$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft File: XpnXCH3VTqLn519cgIcHE4Posp4.mft (raw, json) Hash identifier: U3QQ/Rkivle6gnEpuNAuVc5Q6yAjFQU7epA4vYdj6GQ= Subject key identifier: CF:C3:5A:AE:55:45:53:92:F5:3C:97:13:B6:31:7B:46:44:D9:D2:25 Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E Certificate issuer: /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Certificate serial: 0A20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft Manifest number: 0A06 Signing time: Thu 30 May 2024 21:04:56 +0000 Manifest this update: Thu 30 May 2024 21:04:56 +0000 Manifest next update: Thu 06 Jun 2024 21:04:56 +0000 Files and hashes: 1: XpnXCH3VTqLn519cgIcHE4Posp4.crl (hash: DeRdD7bqu0zmW+4lSDR5fNjbxTXnMQcICyEs5xxvMnk=) 2: 79BBD5780A3511EB93ACB11CC4F9AE02.roa (hash: p3Evu360d8sJaOIhPj+V+IcCcGPKVkKX45bmHYZFDuU=) 3: FA07C7FAC3E711ED97AAC038C4F9AE02.roa (hash: kdcQORxOazOv3d/psZbVYLp347mdF2gbZSdta1IYMGM=) 4: B27D5318C3D411ED97604930C4F9AE02.roa (hash: ozVhElbEnt1VdNVmiBrCNy8Ch9GY08iOB8Xrths/F/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 20:43:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2592 (0xa20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Validity Not Before: May 30 21:04:56 2024 GMT Not After : Jun 6 21:04:56 2024 GMT Subject: CN=6658e9f8-650a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:58:5e:f8:85:c0:a7:3e:23:87:49:c5:a7:35: 3e:19:64:b1:f6:a9:39:bb:76:54:1b:1e:7b:40:37: bb:eb:a4:83:fb:58:3d:84:70:3e:64:a1:72:d9:1e: e8:79:b3:f3:b2:0f:ae:08:3e:25:c6:9b:9c:56:d7: 0f:cc:b8:01:fa:f3:2e:f4:b1:f6:d1:b3:8a:3d:ec: bd:8f:b1:07:fd:21:4e:9f:16:8b:81:46:1b:43:68: 28:98:a1:31:b8:a2:31:50:e6:f4:4e:1e:41:0b:1e: b5:9e:0a:a0:57:da:86:9a:1b:97:93:9b:42:f3:83: 18:6e:09:76:40:7a:00:56:17:ca:aa:38:d0:f2:36: 9f:54:c2:2d:18:cf:34:da:92:74:0e:5f:48:1c:6d: 76:8f:cd:e0:58:33:8b:f5:46:4a:29:49:d4:ec:c7: 6c:42:f5:6b:0d:10:71:0c:57:8a:1c:64:28:c0:2a: 0a:23:98:72:34:27:45:6c:60:46:82:8d:9c:0b:d5: c1:45:c6:7f:0f:d7:97:58:89:88:d4:61:36:1f:ff: 49:4d:3a:c7:2d:19:81:fc:72:37:dd:7e:4b:67:47: 2f:fa:16:dd:65:db:2f:3e:ba:e5:22:3e:0f:ff:a0: 6b:ce:58:a0:f1:d1:b5:14:fa:bd:2c:8b:bb:6a:8c: 9d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:C3:5A:AE:55:45:53:92:F5:3C:97:13:B6:31:7B:46:44:D9:D2:25 X509v3 Authority Key Identifier: keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:81:0d:68:ae:d3:11:29:62:7d:a3:c8:44:45:4e:dd:20:41: 