$ rpki-client -vvf rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft File: XDlbosoKv2WIhyaHTHgktpt4mZU.mft (raw, json) Hash identifier: jmF9+/bkpvwfFZQJZjdvIG8JUETfI8hCaNeUnW2kRNQ= Subject key identifier: 86:73:51:CC:37:08:A1:AE:1C:3D:77:E0:D7:AA:A0:C1:DD:F7:7A:2F Authority key identifier: 5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 Certificate issuer: /CN=A91E66E5/serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Certificate serial: 0D85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft Manifest number: 0D79 Signing time: Sat 18 May 2024 18:35:26 +0000 Manifest this update: Sat 18 May 2024 18:35:25 +0000 Manifest next update: Sat 25 May 2024 18:35:25 +0000 Files and hashes: 1: XDlbosoKv2WIhyaHTHgktpt4mZU.crl (hash: VTk1/WbNI0NELWzIGxE+FAcilIikUkmhvBPtTknlZo0=) 2: AECDA1B0448F11EDACC30815C4F9AE02.roa (hash: 75VrOzcpDab1F7Wv+WNG5U/RAvlmTKHuKdZ/I9KgDv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3461 (0xd85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E66E5/serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Validity Not Before: May 18 18:35:25 2024 GMT Not After : May 25 18:35:25 2024 GMT Subject: CN=6648f4ee-18bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ef:92:82:13:b3:43:00:a5:2a:0c:30:37:94: d3:86:fb:57:04:4a:53:9a:45:01:f4:28:eb:18:87: 4f:47:1c:7a:1f:30:b7:06:53:72:16:09:f7:5b:36: e7:b2:fa:cb:d4:0f:ca:09:8e:e5:b8:53:46:0f:86: 5e:25:3f:93:b7:67:21:76:e8:bb:94:3b:d9:3c:0e: d8:58:ef:a9:a5:21:3f:25:7d:89:62:f6:01:6b:2d: 8c:b4:34:7c:10:2d:41:bc:66:03:27:19:5c:97:be: 17:a7:4e:a9:49:db:dd:a7:fa:20:a2:7b:d3:7c:f5: ad:94:76:0a:cf:8f:b9:06:c2:9e:ec:58:e5:22:73: c7:dc:80:bb:e5:25:59:89:b3:9d:fb:91:e2:34:47: d4:a0:5a:dc:c6:e9:fa:9e:31:db:45:69:b6:f5:e4: 14:71:48:39:a3:fe:6b:08:47:1b:05:e8:44:49:37: ba:64:8f:eb:df:74:bd:42:69:b8:4f:2f:cf:dc:2d: 5d:bb:e5:07:6c:5b:88:45:78:a7:c1:95:bf:c3:66: ba:68:9d:dd:38:93:cf:3d:1f:ea:e1:9e:fd:e3:ae: 11:6a:24:33:46:bd:98:0f:17:1c:68:47:0d:d1:fc: 5d:c3:0a:0b:60:75:33:dd:71:85:53:09:99:c8:a1: 39:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:73:51:CC:37:08:A1:AE:1C:3D:77:E0:D7:AA:A0:C1:DD:F7:7A:2F X509v3 Authority Key Identifier: keyid:5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:87:75:af:a1:38:c8:ce:aa:63:fd:1c:63:89:41:97:ef:31: 4e:0c:ba:db:9d:1c:c4:e3:84:b9:c5:04:af:30:5b:23:69:f7: f9:87:60:fe:4e:7b:50:28:a0:2b:dc:3b:c1:c3:47:32:c6:13: 5a:1c:e3:1c:8c:93:8f:22:f3:13:4a:46:6f:4e:d5:ae:50:a5: 6a:31:4a:87:18:ee:a1:15:c3:3b:8d:7c:81:12:ed:a9:99:75: f9:c9:d6:ed:27:89:4b:f8:23:1e:44:ca:01:d8:7f:4b:2d:76: 02:50:3e:98:85:dd:f4:74:9b:3a:1e:8b:8d:26:36:a8:36:75: b7:ff:38:22:53:ec:92:f8:62:cd:77:1e:52:44:c9:2c:ad:e6: 90:29:06:bc:d5:05:fd:f4:e2:9d:d9:db:36:d5:07:96:cc:58: 7e:03:83:cf:3a:7c:ec:c5:67:cf:3c:27:80:7c:fc:3b:de:a9: e4:cc:52:72:aa:4e:32:af:71:97:de:ce:50:a6:d3:6b:1b:54: 06:0b:d3:ae:9b:5d:f7:59:c4:68:d5:a9:14:6e:b3:cd:16:9a: 78:5f:5b:66:03:3d:71:1b:ac:39:92:af:18:1c:17:3b:4e:8b: 7e:cf:48:1e:bf:d1:e4:a8:36:f4:c3:ac:b8:b8:0b:4b:47:1a: 17:b7:68:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY2RTUxMTAvBgNVBAUTKDVDMzk1QkEyQ0EwQUJGNjU4ODg3MjY4NzRDNzgyNEI2 OUI3ODk5OTUwHhcNMjQwNTE4MTgzNTI1WhcNMjQwNTI1MTgzNTI1WjAYMRYwFAYD VQQDEw02NjQ4ZjRlZS0xOGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu++SghOzQwClKgwwN5TThvtXBEpTmkUB9CjrGIdPRxx6HzC3BlNyFgn3Wzbn svrL1A/KCY7luFNGD4ZeJT+Tt2chdui7lDvZPA7YWO+ppSE/JX2JYvYBay2MtDR8 EC1BvGYDJxlcl74Xp06pSdvdp/ogonvTfPWtlHYKz4+5BsKe7FjlInPH3IC75SVZ ibOd+5HiNEfUoFrcxun6njHbRWm29eQUcUg5o/5rCEcbBehESTe6ZI/r33S9Qmm4 Ty/P3C1du+UHbFuIRXinwZW/w2a6aJ3dOJPPPR/q4Z79464RaiQzRr2YDxccaEcN 0fxdwwoLYHUz3XGFUwmZyKE5pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIZzUcw3 CKGuHD134NeqoMHd93ovMB8GA1UdIwQYMBaAFFw5W6LKCr9liIcmh0x4JLabeJmV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjZFNS81NjQzMDU4NkEy NzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3YyV0loeWFIVEhna3RwdDRt WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEbGJvc29LdjJXSWh5YUhUSGdrdHB0NG1aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjZFNS81NjQzMDU4NkEyNzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3Yy V0loeWFIVEhna3RwdDRtWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7h3WvoTjIzqpj/RxjiUGX7zFODLrbnRzE44S5xQSvMFsjaff5h2D+ TntQKKAr3DvBw0cyxhNaHOMcjJOPIvMTSkZvTtWuUKVqMUqHGO6hFcM7jXyBEu2p mXX5ydbtJ4lL+CMeRMoB2H9LLXYCUD6Yhd30dJs6HouNJjaoNnW3/zgiU+yS+GLN dx5SRMksreaQKQa81QX99OKd2ds21QeWzFh+A4PPOnzsxWfPPCeAfPw73qnkzFJy qk4yr3GX3s5QptNrG1QGC9Oum133WcRo1akUbrPNFpp4X1tmAz1xG6w5kq8YHBc7 Tot+z0gev9HkqDb0w6y4uAtLRxoXt2gu -----END CERTIFICATE-----Generated at Sat May 18 19:21:05 2024 by rpki-client on console-fra.rpki-client.org