$ rpki-client -vvf rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.mft File: rXZeStXAqz70hB0-NIQoC-rLzC0.mft (raw, json) Hash identifier: Sj9FONDc0lkBZoHe52X85wr4/766BOjZTt47ZwlY7K8= Subject key identifier: 1C:FA:B6:3B:B7:BE:42:E7:CD:78:5A:D0:01:3F:CE:97:A1:8F:62:B3 Authority key identifier: AD:76:5E:4A:D5:C0:AB:3E:F4:84:1D:3E:34:84:28:0B:EA:CB:CC:2D Certificate issuer: /CN=A913CC0C/serialNumber=AD765E4AD5C0AB3EF4841D3E3484280BEACBCC2D Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXZeStXAqz70hB0-NIQoC-rLzC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.mft Manifest number: 62 Signing time: Fri 17 May 2024 07:46:36 +0000 Manifest this update: Fri 17 May 2024 07:46:35 +0000 Manifest next update: Fri 24 May 2024 07:46:35 +0000 Files and hashes: 1: rXZeStXAqz70hB0-NIQoC-rLzC0.crl (hash: e1va2DyHOl+hDiLXPQZ9dsaRHEw9hLCPr8+PjqO+Ubs=) 2: 791E1D14836E11EEAD2B0731C4F9AE02.roa (hash: nlX4UA9TsikyajFvvI/4zlXs7BTa/hUYD0dYR5wA+wc=) 3: 1DD8238C836E11EEBBF2912FC4F9AE02.roa (hash: dXDZSfPSyoqfwEaaeMTI4l7Przd6gT4wRfVGbGvRZvM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.crl rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXZeStXAqz70hB0-NIQoC-rLzC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:35:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CC0C/serialNumber=AD765E4AD5C0AB3EF4841D3E3484280BEACBCC2D Validity Not Before: May 17 07:46:35 2024 GMT Not After : May 24 07:46:35 2024 GMT Subject: CN=66470b5c-8594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b7:87:7c:7d:1e:06:7b:aa:04:ca:50:b9:cf: 72:04:7a:ea:5c:62:af:2c:35:de:17:24:24:07:ea: 1f:28:25:2d:97:88:24:26:5d:ad:3b:d7:91:34:4d: b0:d3:2a:e6:e1:c8:51:69:76:73:58:d9:6c:ac:0f: 98:f7:72:9a:c6:e5:98:13:14:72:13:b9:57:21:3f: e9:98:3f:e8:41:ad:4a:07:9c:5d:5a:a9:86:60:b3: 47:c1:94:41:72:f0:b0:c7:af:0e:5d:70:26:4d:ff: cc:07:50:c3:3c:49:66:a9:64:7d:c7:fe:7f:89:17: 61:83:e6:7c:20:b4:ce:f9:e1:84:fb:ce:3b:8d:c5: 49:cd:a4:bb:a5:31:55:3f:47:1e:fa:4d:d1:80:76: ad:a7:f2:88:ed:4a:af:de:01:6e:c2:33:7f:63:77: fc:0f:f2:7c:2f:b6:4b:49:a2:d6:b7:1e:46:4f:f2: a1:f8:d2:3c:12:2e:d3:c3:83:6c:f9:41:b6:6d:8a: 04:ca:28:b9:1a:79:b2:87:0c:cc:4a:bd:b0:3d:eb: a4:f6:36:85:70:2e:41:5c:97:f8:2f:bf:54:ae:79: 85:6d:37:6e:94:cf:12:4d:13:f0:62:ef:c8:d6:91: 3b:62:a4:e2:26:02:75:c8:42:25:ad:51:5d:5f:f6: 41:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:FA:B6:3B:B7:BE:42:E7:CD:78:5A:D0:01:3F:CE:97:A1:8F:62:B3 X509v3 Authority Key Identifier: