$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft File: XozcAfwJtFN0mgHuUjmzXt4kvmw.mft (raw, json) Hash identifier: /p3dSwAMMbgf+a2YVBSXXZ3Qc+37dMni2FbtNib3WyE= Subject key identifier: 37:4F:B3:66:9D:10:CB:EC:15:D4:D9:50:F8:C0:5A:CE:B4:F3:15:76 Authority key identifier: 5E:8C:DC:01:FC:09:B4:53:74:9A:01:EE:52:39:B3:5E:DE:24:BE:6C Certificate issuer: /CN=A91F4CFA/serialNumber=5E8CDC01FC09B453749A01EE5239B35EDE24BE6C Certificate serial: 0677 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft Manifest number: 0672 Signing time: Sat 18 May 2024 23:30:33 +0000 Manifest this update: Sat 18 May 2024 23:30:32 +0000 Manifest next update: Sat 25 May 2024 23:30:32 +0000 Files and hashes: 1: XozcAfwJtFN0mgHuUjmzXt4kvmw.crl (hash: 1GewQ1AVPCWDB896lQe1PctQ6nepWJuYhnUyCnmQcI8=) 2: A5D573E4305A11EB921D6332C4F9AE02.roa (hash: K6694ItlfbumtbL39COqWlYQugZFNwdV2Wxv0zsctho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.crl rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1655 (0x677) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4CFA/serialNumber=5E8CDC01FC09B453749A01EE5239B35EDE24BE6C Validity Not Before: May 18 23:30:32 2024 GMT Not After : May 25 23:30:32 2024 GMT Subject: CN=66493a18-17b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3c:6e:2e:dc:34:9e:6a:69:2b:62:ee:9c:83: 2a:22:a6:ed:84:cc:49:1c:d5:5f:02:0e:1e:bb:2f: cc:bc:ec:5f:c4:d5:6b:3b:67:35:7b:69:b5:f0:71: 9e:96:a4:34:77:75:de:8e:41:9b:20:13:c8:80:db: 71:e0:b1:94:04:9f:1a:e7:15:0e:13:db:7e:32:a7: 3f:c4:c2:27:c7:43:db:2d:5b:c3:ed:66:eb:48:12: 1f:93:6e:ca:be:fe:ff:76:63:d2:2b:93:96:4e:c9: cd:46:63:36:74:70:a2:6a:2b:8e:de:1c:87:ff:b3: e5:38:e7:e2:8a:83:2f:71:a4:70:f2:70:35:f7:08: 6f:b7:e3:56:57:8d:d6:69:fe:38:5b:08:8f:e6:d3: b6:07:3a:8e:ab:4a:06:e1:72:94:d1:01:b3:ef:29: 88:cd:26:ad:eb:e1:67:e3:40:f0:9b:47:79:d7:10: d8:1b:03:0e:f0:cf:77:48:9b:00:49:22:84:60:13: 69:41:4e:50:66:61:29:57:88:49:09:e9:98:ff:c1: ae:53:36:35:47:04:5e:27:bc:3e:41:22:9e:0c:b0: 64:85:07:86:ae:81:cb:a9:9a:19:74:d4:2a:84:6e: 44:c5:5f:83:53:5c:f1:3f:83:c2:8c:71:18:c8:95: bd:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:4F:B3:66:9D:10:CB:EC:15:D4:D9:50:F8:C0:5A:CE:B4:F3:15:76 X509v3 Authority Key Identifier: keyid:5E:8C:DC:01:FC:09:B4:53:74:9A:01:EE:52:39:B3:5E:DE:24:BE:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:8b:82:f5:c1:c6:a1:61:ae:5a:02:c5:25:f6:64:b6:cb:bb: 