$ rpki-client -vvf rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft File: xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft (raw, json) Hash identifier: RqrzgbqDc/w58EVi/a76WB+XaPtFUQ3c5Fg59O6AygY= Subject key identifier: AA:0F:F9:61:FC:91:22:BA:4B:D5:99:C2:8F:75:36:F3:0D:1D:74:D2 Authority key identifier: C6:A5:76:F0:8C:D4:A7:3E:A9:DD:97:50:3B:C9:D2:8B:05:91:1B:9C Certificate issuer: /CN=A91423FF/serialNumber=C6A576F08CD4A73EA9DD97503BC9D28B05911B9C Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xqV28IzUpz6p3ZdQO8nSiwWRG5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft Manifest number: 83 Signing time: Fri 17 May 2024 07:15:17 +0000 Manifest this update: Fri 17 May 2024 07:15:16 +0000 Manifest next update: Fri 24 May 2024 07:15:16 +0000 Files and hashes: 1: xqV28IzUpz6p3ZdQO8nSiwWRG5w.crl (hash: dlngGJnKSVguLW0OS6iRPyWCOlYmsq3zDiSoonoS4EM=) 2: 278C467E4DF911EE8927F265C4F9AE02.roa (hash: E5EaPgzQKieBmui3X8e7CimD9DBjVpDLM/BQrpD2ci4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.crl rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xqV28IzUpz6p3ZdQO8nSiwWRG5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:15:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91423FF/serialNumber=C6A576F08CD4A73EA9DD97503BC9D28B05911B9C Validity Not Before: May 17 07:15:16 2024 GMT Not After : May 24 07:15:16 2024 GMT Subject: CN=66470405-655a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:01:fe:87:b5:d2:b6:e5:ee:ae:52:02:db:34: c6:ff:d1:0a:ce:c3:db:54:49:f0:87:1e:0b:4c:72: 9f:6e:28:cf:87:b6:73:e4:6b:f3:a8:a7:ce:7c:9e: a0:2e:e6:cb:c1:9b:54:f0:e8:ad:29:88:ac:81:8d: 5b:36:22:33:2f:75:fe:94:1c:b4:39:90:32:69:d7: 3d:f8:ea:bd:ef:4d:38:4c:25:7b:1d:49:3f:af:7a: 12:53:e7:89:e3:0a:bc:97:b8:b6:b4:54:71:24:e3: f1:0f:25:c4:65:b8:d0:72:30:56:d5:73:b3:85:27: d2:1c:40:23:cb:2e:b3:69:9e:96:b9:d0:fc:16:7a: ca:bc:f6:df:44:49:97:84:7c:68:45:37:90:ea:4d: cd:8b:e6:2e:70:4e:19:6d:4b:cd:36:e3:58:df:46: 4a:dd:a5:23:dc:4c:64:b4:76:5d:9d:64:51:35:d3: ae:1c:3a:7d:ee:8e:e8:71:4d:76:2e:d2:08:3c:e7: 10:a5:ab:53:a9:1d:7c:e7:fe:72:0a:6f:9c:53:b1: 30:c1:be:97:56:3c:10:eb:02:96:81:d4:8b:ee:f8: 57:78:77:19:11:a7:b6:21:a3:7d:e5:be:13:14:e4: 79:29:2c:2a:4d:1c:4d:87:62:0b:36:d0:77:67:c5: f0:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:0F:F9:61:FC:91:22:BA:4B:D5:99:C2:8F:75:36:F3:0D:1D:74:D2 X509v3 Authority Key Identifier: