$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft File: XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft (raw, json) Hash identifier: 7veJXJzzHb2Y/T5lsSF0R47o4NhmF13AsmGuWW9PvNU= Subject key identifier: F9:E5:55:02:2F:42:C0:E1:7C:25:65:6B:4C:3A:CF:D5:09:F0:ED:47 Authority key identifier: 5E:E7:CF:43:9A:42:23:23:29:82:A2:CB:4D:E5:4F:37:C7:20:5A:A9 Certificate issuer: /CN=A913AE78/serialNumber=5EE7CF439A4223232982A2CB4DE54F37C7205AA9 Certificate serial: 0684 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft Manifest number: 067F Signing time: Sat 04 May 2024 23:33:50 +0000 Manifest this update: Sat 04 May 2024 23:33:50 +0000 Manifest next update: Sat 11 May 2024 23:33:50 +0000 Files and hashes: 1: XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl (hash: bA+0vhIN97TewdxPgNeah0kTzzGWnd9aSgjxqNrP258=) 2: D6138A3C292A11EB9CEDCC26C4F9AE02.roa (hash: J6wRwCEypaCA7yOjNTmPOdJfyJMJ+HapTPhwk9wWQrM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1668 (0x684) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE78/serialNumber=5EE7CF439A4223232982A2CB4DE54F37C7205AA9 Validity Not Before: May 4 23:33:50 2024 GMT Not After : May 11 23:33:50 2024 GMT Subject: CN=6636c5de-6bf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bb:cb:79:06:31:73:5d:89:95:5b:ff:ff:c9: 69:ee:a6:7e:9a:09:ad:21:7b:77:4b:be:47:49:82: 03:ea:41:84:1d:1e:a5:b7:45:ff:39:25:21:10:a9: 01:dd:d9:bf:42:a6:05:cc:7b:4a:1d:09:35:a4:d5: 38:29:6f:5f:cd:06:e5:e7:c5:26:3b:c0:03:6e:1f: ec:b3:94:2a:70:a4:36:b9:d9:24:9b:dd:c0:e6:22: 06:55:6e:c9:63:7f:73:fc:72:43:ad:fc:10:bb:b9: aa:25:74:e9:e3:d1:97:20:cf:dd:5c:b1:9e:df:73: ca:4a:c0:3c:c1:2c:ff:12:a1:e1:14:b1:a2:62:88: 7e:dd:79:37:29:ad:7c:2c:73:93:f5:e2:11:3a:fb: 4e:78:e8:96:10:c6:69:f0:50:be:8b:4a:94:98:7f: 4e:7f:0e:e3:55:71:36:fa:8e:f1:f1:ce:ae:2c:ef: 41:cc:f9:3e:85:5c:2f:e8:c9:82:7a:60:a9:33:da: 83:31:05:ca:d7:02:b0:3a:d1:8c:bb:c1:ac:ff:e9: 10:22:43:92:04:3d:8f:d2:84:2a:10:cf:7d:da:fc: 48:62:de:77:b1:96:4e:19:c1:15:5c:5e:62:34:28: 77:8d:f2:40:d6:fc:46:48:95:dc:28:ce:41:66:a8: 1c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:E5:55:02:2F:42:C0:E1:7C:25:65:6B:4C:3A:CF:D5:09:F0:ED:47 X509v3 Authority Key Identifier: keyid:5E:E7:CF:43:9A:42:23:23:29:82:A2:CB:4D:E5:4F:37:C7:20:5A:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:ee:5c:29:f4:18:dc:ff:7a:8b:99:73:b9:c7:80:c6:b0:6b: