$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft File: XcAwMzGJiu_bheTZFABriTdr7-E.mft (raw, json) Hash identifier: gk/CgCr6jEKDjLtfylSvaS1L43ZWOi7bAH9am1DsI/E= Subject key identifier: 62:08:C6:F9:77:AB:C5:60:4F:E9:D9:46:83:DC:7D:A9:6F:47:98:16 Authority key identifier: 5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 Certificate issuer: /CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Certificate serial: 05A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft Manifest number: 059A Signing time: Sun 19 May 2024 00:26:43 +0000 Manifest this update: Sun 19 May 2024 00:26:43 +0000 Manifest next update: Sun 26 May 2024 00:26:43 +0000 Files and hashes: 1: XcAwMzGJiu_bheTZFABriTdr7-E.crl (hash: y8X/tV71Y9U20SzEdX7WF4qsoaoOaMtWoAlcuROCQO4=) 2: 81E3F4ACBBDA11ED8FDB4E45C4F9AE02.roa (hash: cLgA7xnd/ORzlGyzEqpdvqynx6Azs/zgMFHJfS1P+08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1442 (0x5a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Validity Not Before: May 19 00:26:43 2024 GMT Not After : May 26 00:26:43 2024 GMT Subject: CN=66494743-e6b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:60:e9:34:eb:7e:b8:dd:be:f6:ae:b6:06:15: 16:2c:66:41:f4:bb:d3:49:45:88:23:4d:90:c6:82: f1:6a:c2:12:62:f4:fb:42:65:b1:b1:3d:17:b6:50: 99:3f:ab:c0:59:30:73:10:28:c7:a1:9b:a6:28:f9: 80:c5:10:0e:2e:67:ff:78:53:6c:9d:02:b7:ff:5e: 2b:17:25:94:dc:66:42:36:98:34:25:e3:91:66:34: 84:50:ff:77:de:f0:2f:60:d3:db:79:cc:7f:55:28: b7:0f:3c:70:e6:1a:a3:d5:5a:15:12:2f:09:1c:84: f0:c2:4c:50:f5:20:6b:9d:cd:b6:35:1b:dd:be:0b: f6:4d:ba:c2:17:9a:d6:f0:3b:91:34:87:e9:40:7d: 04:d9:9b:c9:0a:3a:75:46:fe:b6:48:39:1d:b6:1c: c4:c7:06:9c:fc:cd:ec:6b:94:f4:5a:49:99:4c:55: 48:3a:f4:c6:06:6f:ed:7e:13:08:13:fa:ac:7e:ca: 66:49:a1:30:71:29:f8:e9:2e:ed:18:05:6a:d4:3f: 98:45:e2:69:3e:38:b8:0a:f3:09:00:be:58:20:e0: 30:5c:74:30:cc:35:55:63:6a:e2:ed:03:a6:af:b4: 87:bc:22:b7:24:32:4d:82:e2:b8:d7:65:f2:7e:88: f9:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:08:C6:F9:77:AB:C5:60:4F:E9:D9:46:83:DC:7D:A9:6F:47:98:16 X509v3 Authority Key Identifier: keyid:5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:2e:a6:ba:7c:8a:cf:58:1b:82:39:34:79:64:8b:34:a6:7c: f4:0d:53:16:b2:e8:ca:5c:d4:81:12:c8:52:14:4f:34:3d:38: ae:61:c2:04:95:63:11:89:63:63:1e:e0:77:f6:93:56:28:fd: be:58:af:69:e4:20:d7:80:7d:ef:cd:93:94:14:0d:7a:79:dc: 6a:d6:c0:b7:d9:85:17:df:17:52:82:0b:64:49:34:af:ef:d5: a8:63:37:a4:a5:8a:4f:fe:24:22:62:6a:7d:37:17:23:1c:69: ff:2b:20:cd:05:4b:59:ab:28:6f:b9:e5:f8:80:3b:b6:37:8c: ef:0d:1e:bc:dd:ed:57:38:c8:25:07:a9:5b:0f:30:85:40:83: 05:89:da:b8:5e:45:56:96:b5:6d:3e:c7:9a:5d:da:f0:1d:1b: d9:cc:98:d0:a0:49:82:e7:38:f1:c7:db:7f:24:33:47:87:f4: 3e:67:b2:8b:af:55:4a:0e:e4:2c:b5:3e:1e:2b:b1:0b:fa:a6: d2:21:bb:2d:f8:82:f7:0f:0f:a4:33:9d:76:b0:10:98:e0:05: 21:59:3f:dc:a8:48:ef:5e:e6:55:4d:18:07:4f:ce:f3:be:bd: b5:0c:03:22:79:e9:bb:83:c0:ed:59:51:b5:9d:01:b0:9a:20: a4:d4:b0:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCRDQxMTAvBgNVBAUTKDVEQzAzMDMzMzE4OThBRUZEQjg1RTREOTE0MDA2Qjg5 Mzc2QkVGRTEwHhcNMjQwNTE5MDAyNjQzWhcNMjQwNTI2MDAyNjQzWjAYMRYwFAYD VQQDEw02NjQ5NDc0My1lNmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWDpNOt+uN2+9q62BhUWLGZB9LvTSUWII02QxoLxasISYvT7QmWxsT0XtlCZ P6vAWTBzECjHoZumKPmAxRAOLmf/eFNsnQK3/14rFyWU3GZCNpg0JeORZjSEUP93 3vAvYNPbecx/VSi3Dzxw5hqj1VoVEi8JHITwwkxQ9SBrnc22NRvdvgv2TbrCF5rW 8DuRNIfpQH0E2ZvJCjp1Rv62SDkdthzExwac/M3sa5T0WkmZTFVIOvTGBm/tfhMI E/qsfspmSaEwcSn46S7tGAVq1D+YReJpPji4CvMJAL5YIOAwXHQwzDVVY2ri7QOm r7SHvCK3JDJNguK412Xyfoj5QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGIIxvl3 q8VgT+nZRoPcfalvR5gWMB8GA1UdIwQYMBaAFF3AMDMxiYrv24Xk2RQAa4k3a+/h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JENC80RTg3QTQ2QTg2 QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1X2JoZVRaRkFCcmlUZHI3 LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjQXdNekdKaXVfYmhlVFpGQUJyaVRkcjctRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JENC80RTg3QTQ2QTg2QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1 X2JoZVRaRkFCcmlUZHI3LUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5Lqa6fIrPWBuCOTR5ZIs0pnz0DVMWsujKXNSBEshSFE80PTiuYcIE lWMRiWNjHuB39pNWKP2+WK9p5CDXgH3vzZOUFA16edxq1sC32YUX3xdSggtkSTSv 79WoYzekpYpP/iQiYmp9NxcjHGn/KyDNBUtZqyhvueX4gDu2N4zvDR683e1XOMgl B6lbDzCFQIMFidq4XkVWlrVtPseaXdrwHRvZzJjQoEmC5zjxx9t/JDNHh/Q+Z7KL r1VKDuQstT4eK7EL+qbSIbst+IL3Dw+kM512sBCY4AUhWT/cqEjvXuZVTRgHT87z vr21DAMieem7g8DtWVG1nQGwmiCk1LBe -----END CERTIFICATE-----Generated at Sun May 19 01:47:16 2024 by rpki-client on console-ams.rpki-client.org