$ rpki-client -vvf rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft File: XAVrgGGoYiwsBruFeG6dxhNhS8o.mft (raw, json) Hash identifier: yciCM4iqsAVxLmjtkHxiQpvQKjEJr/b6uhqBDrT043w= Subject key identifier: 7A:F7:22:58:2D:5F:92:9A:F1:5B:39:2E:89:1D:23:C3:25:9E:24:17 Authority key identifier: 5C:05:6B:80:61:A8:62:2C:2C:06:BB:85:78:6E:9D:C6:13:61:4B:CA Certificate issuer: /CN=A914A814/serialNumber=5C056B8061A8622C2C06BB85786E9DC613614BCA Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAVrgGGoYiwsBruFeG6dxhNhS8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft Manifest number: 0123 Signing time: Fri 03 May 2024 05:32:36 +0000 Manifest this update: Fri 03 May 2024 05:32:36 +0000 Manifest next update: Fri 10 May 2024 05:32:36 +0000 Files and hashes: 1: XAVrgGGoYiwsBruFeG6dxhNhS8o.crl (hash: Z58SNArPp5dCy+6k9dLXlJTUgj1Lr0J2Ww2Ub7qbsfI=) 2: 8C1315A8060611EFB7EFA66CC4F9AE02.roa (hash: ETvMuzBvPoU2G66qyTLqNfjzU5ef1XX1OEC6b7ttgWo=) 3: 29FFF260669111EE8D5C864EC4F9AE02.roa (hash: UstHa0h/lS0Ejz3NlYW5hRjgXwV2iLIp6rZSBMJAIUw=) 4: 71DFDF18890111EEB3F2581FC4F9AE02.roa (hash: 4lGrC6j9Ar0qV3nJ/nWQ09G7iVDLa+WgGVYfUvWHWIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.crl rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAVrgGGoYiwsBruFeG6dxhNhS8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A814/serialNumber=5C056B8061A8622C2C06BB85786E9DC613614BCA Validity Not Before: May 3 05:32:36 2024 GMT Not After : May 10 05:32:36 2024 GMT Subject: CN=663476f4-c3b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:41:cf:51:70:44:88:6a:70:d7:6b:51:bc:0d: 94:27:47:aa:98:e5:65:25:4d:51:c8:86:ff:08:0e: 1f:d0:76:8e:a4:4f:5e:d1:22:b3:86:c0:5f:18:b2: b5:f3:aa:38:a8:be:83:00:85:d8:e5:4d:74:ae:b1: 8c:18:ca:1b:34:03:b0:77:dd:36:e4:80:ec:0c:b4: 10:25:88:9d:66:0b:21:56:f0:6c:72:26:f3:e1:ba: 3b:52:be:c0:d2:0b:4f:43:fa:11:0c:66:87:67:87: 90:af:5f:fe:55:8b:b6:39:44:27:0f:6f:2b:7b:8f: 4c:07:be:c5:b8:9b:6f:e1:de:ae:3d:7f:e1:77:6a: 6c:eb:39:f0:dd:3b:66:bc:42:fc:ee:df:b1:b5:a8: 9d:f6:35:fd:05:ce:05:ad:5e:04:04:cb:81:e1:82: 80:97:59:3f:23:9b:8f:89:91:16:9f:d8:e8:26:86: 32:4d:51:58:88:e2:58:3d:35:6b:be:d7:a1:30:b8: 62:8c:71:e5:97:94:39:70:76:a4:10:d1:7f:be:2d: 5d:0f:26:f3:2e:71:cd:04:0c:64:c5:07:8f:f7:94: cf:8c:ef:2f:44:8c:6d:96:25:bc:d8:14:f0:5b:79: da:8e:6b:8b:a1:17:3a:71:6a:34:6b:8d:26:0d:0d: ce:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:F7:22:58:2D:5F:92:9A:F1:5B:39:2E:89:1D:23:C3:25:9E:24:17 X509v3 Authority Key Identifier: