$ rpki-client -vvf rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft File: xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft (raw, json) Hash identifier: KlSpRRbMERZgpeEMrAt9pZggza0xI8u1xEfRh6EqTBc= Subject key identifier: BF:DD:7F:28:8E:24:4E:89:1C:42:A2:5E:1A:6E:E3:53:BA:A3:4E:B9 Authority key identifier: C7:15:31:D2:5F:80:54:8F:5B:65:1F:86:49:32:5F:3C:8F:D8:59:39 Certificate issuer: /CN=A915786A/serialNumber=C71531D25F80548F5B651F8649325F3C8FD85939 Certificate serial: 0B1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft Manifest number: 0B16 Signing time: Sat 04 May 2024 20:00:37 +0000 Manifest this update: Sat 04 May 2024 20:00:37 +0000 Manifest next update: Sat 11 May 2024 20:00:37 +0000 Files and hashes: 1: xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl (hash: +OoMW1z9xKD/EZABRM5aEsCHawk9InjCwc7gs8byIk4=) 2: 7A7B776A1F0E11EA92AA6824C4F9AE02.roa (hash: qdC3RXXI2ese84CT2DZhcrd1tTSHDCaQgi6PpPSd9uA=) 3: FBFF89FC3AC611EEB790D485C4F9AE02.roa (hash: 5QYLkBxS2o7LhwS3CXXj9GJZVFjczDsUJmQHQeSknek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2847 (0xb1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915786A/serialNumber=C71531D25F80548F5B651F8649325F3C8FD85939 Validity Not Before: May 4 20:00:37 2024 GMT Not After : May 11 20:00:37 2024 GMT Subject: CN=663693e5-9e18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b2:0a:02:97:01:ed:56:2f:28:cf:0a:c8:bf: b2:43:bc:ef:e4:93:87:c0:6c:4c:45:8d:1c:26:0a: e5:e2:88:0a:23:5d:a1:1b:e3:59:7d:54:b9:5d:8a: fa:38:49:15:3c:cc:60:30:ba:1c:55:d7:b7:40:2b: 79:28:e7:c2:d8:c7:b9:2d:bb:d8:94:18:2e:ad:14: 9d:5e:a8:74:f0:f0:41:0f:ff:b5:e2:93:0f:f7:e9: 24:3c:43:47:e4:0f:72:3b:e0:63:84:85:6e:6b:ad: 2c:d3:c8:af:8e:3f:df:5f:0c:ce:07:96:1b:3c:23: 32:e1:bd:af:c9:2f:d6:cc:35:11:81:7c:bf:ae:5e: 81:ef:21:aa:1b:4d:bc:d2:bd:83:49:ae:4a:6e:47: 9c:59:00:bf:d1:80:c1:7a:b1:04:cd:95:55:f2:3c: b6:8d:5f:a1:31:e8:a3:be:0e:a9:0e:e2:c1:f2:54: 62:86:b7:35:06:57:84:16:23:1d:79:7c:49:30:81: 79:a2:d6:49:de:4c:0e:8a:a5:3e:db:96:67:b8:ff: 27:e7:12:ee:62:94:9a:0a:63:bb:e5:a5:93:1a:29: bd:f4:d9:12:28:a0:92:20:ef:c0:d8:bd:c8:a3:6e: 77:cb:88:2f:f8:b5:c0:72:ce:de:96:16:20:34:86: fc:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:DD:7F:28:8E:24:4E:89:1C:42:A2:5E:1A:6E:E3:53:BA:A3:4E:B9 X509v3 Authority Key Identifier: keyid:C7:15:31:D2:5F:80:54:8F:5B:65:1F:86:49:32:5F:3C:8F:D8:59:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:10:53:22:43:05:b7:07:4b:d9:46:44:92:af:15:3e:0b:23: 