$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.mft File: X-7enTglQ_BRUn-lM9R6kXB35jI.mft (raw, json) Hash identifier: ezDh0UmQVdjQ9dliNQA5dxoceIG9NTIcUU03JJ1HSsU= Subject key identifier: D2:D4:3E:CD:08:50:1D:50:14:DE:4A:FF:48:F4:03:35:DD:3A:CE:1A Authority key identifier: 5F:EE:DE:9D:38:25:43:F0:51:52:7F:A5:33:D4:7A:91:70:77:E6:32 Certificate issuer: /CN=A91EA198/serialNumber=5FEEDE9D382543F051527FA533D47A917077E632 Certificate serial: 1D44 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.mft Manifest number: 1CCF Signing time: Sat 18 May 2024 16:33:15 +0000 Manifest this update: Sat 18 May 2024 16:33:15 +0000 Manifest next update: Sat 25 May 2024 16:33:15 +0000 Files and hashes: 1: X-7enTglQ_BRUn-lM9R6kXB35jI.crl (hash: o17KLaIGggmqG4nQLi79X8klfa6tDKNgbanLUa/CYig=) 2: 1A0D44FA3B5411EABAC6EE18C4F9AE02.roa (hash: vE1akHBF+FqKvgFH1UFzMveeA3YQT8LvEndWX1RJBkY=) 3: B8BA4E603B5211EAA0D53F12C4F9AE02.roa (hash: 0bWEqN9ytQr36qR+WzvWjllXD57C8hkgYRTXHIhrysY=) 4: 4EA15AE44FD811ED8AEB0282C4F9AE02.roa (hash: pqIvgKVthk5LX/Ic+775j1f7FgbBbxGd5VIUAyPa1fQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.crl rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7492 (0x1d44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198/serialNumber=5FEEDE9D382543F051527FA533D47A917077E632 Validity Not Before: May 18 16:33:15 2024 GMT Not After : May 25 16:33:15 2024 GMT Subject: CN=6648d84b-ca82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:84:28:6b:2d:dc:7f:43:e5:9a:34:e5:31:2e: 6d:dd:ab:83:7a:86:60:3a:fa:34:fa:48:f0:c5:93: b3:f5:fc:db:72:33:0f:24:a4:67:6d:22:02:e9:ed: 51:63:09:1e:d3:01:69:cc:61:4b:c3:86:45:84:30: 69:db:e5:3e:95:0e:1f:39:c6:93:c9:2d:25:84:12: db:87:31:e5:63:cb:93:4e:f0:de:c1:3e:ca:bc:65: 7e:21:f7:42:98:17:60:7e:60:06:15:8c:44:0a:b8: 4c:87:dc:f2:2e:00:43:44:33:08:ee:92:00:1b:33: df:6c:d2:c5:6d:e6:4a:5b:54:29:fe:e9:58:af:47: e8:e6:93:01:a1:d9:4e:98:9b:b8:73:c3:fa:f5:f9: 51:60:cf:09:4c:7b:4e:11:5d:77:d0:3f:f4:fa:67: c5:9b:30:d1:38:e2:16:35:23:33:a6:e0:a4:c5:f6: 45:32:d5:d2:40:f0:4e:fe:b1:67:93:42:3d:53:ab: c3:e0:39:63:9d:f4:4f:a7:01:da:e0:e4:db:ea:9b: 79:a6:41:d3:7e:60:98:3e:e1:48:a3:67:cb:79:bf: fe:6e:9e:8a:30:6a:cc:c0:29:9c:82:23:c7:9f:04: 10:43:8f:b6:26:3f:01:c1:dd:f5:45:ce:7c:5b:de: 40:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:D4:3E:CD:08:50:1D:50:14:DE:4A:FF:48:F4:03:35:DD:3A:CE:1A X509v3 Authority Key Identifier: