$ rpki-client -vvf rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft File: XCJQF8zJYrDnOQswzwpWIvfN-u0.mft (raw, json) Hash identifier: m1xFEWUo6gtgcaR/gzwTtIYjbeKmPmXr+RzLhkea62s= Subject key identifier: A3:F3:96:0A:DC:A6:E1:8F:71:C2:C3:A3:D7:04:95:0C:E0:36:8C:79 Authority key identifier: 5C:22:50:17:CC:C9:62:B0:E7:39:0B:30:CF:0A:56:22:F7:CD:FA:ED Certificate issuer: /CN=A9154330/serialNumber=5C225017CCC962B0E7390B30CF0A5622F7CDFAED Certificate serial: 11E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCJQF8zJYrDnOQswzwpWIvfN-u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft Manifest number: 11E5 Signing time: Mon 06 May 2024 17:47:53 +0000 Manifest this update: Mon 06 May 2024 17:47:53 +0000 Manifest next update: Mon 13 May 2024 17:47:53 +0000 Files and hashes: 1: XCJQF8zJYrDnOQswzwpWIvfN-u0.crl (hash: c6Ffpxq+8xZ+6onSgcBMLwM9b6k0heQgljbtv3GihgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.crl rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCJQF8zJYrDnOQswzwpWIvfN-u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 17:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4582 (0x11e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154330/serialNumber=5C225017CCC962B0E7390B30CF0A5622F7CDFAED Validity Not Before: May 6 17:47:53 2024 GMT Not After : May 13 17:47:53 2024 GMT Subject: CN=663917c9-ca4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:f5:2a:57:60:0b:4d:a7:d7:db:2d:0a:6f:fc: a7:f4:50:6f:4a:74:88:ba:56:58:3a:fe:5e:1a:14: 88:98:08:cd:e8:1e:a5:e0:20:14:7c:bb:03:f8:cb: 4c:71:a5:dd:b1:cb:8e:41:6c:04:32:02:11:0d:dd: 17:87:1e:b2:f6:af:18:5d:b4:c5:ac:f3:9d:67:79: b6:a1:57:ab:a1:3d:ff:d7:b9:2e:bf:6e:ea:0c:2c: 17:14:74:db:e4:e3:ab:ea:36:c4:4f:6b:ba:83:22: 5c:2e:3f:68:f0:5f:fc:6d:39:01:83:70:71:97:fd: ec:a6:60:3f:06:12:45:70:6c:1c:13:f3:4d:03:ae: e4:b3:89:d1:36:aa:85:36:98:99:cd:5a:27:0b:90: 18:10:e3:53:9a:e8:d5:44:77:be:16:13:23:a5:09: 0e:e3:b5:e1:e3:37:4f:3f:cf:88:33:f5:1d:00:e2: e9:3c:cd:e7:32:4a:a8:57:09:35:23:f3:43:3a:ed: 21:aa:0c:b5:cb:c5:67:87:1a:f9:59:b9:51:45:ef: a4:ed:e1:77:b8:55:69:8f:3f:77:b0:c9:d9:a9:9d: 5e:47:24:f7:1a:9e:65:0b:4d:2c:7d:70:59:8a:b9: 38:7a:b0:08:b3:ad:1a:0f:cf:ac:5e:65:49:8f:17: 44:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:F3:96:0A:DC:A6:E1:8F:71:C2:C3:A3:D7:04:95:0C:E0:36:8C:79 X509v3 Authority Key Identifier: