$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft File: XRhbcS2TBWvydLi3qJjGklTruYM.mft (raw, json) Hash identifier: yhc05oUfUmU9qWPgnCx8UzxsojiccH1aAWiAWD9ydA4= Subject key identifier: 10:82:2A:0A:A7:BF:C1:E8:86:73:B9:BD:EA:AA:5C:DB:F4:19:B0:3C Authority key identifier: 5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 Certificate issuer: /CN=A91AE972/serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft Manifest number: 52 Signing time: Wed 15 May 2024 08:07:32 +0000 Manifest this update: Wed 15 May 2024 08:07:31 +0000 Manifest next update: Wed 22 May 2024 08:07:31 +0000 Files and hashes: 1: XRhbcS2TBWvydLi3qJjGklTruYM.crl (hash: e0idX+AkN1boNjQDjoTJqxP32OGzEJ+pP5K0TBGxXq0=) 2: 79124A64AD5F11EE8824985BC4F9AE02.roa (hash: B9BQyy3CDZZSMJBX+GCW4rWICLdCrlm/SrcOF/YLMFQ=) 3: DCCEA912A3EB11EE8049E335C4F9AE02.roa (hash: n/QHjH1nEODvbvzFyy3xLe3FzdFcDXtcGXLBP+1lw5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:07:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE972/serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Validity Not Before: May 15 08:07:31 2024 GMT Not After : May 22 08:07:31 2024 GMT Subject: CN=66446d44-90e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:7e:7a:d3:d3:d9:86:46:88:66:68:69:3d:30: 06:6f:9b:ea:a6:29:51:38:d8:82:d3:24:fe:78:0c: 13:32:09:a9:69:1b:49:f0:74:49:43:07:a2:95:7a: ba:0a:af:cf:e2:2a:2a:14:d2:17:4d:26:0d:ab:b5: de:98:b8:6a:d2:2c:ef:12:a5:70:d1:60:56:e8:68: e7:67:1b:70:68:89:fe:28:82:70:cd:2f:88:e0:55: af:d8:b0:a1:c1:2e:44:66:b6:11:3e:e1:1f:05:2f: b7:6c:0d:46:53:e1:29:8d:1e:91:11:57:d4:a7:48: 3b:db:d6:29:e5:a5:ec:a1:1c:99:27:36:2a:9e:3d: de:06:b9:95:ef:ce:ec:73:93:6d:87:ea:cb:da:fa: 96:09:7a:41:37:c1:94:1e:c7:2d:8f:fb:d5:24:b2: c7:cf:35:66:b2:eb:7d:6b:c3:9c:cf:c5:28:9c:c0: ca:d2:75:ce:3d:14:d3:81:78:0b:60:40:f5:89:08: 27:47:86:dd:36:38:3c:ce:3c:16:69:59:b2:e3:73: 81:a4:df:8e:8a:2b:d5:29:ea:e7:29:b4:4a:7e:cb: 1a:3d:b1:da:00:12:13:b5:70:eb:61:98:6a:03:a0: 2c:8b:94:ba:e9:5e:17:17:ae:98:14:3d:22:a0:c4: d7:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:82:2A:0A:A7:BF:C1:E8:86:73:B9:BD:EA:AA:5C:DB:F4:19:B0:3C X509v3 Authority Key Identifier: keyid:5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:49:62:22:1b:f8:d0:b8:c2:e4:56:7d:a5:dd:f1:0b:e9:f7: 61:35:48:b2:fc:52:8a:8a:c1:23:09:c2:df:9c:82:3e:7b:33: 