$ rpki-client -vvf rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft File: XctT6r5qkI7KhlLekkgHxQnFLTA.mft (raw, json) Hash identifier: h+1faldkXmJvH0LoD7ADdg7ewYVQd9VJ7VoDmwN8xvA= Subject key identifier: 38:79:1C:94:40:63:15:80:EB:B2:89:76:51:0F:01:2D:AD:2B:D4:F5 Authority key identifier: 5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 Certificate issuer: /CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Certificate serial: 0C1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft Manifest number: 0C15 Signing time: Fri 26 Apr 2024 19:00:09 +0000 Manifest this update: Fri 26 Apr 2024 19:00:08 +0000 Manifest next update: Fri 03 May 2024 19:00:08 +0000 Files and hashes: 1: XctT6r5qkI7KhlLekkgHxQnFLTA.crl (hash: QVs6UyjpbRuJmP/fy99PF3uhVDRB33fUsUZIbh4EhcI=) 2: 41A8E738045111EA9C7DF516C4F9AE02.roa (hash: XbZhqC+SWXG40xObMAPMUMkWbjxQGYlTOkWVpPfPZdg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 19:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3101 (0xc1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Validity Not Before: Apr 26 19:00:08 2024 GMT Not After : May 3 19:00:08 2024 GMT Subject: CN=662bf9b9-e91a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:43:22:ee:24:3e:6d:0f:76:cc:50:14:97:35: 9a:19:ba:c2:df:93:db:46:da:24:19:2e:de:d9:3c: 09:39:c0:cd:d3:a6:b2:2c:b0:d2:3d:fe:27:b9:cc: 3e:93:dd:a5:e4:06:e1:3a:c2:a6:4b:2f:9f:5d:70: 43:e0:ab:e3:32:1a:a8:fb:39:bd:34:b6:38:33:66: e3:e6:8b:53:5a:5e:b3:fd:12:98:9c:7d:af:14:02: a9:5a:eb:7b:64:46:b3:ff:8f:ea:87:c9:85:6b:26: 13:c8:fd:70:87:56:4a:e0:a4:0c:3f:93:f9:40:c2: 2d:63:b2:f8:ab:47:ae:9c:3b:bd:ce:64:05:17:67: 36:af:fd:ca:2f:8f:7d:bc:df:dc:be:72:6f:c0:e3: 88:f2:44:c0:b2:56:7b:a7:f4:ca:53:8f:c9:f0:67: 94:05:d2:bc:d5:46:65:d7:7c:00:11:a8:fb:cf:63: 56:79:4a:c2:c8:ee:10:13:ae:0a:c9:d2:9a:1e:4c: a9:d7:1c:43:52:00:1e:15:b6:4e:a6:ae:6b:89:bf: 7b:bc:31:46:b4:73:8e:52:06:d1:94:39:96:ba:dc: 22:ff:4a:48:06:f9:46:7a:7e:87:87:41:d8:23:ac: d2:8a:12:f0:bc:f3:5e:73:28:17:0c:d1:e6:79:eb: 2f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:79:1C:94:40:63:15:80:EB:B2:89:76:51:0F:01:2D:AD:2B:D4:F5 X509v3 Authority Key Identifier: keyid:5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:11:48:5a:1e:84:c3:ee:40:be:81:a0:e0:8e:06:10:cc:48: 4d:3a:71:2f:87:71:ab:d7:a0:f1:bf:e2:24:9c:24:38:ef:3b: 45:5c:6e:aa:9c:33:75:14:81:23:be:ca:88:2c:07:df:34:ad: bd:44:4b:57:9c:53:29:c9:39:09:f4:e0:7c:5f:06:12:8c:dd: 9b:02:4d:8b:0c:f4:f2:51:41:53:ea:f0:0e:d0:86:a1:2f:ff: fb:1b:99:32:5b:31:80:53:30:4a:55:b5:29:4d:2d:af:1a:9e: 3c:f4:6a:31:d6:1b:7b:db:8a:65:b7:11:b8:2e:c4:21:cc:03: 93:25:9e:b2:2f:90:ac:56:ee:51:06:90:6a:7e:25:9e:2b:fd: a6:37:2b:15:b9:7c:72:09:d7:21:f0:4c:ee:dc:92:4d:fc:33: c6:6a:3b:93:ed:f7:5e:3e:16:b0:20:1d:92:37:01:2d:1d:67: 30:cf:36:13:2e:96:06:4a:0e:4b:d7:ae:d4:98:4b:89:75:65: 1e:f4:69:55:34:30:33:29:60:c2:36:ec:0e:f2:5d:be:ba:11: c8:c4:37:75:72:15:92:17:5c:0b:c8:0d:8c:b2:49:2c:42:12: ba:3d:a3:31:a2:be:72:28:1b:98:39:2f:50:ce:1d:12:78:94: 28:c7:a3:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2MEQxMTAvBgNVBAUTKDVEQ0I1M0VBQkU2QTkwOEVDQTg2NTJERTkyNDgwN0M1 MDlDNTJEMzAwHhcNMjQwNDI2MTkwMDA4WhcNMjQwNTAzMTkwMDA4WjAYMRYwFAYD VQQDEw02NjJiZjliOS1lOTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4UMi7iQ+bQ92zFAUlzWaGbrC35PbRtokGS7e2TwJOcDN06ayLLDSPf4nucw+ k92l5AbhOsKmSy+fXXBD4KvjMhqo+zm9NLY4M2bj5otTWl6z/RKYnH2vFAKpWut7 ZEaz/4/qh8mFayYTyP1wh1ZK4KQMP5P5QMItY7L4q0eunDu9zmQFF2c2r/3KL499 vN/cvnJvwOOI8kTAslZ7p/TKU4/J8GeUBdK81UZl13wAEaj7z2NWeUrCyO4QE64K ydKaHkyp1xxDUgAeFbZOpq5rib97vDFGtHOOUgbRlDmWutwi/0pIBvlGen6Hh0HY I6zSihLwvPNecygXDNHmeesvbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDh5HJRA YxWA67KJdlEPAS2tK9T1MB8GA1UdIwQYMBaAFF3LU+q+apCOyoZS3pJIB8UJxS0w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTYwRC9GNURDQTZENEU1 QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJN0tobExla2tnSHhRbkZM VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjdFQ2cjVxa0k3S2hsTGVra2dIeFFuRkxUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTYwRC9GNURDQTZENEU1QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJ N0tobExla2tnSHhRbkZMVEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHEUhaHoTD7kC+gaDgjgYQzEhNOnEvh3Gr16Dxv+IknCQ47ztFXG6q nDN1FIEjvsqILAffNK29REtXnFMpyTkJ9OB8XwYSjN2bAk2LDPTyUUFT6vAO0Iah L//7G5kyWzGAUzBKVbUpTS2vGp489Gox1ht724pltxG4LsQhzAOTJZ6yL5CsVu5R BpBqfiWeK/2mNysVuXxyCdch8Ezu3JJN/DPGajuT7fdePhawIB2SNwEtHWcwzzYT LpYGSg5L167UmEuJdWUe9GlVNDAzKWDCNuwO8l2+uhHIxDd1chWSF1wLyA2Mskks QhK6PaMxor5yKBuYOS9Qzh0SeJQox6Pl -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:06 2024 by rpki-client on console-fra.rpki-client.org