keyid:5C:22:50:17:CC:C9:62:B0:E7:39:0B:30:CF:0A:56:22:F7:CD:FA:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCJQF8zJYrDnOQswzwpWIvfN-u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:6b:dc:12:46:5d:c4:ee:07:06:06:0c:a8:fc:ad:43:6d:02: 43:bf:bf:19:47:a0:16:3d:2b:c4:13:cc:64:5a:59:76:e1:de: 73:8d:1a:9f:fd:2c:3a:b9:2c:2c:25:06:3c:fe:d0:c7:31:f0: 19:5a:fd:79:ab:c3:c3:8c:11:e4:e1:1f:d8:a1:15:7e:fc:4f: 64:c8:a4:e0:79:e4:23:eb:6d:21:35:8a:c2:62:96:95:8a:1c: 0a:84:5e:5d:b5:40:c1:07:a9:49:92:ca:68:6b:d1:25:60:38: 79:81:33:c0:13:11:bd:e9:90:f5:ba:88:30:77:5b:3b:2d:d7: 58:a9:52:15:a5:f2:8a:8a:48:21:27:0d:8e:1c:66:ba:e7:50: ca:03:32:a3:9d:a8:fc:c1:c9:f4:56:c8:59:a2:f6:a4:fc:d0: 3d:37:a6:22:9d:5b:e3:0b:f5:2d:64:b7:0c:e5:d3:a8:45:f3: 0d:c7:14:b3:e4:3b:5b:1e:1e:b6:a7:d3:20:9b:8a:32:7c:19: 48:0f:b6:68:b4:58:4a:f8:3d:a1:1f:ba:94:ed:95:c7:34:83: 32:c3:fa:6f:23:cb:ea:8d:fc:07:f1:48:e1:47:1e:b2:32:ef: f9:54:92:2d:34:3f:80:97:47:c4:0d:9d:08:9b:a7:35:54:27: fb:9b:00:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzMzAxMTAvBgNVBAUTKDVDMjI1MDE3Q0NDOTYyQjBFNzM5MEIzMENGMEE1NjIy RjdDREZBRUQwHhcNMjQwNTA2MTc0NzUzWhcNMjQwNTEzMTc0NzUzWjAYMRYwFAYD VQQDEw02NjM5MTdjOS1jYTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6fUqV2ALTafX2y0Kb/yn9FBvSnSIulZYOv5eGhSImAjN6B6l4CAUfLsD+MtM caXdscuOQWwEMgIRDd0Xhx6y9q8YXbTFrPOdZ3m2oVeroT3/17kuv27qDCwXFHTb 5OOr6jbET2u6gyJcLj9o8F/8bTkBg3Bxl/3spmA/BhJFcGwcE/NNA67ks4nRNqqF NpiZzVonC5AYEONTmujVRHe+FhMjpQkO47Xh4zdPP8+IM/UdAOLpPM3nMkqoVwk1 I/NDOu0hqgy1y8Vnhxr5WblRRe+k7eF3uFVpjz93sMnZqZ1eRyT3Gp5lC00sfXBZ irk4erAIs60aD8+sXmVJjxdEGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPzlgrc puGPccLDo9cElQzgNox5MB8GA1UdIwQYMBaAFFwiUBfMyWKw5zkLMM8KViL3zfrt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDMzMC9FQUQ4NzYzQ0Mw OTMxMUU4ODBFNTJEMjNDNEY5QUUwMi9YQ0pRRjh6SllyRG5PUXN3endwV0l2Zk4t dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hDSlFGOHpKWXJEbk9Rc3d6d3BXSXZmTi11MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDMzMC9FQUQ4NzYzQ0MwOTMxMUU4ODBFNTJEMjNDNEY5QUUwMi9YQ0pRRjh6Slly RG5PUXN3endwV0l2Zk4tdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/a9wSRl3E7gcGBgyo/K1DbQJDv78ZR6AWPSvEE8xkWll24d5zjRqf /Sw6uSwsJQY8/tDHMfAZWv15q8PDjBHk4R/YoRV+/E9kyKTgeeQj620hNYrCYpaV ihwKhF5dtUDBB6lJkspoa9ElYDh5gTPAExG96ZD1uogwd1s7LddYqVIVpfKKikgh Jw2OHGa651DKAzKjnaj8wcn0VshZovak/NA9N6YinVvjC/UtZLcM5dOoRfMNxxSz 5DtbHh62p9Mgm4oyfBlID7ZotFhK+D2hH7qU7ZXHNIMyw/pvI8vqjfwH8UjhRx6y Mu/5VJItND+Al0fEDZ0Im6c1VCf7mwDy -----END CERTIFICATE-----Generated at Mon May 6 20:19:31 2024 by rpki-client on console-ams.rpki-client.org