keyid:5C:05:6B:80:61:A8:62:2C:2C:06:BB:85:78:6E:9D:C6:13:61:4B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAVrgGGoYiwsBruFeG6dxhNhS8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:14:89:cf:cf:d3:8b:cf:dd:8b:86:c0:ec:23:c3:92:d3:37: 29:73:d2:9c:27:84:30:2c:76:f9:78:c7:4a:27:f6:ce:2c:13: a6:06:d4:55:c0:a1:77:47:fc:06:d2:09:1e:78:d4:ce:a8:75: 21:f7:32:c9:48:1f:ba:2d:41:8a:84:3b:a2:34:58:81:fa:42: c5:19:db:0d:71:32:a2:80:9f:c3:90:42:9d:4b:f1:1e:25:f0: b1:06:55:78:41:d5:d6:8a:73:b8:a6:b8:3a:e6:17:ff:c7:68: af:87:1f:75:8a:d5:f0:d0:f5:64:11:74:b5:23:8e:3e:3b:d2: 45:96:8c:4f:69:ff:bc:67:d7:af:f5:ce:02:d7:a6:c0:ef:ea: f4:4f:56:26:f5:ba:dd:ce:bc:7b:bb:58:b1:83:77:6e:c9:dc: 35:02:2c:97:3a:e1:f1:0a:e2:2a:85:14:34:47:ef:65:dc:db: ce:c7:0a:d8:d8:2d:2c:eb:7d:c5:f4:dd:bc:35:67:d6:e1:5e: 0f:f1:92:6a:ec:e6:5f:1b:12:4e:b1:20:02:9b:6d:79:d1:2a: 80:bd:5f:fe:01:59:7b:b2:36:f9:bc:b4:9c:30:75:59:35:1f: 11:7a:8c:bc:33:6d:03:cb:94:f7:fc:5d:d7:f3:d6:9b:20:6c: ca:f8:bb:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE4MTQxMTAvBgNVBAUTKDVDMDU2QjgwNjFBODYyMkMyQzA2QkI4NTc4NkU5REM2 MTM2MTRCQ0EwHhcNMjQwNTAzMDUzMjM2WhcNMjQwNTEwMDUzMjM2WjAYMRYwFAYD VQQDEw02NjM0NzZmNC1jM2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUHPUXBEiGpw12tRvA2UJ0eqmOVlJU1RyIb/CA4f0HaOpE9e0SKzhsBfGLK1 86o4qL6DAIXY5U10rrGMGMobNAOwd9025IDsDLQQJYidZgshVvBscibz4bo7Ur7A 0gtPQ/oRDGaHZ4eQr1/+VYu2OUQnD28re49MB77FuJtv4d6uPX/hd2ps6znw3Ttm vEL87t+xtaid9jX9Bc4FrV4EBMuB4YKAl1k/I5uPiZEWn9joJoYyTVFYiOJYPTVr vtehMLhijHHll5Q5cHakENF/vi1dDybzLnHNBAxkxQeP95TPjO8vRIxtliW82BTw W3najmuLoRc6cWo0a40mDQ3OLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHr3Ilgt X5Ka8Vs5LokdI8MlniQXMB8GA1UdIwQYMBaAFFwFa4BhqGIsLAa7hXhuncYTYUvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTgxNC9EMzhBMTkxMjc0 NUUxMUVEQkE2ODg1MTRDNEY5QUUwMi9YQVZyZ0dHb1lpd3NCcnVGZUc2ZHhoTmhT OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBVnJnR0dvWWl3c0JydUZlRzZkeGhOaFM4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTgxNC9EMzhBMTkxMjc0NUUxMUVEQkE2ODg1MTRDNEY5QUUwMi9YQVZyZ0dHb1lp d3NCcnVGZUc2ZHhoTmhTOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaFInPz9OLz92LhsDsI8OS0zcpc9KcJ4QwLHb5eMdKJ/bOLBOmBtRV wKF3R/wG0gkeeNTOqHUh9zLJSB+6LUGKhDuiNFiB+kLFGdsNcTKigJ/DkEKdS/Ee JfCxBlV4QdXWinO4prg65hf/x2ivhx91itXw0PVkEXS1I44+O9JFloxPaf+8Z9ev 9c4C16bA7+r0T1Ym9brdzrx7u1ixg3duydw1AiyXOuHxCuIqhRQ0R+9l3NvOxwrY 2C0s633F9N28NWfW4V4P8ZJq7OZfGxJOsSACm2150SqAvV/+AVl7sjb5vLScMHVZ NR8Reoy8M20Dy5T3/F3X89abIGzK+Ltn -----END CERTIFICATE-----Generated at Fri May 3 06:18:28 2024 by rpki-client on console-ams.rpki-client.org