$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: s2xcUvOAKR+xKtWAnapVlx0M0gB1fAide110sqUGdIM= Subject key identifier: 18:A9:84:7A:7B:FA:3B:1D:99:5F:76:BC:E1:2C:EF:ED:B0:79:57:1B Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 2447 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 2447 Signing time: Sat 18 May 2024 14:36:07 +0000 Manifest this update: Sat 18 May 2024 14:36:06 +0000 Manifest next update: Sat 25 May 2024 14:36:06 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: Iv8HP8z/Ff6nb2oeCJea2wcq0Pv4msvt3FcmHM0uTwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:36:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9287 (0x2447) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: May 18 14:36:06 2024 GMT Not After : May 25 14:36:06 2024 GMT Subject: CN=6648bcd6-306c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ad:ca:fd:4b:a9:cc:fd:e2:67:35:a5:ed:3b: c3:31:d1:98:52:f9:7c:55:6c:06:80:54:41:8c:50: 5d:1a:c4:96:ad:93:7b:dd:6a:3d:81:8a:ac:9f:a7: 95:60:58:a1:5c:5c:a4:c8:1c:49:8b:b6:05:16:7d: 07:d1:57:d6:e4:2c:c5:a2:6e:5f:bd:69:19:33:a9: 68:6b:82:39:bb:79:71:1a:2f:47:e3:d6:00:a9:21: ec:41:96:e7:be:77:7c:47:4b:94:d1:4f:e8:78:7b: 97:c9:a7:3b:f4:3f:1d:c0:10:1c:5b:2f:1f:98:ed: 0b:27:83:02:d3:c8:4a:51:43:83:fe:f9:58:25:50: c7:c9:0d:e0:9a:e9:9a:3a:ab:6b:65:8d:d0:e6:8a: 1e:37:a4:df:df:12:af:ff:57:2f:2f:32:1d:45:65: 4b:15:4c:89:b4:0b:56:2c:5b:ff:37:c3:e4:98:9e: 55:ac:a0:54:89:67:ff:4b:f7:20:7e:24:ee:e3:5e: 1c:e9:af:3b:39:81:b3:e4:d2:c3:87:d9:70:b4:4d: c8:cd:b1:a2:f2:94:1b:fd:0b:eb:59:57:5e:f7:c7: 92:90:fc:b1:2b:2e:b0:74:4d:8b:a6:89:ba:1b:f0: 73:3f:ee:ce:dc:b9:10:c2:d3:ee:3a:78:07:f0:71: 1a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:A9:84:7A:7B:FA:3B:1D:99:5F:76:BC:E1:2C:EF:ED:B0:79:57:1B X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:1f:b5:dc:5a:2d:16:a4:65:53:15:33:4a:e6:35:93:aa:a0: 78:0f:b1:4b:9d:11:ba:f0:27:59:3c:e6:e0:9f:80:ae:b5:fa: ed:6a:96:be:f3:b7:be:fc:12:e5:f3:04:1d:b8:bd:f7:2d:6c: 1b:d5:3c:76:bd:de:62:ab:3c:ea:8a:98:a5:12:ce:90:fd:e5: 74:69:11:f9:8b:d6:cc:e4:5d:78:f1:60:6f:b5:eb:97:10:0d: 3f:47:4d:cc:1a:d1:ff:c7:28:fa:fb:c7:a7:fc:9f:b7:76:77: cf:7a:18:38:6f:d7:3e:f8:9d:56:4b:b5:d3:11:55:5a:e7:9b: db:4b:63:bc:9a:f1:ff:fa:39:8d:7c:a4:32:fe:62:5e:3d:88: e2:d2:e2:51:cf:48:b1:c2:43:e9:97:f9:f3:5e:5b:7a:4e:ff: 22:d6:11:d1:a5:9c:83:d2:b4:f2:4a:ab:c8:a8:07:a0:23:15: e3:70:62:93:96:bf:17:9b:65:90:f6:8f:1f:0f:43:bd:37:f6: e2:1e:c2:74:cc:c2:41:6c:c0:8f:5c:ae:73:b8:56:7e:51:9e: 06:31:33:c3:78:b3:41:cf:30:44:38:93:db:9e:82:7d:98:53: 16:c8:14:6f:4d:43:c9:77:9f:7a:9f:20:eb:5d:f0:0a:83:85: db:b8:e2:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjQwNTE4MTQzNjA2WhcNMjQwNTI1MTQzNjA2WjAYMRYwFAYD VQQDEw02NjQ4YmNkNi0zMDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArK3K/UupzP3iZzWl7TvDMdGYUvl8VWwGgFRBjFBdGsSWrZN73Wo9gYqsn6eV YFihXFykyBxJi7YFFn0H0VfW5CzFom5fvWkZM6loa4I5u3lxGi9H49YAqSHsQZbn vnd8R0uU0U/oeHuXyac79D8dwBAcWy8fmO0LJ4MC08hKUUOD/vlYJVDHyQ3gmuma OqtrZY3Q5ooeN6Tf3xKv/1cvLzIdRWVLFUyJtAtWLFv/N8PkmJ5VrKBUiWf/S/cg fiTu414c6a87OYGz5NLDh9lwtE3IzbGi8pQb/QvrWVde98eSkPyxKy6wdE2Lpom6 G/BzP+7O3LkQwtPuOngH8HEa6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBiphHp7 +jsdmV92vOEs7+2weVcbMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2H7XcWi0WpGVTFTNK5jWTqqB4D7FLnRG68CdZPObgn4Cutfrtapa+ 87e+/BLl8wQduL33LWwb1Tx2vd5iqzzqipilEs6Q/eV0aRH5i9bM5F148WBvteuX EA0/R03MGtH/xyj6+8en/J+3dnfPehg4b9c++J1WS7XTEVVa55vbS2O8mvH/+jmN fKQy/mJePYji0uJRz0ixwkPpl/nzXlt6Tv8i1hHRpZyD0rTySqvIqAegIxXjcGKT lr8Xm2WQ9o8fD0O9N/biHsJ0zMJBbMCPXK5zuFZ+UZ4GMTPDeLNBzzBEOJPbnoJ9 mFMWyBRvTUPJd596nyDrXfAKg4XbuOIa -----END CERTIFICATE-----Generated at Sat May 18 15:26:08 2024 by rpki-client on console-fra.rpki-client.org