keyid:AD:76:5E:4A:D5:C0:AB:3E:F4:84:1D:3E:34:84:28:0B:EA:CB:CC:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXZeStXAqz70hB0-NIQoC-rLzC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:36:62:cf:09:f5:43:90:c8:37:4e:e9:16:f6:8f:ee:ec:43: 80:00:aa:a4:fe:ee:60:cb:eb:a7:8b:c4:be:93:fc:38:d9:2d: 22:e4:6e:6f:b6:56:cf:3a:90:dc:71:9a:2e:ca:ef:7c:ae:30: d5:94:0a:b2:f3:3f:55:7b:87:c8:0b:fc:e7:be:e8:cb:97:07: 77:b6:d8:e6:97:95:5a:47:73:58:50:3e:72:a4:00:ea:2f:72: af:6c:d0:d0:a3:0b:dd:29:f1:2c:71:63:42:95:4a:d1:54:17: bc:a8:d8:c3:2e:e2:7d:d2:74:d6:92:35:50:ae:ad:18:4a:73: eb:f6:89:c2:bf:9d:0e:e6:8b:8f:50:9a:cf:90:33:bf:a1:f2: 9a:7a:4b:95:35:4d:c9:47:b0:f6:e6:11:b1:c6:18:14:92:6f: 1f:f7:87:6c:14:aa:21:86:97:9c:f5:8f:ec:bc:4d:1f:4a:66: 27:24:99:4e:29:67:92:dc:b5:f9:5e:7d:f2:31:17:6c:da:b0: f6:b4:7a:4b:eb:1b:7a:4b:7e:4b:8d:2d:63:bd:bc:58:30:9c: ca:4b:ed:84:f3:04:14:13:86:1b:01:67:61:ff:a2:5a:38:32: a1:3f:eb:dc:92:47:7a:b6:7a:25:4a:13:33:3c:7f:3c:aa:55: 86:39:7b:45 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz Q0MwQzExMC8GA1UEBRMoQUQ3NjVFNEFENUMwQUIzRUY0ODQxRDNFMzQ4NDI4MEJF QUNCQ0MyRDAeFw0yNDA1MTcwNzQ2MzVaFw0yNDA1MjQwNzQ2MzVaMBgxFjAUBgNV BAMTDTY2NDcwYjVjLTg1OTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnt4d8fR4Ge6oEylC5z3IEeupcYq8sNd4XJCQH6h8oJS2XiCQmXa0715E0TbDT KubhyFFpdnNY2WysD5j3cprG5ZgTFHITuVchP+mYP+hBrUoHnF1aqYZgs0fBlEFy 8LDHrw5dcCZN/8wHUMM8SWapZH3H/n+JF2GD5nwgtM754YT7zjuNxUnNpLulMVU/ Rx76TdGAdq2n8ojtSq/eAW7CM39jd/wP8nwvtktJota3HkZP8qH40jwSLtPDg2z5 QbZtigTKKLkaebKHDMxKvbA966T2NoVwLkFcl/gvv1SueYVtN26UzxJNE/Bi78jW kTtipOImAnXIQiWtUV1f9kHbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHPq2O7e+ QufNeFrQAT/Ol6GPYrMwHwYDVR0jBBgwFoAUrXZeStXAqz70hB0+NIQoC+rLzC0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNDQzBDLzg0MjU4NTZBODM1 NzExRUVBQkVCMkEzRkM0RjlBRTAyL3JYWmVTdFhBcXo3MGhCMC1OSVFvQy1yTHpD MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvclhaZVN0WEFxejcwaEIwLU5JUW9DLXJMekMwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTND QzBDLzg0MjU4NTZBODM1NzExRUVBQkVCMkEzRkM0RjlBRTAyL3JYWmVTdFhBcXo3 MGhCMC1OSVFvQy1yTHpDMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANo2Ys8J9UOQyDdO6Rb2j+7sQ4AAqqT+7mDL66eLxL6T/DjZLSLkbm+2 Vs86kNxxmi7K73yuMNWUCrLzP1V7h8gL/Oe+6MuXB3e22OaXlVpHc1hQPnKkAOov cq9s0NCjC90p8SxxY0KVStFUF7yo2MMu4n3SdNaSNVCurRhKc+v2icK/nQ7mi49Q ms+QM7+h8pp6S5U1TclHsPbmEbHGGBSSbx/3h2wUqiGGl5z1j+y8TR9KZickmU4p Z5LctfleffIxF2zasPa0ekvrG3pLfkuNLWO9vFgwnMpL7YTzBBQThhsBZ2H/olo4 MqE/69ySR3q2eiVKEzM8fzyqVYY5e0U= -----END CERTIFICATE-----Generated at Fri May 17 08:13:48 2024 by rpki-client on console-fra.rpki-client.org