$ rpki-client -vvf rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft File: XLKYvBpwUBeAXFYfCQoNR5UOar0.mft (raw, json) Hash identifier: FZFeGW2Bq9pQbCmD7mrL2lB9OwMNSkizHgGnlgizxh8= Subject key identifier: 3B:AA:5B:C2:10:3A:B0:9E:33:B7:78:6A:46:43:AD:D3:FF:E8:A0:88 Authority key identifier: 5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD Certificate issuer: /CN=A912BFC5/serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Certificate serial: 2447 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft Manifest number: 2447 Signing time: Tue 28 May 2024 14:16:48 +0000 Manifest this update: Tue 28 May 2024 14:16:47 +0000 Manifest next update: Tue 04 Jun 2024 14:16:47 +0000 Files and hashes: 1: XLKYvBpwUBeAXFYfCQoNR5UOar0.crl (hash: LeR2WrWx4r11iuk0IJFwBuLXAUHzgjPbbWLjMgeYR0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9287 (0x2447) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BFC5/serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Validity Not Before: May 28 14:16:47 2024 GMT Not After : Jun 4 14:16:47 2024 GMT Subject: CN=6655e750-09b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2d:73:c1:d8:af:e6:4c:b2:78:f2:b5:72:80: 42:d9:80:01:7b:ea:0e:a2:d9:4d:c7:36:1b:29:c0: 63:16:2b:ff:b4:86:66:31:63:d8:6a:21:88:c6:a3: 80:41:b3:34:bc:4e:41:ff:fd:1e:98:0f:91:d9:08: ef:5c:a9:53:8b:5c:8c:41:1d:83:c4:bd:9d:4d:06: ab:6d:ea:d1:93:25:86:6b:97:cd:ee:63:3e:78:4a: cd:8e:0b:1e:79:0c:fa:71:f1:c8:ba:53:0f:a1:19: 11:f5:ce:a9:3a:0d:99:95:f0:4f:77:ff:5a:15:e3: 21:29:d9:38:61:f4:75:e6:ce:b1:9e:4b:98:49:65: be:c2:b8:0e:89:41:d9:d6:4a:9d:33:39:57:44:e8: 32:3c:6c:cc:07:fe:d3:5c:c1:90:5b:48:92:9f:b0: eb:53:b6:94:cc:64:18:eb:34:0a:7f:3f:84:fc:26: 07:17:5d:4d:00:a9:48:85:e5:8a:a8:85:10:90:b9: 88:46:02:36:3d:6b:b5:e7:31:f8:a4:07:3a:e6:03: cc:09:0f:c2:f8:a8:3e:62:f8:0c:dc:de:44:3d:28: ec:09:cb:0f:7e:29:c7:2e:0e:3d:d9:c2:7e:57:97: 2b:f8:47:4b:67:19:89:3e:8d:58:d8:af:3a:c5:96: d6:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:AA:5B:C2:10:3A:B0:9E:33:B7:78:6A:46:43:AD:D3:FF:E8:A0:88 X509v3 Authority Key Identifier: keyid:5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:df:48:0b:68:25:a9:d4:8d:53:6c:ad:b2:4a:2c:6d:6a:48: dc:dc:22:3f:65:89:5d:90:b1:3f:61:36:9d:ab:c2:7c:4b:f0: 4b:67:a3:41:4c:c2:d6:b7:c7:7a:dc:59:09:bf:05:2c:2e:2d: 41:28:76:e4:30:90:10:89:28:42:f4:da:74:44:4b:ce:bb:7d: a9:5d:2c:8d:4e:8d:e9:f2:d0:c4:5b:ab:bf:68:c1:9a:a9:42: f8:22:d3:2b:a5:86:9a:b9:5f:cc:91:84:d2:21:c8:5e:f2:02: 6a:51:e6:98:bd:e0:65:d7:57:9d:53:60:3c:3f:7f:e1:ea:c2: 66:23:88:12:c8:ef:88:cb:f9:f2:14:f3:e7:bc:ad:20:09:14: 09:a4:15:59:79:ad:23:22:96:e8:7c:67:c1:ee:f8:e2:40:e2: c6:50:9f:ba:a6:ed:50:cf:88:b9:a1:18:fc:e5:09:46:d9:f9: e2:37:c9:f4:48:15:c8:fe:36:ed:db:da:eb:3e:ca:d2:dc:8f: 91:8b:8c:bb:a6:fe:57:1b:9b:a4:1c:94:ec:1c:31:41:02:50: 80:bb:a1:27:81:83:da:1f:70:d1:03:0f:69:76:46:5a:1c:1f: 45:17:22:7d:75:4d:7b:e2:81:33:55:d7:26:a3:1a:82:9e:e4: 60:80:58:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJGQzUxMTAvBgNVBAUTKDVDQjI5OEJDMUE3MDUwMTc4MDVDNTYxRjA5MEEwRDQ3 OTUwRTZBQkQwHhcNMjQwNTI4MTQxNjQ3WhcNMjQwNjA0MTQxNjQ3WjAYMRYwFAYD VQQDEw02NjU1ZTc1MC0wOWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwi1zwdiv5kyyePK1coBC2YABe+oOotlNxzYbKcBjFiv/tIZmMWPYaiGIxqOA QbM0vE5B//0emA+R2QjvXKlTi1yMQR2DxL2dTQarberRkyWGa5fN7mM+eErNjgse eQz6cfHIulMPoRkR9c6pOg2ZlfBPd/9aFeMhKdk4YfR15s6xnkuYSWW+wrgOiUHZ 1kqdMzlXROgyPGzMB/7TXMGQW0iSn7DrU7aUzGQY6zQKfz+E/CYHF11NAKlIheWK qIUQkLmIRgI2PWu15zH4pAc65gPMCQ/C+Kg+YvgM3N5EPSjsCcsPfinHLg492cJ+ V5cr+EdLZxmJPo1Y2K86xZbW6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDuqW8IQ OrCeM7d4akZDrdP/6KCIMB8GA1UdIwQYMBaAFFyymLwacFAXgFxWHwkKDUeVDmq9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkZDNS8zRjM0MjAzRTI5 MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VCZUFYRllmQ1FvTlI1VU9h cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hMS1l2QnB3VUJlQVhGWWZDUW9OUjVVT2FyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkZDNS8zRjM0MjAzRTI5MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VC ZUFYRllmQ1FvTlI1VU9hcjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe30gLaCWp1I1TbK2ySixtakjc3CI/ZYldkLE/YTadq8J8S/BLZ6NB TMLWt8d63FkJvwUsLi1BKHbkMJAQiShC9Np0REvOu32pXSyNTo3p8tDEW6u/aMGa qUL4ItMrpYaauV/MkYTSIche8gJqUeaYveBl11edU2A8P3/h6sJmI4gSyO+Iy/ny FPPnvK0gCRQJpBVZea0jIpbofGfB7vjiQOLGUJ+6pu1Qz4i5oRj85QlG2fniN8n0 SBXI/jbt29rrPsrS3I+Ri4y7pv5XG5ukHJTsHDFBAlCAu6EngYPaH3DRAw9pdkZa HB9FFyJ9dU174oEzVdcmoxqCnuRggFg2 -----END CERTIFICATE-----Generated at Tue May 28 15:19:41 2024 by rpki-client on console-ams.rpki-client.org