$ rpki-client -vvf rpki.apnic.net/member_repository/A917A220/00EE08D6412811EA8E5E4B83C4F9AE02/X2rsonLVbJhJShClpYl-LCz5XwE.mft File: X2rsonLVbJhJShClpYl-LCz5XwE.mft (raw, json) Hash identifier: +DJ3s8ZKshOfXXCUALWllAMMRWg4JOsfzyC0a72Yfc4= Subject key identifier: C2:49:B6:E4:D4:F5:CB:46:8C:5B:C6:49:18:CB:D7:65:05:37:5C:F1 Authority key identifier: 5F:6A:EC:A2:72:D5:6C:98:49:4A:10:A5:A5:89:7E:2C:2C:F9:5F:01 Certificate issuer: /CN=A917A220/serialNumber=5F6AECA272D56C98494A10A5A5897E2C2CF95F01 Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2rsonLVbJhJShClpYl-LCz5XwE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A220/00EE08D6412811EA8E5E4B83C4F9AE02/X2rsonLVbJhJShClpYl-LCz5XwE.mft Manifest number: 0B00 Signing time: Thu 16 May 2024 20:33:28 +0000 Manifest this update: Thu 16 May 2024 20:33:28 +0000 Manifest next update: Thu 23 May 2024 20:33:28 +0000 Files and hashes: 1: X2rsonLVbJhJShClpYl-LCz5XwE.crl (hash: CL+2BwFVmYb+iCkY+FlSFEKLluB7j+N+qQ3RkT8x68g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A220/00EE08D6412811EA8E5E4B83C4F9AE02/X2rsonLVbJhJShClpYl-LCz5XwE.crl rsync://rpki.apnic.net/member_repository/A917A220/00EE08D6412811EA8E5E4B83C4F9AE02/X2rsonLVbJhJShClpYl-LCz5XwE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2rsonLVbJhJShClpYl-LCz5XwE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A220/serialNumber=5F6AECA272D56C98494A10A5A5897E2C2CF95F01 Validity Not Before: May 16 20:33:28 2024 GMT Not After : May 23 20:33:28 2024 GMT Subject: CN=66466d98-9685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5b:0a:13:7e:a7:4a:57:a4:f1:4c:7d:05:61: 9c:f6:a9:7c:43:e0:f5:f6:ce:44:ae:22:32:49:21: 6c:68:a0:83:5b:84:f3:28:76:70:0e:c3:ee:f0:4a: cd:87:3a:14:26:c5:45:5a:96:66:c3:ad:5a:11:1b: 2a:d5:ce:01:69:c5:43:33:0c:12:ee:f5:98:75:b3: 28:94:ce:ea:7b:b6:1d:e9:ed:2d:e6:32:56:78:49: f2:a5:54:cb:e1:43:b3:0d:fc:f5:24:bd:eb:e8:06: b3:2d:e5:14:a4:79:20:b1:a3:00:08:e1:5b:76:0f: e1:70:8e:ff:63:43:cc:bc:66:80:92:5a:fb:82:82: 56:56:27:f0:60:15:f8:93:e0:0b:6a:74:ec:89:2b: 3a:d0:dc:ea:03:fc:7a:c9:6f:3e:22:98:0d:1f:e9: a1:28:72:f9:ac:c7:1c:ef:ed:96:27:00:1d:5a:a3: 97:64:c8:7d:1e:5d:77:54:da:00:60:d9:13:e0:36: a4:98:fc:06:1b:f2:1e:25:37:56:6b:23:be:d2:33: a3:35:4f:90:0b:36:25:3f:16:7b:f4:c7:45:dd:64: 3c:02:dd:c7:bc:ad:14:3d:18:47:7c:c5:9e:b4:37: e4:6f:b4:3c:b6:66:b1:37:e8:74:4a:82:16:7e:8f: 59:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:49:B6:E4:D4:F5:CB:46:8C:5B:C6:49:18:CB:D7:65:05:37:5C:F1 X509v3 Authority Key Identifier: keyid:5F:6A:EC:A2:72:D5:6C:98:49:4A:10:A5:A5:89:7E:2C:2C:F9:5F:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A220/00EE08D6412811EA8E5E4B83C4F9AE02/X2rsonLVbJhJShClpYl-LCz5XwE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2rsonLVbJhJShClpYl-LCz5XwE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A220/00EE08D6412811EA8E5E4B83C4F9AE02/X2rsonLVbJhJShClpYl-LCz5XwE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:81:b9:65:9a:90:46:06:4a:ed:35:2a:e5:71:b9:34:7a:a2: c8:e9:c6:58:4c:ea:6f:aa:42:f3:e2:db:23:c5:e5:a2:f9:09: 41:0c:3a:db:59:11:54:3a:85:aa:e1:c2:96:d8:9e:48:40:1b: 7d:20:11:4e:33:83:fa:87:29:c3:68:e8:8c:a8:2e:09:e2:a2: 12:30:5f:17:a6:75:0a:2b:86:d8:f3:44:5b:52:ae:f5:30:e7: 55:9e:12:93:e0:b6:5a:d4:52:4d:4e:b9:4b:a5:6a:1e:f0:31: 9f:9a:71:c9:2d:c5:04:26:a0:4f:d2:57:4b:93:fb:0d:7b:cd: 7d:79:c2:29:7b:42:eb:f1:ea:1c:dd:8d:38:1c:c9:fc:e9:da: 2c:9e:dc:0a:cc:58:3a:c2:35:b4:7e:35:cd:48:9e:18:28:ca: f0:26:6e:c0:a7:d9:14:61:57:eb:f3:15:e6:9f:27:14:3c:b5: 7b:92:01:c0:60:06:d0:b3:5d:27:9b:79:f5:23:ec:75:d8:c1: 19:d7:82:23:33:8c:76:67:af:bd:da:e7:ec:96:b2:cd:ab:9b: af:6e:c5:94:cf:76:97:7c:87:53:fe:f8:25:26:02:3c:ab:29: 92:a4:75:a3:6f:a3:ad:e5:42:4a:41:06:f7:fd:7e:ec:42:e1: 6a:68:ec:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0EyMjAxMTAvBgNVBAUTKDVGNkFFQ0EyNzJENTZDOTg0OTRBMTBBNUE1ODk3RTJD MkNGOTVGMDEwHhcNMjQwNTE2MjAzMzI4WhcNMjQwNTIzMjAzMzI4WjAYMRYwFAYD VQQDEw02NjQ2NmQ5OC05Njg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01sKE36nSlek8Ux9BWGc9ql8Q+D19s5EriIySSFsaKCDW4TzKHZwDsPu8ErN hzoUJsVFWpZmw61aERsq1c4BacVDMwwS7vWYdbMolM7qe7Yd6e0t5jJWeEnypVTL 4UOzDfz1JL3r6AazLeUUpHkgsaMACOFbdg/hcI7/Y0PMvGaAklr7goJWVifwYBX4 k+ALanTsiSs60NzqA/x6yW8+IpgNH+mhKHL5rMcc7+2WJwAdWqOXZMh9Hl13VNoA YNkT4DakmPwGG/IeJTdWayO+0jOjNU+QCzYlPxZ79MdF3WQ8At3HvK0UPRhHfMWe tDfkb7Q8tmaxN+h0SoIWfo9ZewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJJtuTU 9ctGjFvGSRjL12UFN1zxMB8GA1UdIwQYMBaAFF9q7KJy1WyYSUoQpaWJfiws+V8B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTIyMC8wMEVFMDhENjQx MjgxMUVBOEU1RTRCODNDNEY5QUUwMi9YMnJzb25MVmJKaEpTaENscFlsLUxDejVY d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gycnNvbkxWYkpoSlNoQ2xwWWwtTEN6NVh3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTIyMC8wMEVFMDhENjQxMjgxMUVBOEU1RTRCODNDNEY5QUUwMi9YMnJzb25MVmJK aEpTaENscFlsLUxDejVYd0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARgbllmpBGBkrtNSrlcbk0eqLI6cZYTOpvqkLz4tsjxeWi+QlBDDrb WRFUOoWq4cKW2J5IQBt9IBFOM4P6hynDaOiMqC4J4qISMF8XpnUKK4bY80RbUq71 MOdVnhKT4LZa1FJNTrlLpWoe8DGfmnHJLcUEJqBP0ldLk/sNe819ecIpe0Lr8eoc 3Y04HMn86dosntwKzFg6wjW0fjXNSJ4YKMrwJm7Ap9kUYVfr8xXmnycUPLV7kgHA YAbQs10nm3n1I+x12MEZ14IjM4x2Z6+92ufslrLNq5uvbsWUz3aXfIdT/vglJgI8 qymSpHWjb6Ot5UJKQQb3/X7sQuFqaOww -----END CERTIFICATE-----Generated at Thu May 16 22:34:47 2024 by rpki-client on console-ams.rpki-client.org