keyid:C6:A5:76:F0:8C:D4:A7:3E:A9:DD:97:50:3B:C9:D2:8B:05:91:1B:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xqV28IzUpz6p3ZdQO8nSiwWRG5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:37:cd:ff:a2:8e:e2:ad:24:eb:a5:f7:2c:91:29:3a:76:e8: c5:14:85:89:37:d8:48:cb:c1:5f:60:ae:9c:b9:61:42:ec:bd: 64:4e:02:6a:47:86:24:97:3a:af:67:7d:d2:56:bd:2a:32:eb: 23:97:fe:3d:94:9e:2f:72:77:5f:e6:4e:63:b0:d2:60:f0:f4: c9:8c:51:55:db:d4:b7:bd:55:af:71:1c:3d:c7:65:c0:12:d7: 66:30:ec:a5:f2:f5:b0:7c:6b:88:6f:67:1a:e6:0d:ca:f0:41: 5a:d9:03:34:c2:5b:a2:e1:fd:cf:27:65:30:58:c9:95:1f:62: 04:d9:5e:e9:f9:93:8b:08:5a:18:d8:b9:61:c0:a6:40:40:38: 60:9b:0f:98:6a:79:98:97:1b:f3:0d:1b:ed:8c:8a:d0:4b:d6: 34:1b:f3:bb:d5:64:10:c4:97:6c:3b:5a:83:43:5b:0e:a6:cc: 8b:d8:0d:53:8d:9e:06:ce:e9:b0:ee:42:76:c7:8a:42:6c:b8: 14:d2:c7:e4:ea:bc:64:9f:01:62:1b:d7:50:b7:e4:f7:75:0a: cd:0b:76:9a:83:0c:f5:48:70:a4:40:7c:35:6a:16:0a:9c:75: 02:e6:f8:6f:65:f9:55:af:3d:f7:c3:a4:61:be:fb:db:a6:06: 5e:00:bf:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzRkYxMTAvBgNVBAUTKEM2QTU3NkYwOENENEE3M0VBOUREOTc1MDNCQzlEMjhC MDU5MTFCOUMwHhcNMjQwNTE3MDcxNTE2WhcNMjQwNTI0MDcxNTE2WjAYMRYwFAYD VQQDEw02NjQ3MDQwNS02NTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2AH+h7XStuXurlIC2zTG/9EKzsPbVEnwhx4LTHKfbijPh7Zz5GvzqKfOfJ6g LubLwZtU8OitKYisgY1bNiIzL3X+lBy0OZAyadc9+Oq97004TCV7HUk/r3oSU+eJ 4wq8l7i2tFRxJOPxDyXEZbjQcjBW1XOzhSfSHEAjyy6zaZ6WudD8FnrKvPbfREmX hHxoRTeQ6k3Ni+YucE4ZbUvNNuNY30ZK3aUj3ExktHZdnWRRNdOuHDp97o7ocU12 LtIIPOcQpatTqR185/5yCm+cU7Ewwb6XVjwQ6wKWgdSL7vhXeHcZEae2IaN95b4T FOR5KSwqTRxNh2ILNtB3Z8XwGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKoP+WH8 kSK6S9WZwo91NvMNHXTSMB8GA1UdIwQYMBaAFMaldvCM1Kc+qd2XUDvJ0osFkRuc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjNGRi9EODVBMEI3QzRE RjgxMUVFODg2ODdCNjVDNEY5QUUwMi94cVYyOEl6VXB6NnAzWmRRTzhuU2l3V1JH NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hxVjI4SXpVcHo2cDNaZFFPOG5TaXdXUkc1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjNGRi9EODVBMEI3QzRERjgxMUVFODg2ODdCNjVDNEY5QUUwMi94cVYyOEl6VXB6 NnAzWmRRTzhuU2l3V1JHNXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVN83/oo7irSTrpfcskSk6dujFFIWJN9hIy8FfYK6cuWFC7L1kTgJq R4YklzqvZ33SVr0qMusjl/49lJ4vcndf5k5jsNJg8PTJjFFV29S3vVWvcRw9x2XA EtdmMOyl8vWwfGuIb2ca5g3K8EFa2QM0wlui4f3PJ2UwWMmVH2IE2V7p+ZOLCFoY 2LlhwKZAQDhgmw+YanmYlxvzDRvtjIrQS9Y0G/O71WQQxJdsO1qDQ1sOpsyL2A1T jZ4Gzumw7kJ2x4pCbLgU0sfk6rxknwFiG9dQt+T3dQrNC3aagwz1SHCkQHw1ahYK nHUC5vhvZflVrz33w6RhvvvbpgZeAL+P -----END CERTIFICATE-----Generated at Fri May 17 08:13:49 2024 by rpki-client on console-fra.rpki-client.org