$ rpki-client -vvf rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft File: xiGEgVH3l79yMQfxTWLGeiE6U-M.mft (raw, json) Hash identifier: QmV9RymqHnjD47YW0q9QsVSCidgT7EWHgXVTzfI9UrI= Subject key identifier: E7:7C:CA:BF:0F:6A:50:59:66:78:F9:0A:2D:31:58:73:FF:43:D8:83 Authority key identifier: C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3 Certificate issuer: /CN=A915EBC8/serialNumber=C621848151F797BF723107F14D62C67A213A53E3 Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft Manifest number: D2 Signing time: Wed 01 May 2024 06:45:42 +0000 Manifest this update: Wed 01 May 2024 06:45:41 +0000 Manifest next update: Wed 08 May 2024 06:45:41 +0000 Files and hashes: 1: xiGEgVH3l79yMQfxTWLGeiE6U-M.crl (hash: 308p/ISv7la3q/9f2cpMVK4TjePwdOOjOabnRJjW7y8=) 2: 781637A8FADD11EE880BF37DC4F9AE02.roa (hash: UkUpU1afkgtg1CQHu61ZJeRImk8QtltSVX5opIK6H/k=) 3: 9BB3FAB6CCB511EE8612FB18C4F9AE02.roa (hash: c9KG9vpN1QmGvwjTf9PDbnl/EQ1PMVZ2QmsDIyegpZw=) 4: 7755D5B2FADD11EE880BF37DC4F9AE02.roa (hash: kzfyShpZyRgXv5qW19HVktsh3HfmhmaLBtleNFL05u8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:44:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EBC8/serialNumber=C621848151F797BF723107F14D62C67A213A53E3 Validity Not Before: May 1 06:45:41 2024 GMT Not After : May 8 06:45:41 2024 GMT Subject: CN=6631e516-8f50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d1:27:02:43:bb:ac:81:03:d5:ab:0b:45:7f: df:5d:f7:0b:05:99:53:3e:85:ab:c9:31:1a:99:27: 0c:24:37:6c:15:79:cb:4d:76:40:da:e5:4a:43:2c: 66:0d:15:ba:20:22:a9:e0:2e:74:16:ce:c9:0e:89: c9:e2:b3:39:ee:31:1e:ea:ff:84:61:c8:5d:e5:4d: 6d:5e:4e:aa:83:10:f8:73:e3:26:43:48:d4:96:02: fc:7f:8e:40:a8:06:98:56:5d:94:f8:ad:c3:20:69: 8b:d7:86:17:e1:bf:fc:61:af:9b:26:db:df:fa:6c: 69:17:55:7f:30:8f:bf:0c:9b:e1:1e:bc:fb:f0:4d: ec:f8:81:f5:78:d1:42:5c:84:19:bf:26:7d:17:05: c2:f3:61:b2:c1:0d:98:12:04:ec:07:55:18:a5:3d: 7a:b4:0a:1e:a8:6d:3b:f4:4c:ba:86:2c:71:8e:7d: ae:44:07:9b:1c:b1:70:c0:fa:19:1a:82:3c:7a:e6: 61:a6:57:b9:88:6e:4d:64:95:da:a7:16:05:5f:96: 0a:f7:54:d4:f5:2d:cb:bf:31:6f:c1:a5:3c:d3:63: 8e:62:f1:1c:75:72:63:f0:ac:f5:8d:eb:5c:0d:91: 8f:0d:68:47:1d:76:1a:d9:8d:d7:90:74:b1:e9:67: c9:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:7C:CA:BF:0F:6A:50:59:66:78:F9:0A:2D:31:58:73:FF:43:D8:83 X509v3 Authority Key Identifier: keyid:C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:a3:2e:b4:87:1a:ca:a8:7a:4f:e7:24:6c:0d:32:ce:81:e9: df:8e:5a:56:38:cf:15:4d:bc:5e:f1:ee:0e:1e:84:4a:97:22: 0a:cc:8e:79:71:fa:c4:0d:95:6f:27:57:ab:18:cb:10:a1:07: a8:93:cc:71:16:78:4f:1b:65:07:93:b4:fb:9a:c6:f2:b0:a8: 54:6f:12:90:d9:52:10:ad:31:8c:3e:c7:af:c6:93:b1:10:0b: 8b:3e:99:65:f7:72:8c:a2:9e:4e:50:4e:42:b9:56:07:6e:4d: 23:9f:83:5f:74:1e:27:38:b7:e9:64:9b:0c:db:d5:d2:d2:29: 46:cb:16:86:d3:d4:3a:66:91:c8:5f:52:76:35:d5:3b:42:ee: c9:1b:e3:61:c0:df:e1:b3:18:b7:34:4f:a9:29:f3:c7:74:a6: 0d:a8:03:3c:e1:c6:4f:66:6d:88:63:7b:5a:0a:26:27:c2:a1: 03:7e:d8:52:60:34:9e:d2:9b:ea:df:74:86:49:d0:2a:da:86: 90:30:d6:4f:d0:38:8d:1b:45:c7:29:0e:77:11:86:d2:16:60: 3c:f6:ac:7e:cd:57:c8:5f:a8:b0:70:c8:ba:a2:9b:9c:84:62: fa:b4:37:50:73:fd:a8:0a:cc:dc:bf:87:96:02:5e:b3:08:09: ee:6d:85:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVCQzgxMTAvBgNVBAUTKEM2MjE4NDgxNTFGNzk3QkY3MjMxMDdGMTRENjJDNjdB MjEzQTUzRTMwHhcNMjQwNTAxMDY0NTQxWhcNMjQwNTA4MDY0NTQxWjAYMRYwFAYD VQQDEw02NjMxZTUxNi04ZjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9EnAkO7rIED1asLRX/fXfcLBZlTPoWryTEamScMJDdsFXnLTXZA2uVKQyxm DRW6ICKp4C50Fs7JDonJ4rM57jEe6v+EYchd5U1tXk6qgxD4c+MmQ0jUlgL8f45A qAaYVl2U+K3DIGmL14YX4b/8Ya+bJtvf+mxpF1V/MI+/DJvhHrz78E3s+IH1eNFC XIQZvyZ9FwXC82GywQ2YEgTsB1UYpT16tAoeqG079Ey6hixxjn2uRAebHLFwwPoZ GoI8euZhple5iG5NZJXapxYFX5YK91TU9S3LvzFvwaU802OOYvEcdXJj8Kz1jetc DZGPDWhHHXYa2Y3XkHSx6WfJGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOd8yr8P alBZZnj5Ci0xWHP/Q9iDMB8GA1UdIwQYMBaAFMYhhIFR95e/cjEH8U1ixnohOlPj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUJDOC81ODk4MjBDMkVG MDIxMUVEOEMyREQ5MUZDNEY5QUUwMi94aUdFZ1ZIM2w3OXlNUWZ4VFdMR2VpRTZV LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hpR0VnVkgzbDc5eU1RZnhUV0xHZWlFNlUtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUJDOC81ODk4MjBDMkVGMDIxMUVEOEMyREQ5MUZDNEY5QUUwMi94aUdFZ1ZIM2w3 OXlNUWZ4VFdMR2VpRTZVLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKoy60hxrKqHpP5yRsDTLOgenfjlpWOM8VTbxe8e4OHoRKlyIKzI55 cfrEDZVvJ1erGMsQoQeok8xxFnhPG2UHk7T7msbysKhUbxKQ2VIQrTGMPsevxpOx EAuLPpll93KMop5OUE5CuVYHbk0jn4NfdB4nOLfpZJsM29XS0ilGyxaG09Q6ZpHI X1J2NdU7Qu7JG+NhwN/hsxi3NE+pKfPHdKYNqAM84cZPZm2IY3taCiYnwqEDfthS YDSe0pvq33SGSdAq2oaQMNZP0DiNG0XHKQ53EYbSFmA89qx+zVfIX6iwcMi6opuc hGL6tDdQc/2oCszcv4eWAl6zCAnubYVt -----END CERTIFICATE-----Generated at Wed May 1 07:55:38 2024 by rpki-client on console-fra.rpki-client.org