$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft File: XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json) Hash identifier: jjOZkJ7s+O8wVn0KcVEbAHAH9iAi359hXj7biEHdPpo= Subject key identifier: 31:E7:28:AD:D9:35:1A:01:4F:97:5B:E3:86:41:0E:E8:AA:C0:49:E0 Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Certificate serial: 0394 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft Manifest number: 0390 Signing time: Fri 03 May 2024 02:43:51 +0000 Manifest this update: Fri 03 May 2024 02:43:50 +0000 Manifest next update: Fri 10 May 2024 02:43:50 +0000 Files and hashes: 1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: TG9P6noEC7N6FOD4CN754ewJbTdInsLSf4sLdi+tSJk=) 2: 2CDB14025F0D11EC8C2C2820C4F9AE02.roa (hash: vbAv8jFpcKGkTBbQKVUR1BzPpCcxmGf0d9qtp3KoN/M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 02:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 916 (0x394) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Validity Not Before: May 3 02:43:50 2024 GMT Not After : May 10 02:43:50 2024 GMT Subject: CN=66344f66-7387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9a:42:d5:8b:ac:dd:99:a1:ff:0d:6a:4a:75: 18:91:78:f5:69:c8:a4:23:62:6f:8c:04:c9:ea:bb: 85:46:75:de:44:00:16:c0:0c:f5:23:fa:22:30:ce: e1:97:bb:0b:fb:6b:31:10:77:24:53:76:8a:7d:d8: bb:63:d6:60:2a:4c:19:d7:ce:85:32:c0:e3:d1:c8: 47:c6:1a:6f:b9:f3:bb:ee:58:9e:2a:60:2d:ee:d0: 78:49:ff:47:37:a2:61:99:20:f1:bb:8f:57:a3:fa: 26:69:0c:f4:95:d6:cb:eb:11:9c:95:a6:ed:9b:77: b0:cc:3a:71:78:97:a4:8e:4d:64:1a:38:98:21:95: 9d:9c:fc:28:96:bb:58:d8:47:df:eb:5f:8c:4b:c4: af:93:a1:c9:02:cd:d2:b1:63:08:3d:35:c9:36:f8: 2b:9c:70:de:a7:00:bd:30:a4:b5:a3:bb:3e:13:ac: 92:67:ca:fa:a1:4c:47:57:89:f0:e2:72:9b:db:18: de:46:8f:5f:ff:b4:8b:7f:41:67:2b:e2:43:8a:26: 9f:59:11:15:5b:e8:75:71:e2:19:37:be:f4:25:6c: 48:e2:35:46:b4:92:9a:65:5f:c4:b7:8c:e7:84:f2: 38:a6:ee:68:44:c1:84:71:97:84:5d:37:ed:93:90: 6a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:E7:28:AD:D9:35:1A:01:4F:97:5B:E3:86:41:0E:E8:AA:C0:49:E0 X509v3 Authority Key Identifier: keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:6e:67:3c:73:63:8d:40:00:5b:98:4d:80:ae:56:a1:e2:1c: 3d:3d:cb:e7:77:51:9b:f0:b6:0c:2d:d2:bc:75:42:2f:f9:f2: c5:fb:f1:5b:34:5f:eb:0e:ce:6a:2d:82:7b:0f:d4:50:5c:3b: ec:a0:28:75:e0:79:12:af:b5:a8:79:3e:17:4c:50:38:73:41: 24:b8:e7:46:af:fc:da:90:eb:65:43:57:13:da:1c:77:d1:51: ac:00:bd:d3:40:96:1c:ed:e8:e4:4a:84:fe:a7:2c:28:95:a2: 4f:72:7a:ca:45:ff:34:d1:df:50:7b:b3:36:bc:38:b1:4e:ba: b8:02:97:e6:61:a6:27:4a:5c:f1:7c:d5:1a:30:63:a8:30:e5: 93:4b:5f:de:18:84:4c:ae:f1:0b:94:5c:bc:21:26:4c:76:17: c7:bb:fe:c7:20:38:cd:8c:ad:f5:a5:7f:98:5e:a7:62:9b:1a: d6:37:63:b3:94:84:c0:e2:56:1b:b0:94:0c:c0:69:80:e1:a1: ee:ba:4b:b9:03:f6:62:0c:e3:85:3e:4a:fe:ab:91:d9:af:31: 49:3b:b3:94:64:72:35:6e:07:65:70:76:cc:cc:3d:db:a3:ec: a7:21:ef:81:24:03:d4:3e:f0:a3:1d:d0:c8:8b:16:04:58:dc: 4d:0f:23:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz M0JDMDI5N0EwHhcNMjQwNTAzMDI0MzUwWhcNMjQwNTEwMDI0MzUwWjAYMRYwFAYD VQQDEw02NjM0NGY2Ni03Mzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZpC1Yus3Zmh/w1qSnUYkXj1acikI2JvjATJ6ruFRnXeRAAWwAz1I/oiMM7h l7sL+2sxEHckU3aKfdi7Y9ZgKkwZ186FMsDj0chHxhpvufO77lieKmAt7tB4Sf9H N6JhmSDxu49Xo/omaQz0ldbL6xGclabtm3ewzDpxeJekjk1kGjiYIZWdnPwolrtY 2Eff61+MS8Svk6HJAs3SsWMIPTXJNvgrnHDepwC9MKS1o7s+E6ySZ8r6oUxHV4nw 4nKb2xjeRo9f/7SLf0FnK+JDiiafWREVW+h1ceIZN770JWxI4jVGtJKaZV/Et4zn hPI4pu5oRMGEcZeEXTftk5BqZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDHnKK3Z NRoBT5db44ZBDuiqwEngMB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjRBRi83NkM3RjBGNDUxRjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2 M1dMSElBWEhaRU16dkFLWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDbmc8c2ONQABbmE2Arlah4hw9Pcvnd1Gb8LYMLdK8dUIv+fLF+/Fb NF/rDs5qLYJ7D9RQXDvsoCh14HkSr7WoeT4XTFA4c0EkuOdGr/zakOtlQ1cT2hx3 0VGsAL3TQJYc7ejkSoT+pywolaJPcnrKRf800d9Qe7M2vDixTrq4ApfmYaYnSlzx fNUaMGOoMOWTS1/eGIRMrvELlFy8ISZMdhfHu/7HIDjNjK31pX+YXqdimxrWN2Oz lITA4lYbsJQMwGmA4aHuuku5A/ZiDOOFPkr+q5HZrzFJO7OUZHI1bgdlcHbMzD3b o+ynIe+BJAPUPvCjHdDIixYEWNxNDyOC -----END CERTIFICATE-----Generated at Fri May 3 04:45:13 2024 by rpki-client on console-fra.rpki-client.org