$ rpki-client -vvf rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft File: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft (raw, json) Hash identifier: e57u/5o1mtfbVREYDypCVVC1f2/a6WxTBO1DKQAtc94= Subject key identifier: BA:8F:63:59:F6:47:4B:91:FE:DA:C2:B1:6F:19:78:99:E4:45:35:0B Authority key identifier: 5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 Certificate issuer: /CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Certificate serial: 08D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft Manifest number: 08C1 Signing time: Mon 06 May 2024 21:35:02 +0000 Manifest this update: Mon 06 May 2024 21:35:02 +0000 Manifest next update: Mon 13 May 2024 21:35:02 +0000 Files and hashes: 1: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl (hash: O7vhHxa/NqsJzgs7UAjQ3fTyZj1mFT6I8Z+yU/O3KoE=) 2: 724AF49CE2F911ECAA4F4C71C4F9AE02.roa (hash: WC91Y9EJ7ixC7wb1nh5f4u+ZzBhgl77uNzgpGtMxTeM=) 3: 52F955A89B1511EA9BEFA53BC4F9AE02.roa (hash: 60fnGy4ykHRuVHRoZuKhXt5OezRQAHVvIOTXa0kGLPQ=) 4: BED54F1A9B1611EA939F5A3FC4F9AE02.roa (hash: X0aJDOugxZhuFpWOjvY74xFv7C2NTkdzKllv+3pNPOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2260 (0x8d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Validity Not Before: May 6 21:35:02 2024 GMT Not After : May 13 21:35:02 2024 GMT Subject: CN=66394d06-8ec2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:00:66:8b:3c:c6:76:3e:bc:de:1f:da:ba:1f: 32:8a:70:b0:58:d0:40:82:01:9d:11:ab:18:d5:97: 7a:f7:df:f0:55:34:04:37:e0:d8:0a:f6:fd:1b:b8: cf:7f:64:6f:90:7d:8a:4b:5e:db:16:72:81:28:3a: 39:bc:a5:4f:73:75:be:d3:86:b2:ef:db:34:81:d3: 9d:5c:02:fc:38:85:b0:42:54:a0:ae:e3:ad:ee:20: 77:35:e1:54:3b:78:ce:a1:54:db:7d:72:9b:20:66: 44:2e:24:bc:ea:0b:ae:cb:c5:6b:47:7c:4b:ac:d3: 4f:ff:8f:a3:42:9a:e4:d5:9c:11:cc:b4:b5:3a:8f: 75:84:8e:41:13:94:35:6a:54:1f:f8:f5:33:7a:a0: dc:8a:2b:23:26:28:76:79:31:f0:66:be:6a:59:78: f9:df:19:39:1b:f3:45:d7:21:64:69:69:40:53:42: 9b:6d:19:c4:a0:66:69:38:bf:bb:a4:5b:15:74:9e: 38:0e:31:6c:75:dc:35:03:db:9b:8e:cd:03:42:9c: 48:a0:d5:03:d0:bd:c2:e3:11:31:dd:2c:1c:b0:75: 88:6c:17:42:b1:4c:fa:08:7a:0a:34:be:ec:82:2b: e2:f5:79:89:ce:d3:9c:67:67:49:ab:24:46:c9:20: d4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:8F:63:59:F6:47:4B:91:FE:DA:C2:B1:6F:19:78:99:E4:45:35:0B X509v3 Authority Key Identifier: keyid:5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:18:73:89:0a:4c:e0:96:64:b3:25:10:16:f7:7d:20:ee:be: 27:25:92:2b:ff:78:d6:25:71:ec:d4:28:aa:90:24:e7:16:24: da:ff:89:99:c3:fd:57:fc:1a:b8:77:81:67:4a:b4:a9:be:8b: 79:56:99:06:1a:74:6f:ff:38:5a:90:0c:7f:21:14:43:1a:c6: 79:e3:1c:dd:59:b6:cf:b2:68:f0:24:33:52:dc:bd:fd:5b:2c: 1a:59:c7:88:64:90:a6:a2:e4:01:6a:a6:d6:de:91:7b:ef:49: 32:56:06:ab:e2:18:07:d2:0e:d6:06:8f:dc:00:37:62:7e:2b: 26:77:2c:42:ce:ef:c7:2d:db:07:59:b2:73:75:a4:c9:85:51: d9:cd:bd:0e:3f:c7:54:e5:d3:17:51:6b:3d:ad:c1:64:7b:b9: 5a:7c:f0:09:5d:bc:f8:06:5d:17:e1:dd:10:9c:3e:1b:62:fd: 88:2a:15:a5:41:7f:4c:f3:34:fc:d2:eb:d5:4e:6b:a2:d2:60: d1:2f:f3:02:f5:72:8b:97:6a:d1:8a:0f:c9:c4:14:8e:b2:c8: 4c:12:d7:51:d1:fe:92:83:75:5f:2e:97:6e:66:1d:b3:83:9c: 6e:d8:f4:65:43:dc:7b:2d:f4:ca:8a:e9:68:f7:64:64:03:2c: 9c:68:f2:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIwQjkxMTAvBgNVBAUTKDVDNUE0RkFFNEFGMDFGRkRDOTI3NTM1NUNDQkFCOEM4 MTAxODlGNTQwHhcNMjQwNTA2MjEzNTAyWhcNMjQwNTEzMjEzNTAyWjAYMRYwFAYD VQQDEw02NjM5NGQwNi04ZWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgBmizzGdj683h/auh8yinCwWNBAggGdEasY1Zd699/wVTQEN+DYCvb9G7jP f2RvkH2KS17bFnKBKDo5vKVPc3W+04ay79s0gdOdXAL8OIWwQlSgruOt7iB3NeFU O3jOoVTbfXKbIGZELiS86guuy8VrR3xLrNNP/4+jQprk1ZwRzLS1Oo91hI5BE5Q1 alQf+PUzeqDciisjJih2eTHwZr5qWXj53xk5G/NF1yFkaWlAU0KbbRnEoGZpOL+7 pFsVdJ44DjFsddw1A9ubjs0DQpxIoNUD0L3C4xEx3SwcsHWIbBdCsUz6CHoKNL7s givi9XmJztOcZ2dJqyRGySDUfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLqPY1n2 R0uR/trCsW8ZeJnkRTULMB8GA1UdIwQYMBaAFFxaT65K8B/9ySdTVcy6uMgQGJ9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjBCOS85Q0JGM0Q5MDhG QTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hfM0pKMU5WekxxNHlCQVlu MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hGcFBya3J3SF8zSkoxTlZ6THE0eUJBWW4xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjBCOS85Q0JGM0Q5MDhGQTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hf M0pKMU5WekxxNHlCQVluMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6GHOJCkzglmSzJRAW930g7r4nJZIr/3jWJXHs1CiqkCTnFiTa/4mZ w/1X/Bq4d4FnSrSpvot5VpkGGnRv/zhakAx/IRRDGsZ54xzdWbbPsmjwJDNS3L39 WywaWceIZJCmouQBaqbW3pF770kyVgar4hgH0g7WBo/cADdifismdyxCzu/HLdsH WbJzdaTJhVHZzb0OP8dU5dMXUWs9rcFke7lafPAJXbz4Bl0X4d0QnD4bYv2IKhWl QX9M8zT80uvVTmui0mDRL/MC9XKLl2rRig/JxBSOsshMEtdR0f6Sg3VfLpduZh2z g5xu2PRlQ9x7LfTKiulo92RkAyycaPKY -----END CERTIFICATE-----Generated at Mon May 6 22:40:59 2024 by rpki-client on console-ams.rpki-client.org