$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft File: XmtaBob1a6DA93-zvzGzhWMiCCQ.mft (raw, json) Hash identifier: azH+L6pLBlqQavuxs3U5k6M12+FAijUSFG4qMlc6tpk= Subject key identifier: 7C:E3:26:20:D9:3F:C5:2D:70:35:0C:51:A7:E8:94:0A:A9:CE:AF:55 Authority key identifier: 5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 Certificate issuer: /CN=A91FE107/serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Certificate serial: 2218 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft Manifest number: 2203 Signing time: Sat 18 May 2024 16:12:18 +0000 Manifest this update: Sat 18 May 2024 16:12:17 +0000 Manifest next update: Sat 25 May 2024 16:12:17 +0000 Files and hashes: 1: XmtaBob1a6DA93-zvzGzhWMiCCQ.crl (hash: WMqgyAHKA3IX+G7IPTjLuEWmCPR+0pD7XbyFyb7M88o=) 2: 44C007B0A0D611EDA2603C4EC4F9AE02.roa (hash: yS4hjD1K8PDIQgrwqb69ifH0Xd3CZgdct8yqms8epVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8728 (0x2218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE107/serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Validity Not Before: May 18 16:12:17 2024 GMT Not After : May 25 16:12:17 2024 GMT Subject: CN=6648d361-ecbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0f:b9:11:5b:3a:69:7b:50:0c:a6:ce:2d:29: 7b:48:d0:1f:b9:19:98:88:60:f5:74:7c:93:60:d0: 0c:0e:af:cf:82:ab:8f:03:e1:3a:aa:30:1f:d8:6f: 07:4b:f8:a4:8e:d8:15:ea:9f:13:23:51:72:86:c8: 73:cd:b5:e0:7a:ec:c5:df:b8:63:22:41:99:da:b5: 12:32:5f:0a:fb:34:3c:69:d0:cc:41:1b:03:98:6e: 42:47:16:56:d7:6d:5c:07:9e:49:c6:7f:d8:43:e0: 31:55:35:f8:fa:79:d7:2a:7a:3a:6c:5b:e6:bf:9c: 54:92:47:85:d3:7c:23:bb:2e:dd:69:e9:4f:48:3c: 05:3b:8b:ce:06:53:d9:24:cc:45:ac:9d:b5:73:04: 83:d7:eb:a4:00:01:d5:79:c6:cc:c8:d4:30:76:95: 63:71:d9:6f:6b:0f:89:ad:d4:33:00:05:74:84:2c: 62:05:67:dc:b3:3c:31:a3:29:ee:92:f7:0e:3a:5d: 8b:9b:13:42:40:46:c8:fb:a8:50:8b:1d:aa:a6:f3: 3b:39:c1:e7:9f:d8:3f:eb:6b:6a:aa:02:7d:92:ab: 1b:69:7c:7d:45:22:33:6f:e7:0a:d2:0e:d8:60:13: bf:cf:4a:4e:d0:3b:ed:22:8f:a8:90:8d:55:ab:b0: 12:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:E3:26:20:D9:3F:C5:2D:70:35:0C:51:A7:E8:94:0A:A9:CE:AF:55 X509v3 Authority Key Identifier: keyid:5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:06:53:ff:df:19:2d:cc:c0:a5:2e:ac:32:a5:d7:9e:c5:8c: 0f:a1:48:a0:a3:1a:82:4a:85:07:5a:23:c4:c1:0c:3f:18:10: ba:ce:cc:d3:99:13:7a:80:2f:bf:1d:22:fc:e9:b0:02:12:e4: 18:d8:fe:a2:79:38:6e:a7:7e:10:d7:d9:70:f1:22:37:ba:84: fd:67:c4:e3:4d:92:a5:84:a6:6f:a8:65:ba:3d:19:6e:f9:07: 4b:92:1b:b6:f8:f2:b5:b6:71:bc:ad:68:21:24:e5:74:50:81: 55:63:77:32:2e:f0:ee:73:58:1b:5a:6f:8e:27:7c:f0:37:2b: 98:e3:da:bf:42:66:13:be:d7:a6:89:12:6e:6e:c6:04:ba:12: 19:47:36:bc:b1:df:83:88:59:54:f9:66:21:8d:6c:9a:5f:d5: e8:98:f3:75:f4:01:38:bb:3c:59:0c:ef:42:27:9c:fa:91:7a: 89:52:43:fc:15:8b:bc:b9:89:4a:84:9f:ce:cb:bb:0d:99:51: 75:8f:75:cf:93:7a:df:72:b2:50:e8:f2:b5:ec:18:8a:eb:37: 01:72:bb:95:4d:e5:b6:12:9e:03:09:de:73:a8:44:e8:f3:8d: 05:b3:83:d6:60:23:a4:85:6c:5c:e3:22:c2:1d:ae:ec:2e:66: 05:8b:40:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUxMDcxMTAvBgNVBAUTKDVFNkI1QTA2ODZGNTZCQTBDMEY3N0ZCM0JGMzFCMzg1 NjMyMjA4MjQwHhcNMjQwNTE4MTYxMjE3WhcNMjQwNTI1MTYxMjE3WjAYMRYwFAYD VQQDEw02NjQ4ZDM2MS1lY2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwg+5EVs6aXtQDKbOLSl7SNAfuRmYiGD1dHyTYNAMDq/PgquPA+E6qjAf2G8H S/ikjtgV6p8TI1FyhshzzbXgeuzF37hjIkGZ2rUSMl8K+zQ8adDMQRsDmG5CRxZW 121cB55Jxn/YQ+AxVTX4+nnXKno6bFvmv5xUkkeF03wjuy7daelPSDwFO4vOBlPZ JMxFrJ21cwSD1+ukAAHVecbMyNQwdpVjcdlvaw+JrdQzAAV0hCxiBWfcszwxoynu kvcOOl2LmxNCQEbI+6hQix2qpvM7OcHnn9g/62tqqgJ9kqsbaXx9RSIzb+cK0g7Y YBO/z0pO0DvtIo+okI1Vq7AShwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzjJiDZ P8UtcDUMUafolAqpzq9VMB8GA1UdIwQYMBaAFF5rWgaG9WugwPd/s78xs4VjIggk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTEwNy9FRTM1QzQ0NjlF NjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2REE5My16dnpHemhXTWlD Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1htdGFCb2IxYTZEQTkzLXp2ekd6aFdNaUNDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTEwNy9FRTM1QzQ0NjlFNjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2 REE5My16dnpHemhXTWlDQ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOBlP/3xktzMClLqwypdeexYwPoUigoxqCSoUHWiPEwQw/GBC6zszT mRN6gC+/HSL86bACEuQY2P6ieThup34Q19lw8SI3uoT9Z8TjTZKlhKZvqGW6PRlu +QdLkhu2+PK1tnG8rWghJOV0UIFVY3cyLvDuc1gbWm+OJ3zwNyuY49q/QmYTvtem iRJubsYEuhIZRza8sd+DiFlU+WYhjWyaX9XomPN19AE4uzxZDO9CJ5z6kXqJUkP8 FYu8uYlKhJ/Oy7sNmVF1j3XPk3rfcrJQ6PK17BiK6zcBcruVTeW2Ep4DCd5zqETo 840Fs4PWYCOkhWxc4yLCHa7sLmYFi0Ca -----END CERTIFICATE-----Generated at Sat May 18 17:20:37 2024 by rpki-client on console-ams.rpki-client.org