$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft File: XqEcijop4GlzwfEhYR1aXCobBp0.mft (raw, json) Hash identifier: +60ndwVRkTbPFkasbBCJcULUr3h4acahS2oW5uNFeY8= Subject key identifier: C4:5B:B8:CF:A1:0C:59:64:85:AE:73:3A:40:49:9D:E8:1E:12:8F:A6 Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 065F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft Manifest number: 064A Signing time: Sat 04 May 2024 23:51:47 +0000 Manifest this update: Sat 04 May 2024 23:51:47 +0000 Manifest next update: Sat 11 May 2024 23:51:47 +0000 Files and hashes: 1: XqEcijop4GlzwfEhYR1aXCobBp0.crl (hash: attdQeReafz6usvviQNSC9CGg57XsC+FQ76bWYD/y24=) 2: 5A51D464F5FA11EC9B35372AC4F9AE02.roa (hash: fatJP74QmbLSpVnCNkaB1nDltmRMFfOpdry6Nc0rTFc=) 3: 0940732E0E6311EDB98DEA0DC4F9AE02.roa (hash: cnqEp1cVp+EDYuEpYVLYnMxBPESNI8OdRBHgH0PJrKA=) 4: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (hash: Y02OBeRBmrNddo1ieP/LeZf+fKUFaCYGzq9Zqc3nanE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1631 (0x65f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: May 4 23:51:47 2024 GMT Not After : May 11 23:51:47 2024 GMT Subject: CN=6636ca13-1ad0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ea:3a:93:92:06:c4:bd:7d:de:ad:ec:2d:0d: 73:7b:71:6f:6e:64:b0:d3:61:99:3d:b7:e7:57:9a: aa:4a:32:82:4a:ec:41:c9:1e:31:81:5b:e3:49:c3: 0e:ae:b3:e3:3f:97:32:57:89:28:5c:81:f2:12:e7: 2f:f2:c4:dc:fa:ae:ce:2e:8e:68:10:95:70:a5:f4: 25:0f:ce:4a:f1:80:30:ac:3c:60:12:17:32:db:d2: 76:76:0a:ef:60:2c:e9:b1:45:e4:ad:c8:f6:f0:9e: 3a:82:ec:85:bb:57:c8:de:55:09:5c:a7:4e:fc:3b: 86:18:95:eb:ff:ad:45:d7:ba:ac:f9:46:fb:61:93: 24:b6:d1:4a:d1:7a:93:d1:03:0e:a4:9b:09:0e:95: 32:29:c3:01:fa:16:9a:f6:e7:4f:06:88:9f:ba:d9: 55:2a:24:3c:02:0f:32:d3:41:00:2b:f5:18:b6:ff: e9:25:e1:8e:52:9e:ed:25:22:ed:7c:48:43:02:ef: 6c:6c:f2:46:1c:52:54:02:3f:dd:32:c9:cb:d7:7f: b0:35:5e:3e:20:0a:51:34:1f:e4:68:c0:70:9b:49: b7:a5:8d:58:4e:5c:75:ee:b4:88:0c:f0:f8:3f:2a: 45:de:86:31:66:70:a6:f0:9b:49:bb:4d:d4:d5:58: ca:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:5B:B8:CF:A1:0C:59:64:85:AE:73:3A:40:49:9D:E8:1E:12:8F:A6 X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:f0:3d:4a:d0:a8:b8:d8:0d:bf:8c:cf:a9:4b:df:da:13:98: 79:e2:04:4a:fe:86:db:9b:2f:ae:66:cf:6d:e3:33:ca:fd:09: 6a:79:64:d5:4f:40:f2:37:fb:1e:b6:89:5a:7f:91:63:50:e8: db:74:74:fe:82:ea:9a:f4:8f:c5:49:55:04:ca:fa:7b:a0:ef: 79:f4:98:ec:3c:ca:08:9e:cf:31:43:cb:60:2d:f9:85:e3:1b: a5:08:f5:8c:db:ed:f4:cb:4a:cb:85:78:25:fa:65:ac:08:0f: 38:46:1f:6b:f8:4c:e0:49:4e:e7:0d:d0:26:2f:be:eb:81:70: 00:bb:ac:fe:6e:d7:a8:2c:97:51:e7:c8:bb:cc:bd:40:43:ae: 14:54:fe:95:79:7f:3f:97:36:19:fc:33:1b:f0:0d:bb:1a:ce: a3:5a:c3:82:4b:96:81:b6:e6:87:f3:20:7c:be:82:a5:6f:ae: ab:f2:f1:6b:0a:3a:01:e3:32:e3:7c:70:b4:86:69:e3:5c:ed: 37:9a:9f:54:37:46:c8:e0:66:a7:97:37:0b:3b:ab:6e:b0:a2: e2:36:0c:fb:26:ba:69:c5:53:9f:18:8a:e7:99:be:b4:a8:a2: 8e:2f:c5:eb:d4:d8:cd:b2:2a:b4:6c:81:57:38:eb:e2:4a:26: 9e:b8:11:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjQwNTA0MjM1MTQ3WhcNMjQwNTExMjM1MTQ3WjAYMRYwFAYD VQQDEw02NjM2Y2ExMy0xYWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOo6k5IGxL193q3sLQ1ze3FvbmSw02GZPbfnV5qqSjKCSuxByR4xgVvjScMO rrPjP5cyV4koXIHyEucv8sTc+q7OLo5oEJVwpfQlD85K8YAwrDxgEhcy29J2dgrv YCzpsUXkrcj28J46guyFu1fI3lUJXKdO/DuGGJXr/61F17qs+Ub7YZMkttFK0XqT 0QMOpJsJDpUyKcMB+haa9udPBoifutlVKiQ8Ag8y00EAK/UYtv/pJeGOUp7tJSLt fEhDAu9sbPJGHFJUAj/dMsnL13+wNV4+IApRNB/kaMBwm0m3pY1YTlx17rSIDPD4 PypF3oYxZnCm8JtJu03U1VjKNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMRbuM+h DFlkha5zOkBJnegeEo+mMB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjU0Qy81MUE5RUFDQzQxNjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRH bHp3ZkVoWVIxYVhDb2JCcDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM8D1K0Ki42A2/jM+pS9/aE5h54gRK/obbmy+uZs9t4zPK/QlqeWTV T0DyN/setolaf5FjUOjbdHT+guqa9I/FSVUEyvp7oO959JjsPMoIns8xQ8tgLfmF 4xulCPWM2+30y0rLhXgl+mWsCA84Rh9r+EzgSU7nDdAmL77rgXAAu6z+bteoLJdR 58i7zL1AQ64UVP6VeX8/lzYZ/DMb8A27Gs6jWsOCS5aBtuaH8yB8voKlb66r8vFr CjoB4zLjfHC0hmnjXO03mp9UN0bI4GanlzcLO6tusKLiNgz7JrppxVOfGIrnmb60 qKKOL8Xr1NjNsiq0bIFXOOviSiaeuBES -----END CERTIFICATE-----Generated at Sun May 5 01:22:23 2024 by rpki-client on console-fra.rpki-client.org