$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: MX0SvDW5wjHoJ/LEl1F4oHHritSmyvWgQPm5DjwWwbE= Subject key identifier: 67:04:ED:53:1B:8A:75:D4:B8:DB:D1:F5:15:38:56:61:06:72:02:63 Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: 77 Signing time: Sun 19 May 2024 07:20:08 +0000 Manifest this update: Sun 19 May 2024 07:20:07 +0000 Manifest next update: Sun 26 May 2024 07:20:07 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: E2IGa4oOk3Pv1pCfstCEQxUxV4Bxa4ewghkIVQu444M=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: PHBmU8XtEEkWx86byNZKqiqt2OH6pfWAcXf0bS09ZRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: May 19 07:20:07 2024 GMT Not After : May 26 07:20:07 2024 GMT Subject: CN=6649a828-17a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a4:ef:f4:ea:86:f9:fd:c1:1b:b4:56:5d:44: 6f:74:36:86:9c:35:51:7f:40:f4:8c:92:55:a6:cb: 4d:93:fa:72:54:e6:05:1c:ae:a8:b9:fc:95:65:a0: ef:2a:f8:59:03:0e:7b:37:d5:8a:98:94:fc:e2:6a: e6:c5:3d:53:55:1c:dd:e8:1a:77:22:bb:e6:a2:85: 84:95:aa:78:b2:fb:0f:9a:dd:d3:d0:5f:30:21:a3: f8:ef:31:08:42:40:8e:f2:b2:8f:d5:9c:ca:f4:f4: 59:5e:3e:34:d7:ad:24:8b:e4:30:df:cd:8c:ff:d0: d9:cd:b8:50:78:ba:bf:ec:38:19:2e:8a:1a:2a:e6: 17:6c:5e:5b:8b:39:c8:40:d3:32:76:75:2a:1e:44: 78:a7:39:54:d0:20:6d:49:a1:30:e4:ef:35:f1:8a: 8b:0f:45:0e:32:01:05:d7:2c:e6:26:49:06:2e:97: 0b:8b:36:44:ec:8e:b2:f7:46:ca:6e:56:03:28:25: 6c:44:9e:7e:be:9a:84:5d:3b:ea:f6:db:d7:d1:f6: aa:b8:d2:b7:57:10:68:62:f7:d2:75:fb:cf:99:ec: 1d:fa:22:15:fe:76:86:4f:73:94:af:6f:f4:61:65: d1:5b:f6:77:18:e2:37:53:2e:64:a0:42:cb:40:bd: c6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:04:ED:53:1B:8A:75:D4:B8:DB:D1:F5:15:38:56:61:06:72:02:63 X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:aa:1b:35:f0:39:0a:10:ce:cb:65:1e:a9:9f:c1:66:03:9d: af:ce:34:95:61:ef:2c:8c:59:bc:2f:42:90:64:44:87:b5:74: e7:1f:1c:16:de:7a:e4:ee:32:25:0c:15:f2:25:b4:de:66:60: 62:51:d3:c6:51:47:1f:48:52:26:96:0c:f3:2e:cf:c7:c5:7b: 69:5d:92:5c:91:d7:81:bf:b7:52:d6:17:e2:18:6b:ad:2b:3d: 35:2f:3d:4f:e5:8c:fd:28:47:42:3a:28:92:71:79:44:c5:9e: 7a:a6:8a:2d:b6:b5:7a:3d:20:9e:a8:c8:1a:e2:ea:56:0f:7b: 7a:7b:a8:5b:01:0f:0a:a0:24:15:73:e8:3a:e3:4d:8c:d4:79: d2:8b:90:e7:97:e8:3e:8b:d9:a3:c0:4a:bd:7f:20:4f:a0:09: f8:e7:ee:b9:60:7f:b1:26:a2:f7:54:69:7f:83:62:1a:d1:9f: ed:80:5a:40:7a:5c:aa:51:ee:8f:b0:6a:94:44:f1:36:b3:92: ec:1e:3d:00:5c:7a:64:ea:8c:aa:ce:2a:92:81:75:64:a3:d7: 2b:4a:ae:b6:71:21:6f:73:0f:f5:4e:f0:62:a0:39:a7:e2:41: 34:47:25:38:70:fa:37:e7:ee:1b:ce:74:0a:88:03:6f:3f:a2: 95:95:86:07 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUY3MzExMC8GA1UEBRMoQzQwNUYwNjFFMzNCMDcxN0M5MDRGQzFERjNFNzlCQ0Q3 OTUyMEZBNjAeFw0yNDA1MTkwNzIwMDdaFw0yNDA1MjYwNzIwMDdaMBgxFjAUBgNV BAMTDTY2NDlhODI4LTE3YTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKpO/06ob5/cEbtFZdRG90NoacNVF/QPSMklWmy02T+nJU5gUcrqi5/JVloO8q +FkDDns31YqYlPziaubFPVNVHN3oGnciu+aihYSVqniy+w+a3dPQXzAho/jvMQhC QI7yso/VnMr09FlePjTXrSSL5DDfzYz/0NnNuFB4ur/sOBkuihoq5hdsXluLOchA 0zJ2dSoeRHinOVTQIG1JoTDk7zXxiosPRQ4yAQXXLOYmSQYulwuLNkTsjrL3Rspu VgMoJWxEnn6+moRdO+r229fR9qq40rdXEGhi99J1+8+Z7B36IhX+doZPc5Svb/Rh ZdFb9ncY4jdTLmSgQstAvcYnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZwTtUxuK ddS429H1FThWYQZyAmMwHwYDVR0jBBgwFoAUxAXwYeM7BxfJBPwd8+ebzXlSD6Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBRjczL0Q1RkYxRjQwNUU3 MjExRUVCQzJDNDkyNkM0RjlBRTAyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveEFYd1llTTdCeGZKQlB3ZDgtZWJ6WGxTRDZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB RjczL0Q1RkYxRjQwNUU3MjExRUVCQzJDNDkyNkM0RjlBRTAyL3hBWHdZZU03Qnhm SkJQd2Q4LWVielhsU0Q2WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADuqGzXwOQoQzstlHqmfwWYDna/ONJVh7yyMWbwvQpBkRIe1dOcfHBbe euTuMiUMFfIltN5mYGJR08ZRRx9IUiaWDPMuz8fFe2ldklyR14G/t1LWF+IYa60r PTUvPU/ljP0oR0I6KJJxeUTFnnqmii22tXo9IJ6oyBri6lYPe3p7qFsBDwqgJBVz 6DrjTYzUedKLkOeX6D6L2aPASr1/IE+gCfjn7rlgf7EmovdUaX+DYhrRn+2AWkB6 XKpR7o+wapRE8TazkuwePQBcemTqjKrOKpKBdWSj1ytKrrZxIW9zD/VO8GKgOafi QTRHJThw+jfn7hvOdAqIA28/opWVhgc= -----END CERTIFICATE-----Generated at Sun May 19 08:25:07 2024 by rpki-client on console-ams.rpki-client.org