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD Certificate issuer: /CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Certificate serial: 11F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft Manifest number: 45FB Signing time: Sat 18 May 2024 14:22:24 +0000 Manifest this update: Sat 18 May 2024 14:22:23 +0000 Manifest next update: Sat 25 May 2024 14:22:23 +0000 Files and hashes: 1: XlEJvjS4HAy74OQ1mneBpGJLn80.crl (hash: WGP21oqSxGsGnMXexq1HYa4vBNI6MBEVGa3gq36xFbM=) 2: C5FA430E179711EDB9008D18C4F9AE02.roa (hash: B1hjBTYwx940cc+Ga3+hdRGNrla7mnw/WcZJINp2Si4=) 3: 12300E80ECD911EEB21F7B7FC4F9AE02.roa (hash: 0glwFJX1i+64ukwswEdh5zuYeLvunHaXx0SdaO9iu3k=) 4: 792023A8E0DD11EE86DB926AC4F9AE02.roa (hash: DKJ8iu+zuHS7KwrheI8Sl8n5VdUWE4MJD7AtLu88Mok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4598 (0x11f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Validity Not Before: May 18 14:22:23 2024 GMT Not After : May 25 14:22:23 2024 GMT Subject: CN=6648b99f-e9a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b0:41:b8:31:c5:90:79:67:db:dd:7c:bb:1e: e7:a9:11:fc:58:ad:cb:c7:58:e1:9c:83:a1:d7:65: 37:de:12:f7:de:ed:0c:e3:68:fb:15:0c:7c:03:c0: 61:ad:cc:60:1f:e4:00:fe:ac:87:68:71:fd:4b:59: 6d:7c:aa:75:d5:86:11:12:e7:9e:ca:6a:f4:cc:53: 97:97:83:37:c3:7f:3d:94:3f:3b:9e:41:05:5f:b8: 0f:ac:da:38:e9:4f:f4:c2:d9:2b:09:3f:af:99:fb: ce:3c:ec:0f:17:06:ab:ce:c8:78:0e:6d:7a:d4:55: c4:88:ee:f5:e4:02:80:7a:ca:85:44:0c:b3:d2:a5: bc:b4:59:41:59:fc:f4:53:51:ea:43:45:28:59:34: 13:a2:42:b8:dc:d1:82:79:84:7c:eb:66:bc:09:57: 09:67:9c:ec:0b:55:96:75:0b:ea:a3:7f:13:ab:4b: 96:a3:8b:09:46:dc:97:7e:fa:d3:86:63:26:86:4b: 97:6e:ba:d6:11:33:be:63:7d:47:ff:59:21:ee:a0: 9a:e7:6b:7b:9b:8a:4e:8f:75:a7:50:5e:ed:de:8f: 8a:55:35:ce:0f:4b:31:77:7c:32:04:3c:94:42:0a: 4c:2f:bd:80:9b:54:20:05:31:3e:49:80:f7:d4:3e: f3:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:D0:B6:1E:0F:BE:FB:44:7F:61:21:0B:ED:99:E0:5A:F7:5F:55:4C X509v3 Authority Key Identifier: keyid:5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:70:af:fb:c0:ae:09:6e:73:52:69:e1:97:23:3c:9f:d0:bb: f5:17:63:ed:b8:9f:02:3e:1e:eb:22:d1:47:71:c0:bc:06:ce: ac:42:b0:07:5a:ef:4e:76:2f:77:0f:b7:a5:96:6c:36:76:87: 56:f3:ad:b7:46:c8:a4:52:87:f8:9e:6a:db:91:67:b5:41:16: f7:95:ca:e8:e6:a1:83:56:20:d7:ca:1a:d0:24:72:83:85:1e: 73:9d:ce:03:33:e9:21:88:32:4a:6d:b0:f4:dc:d6:fa:bb:50: 27:6f:e0:8b:5a:1f:1c:c3:7d:7e:e5:2d:b8:a5:fa:f8:68:76: 20:a6:ba:01:71:51:20:ae:d1:00:67:23:cc:4e:f1:4e:15:0d: c0:57:6d:70:7d:96:bf:62:8a:20:38:20:6d:00:91:5d:e0:2e: 80:ae:30:34:1c:48:09:97:2b:67:fc:1a:c0:62:a5:dd:9c:ec: fe:f9:6d:41:d0:70:b3:4d:a1:68:0b:26:5a:e1:85:34:33:78: 2c:5a:52:16:97:95:1e:45:66:9e:be:38:82:18:5b:d2:ea:67: b6:3e:63:d6:08:fb:ca:35:ec:a5:74:32:bd:0d:f4:9c:6a:b0: ee:62:08:be:d8:26:21:60:1c:61:ee:d1:c8:a5:ce:01:27:f9: 10:29:1b:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDVFNTEwOUJFMzRCODFDMENCQkUwRTQzNTlBNzc4MUE0 NjI0QjlGQ0QwHhcNMjQwNTE4MTQyMjIzWhcNMjQwNTI1MTQyMjIzWjAYMRYwFAYD VQQDEw02NjQ4Yjk5Zi1lOWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLBBuDHFkHln2918ux7nqRH8WK3Lx1jhnIOh12U33hL33u0M42j7FQx8A8Bh rcxgH+QA/qyHaHH9S1ltfKp11YYREueeymr0zFOXl4M3w389lD87nkEFX7gPrNo4 6U/0wtkrCT+vmfvOPOwPFwarzsh4Dm161FXEiO715AKAesqFRAyz0qW8tFlBWfz0 U1HqQ0UoWTQTokK43NGCeYR862a8CVcJZ5zsC1WWdQvqo38Tq0uWo4sJRtyXfvrT hmMmhkuXbrrWETO+Y31H/1kh7qCa52t7m4pOj3WnUF7t3o+KVTXOD0sxd3wyBDyU QgpML72Am1QgBTE+SYD31D7zMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDXQth4P vvtEf2EhC+2Z4Fr3X1VMMB8GA1UdIwQYMBaAFF5RCb40uBwMu+DkNZp3gaRiS5/N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8wQzZBMEM5RTFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhBeTc0T1ExbW5lQnBHSkxu ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hsRUp2alM0SEF5NzRPUTFtbmVCcEdKTG44MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8wQzZBMEM5RTFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhB eTc0T1ExbW5lQnBHSkxuODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBScK/7wK4JbnNSaeGXIzyf0Lv1F2PtuJ8CPh7rItFHccC8Bs6sQrAH Wu9Odi93D7ellmw2dodW8623RsikUof4nmrbkWe1QRb3lcro5qGDViDXyhrQJHKD hR5znc4DM+khiDJKbbD03Nb6u1Anb+CLWh8cw31+5S24pfr4aHYgproBcVEgrtEA ZyPMTvFOFQ3AV21wfZa/YoogOCBtAJFd4C6ArjA0HEgJlytn/BrAYqXdnOz++W1B 0HCzTaFoCyZa4YU0M3gsWlIWl5UeRWaevjiCGFvS6me2PmPWCPvKNeyldDK9DfSc arDuYgi+2CYhYBxh7tHIpc4BJ/kQKRvO -----END CERTIFICATE-----Generated at Sat May 18 15:26:07 2024 by rpki-client on console-fra.rpki-client.org