d6:6b:99:a3:75:82:9c:9e:18:1f:bc:fc:34:73:ed:dd:f2:fc: 36:98:37:b5:21:ff:42:e2:d0:fc:5f:a9:26:85:0e:7a:75:55: 08:b6:41:62:9e:ed:da:ce:41:14:6a:1e:f6:ee:7c:ad:5c:21: d2:fe:2a:bc:98:41:82:92:12:1a:42:b8:b9:6c:10:42:4f:33: 30:9a:54:17:f0:27:32:d3:16:83:dc:4c:3e:de:e4:9e:4e:f7: 7b:83:2f:a9:d3:a4:47:d5:ff:eb:fa:65:17:1d:d0:3a:c2:5b: 18:82:02:c9:89:aa:b7:28:dc:a9:c4:9f:bf:e9:32:9f:24:f2: d1:1c:4f:9d:03:f3:18:85:6b:5b:c0:74:f0:78:1c:45:1a:68: ba:13:0d:1c:eb:e4:ed:6e:62:f3:fe:2d:9a:55:da:94:8f:18: c6:89:f9:87:d5:58:7b:91:df:0e:b6:07:0e:cd:0e:f6:70:f9: ad:c2:ed:d0:5e:07:b2:6d:08:cb:f9:a2:a6:4d:64:8f:c6:0f: f7:05:ea:0e:fe:55:9a:06:17:7b:28:27:38:48:a4:3d:f4:a2: bb:6a:85:f4:7e:cb:e4:3d:60:48:9e:3d:0e:c4:1e:a6:40:12: 50:d0:dd:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFNzgxMTAvBgNVBAUTKDVFRTdDRjQzOUE0MjIzMjMyOTgyQTJDQjRERTU0RjM3 QzcyMDVBQTkwHhcNMjQwNTA0MjMzMzUwWhcNMjQwNTExMjMzMzUwWjAYMRYwFAYD VQQDEw02NjM2YzVkZS02YmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrvLeQYxc12JlVv//8lp7qZ+mgmtIXt3S75HSYID6kGEHR6lt0X/OSUhEKkB 3dm/QqYFzHtKHQk1pNU4KW9fzQbl58UmO8ADbh/ss5QqcKQ2udkkm93A5iIGVW7J Y39z/HJDrfwQu7mqJXTp49GXIM/dXLGe33PKSsA8wSz/EqHhFLGiYoh+3Xk3Ka18 LHOT9eIROvtOeOiWEMZp8FC+i0qUmH9Ofw7jVXE2+o7x8c6uLO9BzPk+hVwv6MmC emCpM9qDMQXK1wKwOtGMu8Gs/+kQIkOSBD2P0oQqEM992vxIYt53sZZOGcEVXF5i NCh3jfJA1vxGSJXcKM5BZqgcGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPnlVQIv QsDhfCVla0w6z9UJ8O1HMB8GA1UdIwQYMBaAFF7nz0OaQiMjKYKiy03lTzfHIFqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUU3OC9GMUY0RDNDRTI5 MjkxMUVCOTRFMzhEMjZDNEY5QUUwMi9YdWZQUTVwQ0l5TXBncUxMVGVWUE44Y2dX cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h1ZlBRNXBDSXlNcGdxTExUZVZQTjhjZ1dxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUU3OC9GMUY0RDNDRTI5MjkxMUVCOTRFMzhEMjZDNEY5QUUwMi9YdWZQUTVwQ0l5 TXBncUxMVGVWUE44Y2dXcWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC97lwp9Bjc/3qLmXO5x4DGsGvWa5mjdYKcnhgfvPw0c+3d8vw2mDe1 If9C4tD8X6kmhQ56dVUItkFinu3azkEUah727nytXCHS/iq8mEGCkhIaQri5bBBC TzMwmlQX8Ccy0xaD3Ew+3uSeTvd7gy+p06RH1f/r+mUXHdA6wlsYggLJiaq3KNyp xJ+/6TKfJPLRHE+dA/MYhWtbwHTweBxFGmi6Ew0c6+TtbmLz/i2aVdqUjxjGifmH 1Vh7kd8OtgcOzQ72cPmtwu3QXgeybQjL+aKmTWSPxg/3BeoO/lWaBhd7KCc4SKQ9 9KK7aoX0fsvkPWBInj0OxB6mQBJQ0N1k -----END CERTIFICATE-----Generated at Sun May 5 00:14:41 2024 by rpki-client on console-ams.rpki-client.org