90:ff:f8:fa:94:64:ec:ad:6c:b1:93:7e:dd:9c:6f:ce:46:14: 82:81:88:75:54:28:b4:ff:66:2d:38:99:25:7e:a6:f5:1d:13: 0a:8d:67:41:34:73:47:a2:a8:38:1f:bb:bf:67:4e:98:e7:97: 6e:4d:9d:0b:cf:37:bf:9d:52:b7:91:e0:ef:9a:b8:7d:63:05: b8:4b:ff:29:86:5f:d5:61:98:23:b1:fb:bb:d2:80:87:ff:70: 9f:7e:95:27:b0:6c:bf:ea:dd:fc:e1:8f:e0:47:5c:ac:52:8a: e7:b9:1b:39:ca:9e:1f:7d:98:44:ee:13:f5:81:6c:17:8e:1c: 35:d2:14:ff:8f:31:12:23:cf:8a:e2:2a:d6:82:51:0b:4e:ee: 23:1a:dd:23:a1:07:68:63:a9:0a:6e:56:c7:52:39:a4:e3:68: 1d:f3:49:e7:91:04:54:16:23:b1:18:f2:95:1c:c5:2d:67:66: 69:30:09:43:64:a6:e1:d3:69:5c:65:27:aa:9f:92:d6:93:00: 28:27:db:87:c8:78:f7:95:12:55:66:8f:3c:06:1e:d4:fc:a8: 5d:ea:26:0a:9c:3a:a5:e9:6f:c6:f5:12:c3:39:ad:d6:8f:0a: d1:65:31:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc4NkExMTAvBgNVBAUTKEM3MTUzMUQyNUY4MDU0OEY1QjY1MUY4NjQ5MzI1RjND OEZEODU5MzkwHhcNMjQwNTA0MjAwMDM3WhcNMjQwNTExMjAwMDM3WjAYMRYwFAYD VQQDEw02NjM2OTNlNS05ZTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4rIKApcB7VYvKM8KyL+yQ7zv5JOHwGxMRY0cJgrl4ogKI12hG+NZfVS5XYr6 OEkVPMxgMLocVde3QCt5KOfC2Me5LbvYlBgurRSdXqh08PBBD/+14pMP9+kkPENH 5A9yO+BjhIVua60s08ivjj/fXwzOB5YbPCMy4b2vyS/WzDURgXy/rl6B7yGqG028 0r2DSa5KbkecWQC/0YDBerEEzZVV8jy2jV+hMeijvg6pDuLB8lRihrc1BleEFiMd eXxJMIF5otZJ3kwOiqU+25ZnuP8n5xLuYpSaCmO75aWTGim99NkSKKCSIO/A2L3I o253y4gv+LXAcs7elhYgNIb8fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/dfyiO JE6JHEKiXhpu41O6o065MB8GA1UdIwQYMBaAFMcVMdJfgFSPW2UfhkkyXzyP2Fk5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Nzg2QS8xMjZERkM5NjFB NTUxMUVBODgwNDIyMTFDNEY5QUUwMi94eFV4MGwtQVZJOWJaUi1HU1RKZlBJX1lX VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h4VXgwbC1BVkk5YlpSLUdTVEpmUElfWVdUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Nzg2QS8xMjZERkM5NjFBNTUxMUVBODgwNDIyMTFDNEY5QUUwMi94eFV4MGwtQVZJ OWJaUi1HU1RKZlBJX1lXVGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWEFMiQwW3B0vZRkSSrxU+CyOQ//j6lGTsrWyxk37dnG/ORhSCgYh1 VCi0/2YtOJklfqb1HRMKjWdBNHNHoqg4H7u/Z06Y55duTZ0Lzze/nVK3keDvmrh9 YwW4S/8phl/VYZgjsfu70oCH/3CffpUnsGy/6t384Y/gR1ysUornuRs5yp4ffZhE 7hP1gWwXjhw10hT/jzESI8+K4irWglELTu4jGt0joQdoY6kKblbHUjmk42gd80nn kQRUFiOxGPKVHMUtZ2ZpMAlDZKbh02lcZSeqn5LWkwAoJ9uHyHj3lRJVZo88Bh7U /Khd6iYKnDql6W/G9RLDOa3WjwrRZTGh -----END CERTIFICATE-----Generated at Sat May 4 20:37:09 2024 by rpki-client on console-fra.rpki-client.org