$ rpki-client -vvf rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft File: XJzBFCqQdWDNmfBuXdAt5OIulEU.mft (raw, json) Hash identifier: GWQiiPExfYs1yICCJIh6yPOZ0XcqJ5WtUWxbuggNXi4= Subject key identifier: AB:06:FC:7C:2C:8C:34:7C:03:7C:85:8F:DC:EC:05:6E:5D:C4:E1:C5 Authority key identifier: 5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 Certificate issuer: /CN=A911636A/serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445 Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft Manifest number: 0115 Signing time: Tue 07 May 2024 05:17:57 +0000 Manifest this update: Tue 07 May 2024 05:17:56 +0000 Manifest next update: Tue 14 May 2024 05:17:56 +0000 Files and hashes: 1: XJzBFCqQdWDNmfBuXdAt5OIulEU.crl (hash: PaWimSi3r0uT8aiFVfVZy+I+Dh1ECUZL4NLa7TomRxM=) 2: 17C7450485BD11ED8E81A718C4F9AE02.roa (hash: RVP4lv2jgOA5qLIAetF9W+fminYgrgOlPH3C8MHE6is=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 05:17:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911636A/serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445 Validity Not Before: May 7 05:17:56 2024 GMT Not After : May 14 05:17:56 2024 GMT Subject: CN=6639b985-3603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:23:68:b8:4a:da:d6:52:58:49:e5:a7:07:f8: d4:76:e2:a8:9d:90:52:fc:5e:49:af:2c:ef:5c:fe: 30:22:6f:39:40:74:f1:91:a3:03:53:e0:1f:4d:18: fe:27:aa:cf:9e:28:61:32:3e:9a:1c:06:1b:e9:3e: 3c:8c:74:ae:55:a9:29:ca:25:83:53:41:14:8c:8d: de:5b:9f:5b:bb:b3:a2:fc:2f:6f:75:77:36:bf:25: 24:57:8d:f3:77:33:b4:0d:49:d2:94:a0:11:b4:5a: 6b:ab:36:3a:f4:3a:50:71:b5:7f:00:48:04:86:3c: ac:4f:e1:b4:a5:0a:a4:f8:4d:4e:f1:d7:62:e7:6a: b1:14:46:83:8e:f0:e4:06:e7:de:57:f6:36:40:e0: 65:f3:24:79:db:02:87:3e:4c:5b:d3:04:0c:c3:21: aa:29:90:b3:a8:23:54:35:b2:01:02:12:d4:49:33: 64:22:eb:76:6b:af:7e:64:ca:b8:84:b4:15:09:c6: a3:f6:00:9e:89:ec:bf:d2:6a:c3:74:9f:37:a1:82: b0:13:2e:6e:d3:88:74:0d:cf:be:68:90:e0:ea:65: d0:0f:a8:4b:c6:45:df:b2:3e:de:ff:1b:a4:66:65: 26:c4:bb:57:c4:b5:8d:f3:8c:41:49:94:01:fe:40: 91:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:06:FC:7C:2C:8C:34:7C:03:7C:85:8F:DC:EC:05:6E:5D:C4:E1:C5 X509v3 Authority Key Identifier: keyid:5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:c7:8f:f3:7f:46:56:3f:09:87:43:a1:b8:74:81:20:61:3c: c4:02:7d:30:d7:18:e1:f6:37:82:41:26:31:e3:17:e2:ec:76: 31:db:5c:a1:e5:f4:82:6c:8e:c2:3e:12:55:a1:49:39:68:d1: bd:9d:7a:e2:ce:27:e1:f7:3b:e2:72:cd:6e:cf:2a:80:d4:ae: b2:f3:db:00:0e:3c:9c:00:ab:b9:fd:c3:b2:71:f5:9e:b4:de: ed:c2:13:7d:00:6b:c7:81:42:a1:18:93:49:93:e2:42:81:84: e8:32:60:49:fd:e1:33:a1:ee:87:e6:26:67:85:00:ce:ee:5c: dd:59:e9:9c:46:55:87:55:81:3c:59:82:f0:54:69:a6:50:11: 77:d3:90:7d:5f:cd:6d:86:27:8e:a9:46:b9:2b:bb:77:f4:85: b7:83:c9:f5:0b:90:2c:9e:56:ec:a2:7e:02:04:1f:74:f6:ab: e7:0f:5b:ce:eb:db:9a:23:95:01:d0:5f:c6:4d:a9:db:e5:9c: cf:da:7a:a9:19:6e:7b:27:cf:ea:9c:53:da:22:22:1f:86:71: 47:e1:4d:df:b3:cb:3d:03:85:aa:8f:1f:06:b5:4f:0b:1f:63: b9:a9:93:43:e2:03:45:d6:8e:5a:62:4f:92:51:a4:0a:6d:43: 0b:78:1f:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTYzNkExMTAvBgNVBAUTKDVDOUNDMTE0MkE5MDc1NjBDRDk5RjA2RTVERDAyREU0 RTIyRTk0NDUwHhcNMjQwNTA3MDUxNzU2WhcNMjQwNTE0MDUxNzU2WjAYMRYwFAYD VQQDEw02NjM5Yjk4NS0zNjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAriNouEra1lJYSeWnB/jUduKonZBS/F5JryzvXP4wIm85QHTxkaMDU+AfTRj+ J6rPnihhMj6aHAYb6T48jHSuVakpyiWDU0EUjI3eW59bu7Oi/C9vdXc2vyUkV43z dzO0DUnSlKARtFprqzY69DpQcbV/AEgEhjysT+G0pQqk+E1O8ddi52qxFEaDjvDk BufeV/Y2QOBl8yR52wKHPkxb0wQMwyGqKZCzqCNUNbIBAhLUSTNkIut2a69+ZMq4 hLQVCcaj9gCeiey/0mrDdJ83oYKwEy5u04h0Dc++aJDg6mXQD6hLxkXfsj7e/xuk ZmUmxLtXxLWN84xBSZQB/kCRPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKsG/Hws jDR8A3yFj9zsBW5dxOHFMB8GA1UdIwQYMBaAFFycwRQqkHVgzZnwbl3QLeTiLpRF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjM2QS9CMEYzM0QyQTY2 RUUxMUVEQjNCNDFBNURDNEY5QUUwMi9YSnpCRkNxUWRXRE5tZkJ1WGRBdDVPSXVs RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hKekJGQ3FRZFdETm1mQnVYZEF0NU9JdWxFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjM2QS9CMEYzM0QyQTY2RUUxMUVEQjNCNDFBNURDNEY5QUUwMi9YSnpCRkNxUWRX RE5tZkJ1WGRBdDVPSXVsRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0x4/zf0ZWPwmHQ6G4dIEgYTzEAn0w1xjh9jeCQSYx4xfi7HYx21yh 5fSCbI7CPhJVoUk5aNG9nXrizifh9zvics1uzyqA1K6y89sADjycAKu5/cOycfWe tN7twhN9AGvHgUKhGJNJk+JCgYToMmBJ/eEzoe6H5iZnhQDO7lzdWemcRlWHVYE8 WYLwVGmmUBF305B9X81thieOqUa5K7t39IW3g8n1C5Asnlbson4CBB909qvnD1vO 69uaI5UB0F/GTanb5ZzP2nqpGW57J8/qnFPaIiIfhnFH4U3fs8s9A4Wqjx8GtU8L H2O5qZND4gNF1o5aYk+SUaQKbUMLeB9n -----END CERTIFICATE-----Generated at Tue May 7 06:29:46 2024 by rpki-client on console-ams.rpki-client.org