$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: /vZ4EbEDwD5d26h1eGvMGiqhc7m2EtMSgll3WtC8g2w= Subject key identifier: BB:27:37:EA:B5:33:65:73:26:26:62:B7:70:68:BD:3C:45:C1:DA:65 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 03C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 03B4 Signing time: Fri 03 May 2024 02:37:22 +0000 Manifest this update: Fri 03 May 2024 02:37:21 +0000 Manifest next update: Fri 10 May 2024 02:37:21 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: J7n3N45dhWVBnkG4n5GO3DXBMAMGnVKB7VehtWo8WuI=) 2: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: GQCSA6QyrQT61zgUzzq3IA+DEvS1M9WVjoPYcq1Bd4c=) 3: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: RB7zIrr0vmaPJFrKM5hv3nF1tNHSBNjXihwLxIeXId8=) 4: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: 3nJLpeMdcFe+Gds2ygUBHLssUTU630EavjtxrzJszKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 02:37:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 969 (0x3c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: May 3 02:37:21 2024 GMT Not After : May 10 02:37:21 2024 GMT Subject: CN=66344de2-e69f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e2:8e:a5:c8:5c:63:37:fe:da:58:01:64:6b: 54:c8:19:7e:81:a5:d2:50:8d:75:b6:10:78:64:fd: 9e:7a:9a:69:81:3d:30:df:7d:2c:ca:2f:9c:c1:84: e1:f0:25:5f:e0:6a:ca:d4:d5:70:e1:2b:6d:b6:e9: 90:9a:3c:94:2c:c8:ec:e4:1b:49:81:f3:01:b5:7b: a5:8b:5b:af:45:d2:a9:86:6a:fb:6d:b0:23:3c:c9: a3:6c:ab:d7:16:58:d4:56:3b:3e:b7:b4:70:4a:d4: b5:f1:c0:ba:89:c8:71:d3:0a:18:00:48:e7:9c:c8: 45:7a:e3:4b:c0:75:80:71:6f:c3:cc:94:35:bf:01: b3:72:19:84:3e:df:f2:92:26:1e:8c:1d:5b:4f:c0: f5:96:05:38:9a:b8:49:1e:9d:9d:0e:0e:16:9c:66: cb:c0:32:f3:94:81:a5:f5:7d:9b:d2:be:c8:ca:6f: 18:f5:24:ca:dc:1b:05:f5:58:05:30:36:5d:8c:10: 7f:eb:04:50:36:54:cd:d6:bd:1f:7c:ca:ed:73:73: ee:a6:2e:61:8f:4f:8d:ca:67:9c:55:ef:b5:a8:27: b1:1b:af:54:06:af:00:10:89:a3:62:c6:49:27:8c: 0e:5c:f5:fe:34:65:79:54:c8:b1:20:5d:b2:c0:be: 1c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:27:37:EA:B5:33:65:73:26:26:62:B7:70:68:BD:3C:45:C1:DA:65 X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:55:21:cd:aa:f5:50:16:2f:39:e1:d4:2f:6f:bf:41:1b:41: 67:6e:26:79:6d:f9:f7:bf:0c:99:de:41:c3:d0:03:27:dd:ac: b6:d4:d3:3e:35:16:e2:08:b0:63:32:c4:79:e3:b8:6c:85:ff: 1d:ff:76:0b:ac:f6:12:29:e0:84:d9:85:c9:19:43:de:58:00: b9:97:4a:cd:ce:83:47:dd:e3:1d:a2:a1:e3:26:af:67:c6:23: 5c:6b:e2:19:e8:86:f3:ae:da:e4:69:73:b6:67:4c:ce:57:17: 94:5a:fd:ff:06:a6:92:79:3f:c0:c4:51:8c:02:92:a8:ce:c2: 3c:be:c9:c3:f2:77:44:37:81:f2:ec:63:36:5b:d5:d0:ff:ca: fb:bc:a4:85:02:38:c1:25:ab:56:68:51:21:50:4d:57:3d:c6: 2a:b0:f2:b9:f8:91:59:ce:b0:79:25:14:76:b3:e9:a9:09:91: 55:68:7c:a4:3f:0e:67:9a:8e:7e:eb:a3:d3:c9:32:60:68:6f: fe:fb:41:ec:04:87:5a:0c:c1:9f:2a:30:82:b6:a8:67:a6:29: bc:31:95:82:a3:33:70:33:c6:11:ed:fb:41:b5:a9:63:9f:f0: 9e:55:28:24:ae:82:9f:92:e5:01:7f:d0:04:bc:a2:f9:59:d5: fa:9a:67:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjQwNTAzMDIzNzIxWhcNMjQwNTEwMDIzNzIxWjAYMRYwFAYD VQQDEw02NjM0NGRlMi1lNjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuKOpchcYzf+2lgBZGtUyBl+gaXSUI11thB4ZP2eepppgT0w330syi+cwYTh 8CVf4GrK1NVw4StttumQmjyULMjs5BtJgfMBtXuli1uvRdKphmr7bbAjPMmjbKvX FljUVjs+t7RwStS18cC6ichx0woYAEjnnMhFeuNLwHWAcW/DzJQ1vwGzchmEPt/y kiYejB1bT8D1lgU4mrhJHp2dDg4WnGbLwDLzlIGl9X2b0r7Iym8Y9STK3BsF9VgF MDZdjBB/6wRQNlTN1r0ffMrtc3Pupi5hj0+NymecVe+1qCexG69UBq8AEImjYsZJ J4wOXPX+NGV5VMixIF2ywL4cvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsnN+q1 M2VzJiZit3BovTxFwdplMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDVSHNqvVQFi854dQvb79BG0FnbiZ5bfn3vwyZ3kHD0AMn3ay21NM+ NRbiCLBjMsR547hshf8d/3YLrPYSKeCE2YXJGUPeWAC5l0rNzoNH3eMdoqHjJq9n xiNca+IZ6IbzrtrkaXO2Z0zOVxeUWv3/BqaSeT/AxFGMApKozsI8vsnD8ndEN4Hy 7GM2W9XQ/8r7vKSFAjjBJatWaFEhUE1XPcYqsPK5+JFZzrB5JRR2s+mpCZFVaHyk Pw5nmo5+66PTyTJgaG/++0HsBIdaDMGfKjCCtqhnpim8MZWCozNwM8YR7ftBtalj n/CeVSgkroKfkuUBf9AEvKL5WdX6mmez -----END CERTIFICATE-----Generated at Fri May 3 04:45:15 2024 by rpki-client on console-fra.rpki-client.org