$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7C1A/1A3C6F0E927711EEA3944E0CC4F9AE02/-X5yAn9yM2RVo2RT-ymx5Fta7UA.mft File: -X5yAn9yM2RVo2RT-ymx5Fta7UA.mft (raw, json) Hash identifier: Qf8Jzy1RDHADbyTLuCFqbWDO8f9mfjVxy7pM/1S+ko4= Subject key identifier: 55:24:74:85:2A:D6:BB:8B:94:FE:7E:E5:88:EF:39:CC:81:74:8A:90 Authority key identifier: F9:7E:72:02:7F:72:33:64:55:A3:64:53:FB:29:B1:E4:5B:5A:ED:40 Certificate issuer: /CN=A91B7C1A/serialNumber=F97E72027F72336455A36453FB29B1E45B5AED40 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-X5yAn9yM2RVo2RT-ymx5Fta7UA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7C1A/1A3C6F0E927711EEA3944E0CC4F9AE02/-X5yAn9yM2RVo2RT-ymx5Fta7UA.mft Manifest number: 65 Signing time: Wed 15 May 2024 07:56:12 +0000 Manifest this update: Wed 15 May 2024 07:56:12 +0000 Manifest next update: Wed 22 May 2024 07:56:12 +0000 Files and hashes: 1: -X5yAn9yM2RVo2RT-ymx5Fta7UA.crl (hash: +ZAoz6pATMzWifyL7ixK57c/85F41tlVFtOmpRz0E1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7C1A/1A3C6F0E927711EEA3944E0CC4F9AE02/-X5yAn9yM2RVo2RT-ymx5Fta7UA.crl rsync://rpki.apnic.net/member_repository/A91B7C1A/1A3C6F0E927711EEA3944E0CC4F9AE02/-X5yAn9yM2RVo2RT-ymx5Fta7UA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-X5yAn9yM2RVo2RT-ymx5Fta7UA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:56:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7C1A/serialNumber=F97E72027F72336455A36453FB29B1E45B5AED40 Validity Not Before: May 15 07:56:12 2024 GMT Not After : May 22 07:56:12 2024 GMT Subject: CN=66446a9c-c2a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f6:16:e3:bd:67:57:b4:14:43:3d:5d:f8:59: d1:a9:01:0e:7b:96:f6:34:f4:0d:66:1c:a9:8b:2d: a9:8d:99:46:02:2a:83:dc:5d:ca:4f:2a:57:19:04: 5b:62:1f:5f:df:41:13:db:8a:47:6d:08:18:3b:20: 23:db:39:55:99:0d:98:f0:9d:f5:06:c6:38:fb:6e: 3b:a8:03:fa:b1:7c:0c:56:87:89:8d:3e:28:3d:4e: c7:c0:41:cc:8e:bb:b9:ff:14:fc:bd:d2:10:b7:94: d7:a8:24:de:09:da:43:9e:41:1e:8c:de:d0:fc:1b: 5f:23:24:85:da:d5:8c:6e:1f:60:22:90:f4:57:7d: 29:f2:38:b6:48:ee:05:f0:e4:36:1c:48:23:3c:48: 2b:b8:ab:93:ce:2f:ac:18:4e:87:0e:83:a2:14:19: e0:52:8a:2e:c8:68:76:c0:8d:6d:76:51:cf:f5:21: 12:63:ed:e3:36:60:f3:d4:b3:84:a2:32:73:a4:be: 7c:3e:16:b4:4e:4f:ab:9f:a3:fc:ec:8c:24:bb:5c: 9e:15:87:b4:09:b7:b0:7e:4d:86:fa:03:9e:8a:75: 4c:68:1f:33:23:c1:67:9c:22:9d:75:60:d1:c0:fb: 4e:cd:07:b7:66:65:6b:1e:e9:ee:3a:4c:24:49:2e: 50:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:24:74:85:2A:D6:BB:8B:94:FE:7E:E5:88:EF:39:CC:81:74:8A:90 X509v3 Authority Key Identifier: