$ rpki-client -vvf rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.mft File: XotdlW6b29kHcBQqxw_fm2OIxtg.mft (raw, json) Hash identifier: Vdsg/NmdQcf0m4yWvTiEX2ZjJBNwSpWAO4ot06wpjeA= Subject key identifier: EB:22:DC:36:55:07:C4:A1:4C:08:8A:51:64:82:E4:2D:B8:59:D6:6C Authority key identifier: 5E:8B:5D:95:6E:9B:DB:D9:07:70:14:2A:C7:0F:DF:9B:63:88:C6:D8 Certificate issuer: /CN=A919D2EE/serialNumber=5E8B5D956E9BDBD90770142AC70FDF9B6388C6D8 Certificate serial: 0389 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XotdlW6b29kHcBQqxw_fm2OIxtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.mft Manifest number: 0385 Signing time: Tue 07 May 2024 02:40:35 +0000 Manifest this update: Tue 07 May 2024 02:40:35 +0000 Manifest next update: Tue 14 May 2024 02:40:35 +0000 Files and hashes: 1: XotdlW6b29kHcBQqxw_fm2OIxtg.crl (hash: ksD1kTi/ADbki3KPC/TJkDhlLzrpzVydWtfvIaJhjq8=) 2: 097C49CC56FC11EC8032440FC4F9AE02.roa (hash: Bb+G2V63u2dqjlyGiP2E0iWy3Onnk60qnkfJKD3kZF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.crl rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XotdlW6b29kHcBQqxw_fm2OIxtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 02:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 905 (0x389) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D2EE/serialNumber=5E8B5D956E9BDBD90770142AC70FDF9B6388C6D8 Validity Not Before: May 7 02:40:35 2024 GMT Not After : May 14 02:40:35 2024 GMT Subject: CN=663994a3-583a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2b:5d:6a:84:93:2f:cf:c8:0b:86:54:ae:78: b7:f3:71:10:69:3c:1e:8d:d2:c5:75:a4:52:57:87: c4:48:17:4d:9e:ca:56:33:c5:73:29:a7:95:cf:d6: d6:4b:3c:60:ab:8d:d8:6f:ca:35:12:14:00:a2:cb: d8:c3:ef:4b:53:a8:39:f2:ef:a7:8a:eb:cc:8f:51: e7:d2:19:5e:f0:4c:15:61:b2:64:c9:8a:14:db:d5: 66:a7:dc:d8:60:97:bc:d7:0c:1c:59:20:8c:df:44: 55:b9:a5:fd:c0:42:e6:a3:37:75:17:02:7f:82:d8: e6:02:ff:24:09:d6:ab:e2:34:5a:6a:5a:ab:1d:b4: a5:7d:4f:3f:fb:63:f5:33:1a:cc:75:17:b2:5b:26: 5d:b6:56:4f:a5:af:a2:b5:54:33:ef:6c:d1:9f:d4: 79:90:c3:46:32:ec:53:70:eb:13:e5:56:c1:f7:3f: b2:66:30:f1:d6:76:7c:e4:c2:a0:75:92:f7:e8:25: 7c:25:39:5b:f2:b9:82:76:00:85:13:03:6a:42:ae: 3d:21:5d:6b:67:72:ef:c0:8e:52:de:8a:75:7f:cd: 23:ef:e4:e7:ad:a3:51:bc:f5:9a:15:38:2e:97:1b: d0:79:55:cb:52:93:1c:5d:27:97:1c:8c:81:ad:5d: 39:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:22:DC:36:55:07:C4:A1:4C:08:8A:51:64:82:E4:2D:B8:59:D6:6C X509v3 Authority Key Identifier: keyid:5E:8B:5D:95:6E:9B:DB:D9:07:70:14:2A:C7:0F:DF:9B:63:88:C6:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XotdlW6b29kHcBQqxw_fm2OIxtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:f6:94:04:78:18:58:e1:19:20:54:c8:9c:66:b7:bb:d8:0f: 7d:80:03:2e:87:09:60:f3:20:88:50:e0:2e:fe:66:24:3c:28: 2e:2f:15:57:dc:ee:e4:f7:62:12:d0:7d:b9:6d:e7:0f:5e:42: e3:04:9c:9b:26:8b:87:07:25:ee:b4:bf:16:7b:b9:1a:4d:9d: 86:5e:f7:f2:e8:84:1b:1d:e4:c9:82:84:f7:41:f0:5f:8b:07: 85:11:57:67:2d:7d:a3:56:42:ac:f3:97:34:31:2f:0e:1a:02: a4:6c:03:61:8e:63:fa:ac:5f:a4:43:3d:a5:fb:ff:f9:52:fe: f9:15:d4:5e:40:bd:ec:5a:69:83:7d:de:c1:ec:bf:cc:32:40: b1:13:48:bf:2c:d0:31:71:3a:d4:3b:3f:28:9c:09:cb:b6:dc: f2:cd:71:02:88:a8:ab:06:b0:89:8e:6a:64:79:16:62:d8:6f: 2e:89:40:aa:e5:6b:c1:41:82:a1:f8:f6:94:74:3c:77:a5:76: 0b:2f:6c:53:7d:a4:26:a2:72:b8:85:63:0a:f5:b3:f1:3f:fb: 28:25:32:19:9b:af:bd:13:9d:bc:47:02:cf:1c:a0:69:cc:22: 72:05:13:40:c8:f4:ef:cd:ef:30:b3:4d:0f:bb:1b:91:e1:d3: f7:d9:2f:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQyRUUxMTAvBgNVBAUTKDVFOEI1RDk1NkU5QkRCRDkwNzcwMTQyQUM3MEZERjlC NjM4OEM2RDgwHhcNMjQwNTA3MDI0MDM1WhcNMjQwNTE0MDI0MDM1WjAYMRYwFAYD VQQDEw02NjM5OTRhMy01ODNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCtdaoSTL8/IC4ZUrni383EQaTwejdLFdaRSV4fESBdNnspWM8VzKaeVz9bW Szxgq43Yb8o1EhQAosvYw+9LU6g58u+niuvMj1Hn0hle8EwVYbJkyYoU29Vmp9zY YJe81wwcWSCM30RVuaX9wELmozd1FwJ/gtjmAv8kCdar4jRaalqrHbSlfU8/+2P1 MxrMdReyWyZdtlZPpa+itVQz72zRn9R5kMNGMuxTcOsT5VbB9z+yZjDx1nZ85MKg dZL36CV8JTlb8rmCdgCFEwNqQq49IV1rZ3LvwI5S3op1f80j7+TnraNRvPWaFTgu lxvQeVXLUpMcXSeXHIyBrV05xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOsi3DZV B8ShTAiKUWSC5C24WdZsMB8GA1UdIwQYMBaAFF6LXZVum9vZB3AUKscP35tjiMbY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDJFRS84RDk2Njc1NDU2 RjkxMUVDQjAyMUY2MENDNEY5QUUwMi9Yb3RkbFc2YjI5a0hjQlFxeHdfZm0yT0l4 dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvdGRsVzZiMjlrSGNCUXF4d19mbTJPSXh0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDJFRS84RDk2Njc1NDU2RjkxMUVDQjAyMUY2MENDNEY5QUUwMi9Yb3RkbFc2YjI5 a0hjQlFxeHdfZm0yT0l4dGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBv9pQEeBhY4RkgVMicZre72A99gAMuhwlg8yCIUOAu/mYkPCguLxVX 3O7k92IS0H25becPXkLjBJybJouHByXutL8We7kaTZ2GXvfy6IQbHeTJgoT3QfBf iweFEVdnLX2jVkKs85c0MS8OGgKkbANhjmP6rF+kQz2l+//5Uv75FdReQL3sWmmD fd7B7L/MMkCxE0i/LNAxcTrUOz8onAnLttzyzXECiKirBrCJjmpkeRZi2G8uiUCq 5WvBQYKh+PaUdDx3pXYLL2xTfaQmonK4hWMK9bPxP/soJTIZm6+9E528RwLPHKBp zCJyBRNAyPTvze8ws00PuxuR4dP32S/Z -----END CERTIFICATE-----Generated at Tue May 7 03:10:21 2024 by rpki-client on console-ams.rpki-client.org