$ rpki-client -vvf rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft File: XUofz1MBwCdZyE7qVZFeJcFxpz8.mft (raw, json) Hash identifier: 2bzP4L1uQsEKPsOyhZmAUKL2w82brqhlKy8oYhC8M68= Subject key identifier: 5F:82:42:15:41:56:22:43:6B:FC:D9:4B:99:0E:78:72:98:EE:40:0C Authority key identifier: 5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F Certificate issuer: /CN=A91194E9/serialNumber=5D4A1FCF5301C02759C84EEA55915E25C171A73F Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft Manifest number: 01C4 Signing time: Fri 03 May 2024 04:32:47 +0000 Manifest this update: Fri 03 May 2024 04:32:46 +0000 Manifest next update: Fri 10 May 2024 04:32:46 +0000 Files and hashes: 1: XUofz1MBwCdZyE7qVZFeJcFxpz8.crl (hash: wR4bNAzOpIyf+dfa6uZbsq7HBjmH7T664pseNdGyQW0=) 2: 388802BC067711EDA1DEB529C4F9AE02.roa (hash: 9JK39+YBCWgZM+DH+/r8YX8dHd7Tkhl9Fw94zVgc7kI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91194E9/serialNumber=5D4A1FCF5301C02759C84EEA55915E25C171A73F Validity Not Before: May 3 04:32:46 2024 GMT Not After : May 10 04:32:46 2024 GMT Subject: CN=663468ee-2997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:c1:4e:9e:80:50:6b:11:1a:49:85:1c:0b:84: 6f:5d:3c:15:59:14:bb:04:43:1d:e3:1a:8e:93:51: 16:a0:0d:af:f2:9d:46:58:d4:8b:50:64:e6:59:f0: ae:9c:f1:9f:19:b2:cc:03:25:bb:9c:58:e9:b6:f9: 62:aa:db:65:bf:7d:6f:71:26:b8:2a:f5:89:e4:dd: a2:c9:d6:f2:c3:9f:3a:c2:eb:7e:c8:ae:d4:84:90: ce:ec:08:77:d9:70:15:46:70:93:90:b8:3e:50:67: 4b:6b:9d:73:c6:bd:e3:9b:d7:7f:d6:be:50:f6:36: 69:72:13:83:a4:c1:87:4d:dc:00:fc:54:3d:4f:7a: 02:02:8c:f1:90:06:7b:ea:c4:22:3f:b0:c5:b0:c9: e5:07:06:f5:1b:56:23:7e:13:41:58:9e:d2:fc:91: 25:22:ce:34:9b:33:aa:12:d7:3a:ba:84:97:bb:69: dc:80:89:a5:28:2c:38:72:1e:1f:87:1b:76:28:67: 18:ab:d2:f4:03:96:9c:34:64:c1:84:bc:e2:a3:73: 55:b2:4b:34:a0:37:c9:fb:07:f8:81:a5:f4:71:04: 22:2b:d7:1d:89:6f:82:0b:6f:a2:86:99:73:1d:43: b7:f5:de:d7:51:f6:a6:f0:3f:d0:d8:c0:d7:bd:bf: 91:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:82:42:15:41:56:22:43:6B:FC:D9:4B:99:0E:78:72:98:EE:40:0C X509v3 Authority Key Identifier: keyid:5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:2c:1d:1f:c1:8d:9c:c9:d4:b8:29:9d:e7:86:f4:f7:5e:09: d9:39:7e:57:73:2c:19:69:ab:f9:c0:3f:a3:26:dc:50:e2:6d: bc:1a:8f:7e:fa:b6:ee:60:1f:f0:d9:6a:20:04:6d:80:e0:3b: e3:70:56:6b:b6:8c:6c:c0:b9:75:24:e4:55:6c:8e:d9:67:97: 1b:3a:dd:50:d2:5d:5b:12:3d:f9:03:a7:55:34:8f:99:4a:0e: 46:a5:61:55:cc:b9:d3:25:f8:d1:61:77:d0:4b:0a:78:85:da: 6e:91:5d:76:00:eb:73:22:cb:12:be:9c:99:37:2c:58:9e:c7: 31:53:26:40:c9:bc:37:88:f7:8b:15:50:97:51:6e:b0:ea:7e: 20:6f:f0:24:13:6c:62:2e:18:7b:db:c0:79:65:65:66:41:3d: 6e:22:96:63:17:fd:28:1c:45:ef:39:60:a4:c3:00:e1:5b:b6: 39:e3:f5:91:c9:7e:1d:3b:64:cd:6d:34:b3:1c:de:bf:24:d5: 0a:b1:e2:9f:43:a5:72:cc:ca:bc:ef:a1:3d:b0:24:4a:89:e6: 0d:d1:bf:60:f4:48:a7:d5:81:14:a3:3e:41:e5:76:6f:5a:b0: fd:96:16:d1:e7:16:c7:5f:7c:a4:34:21:aa:39:a9:d9:99:b3: b2:0f:96:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk0RTkxMTAvBgNVBAUTKDVENEExRkNGNTMwMUMwMjc1OUM4NEVFQTU1OTE1RTI1 QzE3MUE3M0YwHhcNMjQwNTAzMDQzMjQ2WhcNMjQwNTEwMDQzMjQ2WjAYMRYwFAYD VQQDEw02NjM0NjhlZS0yOTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlcFOnoBQaxEaSYUcC4RvXTwVWRS7BEMd4xqOk1EWoA2v8p1GWNSLUGTmWfCu nPGfGbLMAyW7nFjptvliqttlv31vcSa4KvWJ5N2iydbyw586wut+yK7UhJDO7Ah3 2XAVRnCTkLg+UGdLa51zxr3jm9d/1r5Q9jZpchODpMGHTdwA/FQ9T3oCAozxkAZ7 6sQiP7DFsMnlBwb1G1YjfhNBWJ7S/JElIs40mzOqEtc6uoSXu2ncgImlKCw4ch4f hxt2KGcYq9L0A5acNGTBhLzio3NVsks0oDfJ+wf4gaX0cQQiK9cdiW+CC2+ihplz HUO39d7XUfam8D/Q2MDXvb+RMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+CQhVB ViJDa/zZS5kOeHKY7kAMMB8GA1UdIwQYMBaAFF1KH89TAcAnWchO6lWRXiXBcac/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTRFOS9DNUQ1RTRDQTA2 NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndDZFp5RTdxVlpGZUpjRnhw ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVb2Z6MU1Cd0NkWnlFN3FWWkZlSmNGeHB6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTRFOS9DNUQ1RTRDQTA2NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndD ZFp5RTdxVlpGZUpjRnhwejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwLB0fwY2cydS4KZ3nhvT3XgnZOX5XcywZaav5wD+jJtxQ4m28Go9+ +rbuYB/w2WogBG2A4DvjcFZrtoxswLl1JORVbI7ZZ5cbOt1Q0l1bEj35A6dVNI+Z Sg5GpWFVzLnTJfjRYXfQSwp4hdpukV12AOtzIssSvpyZNyxYnscxUyZAybw3iPeL FVCXUW6w6n4gb/AkE2xiLhh728B5ZWVmQT1uIpZjF/0oHEXvOWCkwwDhW7Y54/WR yX4dO2TNbTSzHN6/JNUKseKfQ6VyzMq876E9sCRKieYN0b9g9Ein1YEUoz5B5XZv WrD9lhbR5xbHX3ykNCGqOanZmbOyD5ZY -----END CERTIFICATE-----Generated at Fri May 3 05:32:31 2024 by rpki-client on console-ams.rpki-client.org