$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft File: XucUYNY3KKxeq5GKVB0NcFFXfU0.mft (raw, json) Hash identifier: tPed8lWyDZdGvJWoLtopjcecfn45rQjNLfZzNFRhiEI= Subject key identifier: 47:9A:44:07:44:06:6F:05:EE:76:A2:88:E5:0D:70:26:BB:59:14:6E Authority key identifier: 5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D Certificate issuer: /CN=A91B758E/serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Certificate serial: 29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft Manifest number: 29 Signing time: Fri 17 May 2024 08:36:57 +0000 Manifest this update: Fri 17 May 2024 08:36:57 +0000 Manifest next update: Fri 24 May 2024 08:36:57 +0000 Files and hashes: 1: XucUYNY3KKxeq5GKVB0NcFFXfU0.crl (hash: i9iCZcNVUK31LaiOkP4N5djevw2AnX2O2l4vX4I73iE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E/serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Validity Not Before: May 17 08:36:57 2024 GMT Not After : May 24 08:36:57 2024 GMT Subject: CN=66471729-1b3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d4:10:77:e4:3b:b0:58:4b:82:d9:b8:ef:a6: 57:7c:e4:96:d7:5b:e5:26:33:9b:72:ef:fb:36:89: 03:bc:a4:b4:36:0b:4d:34:18:3c:6a:61:94:3f:10: 79:d8:3a:e2:ba:38:51:03:63:cb:95:0c:18:a7:e5: ed:97:7a:57:71:b0:31:8c:ec:2c:4b:5f:78:8b:b3: be:b5:9a:ab:3e:50:cd:90:27:31:92:59:bb:e4:2c: 4e:1d:75:5a:bf:5d:90:a3:dc:51:11:98:80:e6:e0: dc:7c:f5:eb:d8:6d:a9:5e:70:78:a8:3a:fd:7b:6c: ac:98:9b:fb:6f:8c:fe:a6:68:ea:a8:dd:95:20:9b: 7e:1d:47:2a:8b:1e:03:34:b1:cd:1b:d7:50:bd:d0: d7:b9:29:ec:0c:5f:01:c3:af:93:4a:d5:11:d2:1a: 73:58:d5:fc:38:2f:c2:b1:db:cc:53:95:d3:5f:a5: bc:03:83:27:ed:63:b7:23:d6:e4:58:97:ad:b2:40: 12:9c:56:3e:3f:6e:6f:b1:cc:fa:d0:aa:e9:3c:32: 58:27:15:07:91:10:9e:13:e3:c2:92:9f:a1:36:d1: 26:20:a2:31:09:da:78:93:66:d8:07:0c:35:f9:32: 09:fd:99:3c:77:fd:db:07:5c:05:81:44:c8:d3:5a: 85:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:9A:44:07:44:06:6F:05:EE:76:A2:88:E5:0D:70:26:BB:59:14:6E X509v3 Authority Key Identifier: keyid:5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:18:9e:65:97:32:fb:88:b1:43:f8:83:bf:53:54:7a:13:2c: 68:a9:c2:0a:f6:60:d1:75:af:ee:aa:7b:69:8c:9c:1a:66:b2: a6:51:33:30:7b:cf:71:2d:fa:20:a0:d8:be:77:34:3d:ba:54: e4:5b:24:82:8c:69:9e:4c:65:0f:f9:b0:64:9d:7d:5b:b4:07: 6e:52:e9:68:f5:ed:7c:62:3b:fb:0d:19:63:67:6e:02:18:c9: d7:a7:77:e7:72:21:36:d1:b2:8a:f2:54:a7:2e:61:ba:73:49: 3d:a7:9f:be:7e:56:a0:e1:e6:40:33:5b:e9:a8:fd:b4:2d:2b: 46:4e:24:14:02:42:b4:a8:5e:52:da:af:f4:87:75:77:41:a2: 47:19:33:a5:eb:0a:df:9b:e0:97:ef:45:1e:b2:87:c7:cc:5a: cb:40:6e:33:40:10:f5:94:80:69:ca:9c:0c:91:b6:fa:a6:d9: 47:6b:74:11:27:88:a5:54:20:6d:77:fb:6b:18:ad:f5:ce:9d: 6e:67:49:ac:e5:dd:ac:83:bb:2e:d0:7d:94:f8:9b:9a:84:99: 89:89:0a:cc:72:26:37:f2:e8:19:c7:e8:2e:df:71:8b:eb:cb: 5f:c1:d6:7f:94:94:48:cb:6d:6c:bb:27:ba:38:d9:68:73:ea: a3:f1:d0:b4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NzU4RTExMC8GA1UEBRMoNUVFNzE0NjBENjM3MjhBQzVFQUI5MThBNTQxRDBENzA1 MTU3N0Q0RDAeFw0yNDA1MTcwODM2NTdaFw0yNDA1MjQwODM2NTdaMBgxFjAUBgNV BAMTDTY2NDcxNzI5LTFiM2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC51BB35DuwWEuC2bjvpld85JbXW+UmM5ty7/s2iQO8pLQ2C000GDxqYZQ/EHnY OuK6OFEDY8uVDBin5e2XeldxsDGM7CxLX3iLs761mqs+UM2QJzGSWbvkLE4ddVq/ XZCj3FERmIDm4Nx89evYbalecHioOv17bKyYm/tvjP6maOqo3ZUgm34dRyqLHgM0 sc0b11C90Ne5KewMXwHDr5NK1RHSGnNY1fw4L8Kx28xTldNfpbwDgyftY7cj1uRY l62yQBKcVj4/bm+xzPrQquk8MlgnFQeREJ4T48KSn6E20SYgojEJ2niTZtgHDDX5 Mgn9mTx3/dsHXAWBRMjTWoUlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUR5pEB0QG bwXudqKI5Q1wJrtZFG4wHwYDVR0jBBgwFoAUXucUYNY3KKxeq5GKVB0NcFFXfU0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3NThFL0U3OTlGOTIyRDUz RDExRUU4RjFFOEE4NUM0RjlBRTAyL1h1Y1VZTlkzS0t4ZXE1R0tWQjBOY0ZGWGZV MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWHVjVVlOWTNLS3hlcTVHS1ZCME5jRkZYZlUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 NThFL0U3OTlGOTIyRDUzRDExRUU4RjFFOEE4NUM0RjlBRTAyL1h1Y1VZTlkzS0t4 ZXE1R0tWQjBOY0ZGWGZVMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ4YnmWXMvuIsUP4g79TVHoTLGipwgr2YNF1r+6qe2mMnBpmsqZRMzB7 z3Et+iCg2L53ND26VORbJIKMaZ5MZQ/5sGSdfVu0B25S6Wj17XxiO/sNGWNnbgIY ydend+dyITbRsoryVKcuYbpzST2nn75+VqDh5kAzW+mo/bQtK0ZOJBQCQrSoXlLa r/SHdXdBokcZM6XrCt+b4JfvRR6yh8fMWstAbjNAEPWUgGnKnAyRtvqm2UdrdBEn iKVUIG13+2sYrfXOnW5nSazl3ayDuy7QfZT4m5qEmYmJCsxyJjfy6BnH6C7fcYvr y1/B1n+UlEjLbWy7J7o42Whz6qPx0LQ= -----END CERTIFICATE-----Generated at Fri May 17 10:59:13 2024 by rpki-client on console-ams.rpki-client.org