$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft File: XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft (raw, json) Hash identifier: VosMZQOHB6dP8lqSvl3v+qTwHddOAux0EdoadplQI/s= Subject key identifier: 5D:04:EA:04:51:90:41:47:63:D8:3A:E6:18:73:8B:E3:F5:E3:9E:3A Authority key identifier: 5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F Certificate issuer: /CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Certificate serial: 0207 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft Manifest number: 0203 Signing time: Sun 19 May 2024 04:10:58 +0000 Manifest this update: Sun 19 May 2024 04:10:58 +0000 Manifest next update: Sun 26 May 2024 04:10:58 +0000 Files and hashes: 1: XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl (hash: 7eVRn3jTU5gfD2bUL9De9zbz7Uywrib6W9VZVQaY3lQ=) 2: FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa (hash: yRoa0c1VoVUvCnrROdI2LofNJsWKndLEn2zob8PDTCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Validity Not Before: May 19 04:10:58 2024 GMT Not After : May 26 04:10:58 2024 GMT Subject: CN=66497bd2-6b29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8f:23:c2:46:0e:ba:01:ac:ff:95:ef:c1:0d: 01:94:3a:7e:9f:c8:53:9f:12:2a:d3:1c:57:e5:81: 77:13:9d:00:8b:29:3b:ed:92:c2:3e:f3:e7:3c:6a: 46:f5:ac:4a:1e:a7:f3:98:2c:03:e0:75:b6:f7:df: 93:af:3b:80:eb:74:6f:ce:b7:24:3c:89:48:7e:91: b1:21:d8:5a:e5:4d:95:5b:56:7c:35:9a:3e:67:3d: 25:29:14:d0:c1:ca:09:01:91:ae:b4:f8:9d:50:0e: 38:4e:42:e5:b6:45:75:8d:16:ae:25:30:30:a2:9d: 9f:2b:91:e9:38:fc:a1:94:8a:0b:bf:0c:2e:f8:9a: 9a:64:8d:fd:cf:40:85:61:46:e1:f3:00:ea:28:d1: 00:d6:28:01:fc:1d:0f:41:53:1d:15:83:21:6d:fb: 07:c0:48:fd:03:ae:6a:4f:b5:2f:eb:12:af:4e:ed: f5:3e:cc:1a:98:0a:14:10:b9:5f:14:bd:63:fd:44: 3b:11:55:89:eb:42:e0:ee:b2:4e:c7:a3:1b:ea:e6: ee:b4:4f:3d:0a:22:aa:ea:75:b3:a9:8f:77:d1:48: 48:3b:ad:a6:98:79:71:10:43:1c:a0:4a:2a:6a:21: ca:2b:ae:21:f7:3f:c1:85:58:0c:92:ee:00:6b:c1: 3e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:04:EA:04:51:90:41:47:63:D8:3A:E6:18:73:8B:E3:F5:E3:9E:3A X509v3 Authority Key Identifier: keyid:5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:09:b1:4e:c1:70:5e:68:be:ef:bb:d7:c8:b6:7c:51:59:a6: da:62:e0:c0:a3:36:10:be:d7:ce:22:5d:e9:48:99:4a:c0:cc: 68:70:8c:b8:d8:cd:1c:af:ab:27:2e:0c:fd:ca:52:b4:d3:4d: 24:85:21:b3:e7:ae:94:e0:66:d6:87:99:97:75:ab:a9:72:3b: f8:2e:05:dc:a8:e8:1d:28:6f:1a:86:16:c6:d4:77:ee:bf:e6: ef:67:ff:d6:0a:e4:76:43:e5:a1:85:62:d8:98:42:c9:ce:93: eb:7d:ef:d0:e7:b2:f2:56:a0:a4:b2:c2:e3:06:3e:d9:e1:7d: 65:22:49:d0:a8:c0:90:bb:03:c9:43:b0:7d:a5:66:b1:6c:51: 66:d7:8c:3a:65:c7:91:dd:cf:bd:98:d0:18:a9:e0:ed:48:21: 8d:04:86:2e:79:bc:81:e5:a3:0f:66:10:ba:7d:86:61:36:0e: 8f:96:73:fc:95:7a:d9:2b:ec:c1:12:50:78:81:ba:e0:14:a8: ea:ea:0e:4a:8d:d4:6c:c7:c0:85:f3:49:f1:fb:27:b9:09:e8: 6e:5f:c5:c8:26:56:a6:82:3c:a3:bc:11:2b:a3:82:be:e9:05: 6e:74:74:b8:63:49:1d:58:c2:e8:87:59:a1:31:51:c6:8f:50: e4:fa:da:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDNzMxMTAvBgNVBAUTKDVFNzA5OTQ5QkFBNDBBN0Q0N0Q0NEQyMTE2OTBCMzc3 RTA1MUM0NUYwHhcNMjQwNTE5MDQxMDU4WhcNMjQwNTI2MDQxMDU4WjAYMRYwFAYD VQQDEw02NjQ5N2JkMi02YjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzI8jwkYOugGs/5XvwQ0BlDp+n8hTnxIq0xxX5YF3E50Aiyk77ZLCPvPnPGpG 9axKHqfzmCwD4HW299+TrzuA63RvzrckPIlIfpGxIdha5U2VW1Z8NZo+Zz0lKRTQ wcoJAZGutPidUA44TkLltkV1jRauJTAwop2fK5HpOPyhlIoLvwwu+JqaZI39z0CF YUbh8wDqKNEA1igB/B0PQVMdFYMhbfsHwEj9A65qT7Uv6xKvTu31PswamAoUELlf FL1j/UQ7EVWJ60Lg7rJOx6Mb6ubutE89CiKq6nWzqY930UhIO62mmHlxEEMcoEoq aiHKK64h9z/BhVgMku4Aa8E+jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF0E6gRR kEFHY9g65hhzi+P14546MB8GA1UdIwQYMBaAFF5wmUm6pAp9R9RNIRaQs3fgUcRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEM3My84MjE0NTdEMkYx MzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0NuMUgxRTBoRnBDemQtQlJ4 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huQ1pTYnFrQ24xSDFFMGhGcEN6ZC1CUnhGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEM3My84MjE0NTdEMkYxMzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0Nu MUgxRTBoRnBDemQtQlJ4RjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGCbFOwXBeaL7vu9fItnxRWabaYuDAozYQvtfOIl3pSJlKwMxocIy4 2M0cr6snLgz9ylK0000khSGz566U4GbWh5mXdaupcjv4LgXcqOgdKG8ahhbG1Hfu v+bvZ//WCuR2Q+WhhWLYmELJzpPrfe/Q57LyVqCkssLjBj7Z4X1lIknQqMCQuwPJ Q7B9pWaxbFFm14w6ZceR3c+9mNAYqeDtSCGNBIYuebyB5aMPZhC6fYZhNg6PlnP8 lXrZK+zBElB4gbrgFKjq6g5KjdRsx8CF80nx+ye5CehuX8XIJlamgjyjvBEro4K+ 6QVudHS4Y0kdWMLoh1mhMVHGj1Dk+toc -----END CERTIFICATE-----Generated at Sun May 19 05:08:06 2024 by rpki-client on console-ams.rpki-client.org