$ rpki-client -vvf rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft File: Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft (raw, json) Hash identifier: rlkuTwXxDLL4OyXmkLPMnN4+fQcB1j3ABYsidyuNy5c= Subject key identifier: 86:D0:14:1D:A2:03:A2:93:11:9C:4E:72:83:4A:AB:E5:AD:82:CA:CA Authority key identifier: 5D:EE:16:EF:85:A2:BF:84:DA:D8:87:66:67:59:B1:EC:15:D1:B9:4C Certificate issuer: /CN=A91569FB/serialNumber=5DEE16EF85A2BF84DAD887666759B1EC15D1B94C Certificate serial: 05BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft Manifest number: 05B9 Signing time: Sun 05 May 2024 00:19:52 +0000 Manifest this update: Sun 05 May 2024 00:19:52 +0000 Manifest next update: Sun 12 May 2024 00:19:52 +0000 Files and hashes: 1: Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.crl (hash: UQFBxgA0Qj0tXjJI2Skq7vfa/LWS9i+uYoBTg598w+A=) 2: 154E7E02762211EBA80A6D61C4F9AE02.roa (hash: LnRyBtG+OSSDzNFQf456TO9wXSzyvQOaHWEMLp2nqeE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.crl rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1470 (0x5be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91569FB/serialNumber=5DEE16EF85A2BF84DAD887666759B1EC15D1B94C Validity Not Before: May 5 00:19:52 2024 GMT Not After : May 12 00:19:52 2024 GMT Subject: CN=6636d0a8-1103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:10:a1:d6:c0:18:69:cc:7e:e8:1f:f8:da:de: f8:43:ea:9c:a4:0f:cb:4a:ed:24:88:39:13:b3:97: 09:21:8d:ff:df:7e:69:3d:d0:1a:6c:9e:16:50:56: b9:de:8c:57:a4:e8:8c:10:65:3b:a5:96:62:b3:7e: 66:44:83:5c:6f:93:ec:ca:d9:2f:c3:b7:d5:37:7d: ea:86:88:9a:c6:6b:53:c9:5a:a7:a4:ea:c4:41:31: e1:3f:81:17:35:92:a0:a8:12:76:5f:38:e3:00:81: 22:c3:ca:89:bb:a8:95:fc:7a:ca:4d:25:45:2e:ed: 1b:0a:43:00:ba:e2:22:f8:c1:39:82:4e:15:98:87: 45:4d:0a:cf:35:3c:83:94:1b:48:28:19:b6:34:6b: e4:ac:a6:9d:a5:e5:39:81:d5:9d:01:22:0b:47:57: 00:ad:0d:12:29:3e:f5:e5:2d:32:ee:47:a0:a1:a7: 4d:71:5a:97:63:f1:18:cd:c4:74:45:0b:31:48:14: fe:12:a8:99:89:92:3d:80:e9:a1:98:23:66:fa:d8: 86:63:a3:aa:50:af:45:ac:2e:dd:c8:12:76:5a:66: cf:0b:8e:e1:88:9d:3a:18:30:9b:fe:c2:7d:d7:1f: 41:c7:87:32:73:70:54:cb:00:d5:81:3d:ef:40:66: 07:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D0:14:1D:A2:03:A2:93:11:9C:4E:72:83:4A:AB:E5:AD:82:CA:CA X509v3 Authority Key Identifier: keyid:5D:EE:16:EF:85:A2:BF:84:DA:D8:87:66:67:59:B1:EC:15:D1:B9:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:97:d5:98:6c:75:0b:da:e8:17:d3:68:f1:5f:b4:c7:49:46: 