keyid:5F:EE:DE:9D:38:25:43:F0:51:52:7F:A5:33:D4:7A:91:70:77:E6:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:b2:e5:a2:94:92:58:42:b7:05:f0:c7:66:8b:95:09:55:80: ad:58:ae:58:4a:eb:2c:5d:7d:ac:6a:9a:2c:72:3c:9d:7e:23: 10:62:52:71:da:25:ab:ef:16:a1:80:3a:87:81:94:52:d3:cb: fe:44:3d:92:88:1f:4a:b3:9b:14:78:aa:3e:c4:94:0c:7e:e9: 6f:76:7c:b4:61:81:6a:a9:67:11:90:37:7a:94:f1:4b:6d:55: ed:dc:26:1c:12:4a:f9:96:be:ec:24:3e:cf:3e:b8:ba:a5:fd: 49:a3:36:f4:94:98:cf:65:37:8e:4c:c4:42:0c:c5:3c:02:61: 92:d6:39:ba:21:c4:84:b1:28:68:89:9c:dd:90:eb:45:50:a7: 81:56:b8:ee:98:a7:c9:1e:3e:97:1f:0c:61:9f:87:6e:83:3c: c6:b8:06:f3:6a:58:be:21:aa:16:c3:ce:58:14:2f:d9:29:50: 57:1a:06:cb:35:ec:76:5e:af:ce:f6:8f:3c:dd:ff:1f:e9:c9: c6:a5:84:cb:93:48:4c:d8:f7:47:1c:0b:e7:a9:44:69:cc:eb: b5:8d:3d:13:4d:b9:fd:06:4f:3f:71:d1:0e:38:13:f3:63:c7: 26:f2:99:e1:95:e0:bf:7e:83:47:52:41:2a:34:6a:04:96:ce: e5:03:11:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDVGRUVERTlEMzgyNTQzRjA1MTUyN0ZBNTMzRDQ3QTkx NzA3N0U2MzIwHhcNMjQwNTE4MTYzMzE1WhcNMjQwNTI1MTYzMzE1WjAYMRYwFAYD VQQDEw02NjQ4ZDg0Yi1jYTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4oQoay3cf0PlmjTlMS5t3auDeoZgOvo0+kjwxZOz9fzbcjMPJKRnbSIC6e1R Ywke0wFpzGFLw4ZFhDBp2+U+lQ4fOcaTyS0lhBLbhzHlY8uTTvDewT7KvGV+IfdC mBdgfmAGFYxECrhMh9zyLgBDRDMI7pIAGzPfbNLFbeZKW1Qp/ulYr0fo5pMBodlO mJu4c8P69flRYM8JTHtOEV130D/0+mfFmzDROOIWNSMzpuCkxfZFMtXSQPBO/rFn k0I9U6vD4DljnfRPpwHa4OTb6pt5pkHTfmCYPuFIo2fLeb/+bp6KMGrMwCmcgiPH nwQQQ4+2Jj8Bwd31Rc58W95A5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLUPs0I UB1QFN5K/0j0AzXdOs4aMB8GA1UdIwQYMBaAFF/u3p04JUPwUVJ/pTPUepFwd+Yy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC9BRDYyOTIyMkI1 MjUxMUU2QUY2Qzg5NUVDNEY5QUUwMi9YLTdlblRnbFFfQlJVbi1sTTlSNmtYQjM1 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1gtN2VuVGdsUV9CUlVuLWxNOVI2a1hCMzVqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTE5OC9BRDYyOTIyMkI1MjUxMUU2QUY2Qzg5NUVDNEY5QUUwMi9YLTdlblRnbFFf QlJVbi1sTTlSNmtYQjM1akkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTsuWilJJYQrcF8Mdmi5UJVYCtWK5YSussXX2saposcjydfiMQYlJx 2iWr7xahgDqHgZRS08v+RD2SiB9Ks5sUeKo+xJQMfulvdny0YYFqqWcRkDd6lPFL bVXt3CYcEkr5lr7sJD7PPri6pf1Jozb0lJjPZTeOTMRCDMU8AmGS1jm6IcSEsSho iZzdkOtFUKeBVrjumKfJHj6XHwxhn4dugzzGuAbzali+IaoWw85YFC/ZKVBXGgbL Nex2Xq/O9o883f8f6cnGpYTLk0hM2PdHHAvnqURpzOu1jT0TTbn9Bk8/cdEOOBPz Y8cm8pnhleC/foNHUkEqNGoEls7lAxFq -----END CERTIFICATE-----Generated at Sat May 18 17:20:36 2024 by rpki-client on console-ams.rpki-client.org