29:bf:e1:7c:d4:5c:12:29:fc:9e:d5:4d:c3:da:51:1e:b9:3a: 2b:f8:f6:9f:ee:ab:10:9a:23:90:ed:0b:b6:f4:a3:de:e5:c2: cb:c8:5c:5f:89:b9:53:86:d0:8f:16:2c:9e:51:24:28:36:72: c4:86:45:e0:b3:b0:7e:10:06:df:e6:8f:de:dc:48:af:5b:8b: 2a:f3:29:4a:68:3f:0b:87:d7:4b:23:fa:23:49:91:5a:e0:e1: 8a:72:c8:da:eb:4f:6a:6f:1e:3a:15:9f:bb:aa:d4:94:84:68: 79:e3:36:31:80:1b:0a:b4:04:a7:27:b4:19:47:a4:fe:f5:9c: a2:7e:6b:51:de:15:72:4b:ac:fe:a4:02:87:6b:a7:4c:39:47: df:04:ae:8b:6b:b5:62:6c:b3:9e:41:ac:58:3b:54:bc:71:7d: 82:54:c7:cb:9c:3a:db:55:f4:72:91:8f:f6:a6:a4:ce:7a:5d: 86:1c:67:b4:10:5c:ff:3e:36:87:6f:3e:08:27:9c:d2:86:f1: 33:e3:6a:cf:6d:1b:ec:db:7d:a5:27:50:5e:78:be:a6:72:19: 40:14:e0:70:7b:db:fe:82:e3:a9:35:ce:2c:6a:b3:74:54:f8: 17:2f:18:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxRDMxMTAvBgNVBAUTKDVFOTlENzA4N0RENTRFQTJFN0U3NUY1QzgwODcwNzEz ODNFOEIyOUUwHhcNMjQwNTMwMjEwNDU2WhcNMjQwNjA2MjEwNDU2WjAYMRYwFAYD VQQDEw02NjU4ZTlmOC02NTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Vhe+IXApz4jh0nFpzU+GWSx9qk5u3ZUGx57QDe766SD+1g9hHA+ZKFy2R7o ebPzsg+uCD4lxpucVtcPzLgB+vMu9LH20bOKPey9j7EH/SFOnxaLgUYbQ2gomKEx uKIxUOb0Th5BCx61ngqgV9qGmhuXk5tC84MYbgl2QHoAVhfKqjjQ8jafVMItGM80 2pJ0Dl9IHG12j83gWDOL9UZKKUnU7MdsQvVrDRBxDFeKHGQowCoKI5hyNCdFbGBG go2cC9XBRcZ/D9eXWImI1GE2H/9JTTrHLRmB/HI33X5LZ0cv+hbdZdsvPrrlIj4P /6Brzlig8dG1FPq9LIu7aoydqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/DWq5V RVOS9TyXE7Yxe0ZE2dIlMB8GA1UdIwQYMBaAFF6Z1wh91U6i5+dfXICHBxOD6LKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFEMy8wQTg0NTlGNDUy MzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRxTG41MTljZ0ljSEU0UG9z cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hwblhDSDNWVHFMbjUxOWNnSWNIRTRQb3NwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFEMy8wQTg0NTlGNDUyMzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRx TG41MTljZ0ljSEU0UG9zcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxgQ1ortMRKWJ9o8hERU7dIEEpv+F81FwSKfye1U3D2lEeuTor+Paf 7qsQmiOQ7Qu29KPe5cLLyFxfiblThtCPFiyeUSQoNnLEhkXgs7B+EAbf5o/e3Eiv W4sq8ylKaD8Lh9dLI/ojSZFa4OGKcsja609qbx46FZ+7qtSUhGh54zYxgBsKtASn J7QZR6T+9ZyifmtR3hVyS6z+pAKHa6dMOUffBK6La7VibLOeQaxYO1S8cX2CVMfL nDrbVfRykY/2pqTOel2GHGe0EFz/PjaHbz4IJ5zShvEz42rPbRvs232lJ1BeeL6m chlAFOBwe9v+guOpNc4sarN0VPgXLxge -----END CERTIFICATE-----Generated at Thu May 30 21:37:31 2024 by rpki-client on console-fra.rpki-client.org