88:7f:98:42:05:88:38:1b:b3:e6:c4:c5:cf:0f:3a:2f:51:34: f9:7a:08:6a:ab:c9:fe:a4:c9:19:cb:35:12:d6:a1:74:f3:83: d5:27:69:1c:cb:07:fa:b1:14:a9:27:04:1d:36:52:79:59:96: d1:f9:6a:23:c8:76:bf:2f:74:de:a7:90:62:75:2e:8a:53:f3: 5b:cc:bd:08:3d:0f:7f:25:28:7c:75:2d:df:ac:24:f0:c0:c9: 7a:c5:32:23:37:b2:9b:0a:35:a5:70:1f:7d:68:8a:c6:07:c4: 9d:08:71:34:8e:a6:2a:17:1e:c3:45:2b:a8:79:d2:a3:2e:58: bc:3d:e4:ce:81:ff:7e:45:cd:45:88:73:4e:16:f2:e7:ce:3c: 47:0a:b4:e8:9e:e2:20:b1:cb:e4:5c:f4:1f:f6:93:2e:04:bb: 16:76:58:49:ef:cb:bd:df:c7:44:e6:18:fc:d0:a0:bf:99:94: e7:01:cb:6c:95:77:dc:b6:b6:25:fa:fc:9f:e1:bb:31:d3:db: da:1f:0c:cf:7b:10:a4:9b:66:ec:e9:6e:5c:3c:b0:f0:53:db: 27:1d:42:b3:a8:0f:9b:42:38:16:ad:49:88:bc:80:cf:34:a4: 64:94:3b:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5RkIxMTAvBgNVBAUTKDVERUUxNkVGODVBMkJGODREQUQ4ODc2NjY3NTlCMUVD MTVEMUI5NEMwHhcNMjQwNTA1MDAxOTUyWhcNMjQwNTEyMDAxOTUyWjAYMRYwFAYD VQQDEw02NjM2ZDBhOC0xMTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRCh1sAYacx+6B/42t74Q+qcpA/LSu0kiDkTs5cJIY3/335pPdAabJ4WUFa5 3oxXpOiMEGU7pZZis35mRINcb5Psytkvw7fVN33qhoiaxmtTyVqnpOrEQTHhP4EX NZKgqBJ2XzjjAIEiw8qJu6iV/HrKTSVFLu0bCkMAuuIi+ME5gk4VmIdFTQrPNTyD lBtIKBm2NGvkrKadpeU5gdWdASILR1cArQ0SKT715S0y7kegoadNcVqXY/EYzcR0 RQsxSBT+EqiZiZI9gOmhmCNm+tiGY6OqUK9FrC7dyBJ2WmbPC47hiJ06GDCb/sJ9 1x9Bx4cyc3BUywDVgT3vQGYH9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbQFB2i A6KTEZxOcoNKq+WtgsrKMB8GA1UdIwQYMBaAFF3uFu+For+E2tiHZmdZsewV0blM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjlGQi84REUxRENEQTc2 MjAxMUVCQkM1NTNDNjBDNEY5QUUwMi9YZTRXNzRXaXY0VGEySWRtWjFteDdCWFJ1 VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hlNFc3NFdpdjRUYTJJZG1aMW14N0JYUnVVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjlGQi84REUxRENEQTc2MjAxMUVCQkM1NTNDNjBDNEY5QUUwMi9YZTRXNzRXaXY0 VGEySWRtWjFteDdCWFJ1VXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4l9WYbHUL2ugX02jxX7THSUaIf5hCBYg4G7PmxMXPDzovUTT5eghq q8n+pMkZyzUS1qF084PVJ2kcywf6sRSpJwQdNlJ5WZbR+WojyHa/L3Tep5BidS6K U/NbzL0IPQ9/JSh8dS3frCTwwMl6xTIjN7KbCjWlcB99aIrGB8SdCHE0jqYqFx7D RSuoedKjLli8PeTOgf9+Rc1FiHNOFvLnzjxHCrTonuIgscvkXPQf9pMuBLsWdlhJ 78u938dE5hj80KC/mZTnActslXfctrYl+vyf4bsx09vaHwzPexCkm2bs6W5cPLDw U9snHUKzqA+bQjgWrUmIvIDPNKRklDt5 -----END CERTIFICATE-----Generated at Sun May 5 01:13:18 2024 by rpki-client on console-ams.rpki-client.org