$ rpki-client -vvf rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft File: xGIlbhG2PuqR1z02Q867tRojUK8.mft (raw, json) Hash identifier: mxRnXLeiTevZBOhwEC+2X0sa4N1pczAuExQCYmHTnKU= Subject key identifier: 2D:66:52:C4:1D:57:00:C7:9E:57:8D:FF:CF:B2:15:37:EA:89:19:BD Authority key identifier: C4:62:25:6E:11:B6:3E:EA:91:D7:3D:36:43:CE:BB:B5:1A:23:50:AF Certificate issuer: /CN=A91A210A/serialNumber=C462256E11B63EEA91D73D3643CEBBB51A2350AF Certificate serial: 0F88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft Manifest number: 0F80 Signing time: Tue 30 Apr 2024 18:22:50 +0000 Manifest this update: Tue 30 Apr 2024 18:22:50 +0000 Manifest next update: Tue 07 May 2024 18:22:50 +0000 Files and hashes: 1: xGIlbhG2PuqR1z02Q867tRojUK8.crl (hash: VhZEKZcBkbcubCIwxhCjE0GqWAVQIX+T+NDEmdwphtk=) 2: 691023063A8311E99AF5572DC4F9AE02.roa (hash: OeuPLuOLzXKkzOIYA8BbsUWW6F0lM3DTVuv8RjWW/fA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.crl rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 18:22:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3976 (0xf88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A210A/serialNumber=C462256E11B63EEA91D73D3643CEBBB51A2350AF Validity Not Before: Apr 30 18:22:50 2024 GMT Not After : May 7 18:22:50 2024 GMT Subject: CN=663136fa-7cc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:41:4f:2a:f4:9b:49:9e:e4:d9:73:6c:e9:c0: 14:7d:95:1d:a5:ac:cf:67:75:c1:b0:33:38:03:a4: b6:68:61:8e:10:18:5c:dc:cb:4f:1e:e2:55:70:2c: 5b:30:ad:3f:0e:d9:59:85:70:bf:a4:ab:fa:ad:ea: f6:46:ca:1d:4d:79:73:d0:fa:2f:f9:42:40:87:33: 37:6f:19:ce:28:d2:7b:2b:ad:9f:b4:83:c5:43:e9: df:44:7d:79:73:ff:e3:1d:ff:dd:d3:7c:b3:9e:2f: a2:4e:65:c5:70:13:a6:96:fe:cb:64:c5:42:98:68: 1b:a8:01:88:ba:7e:ad:00:49:a3:1e:37:19:b5:1a: ba:5e:ca:32:01:d5:25:c9:25:82:1a:a1:86:d6:c6: cd:19:cf:3c:3f:40:e4:c5:2a:8d:ad:0f:83:be:f2: 17:41:44:18:0d:e6:b3:ba:12:c7:e1:bf:1d:ca:9b: ff:1a:2d:38:e4:39:82:94:49:6f:2e:e9:a3:6c:71: 6e:42:00:f8:7f:90:ce:9d:36:e8:b0:95:03:50:36: 58:eb:03:eb:56:2a:9b:1a:31:2c:a6:cc:c2:43:bc: 51:9d:4d:1e:ee:51:bc:31:cd:0c:4b:da:b1:16:42: 44:44:d8:2b:50:d6:5c:70:fd:78:20:be:c8:bf:df: 65:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:66:52:C4:1D:57:00:C7:9E:57:8D:FF:CF:B2:15:37:EA:89:19:BD X509v3 Authority Key Identifier: keyid:C4:62:25:6E:11:B6:3E:EA:91:D7:3D:36:43:CE:BB:B5:1A:23:50:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:88:59:b9:33:4c:0f:d3:ea:d5:25:e2:12:67:95:a0:7e:3d: 