$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.mft File: XKcmhHc2ig8SXvQrkg12wnEpzCs.mft (raw, json) Hash identifier: f1h7SuHmKGbIZxWYsZ2CudqblPgx9q+D3HDFg6Ph6ZQ= Subject key identifier: 8F:84:62:7E:9F:67:CE:FC:3C:6A:27:39:DC:55:61:E8:B3:5E:EB:CD Authority key identifier: 5C:A7:26:84:77:36:8A:0F:12:5E:F4:2B:92:0D:76:C2:71:29:CC:2B Certificate issuer: /CN=A91EA742/serialNumber=5CA7268477368A0F125EF42B920D76C27129CC2B Certificate serial: 3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKcmhHc2ig8SXvQrkg12wnEpzCs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.mft Manifest number: 3E Signing time: Fri 31 May 2024 09:08:49 +0000 Manifest this update: Fri 31 May 2024 09:08:49 +0000 Manifest next update: Fri 07 Jun 2024 09:08:49 +0000 Files and hashes: 1: XKcmhHc2ig8SXvQrkg12wnEpzCs.crl (hash: xllIgpCgjjuidhCXJHIFP6TDLF0NusCmUvjqQER/y+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.crl rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKcmhHc2ig8SXvQrkg12wnEpzCs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA742/serialNumber=5CA7268477368A0F125EF42B920D76C27129CC2B Validity Not Before: May 31 09:08:49 2024 GMT Not After : Jun 7 09:08:49 2024 GMT Subject: CN=665993a1-26fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c9:72:b3:1d:75:a8:d1:f1:ad:92:ce:8d:b2: 39:59:9f:7b:be:f4:1b:7b:06:2f:c1:b0:1b:35:ce: ac:83:6a:71:9a:79:39:7b:88:a4:3f:83:92:7d:d3: 5c:a7:77:d5:39:d7:e5:1c:68:07:f6:0f:88:8e:34: 04:3e:66:7f:d9:c1:fe:c7:bd:1d:8e:d8:1a:9e:1e: 20:6b:1b:3c:2c:1a:88:45:6f:92:16:db:5f:c5:f7: 3f:70:93:2f:d3:d5:c6:b3:a2:d9:36:23:9e:70:e4: ef:65:2f:7e:d4:9f:df:14:86:36:7b:39:4d:ef:c6: 6d:cf:49:54:8b:e7:68:c8:50:8f:1b:f3:ad:2d:80: ba:91:c4:94:ac:4b:db:29:c3:e7:e5:c5:f5:0c:6e: 4d:be:54:75:94:f5:5c:84:e6:55:6d:78:c8:34:67: e2:8c:1e:a5:43:bb:bf:62:7f:d1:23:2c:64:a2:1f: 8e:b9:12:3d:34:88:72:ab:2d:87:ac:c7:a7:27:b8: 96:fd:78:40:f2:b7:43:aa:c2:aa:6c:a0:9c:4d:63: aa:42:da:ea:dd:52:25:c6:44:a5:1b:d5:a1:70:36: 8e:36:cb:6f:83:34:73:ad:e6:5c:f1:43:20:fe:e7: d7:08:dd:a8:df:c5:cf:da:87:f2:8f:18:f6:88:44: 03:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:84:62:7E:9F:67:CE:FC:3C:6A:27:39:DC:55:61:E8:B3:5E:EB:CD X509v3 Authority Key Identifier: keyid:5C:A7:26:84:77:36:8A:0F:12:5E:F4:2B:92:0D:76:C2:71:29:CC:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKcmhHc2ig8SXvQrkg12wnEpzCs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:99:90:77:19:9f:3c:1b:06:1f:45:f2:6b:ee:5d:be:f9:91: 