01:09:6d:e6:d4:c7:f8:54:1e:f0:69:92:c7:7d:0e:76:ba:f4: 29:d9:6b:50:4f:66:e6:b2:23:51:54:ca:09:33:8a:25:89:25: 36:d7:f8:65:b3:d8:9b:7e:b2:b1:cb:81:27:a2:2d:d5:49:8f: 6e:5c:f3:a3:8a:e6:7b:95:67:71:56:00:41:6b:01:0e:eb:25: b0:fb:49:0b:2c:de:d1:d6:50:2e:97:f7:7c:94:a6:d6:74:8c: 55:f8:f9:c9:95:19:3e:51:e6:5e:56:73:82:3c:ab:da:53:16: 5f:84:d5:7b:a7:ae:f5:d1:ba:77:06:b1:f0:5a:c2:bd:5b:f8: ab:e8:ae:03:99:fb:b5:90:a6:14:15:e6:56:4e:fc:19:95:b9: c8:ea:84:63:1e:88:12:20:52:a0:f2:44:e2:87:be:8b:f7:36: 42:d1:05:fb:1b:4b:6b:91:43:69:23:4d:55:99:aa:dd:38:47: d2:1c:46:49:76:28:e0:91:fa:0b:6a:97:f6:5b:04:14:cf:67: 49:17:7c:08:e2:f6:0a:a5:31:44:c0:1b:b8:c9:e8:5d:8b:c8: cb:1c:18:30 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RTk3MjExMC8GA1UEBRMoNUQxODVCNzEyRDkzMDU2QkYyNzRCOEI3QTg5OEM2OTI1 NEVCQjk4MzAeFw0yNDA1MTUwODA3MzFaFw0yNDA1MjIwODA3MzFaMBgxFjAUBgNV BAMTDTY2NDQ2ZDQ0LTkwZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCYfnrT09mGRohmaGk9MAZvm+qmKVE42ILTJP54DBMyCalpG0nwdElDB6KVeroK r8/iKioU0hdNJg2rtd6YuGrSLO8SpXDRYFboaOdnG3Boif4ognDNL4jgVa/YsKHB LkRmthE+4R8FL7dsDUZT4SmNHpERV9SnSDvb1inlpeyhHJknNiqePd4GuZXvzuxz k22H6sva+pYJekE3wZQexy2P+9UkssfPNWay631rw5zPxSicwMrSdc49FNOBeAtg QPWJCCdHht02ODzOPBZpWbLjc4Gk346KK9Up6ucptEp+yxo9sdoAEhO1cOthmGoD oCyLlLrpXhcXrpgUPSKgxNcVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEIIqCqe/ weiGc7m96qpc2/QZsDwwHwYDVR0jBBgwFoAUXRhbcS2TBWvydLi3qJjGklTruYMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFFOTcyLzI0NUIzRERDQTNF NjExRUVBREY5NDg1NUM0RjlBRTAyL1hSaGJjUzJUQld2eWRMaTNxSmpHa2xUcnVZ TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWFJoYmNTMlRCV3Z5ZExpM3FKakdrbFRydVlNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFF OTcyLzI0NUIzRERDQTNFNjExRUVBREY5NDg1NUM0RjlBRTAyL1hSaGJjUzJUQld2 eWRMaTNxSmpHa2xUcnVZTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGZJYiIb+NC4wuRWfaXd8Qvp92E1SLL8UoqKwSMJwt+cgj57MwEJbebU x/hUHvBpksd9Dna69CnZa1BPZuayI1FUygkziiWJJTbX+GWz2Jt+srHLgSeiLdVJ j25c86OK5nuVZ3FWAEFrAQ7rJbD7SQss3tHWUC6X93yUptZ0jFX4+cmVGT5R5l5W c4I8q9pTFl+E1XunrvXRuncGsfBawr1b+KvorgOZ+7WQphQV5lZO/BmVucjqhGMe iBIgUqDyROKHvov3NkLRBfsbS2uRQ2kjTVWZqt04R9IcRkl2KOCR+gtql/ZbBBTP Z0kXfAji9gqlMUTAG7jJ6F2LyMscGDA= -----END CERTIFICATE-----Generated at Wed May 15 09:04:44 2024 by rpki-client on console-ams.rpki-client.org