$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft File: X1zijATRbpUODrzVlVVCSD05VtA.mft (raw, json) Hash identifier: ZQmKJA/CRkBsUCKZJisJPPZwNEDuvxw7K5gUKwutDFA= Subject key identifier: 96:76:C0:C1:0C:54:FD:92:A3:B9:7A:AE:47:DA:8F:C1:B9:FD:8F:39 Authority key identifier: 5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 Certificate issuer: /CN=A91F0D86/serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft Manifest number: 70 Signing time: Sun 19 May 2024 07:27:23 +0000 Manifest this update: Sun 19 May 2024 07:27:23 +0000 Manifest next update: Sun 26 May 2024 07:27:23 +0000 Files and hashes: 1: X1zijATRbpUODrzVlVVCSD05VtA.crl (hash: Y3N7l6KXwOIJblJMNmg8Ne5fLRI766G3PrNAfIWQtTw=) 2: B7E86E0C6D8711EEB912BD62C4F9AE02.roa (hash: HVw4YLVaBZ7QvrL+BUoSQ3ytCQQ5WDYYuP6g/OGdj5s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0D86/serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Validity Not Before: May 19 07:27:23 2024 GMT Not After : May 26 07:27:23 2024 GMT Subject: CN=6649a9db-3c9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b3:1d:5a:f4:07:6b:a7:07:6f:b1:8e:45:30: 47:fb:e7:6d:6a:c5:51:19:ac:ed:67:be:66:dd:83: 46:b0:0f:db:85:3e:d0:be:0f:34:7b:09:0f:95:c4: eb:c6:9e:b0:27:46:08:a4:94:7d:73:11:ed:2c:f0: 3c:16:5f:ff:d5:96:88:87:fc:e8:c9:c4:cc:52:54: a0:ed:d6:ac:f9:9b:05:16:aa:1c:44:9c:8e:48:d7: 91:85:03:ac:f3:e8:eb:a1:d5:ce:5f:c9:7c:d9:8f: 42:3a:73:ea:8c:d3:81:fc:42:69:c2:9f:53:49:25: fe:17:11:0f:2e:56:0c:06:02:fd:59:8d:0f:7a:d2: a3:20:51:d7:c9:fa:0d:a0:65:08:a1:96:f0:44:f7: 08:3a:93:33:38:2b:5e:a8:9b:82:f5:15:88:28:f4: 41:d9:d4:fd:e1:fc:ac:d8:f0:00:90:8e:24:73:ae: 63:c6:de:0f:90:f7:43:a8:82:5f:4e:80:d2:5d:6b: b6:70:44:87:e1:32:b5:9b:c6:f2:85:73:36:09:d6: a3:7a:7d:ad:b7:d4:60:29:f5:6f:f2:30:5c:16:4c: c5:5c:e0:76:da:b1:6c:2a:61:d8:f3:4f:43:a1:c2: 9a:87:1b:9c:45:79:92:89:ef:d6:00:b9:78:73:53: 4c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:76:C0:C1:0C:54:FD:92:A3:B9:7A:AE:47:DA:8F:C1:B9:FD:8F:39 X509v3 Authority Key Identifier: keyid:5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:cd:09:ba:ea:b6:1b:1e:b5:66:48:9c:14:06:e5:1c:87:1a: 1d:bf:11:98:ec:8c:6b:ee:bb:2d:93:5d:bd:58:9e:29:b0:09: fd:b7:8c:50:18:18:87:cc:db:7c:af:a3:75:f5:93:b1:f6:9c: 43:a0:68:95:42:36:59:11:6f:ce:0c:a7:1b:9d:27:83:71:97: 12:1f:ed:fb:4c:2c:a2:ba:e5:83:34:09:eb:fa:57:a8:42:ee: c8:6b:32:03:03:12:2a:90:4d:11:47:a7:78:59:61:2a:e2:62: 37:09:0d:48:c3:9f:00:63:8f:d1:d3:92:61:83:7b:69:c2:41: 2f:05:54:60:9f:4d:d1:c6:a7:e5:78:db:85:7d:40:84:4e:93: d9:90:32:5b:a4:ce:91:56:42:be:b8:ec:0f:7f:64:21:83:b8: 73:a7:5c:5f:04:74:b6:1e:9a:02:b8:7e:26:ff:0a:14:fa:7d: 2e:65:b7:41:73:b6:06:46:d8:94:76:79:32:c0:68:b6:0e:3e: aa:db:be:5a:72:65:0d:5d:da:2a:e9:7f:35:35:c0:21:59:46: 4c:1a:15:61:d0:0f:2a:f4:ad:b4:d0:79:e4:1f:24:06:96:c6: ba:62:93:5c:b5:10:ae:05:26:ad:41:8a:47:8c:84:4d:2f:db: b6:14:c8:bb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MEQ4NjExMC8GA1UEBRMoNUY1Q0UyOEMwNEQxNkU5NTBFMEVCQ0Q1OTU1NTQyNDgz RDM5NTZEMDAeFw0yNDA1MTkwNzI3MjNaFw0yNDA1MjYwNzI3MjNaMBgxFjAUBgNV BAMTDTY2NDlhOWRiLTNjOWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7sx1a9AdrpwdvsY5FMEf7521qxVEZrO1nvmbdg0awD9uFPtC+DzR7CQ+VxOvG nrAnRgiklH1zEe0s8DwWX//VloiH/OjJxMxSVKDt1qz5mwUWqhxEnI5I15GFA6zz 6Ouh1c5fyXzZj0I6c+qM04H8QmnCn1NJJf4XEQ8uVgwGAv1ZjQ960qMgUdfJ+g2g ZQihlvBE9wg6kzM4K16om4L1FYgo9EHZ1P3h/KzY8ACQjiRzrmPG3g+Q90Oogl9O gNJda7ZwRIfhMrWbxvKFczYJ1qN6fa231GAp9W/yMFwWTMVc4HbasWwqYdjzT0Oh wpqHG5xFeZKJ79YAuXhzU0ybAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlnbAwQxU /ZKjuXquR9qPwbn9jzkwHwYDVR0jBBgwFoAUX1zijATRbpUODrzVlVVCSD05VtAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwRDg2LzY4RTc5NzhBNkNC RDExRUVCODQ2RjM3OUM0RjlBRTAyL1gxemlqQVRSYnBVT0RyelZsVlZDU0QwNVZ0 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDF6aWpBVFJicFVPRHJ6VmxWVkNTRDA1VnRBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYw RDg2LzY4RTc5NzhBNkNCRDExRUVCODQ2RjM3OUM0RjlBRTAyL1gxemlqQVRSYnBV T0RyelZsVlZDU0QwNVZ0QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ3NCbrqthsetWZInBQG5RyHGh2/EZjsjGvuuy2TXb1YnimwCf23jFAY GIfM23yvo3X1k7H2nEOgaJVCNlkRb84MpxudJ4NxlxIf7ftMLKK65YM0Cev6V6hC 7shrMgMDEiqQTRFHp3hZYSriYjcJDUjDnwBjj9HTkmGDe2nCQS8FVGCfTdHGp+V4 24V9QIROk9mQMlukzpFWQr647A9/ZCGDuHOnXF8EdLYemgK4fib/ChT6fS5lt0Fz tgZG2JR2eTLAaLYOPqrbvlpyZQ1d2irpfzU1wCFZRkwaFWHQDyr0rbTQeeQfJAaW xrpik1y1EK4FJq1BikeMhE0v27YUyLs= -----END CERTIFICATE-----Generated at Sun May 19 08:26:45 2024 by rpki-client on console-fra.rpki-client.org