4c:76:ef:1d:a3:ac:6b:33:b9:ae:c0:51:01:81:ea:68:2c:aa: 97:ba:ca:dd:3f:41:05:e3:0e:64:d0:19:05:bd:60:e9:21:75: c4:80:e0:77:22:88:27:bb:d8:1d:5a:40:48:a8:10:27:f3:8b: d7:bc:f2:9c:6b:3f:bd:d9:13:a9:f4:fb:26:ec:08:f8:b9:5a: 75:b9:7f:2a:ac:2a:4d:2a:99:ec:25:f6:5d:37:0f:97:07:33: e8:09:54:9e:a5:f9:dc:8c:61:04:a5:55:65:c7:7d:9a:aa:f8: e4:fb:63:f1:ac:bc:37:4b:ec:78:d2:e0:34:ef:a2:46:f5:ad: 9f:05:4b:87:af:b3:60:f0:a9:07:3c:5a:05:b7:5a:f3:40:09: a2:9c:e6:74:e3:b2:7c:47:eb:4c:25:8c:43:be:01:6f:bf:da: 3f:b6:ce:85:88:7e:fa:b1:d3:4c:a2:cf:f0:d6:81:fd:b9:c6: 20:88:f0:b2:48:4f:ef:aa:8b:66:eb:22:0d:d2:7a:f5:c8:4e: 91:a5:42:d7:af:14:f0:a1:a4:8b:cd:d1:bc:ff:e5:51:ee:d5: fd:24:75:e8:5b:d1:25:a5:95:be:92:d3:ee:ff:a0:f0:56:52: 53:4a:05:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRDRkExMTAvBgNVBAUTKDVFOENEQzAxRkMwOUI0NTM3NDlBMDFFRTUyMzlCMzVF REUyNEJFNkMwHhcNMjQwNTE4MjMzMDMyWhcNMjQwNTI1MjMzMDMyWjAYMRYwFAYD VQQDEw02NjQ5M2ExOC0xN2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTxuLtw0nmppK2LunIMqIqbthMxJHNVfAg4euy/MvOxfxNVrO2c1e2m18HGe lqQ0d3XejkGbIBPIgNtx4LGUBJ8a5xUOE9t+Mqc/xMInx0PbLVvD7WbrSBIfk27K vv7/dmPSK5OWTsnNRmM2dHCiaiuO3hyH/7PlOOfiioMvcaRw8nA19whvt+NWV43W af44WwiP5tO2BzqOq0oG4XKU0QGz7ymIzSat6+Fn40Dwm0d51xDYGwMO8M93SJsA SSKEYBNpQU5QZmEpV4hJCemY/8GuUzY1RwReJ7w+QSKeDLBkhQeGroHLqZoZdNQq hG5ExV+DU1zxP4PCjHEYyJW94QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDdPs2ad EMvsFdTZUPjAWs608xV2MB8GA1UdIwQYMBaAFF6M3AH8CbRTdJoB7lI5s17eJL5s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNENGQS8xQzJGQUIyRTMw NTkxMUVCQjgzNUMxMzBDNEY5QUUwMi9Yb3pjQWZ3SnRGTjBtZ0h1VWptelh0NGt2 bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvemNBZndKdEZOMG1nSHVVam16WHQ0a3Ztdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NENGQS8xQzJGQUIyRTMwNTkxMUVCQjgzNUMxMzBDNEY5QUUwMi9Yb3pjQWZ3SnRG TjBtZ0h1VWptelh0NGt2bXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsi4L1wcahYa5aAsUl9mS2y7tMdu8do6xrM7muwFEBgepoLKqXusrd P0EF4w5k0BkFvWDpIXXEgOB3Iognu9gdWkBIqBAn84vXvPKcaz+92ROp9Psm7Aj4 uVp1uX8qrCpNKpnsJfZdNw+XBzPoCVSepfncjGEEpVVlx32aqvjk+2PxrLw3S+x4 0uA076JG9a2fBUuHr7Ng8KkHPFoFt1rzQAminOZ047J8R+tMJYxDvgFvv9o/ts6F iH76sdNMos/w1oH9ucYgiPCySE/vqotm6yIN0nr1yE6RpULXrxTwoaSLzdG8/+VR 7tX9JHXoW9ElpZW+ktPu/6DwVlJTSgUS -----END CERTIFICATE-----Generated at Sun May 19 00:30:23 2024 by rpki-client on console-ams.rpki-client.org