7b:2e:cc:5c:8a:ba:e6:e8:32:e6:0f:48:0f:e4:37:1f:97:70: ed:95:fa:6e:f4:ab:f3:82:88:4f:94:f9:ee:1b:27:81:06:b5: 48:26:66:33:d9:6c:50:eb:77:0f:94:a7:a8:71:be:71:a2:7c: 48:29:b8:e9:2b:c2:18:7e:65:41:35:5c:26:ce:4e:52:67:98: 08:ff:5e:dc:1b:79:17:f4:e8:9e:2e:2b:67:c6:f7:39:72:d1: 13:5e:08:2e:19:0e:8a:7f:1d:4a:1d:26:b6:20:bb:79:1f:c1: 9c:af:e8:95:23:d3:51:d7:fc:29:dd:51:44:4b:45:4a:63:57: b1:49:13:7c:1c:c3:f9:d0:d5:61:c1:49:6a:66:14:65:f5:67: d8:38:f9:99:45:77:03:95:37:6a:36:77:8d:45:e6:35:93:7e: 7f:ae:16:0a:0d:a8:14:6c:48:6f:c9:70:28:98:8c:41:14:9f: f9:ec:1b:a5:18:ac:9c:ce:4d:3c:c7:f1:c0:d4:5a:9d:33:d6: fc:fa:be:f9:91:5e:9b:25:bb:97:bd:cc:76:85:18:e5:40:95: d1:2c:de:36:0e:c5:52:1b:03:44:5d:e0:2d:61:93:79:7b:a1: f9:5d:cb:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTIxMEExMTAvBgNVBAUTKEM0NjIyNTZFMTFCNjNFRUE5MUQ3M0QzNjQzQ0VCQkI1 MUEyMzUwQUYwHhcNMjQwNDMwMTgyMjUwWhcNMjQwNTA3MTgyMjUwWjAYMRYwFAYD VQQDEw02NjMxMzZmYS03Y2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkFPKvSbSZ7k2XNs6cAUfZUdpazPZ3XBsDM4A6S2aGGOEBhc3MtPHuJVcCxb MK0/DtlZhXC/pKv6rer2RsodTXlz0Pov+UJAhzM3bxnOKNJ7K62ftIPFQ+nfRH15 c//jHf/d03yzni+iTmXFcBOmlv7LZMVCmGgbqAGIun6tAEmjHjcZtRq6XsoyAdUl ySWCGqGG1sbNGc88P0DkxSqNrQ+DvvIXQUQYDeazuhLH4b8dypv/Gi045DmClElv LumjbHFuQgD4f5DOnTbosJUDUDZY6wPrViqbGjEspszCQ7xRnU0e7lG8Mc0MS9qx FkJERNgrUNZccP14IL7Iv99lDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1mUsQd VwDHnleN/8+yFTfqiRm9MB8GA1UdIwQYMBaAFMRiJW4Rtj7qkdc9NkPOu7UaI1Cv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjEwQS9BNTM4QURCODNB ODIxMUU5QTRDMjgxMkNDNEY5QUUwMi94R0lsYmhHMlB1cVIxejAyUTg2N3RSb2pV SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHSWxiaEcyUHVxUjF6MDJRODY3dFJvalVLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjEwQS9BNTM4QURCODNBODIxMUU5QTRDMjgxMkNDNEY5QUUwMi94R0lsYmhHMlB1 cVIxejAyUTg2N3RSb2pVSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8iFm5M0wP0+rVJeISZ5Wgfj17Lsxcirrm6DLmD0gP5Dcfl3Dtlfpu 9KvzgohPlPnuGyeBBrVIJmYz2WxQ63cPlKeocb5xonxIKbjpK8IYfmVBNVwmzk5S Z5gI/17cG3kX9OieLitnxvc5ctETXgguGQ6Kfx1KHSa2ILt5H8Gcr+iVI9NR1/wp 3VFES0VKY1exSRN8HMP50NVhwUlqZhRl9WfYOPmZRXcDlTdqNneNReY1k35/rhYK DagUbEhvyXAomIxBFJ/57BulGKyczk08x/HA1FqdM9b8+r75kV6bJbuXvcx2hRjl QJXRLN42DsVSGwNEXeAtYZN5e6H5XcvR -----END CERTIFICATE-----Generated at Tue Apr 30 18:57:37 2024 by rpki-client on console-fra.rpki-client.org