3a:ac:f4:1b:f2:30:4e:7b:41:ed:83:50:ef:b9:64:9b:8a:66: 1b:7d:e2:09:e1:9e:c6:50:69:5f:59:47:0d:0a:9b:08:a7:d4: 43:0a:6c:b5:4d:31:fb:26:76:35:5b:8e:2e:a4:91:88:92:e0: 23:3b:6f:13:3d:fd:3a:6f:01:bf:bd:61:ed:3d:ac:57:02:f5: e9:5f:1d:f0:d1:b6:26:fc:e9:be:81:84:24:11:c8:f5:6b:28: f8:d6:1d:e5:7d:e2:34:38:d5:ef:8e:8d:01:70:50:d4:f9:e9: 20:65:8b:c3:2e:6c:0d:ee:76:57:5f:0b:7f:36:41:a6:d2:23: 44:82:86:e6:2a:ca:96:1c:58:34:64:36:0b:9b:1a:b9:38:30: 69:1c:a0:61:56:bd:af:98:58:3f:c0:8e:cb:3a:1f:b3:b2:1b: 5c:02:be:fc:38:ae:c1:11:d8:6d:df:ba:c2:c9:61:3b:13:f6: 95:bd:0c:07:a9:d8:06:86:45:58:35:42:19:fb:05:fb:bc:2f: 84:90:92:7d:0f:7e:6b:89:1d:8d:11:aa:30:88:71:99:12:88: 76:70:b1:d2:e4:90:a7:ac:61:e6:29:41:13:5e:e9:0e:7d:7d: 66:ab:d0:8f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTc0MjExMC8GA1UEBRMoNUNBNzI2ODQ3NzM2OEEwRjEyNUVGNDJCOTIwRDc2QzI3 MTI5Q0MyQjAeFw0yNDA1MzEwOTA4NDlaFw0yNDA2MDcwOTA4NDlaMBgxFjAUBgNV BAMTDTY2NTk5M2ExLTI2ZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWyXKzHXWo0fGtks6NsjlZn3u+9Bt7Bi/BsBs1zqyDanGaeTl7iKQ/g5J901yn d9U51+UcaAf2D4iONAQ+Zn/Zwf7HvR2O2BqeHiBrGzwsGohFb5IW21/F9z9wky/T 1cazotk2I55w5O9lL37Un98UhjZ7OU3vxm3PSVSL52jIUI8b860tgLqRxJSsS9sp w+flxfUMbk2+VHWU9VyE5lVteMg0Z+KMHqVDu79if9EjLGSiH465Ej00iHKrLYes x6cnuJb9eEDyt0OqwqpsoJxNY6pC2urdUiXGRKUb1aFwNo42y2+DNHOt5lzxQyD+ 59cI3ajfxc/ah/KPGPaIRAO1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUj4Rifp9n zvw8aic53FVh6LNe680wHwYDVR0jBBgwFoAUXKcmhHc2ig8SXvQrkg12wnEpzCsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBNzQyL0RCQThBNUUyQzA1 NjExRUU5NzE1NzgxMEM0RjlBRTAyL1hLY21oSGMyaWc4U1h2UXJrZzEyd25FcHpD cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWEtjbWhIYzJpZzhTWHZRcmtnMTJ3bkVwekNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB NzQyL0RCQThBNUUyQzA1NjExRUU5NzE1NzgxMEM0RjlBRTAyL1hLY21oSGMyaWc4 U1h2UXJrZzEyd25FcHpDcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMaZkHcZnzwbBh9F8mvuXb75kTqs9BvyME57Qe2DUO+5ZJuKZht94gnh nsZQaV9ZRw0Kmwin1EMKbLVNMfsmdjVbji6kkYiS4CM7bxM9/TpvAb+9Ye09rFcC 9elfHfDRtib86b6BhCQRyPVrKPjWHeV94jQ41e+OjQFwUNT56SBli8MubA3udldf C382QabSI0SChuYqypYcWDRkNgubGrk4MGkcoGFWva+YWD/Ajss6H7OyG1wCvvw4 rsER2G3fusLJYTsT9pW9DAep2AaGRVg1Qhn7Bfu8L4SQkn0PfmuJHY0RqjCIcZkS iHZwsdLkkKesYeYpQRNe6Q59fWar0I8= -----END CERTIFICATE-----Generated at Fri May 31 10:02:46 2024 by rpki-client on console-ams.rpki-client.org