keyid:F9:7E:72:02:7F:72:33:64:55:A3:64:53:FB:29:B1:E4:5B:5A:ED:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7C1A/1A3C6F0E927711EEA3944E0CC4F9AE02/-X5yAn9yM2RVo2RT-ymx5Fta7UA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-X5yAn9yM2RVo2RT-ymx5Fta7UA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7C1A/1A3C6F0E927711EEA3944E0CC4F9AE02/-X5yAn9yM2RVo2RT-ymx5Fta7UA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:c5:56:fd:71:12:49:79:9c:dd:71:ff:84:8d:da:28:31:1b: 67:06:11:8d:e7:a0:2f:5e:6e:f7:63:1c:02:ad:9d:cb:af:74: 51:de:e9:3e:1f:44:50:1d:dc:41:03:26:99:cf:f0:f2:ca:07: 3a:8e:87:24:e8:e9:eb:37:84:bc:b5:a6:10:50:c4:b5:48:a7: 9f:d4:36:b3:6c:aa:89:ec:82:64:7e:de:0f:80:d9:f7:78:81: 81:41:76:99:e2:b3:98:2a:56:03:d5:6a:3c:e5:09:65:12:0b: b8:30:90:d7:ce:53:84:26:f9:8b:44:07:0e:35:92:c7:38:eb: ee:d7:55:79:e3:5a:b4:6e:8f:80:f1:81:e5:e2:34:5c:e2:01: 3b:75:ac:28:47:7e:6d:78:97:35:d6:2e:10:50:cb:ea:0b:c3: d4:e3:c5:c9:cf:bd:9a:33:6e:2e:b4:22:1f:81:55:ad:d0:55: 22:78:5e:cd:27:48:e1:9e:bb:91:f8:46:88:e6:a9:39:01:e4: de:25:c1:0f:4a:fe:e2:5a:3e:ad:33:cb:0e:53:66:5a:c7:80: cf:13:7c:61:55:a4:c0:16:54:89:9c:e5:c2:40:39:32:b9:fd: e0:87:cc:b9:ff:eb:45:f2:62:4c:c3:17:0a:8c:44:98:f9:28: 32:1d:c7:13 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC N0MxQTExMC8GA1UEBRMoRjk3RTcyMDI3RjcyMzM2NDU1QTM2NDUzRkIyOUIxRTQ1 QjVBRUQ0MDAeFw0yNDA1MTUwNzU2MTJaFw0yNDA1MjIwNzU2MTJaMBgxFjAUBgNV BAMTDTY2NDQ2YTljLWMyYTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDf9hbjvWdXtBRDPV34WdGpAQ57lvY09A1mHKmLLamNmUYCKoPcXcpPKlcZBFti H1/fQRPbikdtCBg7ICPbOVWZDZjwnfUGxjj7bjuoA/qxfAxWh4mNPig9TsfAQcyO u7n/FPy90hC3lNeoJN4J2kOeQR6M3tD8G18jJIXa1YxuH2AikPRXfSnyOLZI7gXw 5DYcSCM8SCu4q5POL6wYTocOg6IUGeBSii7IaHbAjW12Uc/1IRJj7eM2YPPUs4Si MnOkvnw+FrROT6ufo/zsjCS7XJ4Vh7QJt7B+TYb6A56KdUxoHzMjwWecIp11YNHA +07NB7dmZWse6e46TCRJLlChAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVSR0hSrW u4uU/n7liO85zIF0ipAwHwYDVR0jBBgwFoAU+X5yAn9yM2RVo2RT+ymx5Fta7UAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3QzFBLzFBM0M2RjBFOTI3 NzExRUVBMzk0NEUwQ0M0RjlBRTAyLy1YNXlBbjl5TTJSVm8yUlQteW14NUZ0YTdV QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLVg1eUFuOXlNMlJWbzJSVC15bXg1RnRhN1VBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 QzFBLzFBM0M2RjBFOTI3NzExRUVBMzk0NEUwQ0M0RjlBRTAyLy1YNXlBbjl5TTJS Vm8yUlQteW14NUZ0YTdVQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGrFVv1xEkl5nN1x/4SN2igxG2cGEY3noC9ebvdjHAKtncuvdFHe6T4f RFAd3EEDJpnP8PLKBzqOhyTo6es3hLy1phBQxLVIp5/UNrNsqonsgmR+3g+A2fd4 gYFBdpnis5gqVgPVajzlCWUSC7gwkNfOU4Qm+YtEBw41ksc46+7XVXnjWrRuj4Dx geXiNFziATt1rChHfm14lzXWLhBQy+oLw9TjxcnPvZozbi60Ih+BVa3QVSJ4Xs0n SOGeu5H4RojmqTkB5N4lwQ9K/uJaPq0zyw5TZlrHgM8TfGFVpMAWVImc5cJAOTK5 /eCHzLn/60XyYkzDFwqMRJj5KDIdxxM= -----END CERTIFICATE-----Generated at Wed May 15 09:28:14 2024 by rpki-client on console-fra.rpki-client.org