$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft File: XerjhTD4FfvwubP472N1B4bIrAo.mft (raw, json) Hash identifier: 8VqJ1WzfAojw3slrv8EdHrpWjnFJYf0ITBHERVSAaw4= Subject key identifier: F6:87:65:4C:12:61:61:7B:E2:9F:E6:A9:7A:EA:46:A3:95:F0:5B:BF Authority key identifier: 5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A Certificate issuer: /CN=A91A4481/serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Certificate serial: 0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft Manifest number: 0D Signing time: Sun 19 May 2024 08:52:09 +0000 Manifest this update: Sun 19 May 2024 08:52:08 +0000 Manifest next update: Sun 26 May 2024 08:52:08 +0000 Files and hashes: 1: XerjhTD4FfvwubP472N1B4bIrAo.crl (hash: txZKAaA9Y37qmFi+Wigk8cVjqVXUs8CMU459fhFxruQ=) 2: 5B08B12602C211EF9A1E4567C4F9AE02.roa (hash: LMERtpQp+DLty4Wivq0OeREYwOOHlqWpDYnqAURaibM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4481/serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Validity Not Before: May 19 08:52:08 2024 GMT Not After : May 26 08:52:08 2024 GMT Subject: CN=6649bdb9-49f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:89:9b:da:de:35:7e:d2:15:fc:e4:28:9a:ba: c0:8b:c0:d9:c5:69:26:15:fe:50:6c:05:fd:70:23: 09:3e:37:92:18:ca:9a:ad:cc:bd:32:fe:00:aa:8e: 7d:87:51:b4:0d:e4:7d:a7:e1:8d:68:45:c6:c4:83: f5:37:0f:33:0a:20:11:7b:30:a8:46:1f:b6:22:95: 72:73:42:ea:87:eb:85:09:8e:c7:f5:74:2b:5e:a0: f7:07:dd:72:38:60:97:86:7e:93:a1:f1:46:60:37: 4c:30:7b:f8:a3:e2:67:1a:bd:32:da:80:54:59:3e: 47:dd:c1:57:41:8a:0c:f9:00:cb:29:6e:53:18:25: ba:c3:60:cc:bc:c8:c4:6a:95:35:22:bf:15:e6:dd: 86:64:6e:e5:52:4b:94:ec:94:ed:fd:c8:16:13:75: 95:7e:5b:0c:99:27:cc:a9:64:73:cd:c2:05:d3:ab: 54:a1:bf:65:25:98:80:7d:e3:58:74:c7:5b:55:a7: b1:4e:0a:60:fc:9f:2c:b2:00:ed:11:b0:3e:ed:12: 35:3c:1a:d4:2c:ff:af:ab:a2:f0:b2:ee:34:89:9e: 3f:63:7f:f4:61:2d:20:a5:17:79:98:f3:10:dd:d5: d3:3e:ba:79:f4:2b:af:bc:11:b4:50:d6:15:1d:78: 6e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:87:65:4C:12:61:61:7B:E2:9F:E6:A9:7A:EA:46:A3:95:F0:5B:BF X509v3 Authority Key Identifier: keyid:5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:c5:34:3d:f9:32:2a:5f:fc:3e:2f:93:db:01:b3:dd:64:ad: 60:f4:00:2a:b2:32:c9:43:f5:ec:64:e6:43:91:df:d2:4b:96: 9c:83:27:8c:ae:2d:83:64:27:b2:1a:73:1b:8e:0c:72:10:7b: 90:46:f1:7c:a3:95:82:48:b7:b7:ba:de:17:09:ab:17:60:11: 10:a6:12:10:21:70:1c:13:15:05:71:d5:34:99:62:e7:f9:21: e7:56:c7:7a:73:7a:30:37:02:04:34:ad:d1:74:1a:0d:c3:16: e8:44:32:ac:80:a8:d8:5d:ba:d7:2b:9e:71:7b:04:c1:e4:cf: 88:d8:b7:7a:eb:92:7e:a1:c2:2f:a0:32:34:2d:0d:97:a3:ba: c0:b5:7a:8f:e7:f9:d9:ca:3a:f4:d4:3e:bd:fb:41:03:b3:86: 71:69:7a:41:31:39:2a:e2:c0:7c:ee:82:15:66:3f:29:f0:91: 28:b0:08:79:e7:07:ce:eb:47:ca:f7:cd:80:a8:4e:21:84:e5: 8c:99:0a:d2:f2:5c:3d:e3:e8:68:e9:ad:2e:b7:b7:bb:a3:c0: ce:ef:13:c8:28:da:8b:45:a2:40:42:08:9b:74:be:a6:0d:88: 4c:d2:d4:07:3e:11:c0:47:4c:80:e7:a3:0a:78:90:67:17:89: 15:27:4c:4b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDQ4MTExMC8GA1UEBRMoNURFQUUzODUzMEY4MTVGQkYwQjlCM0Y4RUY2Mzc1MDc4 NkM4QUMwQTAeFw0yNDA1MTkwODUyMDhaFw0yNDA1MjYwODUyMDhaMBgxFjAUBgNV BAMTDTY2NDliZGI5LTQ5ZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKiZva3jV+0hX85CiausCLwNnFaSYV/lBsBf1wIwk+N5IYypqtzL0y/gCqjn2H UbQN5H2n4Y1oRcbEg/U3DzMKIBF7MKhGH7YilXJzQuqH64UJjsf1dCteoPcH3XI4 YJeGfpOh8UZgN0wwe/ij4mcavTLagFRZPkfdwVdBigz5AMspblMYJbrDYMy8yMRq lTUivxXm3YZkbuVSS5TslO39yBYTdZV+WwyZJ8ypZHPNwgXTq1Shv2UlmIB941h0 x1tVp7FOCmD8nyyyAO0RsD7tEjU8GtQs/6+rovCy7jSJnj9jf/RhLSClF3mY8xDd 1dM+unn0K6+8EbRQ1hUdeG5tAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9odlTBJh YXvin+apeupGo5XwW78wHwYDVR0jBBgwFoAUXerjhTD4FfvwubP472N1B4bIrAow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0NDgxL0JDODQwRjQ2MDJD MTExRUZBRjNDQjQ2NUM0RjlBRTAyL1hlcmpoVEQ0RmZ2d3ViUDQ3Mk4xQjRiSXJB by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWGVyamhURDRGZnZ3dWJQNDcyTjFCNGJJckFvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0 NDgxL0JDODQwRjQ2MDJDMTExRUZBRjNDQjQ2NUM0RjlBRTAyL1hlcmpoVEQ0RmZ2 d3ViUDQ3Mk4xQjRiSXJBby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAADFND35Mipf/D4vk9sBs91krWD0ACqyMslD9exk5kOR39JLlpyDJ4yu LYNkJ7IacxuODHIQe5BG8XyjlYJIt7e63hcJqxdgERCmEhAhcBwTFQVx1TSZYuf5 IedWx3pzejA3AgQ0rdF0Gg3DFuhEMqyAqNhdutcrnnF7BMHkz4jYt3rrkn6hwi+g MjQtDZejusC1eo/n+dnKOvTUPr37QQOzhnFpekExOSriwHzughVmPynwkSiwCHnn B87rR8r3zYCoTiGE5YyZCtLyXD3j6GjprS63t7ujwM7vE8go2otFokBCCJt0vqYN iEzS1Ac+EcBHTIDnowp4kGcXiRUnTEs= -----END CERTIFICATE-----Generated at Sun May 19 09:38:26 2024 by rpki-client on console-fra.rpki-client.org