$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft File: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft (raw, json) Hash identifier: ojL3nQ+TPX5hwiGu+kMPxJtWErcxyG50hknW9bvt+Qk= Subject key identifier: 5C:F1:93:CF:B0:7C:70:2A:44:6E:33:3F:98:40:DD:6C:54:55:71:93 Authority key identifier: 5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 Certificate issuer: /CN=A91B4F01/serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Certificate serial: 03A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft Manifest number: 039F Signing time: Sun 05 May 2024 02:41:27 +0000 Manifest this update: Sun 05 May 2024 02:41:27 +0000 Manifest next update: Sun 12 May 2024 02:41:27 +0000 Files and hashes: 1: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl (hash: SsAoy8Y77oJfpQIpStwx65XPbL26/sNZXBnzAyiVNjc=) 2: BD115AB24B7C11ECA63C0038C4F9AE02.roa (hash: 6CT4A5Z7mS/Dgpw7JiEf3AxJ+VrPvktJ4pEL6052hpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 930 (0x3a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4F01/serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Validity Not Before: May 5 02:41:27 2024 GMT Not After : May 12 02:41:27 2024 GMT Subject: CN=6636f1d7-bfd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:56:78:0d:66:10:6f:4f:d4:88:76:90:7b:d7: cf:7b:81:21:98:f1:46:da:34:45:de:7c:65:1b:58: 8d:3a:7f:45:5f:4f:e9:e0:85:74:ca:81:3e:bc:b6: e1:ee:56:0c:ee:09:dc:73:c1:2a:77:2c:01:e4:19: 9c:47:db:7a:c8:2d:ee:af:27:25:28:8f:c1:ca:38: 72:c2:83:56:72:60:1c:d6:16:10:a1:d0:40:17:10: c4:29:73:53:91:ac:6f:54:3b:be:f9:30:21:97:0a: cd:c9:cb:d4:68:fc:69:90:0a:60:10:36:a2:83:a5: cb:02:5e:ae:bf:5f:80:c6:f2:44:23:bc:41:d3:71: e0:f1:d5:e7:f2:dc:39:e4:24:34:e4:40:5a:ee:aa: 1f:a1:23:fe:a9:4a:00:cd:c8:ab:48:43:e5:3f:47: 29:57:9c:a9:fd:8d:2f:a3:07:e9:5f:44:3f:e4:5e: 1b:1d:4e:39:27:93:52:61:f0:34:38:77:28:3c:9d: 0a:b4:dc:00:23:41:f5:f5:67:95:cc:91:e8:4c:bc: f2:76:81:db:12:80:94:2b:39:f1:d1:c6:1e:e4:2e: 63:9d:26:41:56:68:93:a3:91:3e:71:60:af:bd:28: 5a:40:b4:2a:48:c0:a1:1a:65:1d:bf:f2:44:fa:4c: e6:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:F1:93:CF:B0:7C:70:2A:44:6E:33:3F:98:40:DD:6C:54:55:71:93 X509v3 Authority Key Identifier: keyid:5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:67:dd:83:cb:f4:75:ed:66:84:e6:7c:8b:8e:1a:0b:4c:8e: 8c:46:d1:39:59:46:94:0b:83:0f:88:69:c0:9e:40:9b:07:48: 2c:16:00:19:34:b3:a1:b8:38:bc:ef:6b:c5:61:d0:6d:4a:96: 1a:8d:21:e3:d8:18:0b:d3:42:0c:98:fb:97:cb:ad:c0:db:74: f0:d6:43:c3:0c:4c:4b:10:02:a7:83:8d:0b:39:83:f3:67:d0: 8b:5e:76:b6:05:df:89:94:87:93:cb:1e:05:6a:bd:d2:11:b5: 6b:7e:29:4d:90:c3:38:a5:0f:3f:74:9c:e7:be:cb:fe:20:f4: 6f:61:a3:26:70:af:43:79:24:db:3e:c6:31:b7:4d:65:2c:68: d2:aa:6c:8b:9d:96:46:84:71:9e:0a:0b:0d:d7:ec:55:0c:71: 0f:0b:c8:9d:e2:28:6f:9d:52:f8:40:74:47:b3:79:ad:d9:9f: d7:fc:00:52:fd:74:80:5b:4e:2a:20:36:49:08:db:18:cc:5c: d7:86:58:6a:b4:9d:67:1e:53:b3:18:d5:d2:45:38:04:89:c7: 77:34:08:b2:4c:ef:00:bc:97:75:df:e5:8e:38:3f:6b:e6:97: e0:85:c4:7f:95:f8:95:4b:7a:66:2f:9d:8b:8f:42:07:8a:65: 37:4c:0d:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRGMDExMTAvBgNVBAUTKDVFQkRBN0ZBQTgwMUM1QTI3NERDMjNEMTcxRjg4QjQ2 QTExRTQxNTQwHhcNMjQwNTA1MDI0MTI3WhcNMjQwNTEyMDI0MTI3WjAYMRYwFAYD VQQDEw02NjM2ZjFkNy1iZmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VZ4DWYQb0/UiHaQe9fPe4EhmPFG2jRF3nxlG1iNOn9FX0/p4IV0yoE+vLbh 7lYM7gncc8EqdywB5BmcR9t6yC3uryclKI/ByjhywoNWcmAc1hYQodBAFxDEKXNT kaxvVDu++TAhlwrNycvUaPxpkApgEDaig6XLAl6uv1+AxvJEI7xB03Hg8dXn8tw5 5CQ05EBa7qofoSP+qUoAzcirSEPlP0cpV5yp/Y0vowfpX0Q/5F4bHU45J5NSYfA0 OHcoPJ0KtNwAI0H19WeVzJHoTLzydoHbEoCUKznx0cYe5C5jnSZBVmiTo5E+cWCv vShaQLQqSMChGmUdv/JE+kzmfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFzxk8+w fHAqRG4zP5hA3WxUVXGTMB8GA1UdIwQYMBaAFF69p/qoAcWidNwj0XH4i0ahHkFU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEYwMS9BNzAwQTg0NDRC NzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhhSjAzQ1BSY2ZpTFJxRWVR VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyMm4tcWdCeGFKMDNDUFJjZmlMUnFFZVFWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEYwMS9BNzAwQTg0NDRCNzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhh SjAzQ1BSY2ZpTFJxRWVRVlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxZ92Dy/R17WaE5nyLjhoLTI6MRtE5WUaUC4MPiGnAnkCbB0gsFgAZ NLOhuDi872vFYdBtSpYajSHj2BgL00IMmPuXy63A23Tw1kPDDExLEAKng40LOYPz Z9CLXna2Bd+JlIeTyx4Far3SEbVrfilNkMM4pQ8/dJznvsv+IPRvYaMmcK9DeSTb PsYxt01lLGjSqmyLnZZGhHGeCgsN1+xVDHEPC8id4ihvnVL4QHRHs3mt2Z/X/ABS /XSAW04qIDZJCNsYzFzXhlhqtJ1nHlOzGNXSRTgEicd3NAiyTO8AvJd13+WOOD9r 5pfghcR/lfiVS3pmL52Lj0IHimU3TA0V -----END CERTIFICATE-----Generated at Sun May 5 03:09:56 2024 by rpki-client on console-ams.rpki-client.org