$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft File: cx5XsN_ep5G6TV1xly2oEF3JPos.mft (raw, json) Hash identifier: LOas0dKym3rgHlO89lbciIASpiKOfFVUilwN5S37BP8= Subject key identifier: 59:F1:1E:EE:21:A8:0B:7D:16:84:9F:97:A8:83:E7:09:B9:01:90:06 Authority key identifier: 73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B Certificate issuer: /CN=A91AA444/serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft Manifest number: 42 Signing time: Fri 17 May 2024 08:12:20 +0000 Manifest this update: Fri 17 May 2024 08:12:20 +0000 Manifest next update: Fri 24 May 2024 08:12:20 +0000 Files and hashes: 1: cx5XsN_ep5G6TV1xly2oEF3JPos.crl (hash: mRlMjmHIybsyLtGE0ftdjd6Ou/A86DBvHdnjJNhkfBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:12:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA444/serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Validity Not Before: May 17 08:12:20 2024 GMT Not After : May 24 08:12:20 2024 GMT Subject: CN=66471164-611c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:58:17:85:5c:d1:dc:0f:6e:b7:25:68:08:eb: 94:ee:2e:d2:39:9c:3a:25:84:c6:ed:b4:4c:eb:20: 92:c2:c6:95:49:52:10:2e:bb:7c:73:23:6f:ef:41: e6:c2:14:86:a7:32:a8:67:21:c9:56:0d:c9:01:b2: bd:e2:73:ce:1a:de:0c:4e:30:a6:20:0c:5e:b4:e2: e6:90:78:6f:f6:c6:b2:2b:68:c0:d9:96:d8:9d:27: 08:0e:1d:3a:e3:13:b0:03:7a:02:65:44:96:17:1f: 31:bc:33:64:b1:37:18:5e:67:c2:55:07:b7:3c:bc: 9f:06:6d:eb:fb:23:df:1e:03:aa:31:02:65:bf:b2: f4:e3:8d:f1:21:6c:e3:a1:3a:3d:d9:53:93:ab:c1: dd:35:31:53:49:7b:ca:5d:4c:84:f1:cf:9f:8c:8f: 88:1b:9e:19:10:a0:62:e4:4b:81:3c:c4:06:78:8e: 5e:89:e2:37:3b:f3:6b:ac:e5:7d:6a:06:c1:53:2e: 02:52:6f:7a:6d:c5:49:c0:d3:20:c9:a7:47:13:77: 2b:eb:ad:d6:aa:e6:80:e3:e5:8e:db:d0:28:ce:44: ef:02:5f:96:cf:90:ad:43:5f:ee:68:70:16:bc:e8: c9:e9:3f:f4:ff:dd:c8:86:ed:78:40:a5:45:e6:26: d3:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:F1:1E:EE:21:A8:0B:7D:16:84:9F:97:A8:83:E7:09:B9:01:90:06 X509v3 Authority Key Identifier: keyid:73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:46:91:dc:84:03:3e:74:5b:92:7b:8b:da:74:d3:1a:ff:19: 65:48:a9:4b:ad:de:c6:71:bc:30:9c:a8:ba:ec:03:dd:06:5c: 42:c9:bd:96:f8:84:b6:4d:a2:95:03:8b:3e:c9:a7:13:f3:13: 3a:78:98:98:9e:2a:c0:f4:07:1a:3c:da:ae:9d:6a:d6:fe:c8: c9:b2:0a:e0:ad:ad:d3:71:82:19:a7:8d:0a:d2:ca:5e:f2:0a: db:ef:7b:61:d7:f2:95:3d:03:0c:a1:89:2f:20:d4:15:6d:10: 28:30:72:ea:2c:07:0a:df:61:c7:a6:53:65:e3:e7:dd:27:8a: 57:8f:2e:82:e9:82:44:6a:55:4a:ed:8a:98:3a:a0:ff:ef:28: 94:f1:7f:8c:30:aa:70:7f:55:12:da:96:88:15:28:7d:03:39: f7:f3:55:d2:ad:ea:47:a0:76:f3:23:a0:56:7a:b2:79:d1:04: 90:30:de:91:51:7e:ef:dc:ca:03:f5:11:4b:27:0c:55:ca:b7: 39:84:a3:45:81:27:1f:b6:d2:60:36:04:a3:f4:f2:46:9c:17: 35:0b:34:64:c1:6b:f1:34:22:91:86:0f:0c:36:eb:d3:f0:60: ee:26:96:ed:d2:2c:3b:4c:09:fa:df:49:13:72:9e:1a:17:39: f9:c6:96:b6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QTQ0NDExMC8GA1UEBRMoNzMxRTU3QjBERkRFQTc5MUJBNEQ1RDcxOTcyREE4MTA1 REM5M0U4QjAeFw0yNDA1MTcwODEyMjBaFw0yNDA1MjQwODEyMjBaMBgxFjAUBgNV BAMTDTY2NDcxMTY0LTYxMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeWBeFXNHcD263JWgI65TuLtI5nDolhMbttEzrIJLCxpVJUhAuu3xzI2/vQebC FIanMqhnIclWDckBsr3ic84a3gxOMKYgDF604uaQeG/2xrIraMDZltidJwgOHTrj E7ADegJlRJYXHzG8M2SxNxheZ8JVB7c8vJ8Gbev7I98eA6oxAmW/svTjjfEhbOOh Oj3ZU5Orwd01MVNJe8pdTITxz5+Mj4gbnhkQoGLkS4E8xAZ4jl6J4jc782us5X1q BsFTLgJSb3ptxUnA0yDJp0cTdyvrrdaq5oDj5Y7b0CjORO8CX5bPkK1DX+5ocBa8 6MnpP/T/3ciG7XhApUXmJtMDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWfEe7iGo C30WhJ+XqIPnCbkBkAYwHwYDVR0jBBgwFoAUcx5XsN/ep5G6TV1xly2oEF3JPosw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBNDQ0LzhEQ0UyNzRBQjEx RDExRUVBMzM2MzMxOUM0RjlBRTAyL2N4NVhzTl9lcDVHNlRWMXhseTJvRUYzSlBv cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY3g1WHNOX2VwNUc2VFYxeGx5Mm9FRjNKUG9zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB NDQ0LzhEQ0UyNzRBQjExRDExRUVBMzM2MzMxOUM0RjlBRTAyL2N4NVhzTl9lcDVH NlRWMXhseTJvRUYzSlBvcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABhGkdyEAz50W5J7i9p00xr/GWVIqUut3sZxvDCcqLrsA90GXELJvZb4 hLZNopUDiz7JpxPzEzp4mJieKsD0Bxo82q6datb+yMmyCuCtrdNxghmnjQrSyl7y Ctvve2HX8pU9AwyhiS8g1BVtECgwcuosBwrfYcemU2Xj590nilePLoLpgkRqVUrt ipg6oP/vKJTxf4wwqnB/VRLalogVKH0DOffzVdKt6kegdvMjoFZ6snnRBJAw3pFR fu/cygP1EUsnDFXKtzmEo0WBJx+20mA2BKP08kacFzULNGTBa/E0IpGGDww269Pw YO4mlu3SLDtMCfrfSRNynhoXOfnGlrY= -----END CERTIFICATE-----Generated at Fri May 17 10:10:52 2024 by rpki-client on console-fra.rpki-client.org