$ rpki-client -vvf rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft File: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft (raw, json) Hash identifier: Dd6Fv6zZNCaKbvtvdjwofLhghvFGnL9z9FbunYsGSf0= Subject key identifier: C0:C6:AF:7A:95:09:DB:83:9F:62:23:AA:79:90:1C:1A:04:FB:4A:AF Authority key identifier: C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 Certificate issuer: /CN=A91243FE/serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Certificate serial: 02E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft Manifest number: 02E4 Signing time: Sun 05 May 2024 03:26:54 +0000 Manifest this update: Sun 05 May 2024 03:26:54 +0000 Manifest next update: Sun 12 May 2024 03:26:54 +0000 Files and hashes: 1: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl (hash: Ppl2ayId+ftGspQUtVwaua5Kj9Yd1Ly4YFLBBmMlaLU=) 2: 5ADF4C92956811EC9028F155C4F9AE02.roa (hash: Bu3Y51K40CQI6i7+VAA30ksmXoBC9MegfCewbd1mMKY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 743 (0x2e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91243FE/serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Validity Not Before: May 5 03:26:54 2024 GMT Not After : May 12 03:26:54 2024 GMT Subject: CN=6636fc7e-b2fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:15:92:3b:b9:c8:8f:16:ec:77:73:c7:57:b7: 0b:de:db:6c:79:11:f7:3e:00:cd:e8:85:3e:87:1c: f3:fe:75:50:2e:5d:8a:e4:fc:bf:18:dd:d3:2e:e4: 01:4c:10:d5:84:50:a1:98:79:88:c7:cc:b1:52:16: d9:83:8e:e8:57:66:8d:9c:f9:2a:25:f2:d8:64:56: f8:a4:19:87:0d:3d:d9:ac:c2:df:09:18:5e:f2:0d: bd:a8:0d:3d:60:e5:f1:ef:e0:02:2a:07:3b:02:6d: 8c:8e:7c:f4:01:67:65:67:64:ce:a8:7a:8a:2d:1d: b1:fd:5a:ac:1c:a9:06:30:ba:04:0b:29:e3:86:61: 53:4d:f1:b7:19:35:01:15:26:b9:2a:66:3a:ee:81: ff:99:50:28:b3:22:9e:bf:64:88:31:d5:ed:c1:67: 78:fb:80:16:45:98:0b:38:c2:04:06:bd:8c:b3:ac: 19:19:ed:6e:8d:d1:96:20:c1:d5:63:e0:6e:5d:d4: 3b:9c:a4:fd:e5:a4:13:ce:8a:41:95:38:9e:ae:00: 5f:a5:c0:18:43:f7:c7:44:cc:e5:df:67:d7:04:e6: 4b:0c:c5:54:a7:d0:65:8e:7f:e2:67:8b:17:5e:bb: d6:34:1e:b7:7b:b3:f0:f8:24:fe:2c:e6:33:6e:7d: ef:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:C6:AF:7A:95:09:DB:83:9F:62:23:AA:79:90:1C:1A:04:FB:4A:AF X509v3 Authority Key Identifier: keyid:C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:d6:eb:b1:5a:fc:79:d2:0f:6d:c3:07:d7:64:75:a2:ba:94: 75:f1:4e:f0:fd:74:e8:ab:99:28:1f:83:79:5f:6e:aa:97:06: 08:18:40:64:9d:e1:ff:f0:76:64:55:67:42:ff:08:92:51:4a: 1e:68:ff:b5:f1:dd:15:d9:5b:18:87:42:a3:19:76:f5:df:05: 44:6d:e1:73:aa:61:78:22:5a:d7:74:8f:a3:e0:f5:75:02:89: f0:e8:40:8c:11:66:59:df:6d:5a:f2:ed:7a:6a:fc:f7:1e:f1: 3c:26:e4:6b:e4:3a:de:ec:cc:8e:8a:f5:1b:94:54:21:86:68: c8:ae:08:e9:ee:fc:15:5c:5c:40:25:48:ad:74:a7:5a:9c:64: ca:75:90:fa:52:68:e7:af:59:00:7a:21:33:5c:37:72:f2:6b: fc:6e:f1:2b:c7:71:42:01:2c:a8:46:62:0f:c6:74:d5:a2:d1: 19:98:5a:03:9a:c9:cb:9b:c9:52:64:03:e1:54:bb:28:6e:3a: 23:be:a2:b7:ad:cb:fc:8a:d3:ed:90:30:68:81:61:5d:2e:93: f6:e8:eb:f1:1d:8f:fe:6a:06:d2:76:61:78:b6:57:a0:14:54: 3b:c2:f9:01:4b:2d:72:58:59:09:b6:09:5b:c2:1e:a3:45:d1: e0:ad:ce:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzRkUxMTAvBgNVBAUTKEM3MEJGM0RGRjQ1MDIzRDQxQUY0QzRERjVENzY1MDQw QjkyNDFBQzcwHhcNMjQwNTA1MDMyNjU0WhcNMjQwNTEyMDMyNjU0WjAYMRYwFAYD VQQDEw02NjM2ZmM3ZS1iMmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRWSO7nIjxbsd3PHV7cL3ttseRH3PgDN6IU+hxzz/nVQLl2K5Py/GN3TLuQB TBDVhFChmHmIx8yxUhbZg47oV2aNnPkqJfLYZFb4pBmHDT3ZrMLfCRhe8g29qA09 YOXx7+ACKgc7Am2Mjnz0AWdlZ2TOqHqKLR2x/VqsHKkGMLoECynjhmFTTfG3GTUB FSa5KmY67oH/mVAosyKev2SIMdXtwWd4+4AWRZgLOMIEBr2Ms6wZGe1ujdGWIMHV Y+BuXdQ7nKT95aQTzopBlTiergBfpcAYQ/fHRMzl32fXBOZLDMVUp9Bljn/iZ4sX XrvWNB63e7Pw+CT+LOYzbn3vSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMDGr3qV CduDn2IjqnmQHBoE+0qvMB8GA1UdIwQYMBaAFMcL89/0UCPUGvTE3112UEC5JBrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDNGRS85ODE0ODA2Mjk1 NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5UWE5TVRmWFhaUVFMa2tH c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3dnozX1JRSTlRYTlNVGZYWFpRUUxra0dzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDNGRS85ODE0ODA2Mjk1NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5 UWE5TVRmWFhaUVFMa2tHc2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO1uuxWvx50g9twwfXZHWiupR18U7w/XToq5koH4N5X26qlwYIGEBk neH/8HZkVWdC/wiSUUoeaP+18d0V2VsYh0KjGXb13wVEbeFzqmF4IlrXdI+j4PV1 Aonw6ECMEWZZ321a8u16avz3HvE8JuRr5Dre7MyOivUblFQhhmjIrgjp7vwVXFxA JUitdKdanGTKdZD6Umjnr1kAeiEzXDdy8mv8bvErx3FCASyoRmIPxnTVotEZmFoD msnLm8lSZAPhVLsobjojvqK3rcv8itPtkDBogWFdLpP26OvxHY/+agbSdmF4tleg FFQ7wvkBSy1yWFkJtglbwh6jRdHgrc5V -----END CERTIFICATE-----Generated at Sun May 5 04:39:57 2024 by rpki-client on console-ams.rpki-client.org