$ rpki-client -vvf rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft File: xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft (raw, json) Hash identifier: TYvvYvtiLwPcd2gzWxkdifQ0FYySdMr/YKWSgX23z/g= Subject key identifier: E6:31:A6:D1:CC:BF:AA:1C:26:A9:75:77:81:FD:11:F5:9F:85:49:45 Authority key identifier: C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF Certificate issuer: /CN=A918FD04/serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Certificate serial: 07C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft Manifest number: 1303 Signing time: Sat 04 May 2024 19:51:31 +0000 Manifest this update: Sat 04 May 2024 19:51:30 +0000 Manifest next update: Sat 11 May 2024 19:51:30 +0000 Files and hashes: 1: xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl (hash: Js5tKwcJEqMsglG1UQzwhkThn3gFnJXKmYnR/4tbUcE=) 2: 7BBC1DD2040611EF909F6C3EC4F9AE02.roa (hash: d+L19gUHVaLQL/PMqiWFVUvVqO9gHwxatHS8mTM15PU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1988 (0x7c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FD04/serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Validity Not Before: May 4 19:51:30 2024 GMT Not After : May 11 19:51:30 2024 GMT Subject: CN=663691c2-ca1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6d:51:75:26:98:d3:e7:72:23:47:4c:e8:11: 6f:b6:7a:df:64:f8:f5:4a:9f:67:8f:0f:34:8d:8e: 56:2a:0a:bf:65:08:3c:37:ec:46:6e:b5:4c:2f:bd: f0:30:35:3e:e3:0d:6f:60:c9:55:8f:42:56:3f:36: c8:25:d9:50:b2:3c:d5:59:6b:16:5d:ad:4d:29:0f: 13:ca:6c:e8:7e:94:89:bc:d0:bd:ed:81:06:7d:d7: b9:98:15:89:21:1e:90:31:a7:01:8e:0d:41:17:f8: 2f:70:f9:64:3c:82:a5:16:58:5b:98:bc:ba:e1:2a: e7:03:02:eb:1c:65:5b:f4:58:06:28:cb:3a:a8:ca: 1d:e3:08:67:c3:0a:42:54:52:01:a6:2a:ce:66:0d: 8b:1e:12:4b:b7:e1:33:f5:99:88:89:9d:81:f2:24: a0:7e:84:14:fb:80:52:e2:a8:63:3c:dc:8a:b6:84: 82:14:59:4e:76:ea:df:33:cc:91:ef:a0:c6:22:db: 62:92:91:19:05:70:8e:3d:10:83:7d:e1:07:d5:a3: e9:40:04:7d:0a:89:ed:bd:ee:2a:97:3a:ed:4d:b6: c9:9b:52:5f:0e:2e:3a:17:9c:6f:48:17:33:18:a5: 31:89:69:79:22:37:c7:59:89:40:4f:18:f7:c1:2a: a8:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:31:A6:D1:CC:BF:AA:1C:26:A9:75:77:81:FD:11:F5:9F:85:49:45 X509v3 Authority Key Identifier: keyid:C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:43:f1:90:38:de:88:a6:79:17:1a:9e:e4:9f:ad:7d:65:d3: 21:6a:d3:9b:a5:1c:0e:65:5b:d8:b0:73:7b:34:18:40:86:67: 9e:87:47:17:93:d7:57:e2:62:57:20:2b:17:62:ff:f5:10:79: 3f:69:39:c7:18:0d:7b:1d:d5:d5:c0:92:15:fe:fe:f3:38:68: 62:63:4e:0d:aa:9d:50:4b:5e:5b:54:65:69:d8:aa:cd:74:5a: 7d:a0:9b:98:36:d0:27:9d:66:a2:a2:20:dd:8b:0a:7b:ec:ad: 3a:11:88:3f:c0:6c:b8:2d:fc:75:54:7e:27:29:04:9e:15:5b: f0:e1:d5:fc:f9:c2:c5:88:59:22:08:c6:cf:17:44:04:ef:92: 3f:54:9d:4a:c2:4b:67:66:61:07:ba:ef:72:7b:71:99:ef:74: f0:59:f7:ec:22:33:5a:91:98:42:cf:0a:59:59:47:d6:37:17: 13:51:d6:b5:d6:df:2a:26:e6:0c:a7:66:4f:0c:aa:5f:46:3c: 7d:be:f5:02:44:38:2d:1e:9b:05:ff:0e:98:f9:1f:40:e8:be: 94:99:4f:0a:e7:45:bb:6f:19:ed:18:d2:5e:11:69:88:a9:00: 62:ae:84:5a:d5:be:a2:f6:69:b5:d3:e4:5e:bb:16:38:96:14: 65:68:02:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEMDQxMTAvBgNVBAUTKEM0QTRDMzU0MzU4RkQ0ODIzRjZFQzUzMTMyNzY3NDg1 NEM4NkM2REYwHhcNMjQwNTA0MTk1MTMwWhcNMjQwNTExMTk1MTMwWjAYMRYwFAYD VQQDEw02NjM2OTFjMi1jYTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzm1RdSaY0+dyI0dM6BFvtnrfZPj1Sp9njw80jY5WKgq/ZQg8N+xGbrVML73w MDU+4w1vYMlVj0JWPzbIJdlQsjzVWWsWXa1NKQ8TymzofpSJvNC97YEGfde5mBWJ IR6QMacBjg1BF/gvcPlkPIKlFlhbmLy64SrnAwLrHGVb9FgGKMs6qMod4whnwwpC VFIBpirOZg2LHhJLt+Ez9ZmIiZ2B8iSgfoQU+4BS4qhjPNyKtoSCFFlOdurfM8yR 76DGIttikpEZBXCOPRCDfeEH1aPpQAR9Contve4qlzrtTbbJm1JfDi46F5xvSBcz GKUxiWl5IjfHWYlATxj3wSqouQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYxptHM v6ocJql1d4H9EfWfhUlFMB8GA1UdIwQYMBaAFMSkw1Q1j9SCP27FMTJ2dIVMhsbf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkQwNC8wQUJCRjQ3MjBE RjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJSV9ic1V4TW5aMGhVeUd4 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hLVERWRFdQMUlJX2JzVXhNblowaFV5R3h0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkQwNC8wQUJCRjQ3MjBERjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJ SV9ic1V4TW5aMGhVeUd4dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXQ/GQON6IpnkXGp7kn619ZdMhatObpRwOZVvYsHN7NBhAhmeeh0cX k9dX4mJXICsXYv/1EHk/aTnHGA17HdXVwJIV/v7zOGhiY04Nqp1QS15bVGVp2KrN dFp9oJuYNtAnnWaioiDdiwp77K06EYg/wGy4Lfx1VH4nKQSeFVvw4dX8+cLFiFki CMbPF0QE75I/VJ1KwktnZmEHuu9ye3GZ73TwWffsIjNakZhCzwpZWUfWNxcTUda1 1t8qJuYMp2ZPDKpfRjx9vvUCRDgtHpsF/w6Y+R9A6L6UmU8K50W7bxntGNJeEWmI qQBiroRa1b6i9mm10+ReuxY4lhRlaALv -----END CERTIFICATE-----Generated at Sat May 4 20:37:13 2024 by rpki-client on console-fra.rpki-client.org