$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft File: XytYId1DwpQ50rruW9wEMpHEe68.mft (raw, json) Hash identifier: lr8JgiSAQ9myERZHsdUAkkG0OqHT3dTXd5j9P26Ds2E= Subject key identifier: DA:56:73:D2:D0:63:BE:3D:C7:1E:10:6B:0E:3F:E0:8E:92:B7:E8:26 Authority key identifier: 5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF Certificate issuer: /CN=A91BF2FD/serialNumber=5F2B5821DD43C29439D2BAEE5BDC043291C47BAF Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft Manifest number: 23 Signing time: Fri 17 May 2024 08:41:56 +0000 Manifest this update: Fri 17 May 2024 08:41:55 +0000 Manifest next update: Fri 24 May 2024 08:41:55 +0000 Files and hashes: 1: XytYId1DwpQ50rruW9wEMpHEe68.crl (hash: Q/k2EAI0xqyl2M4hi4tlux74MXHrpoHd3gyCLxBZXfo=) 2: 199F588CE21711EE913F3E62C4F9AE02.roa (hash: 3MMDEbkkdNFM/djNh0ORf8UHeAKMwjP4dT3GZUmqZZQ=) 3: F5A311DAE21611EEB7B0D361C4F9AE02.roa (hash: 7eg8s3nshujJWlMFILJG4nxViOoj4GxAMrDMLj0daAk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF2FD/serialNumber=5F2B5821DD43C29439D2BAEE5BDC043291C47BAF Validity Not Before: May 17 08:41:55 2024 GMT Not After : May 24 08:41:55 2024 GMT Subject: CN=66471854-7eba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a6:d0:94:de:a5:60:84:07:50:70:5e:d7:97: 9d:c1:69:11:b5:8a:b1:74:95:ff:95:01:cd:76:30: 4e:9e:4d:ba:0c:2d:67:30:8d:93:30:7b:d4:0a:46: 4e:a3:32:b2:48:94:b1:df:2e:c5:33:c1:9d:f3:99: 3c:5f:07:37:a9:b6:31:b9:8d:77:96:75:b3:6b:de: 44:df:72:ca:e6:37:72:57:62:81:33:4b:8e:90:24: a8:e0:31:b2:c0:09:8a:8a:99:71:ad:d7:aa:8b:a4: 3a:67:7d:2a:42:fa:42:97:27:b6:74:35:cc:16:ec: 02:8a:97:d5:ea:12:d1:eb:f5:8d:02:76:e8:36:9e: 82:11:73:c2:11:4a:f8:5c:e3:32:a5:d3:8b:58:b9: c3:07:28:ff:8a:2b:0c:d5:4e:e1:03:9c:58:62:77: 57:a3:8f:cd:88:15:5e:86:1c:b4:22:76:09:1a:44: 6f:30:04:53:4d:b6:d5:ba:4d:c5:f4:c0:59:d4:02: 1a:72:75:64:77:42:a4:43:f8:c0:ca:7e:a9:d8:20: 75:8c:e0:af:db:9a:d9:bb:dd:7f:ac:b9:c5:66:7d: fc:9c:03:6d:f8:e9:13:a8:af:da:99:f5:06:72:b0: 53:79:97:b3:34:a8:60:a2:eb:3a:d7:8d:ad:26:8b: d0:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:56:73:D2:D0:63:BE:3D:C7:1E:10:6B:0E:3F:E0:8E:92:B7:E8:26 X509v3 Authority Key Identifier: keyid:5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:86:da:24:09:cc:97:93:a8:76:aa:9b:da:3d:01:9b:4e:e9: b5:37:6f:99:01:ec:0e:7f:b2:04:d2:5f:5a:e0:a9:fd:91:80: 44:37:5b:8b:54:0c:4f:d0:26:4f:78:4d:18:6d:b6:d7:72:5a: 12:fd:c2:b9:7c:50:be:73:3d:82:f3:3a:74:d5:12:8e:b8:e1: 0c:57:08:67:aa:dd:66:2c:9b:f4:01:ac:07:df:59:8e:ff:e6: 2e:b3:36:bb:35:83:09:9f:ea:77:a5:ea:a5:03:4e:62:0b:55: c1:1c:4d:97:e2:d7:54:85:24:d9:a8:ea:91:ae:17:21:e7:e6: 71:e8:78:76:53:63:2d:ef:b3:f6:68:92:92:e8:5f:58:cf:ed: 6f:c5:9c:14:ab:f1:64:7f:0b:46:ee:dd:d7:7b:33:a9:2e:2e: ef:6c:6e:10:39:90:b0:1a:fd:21:10:61:56:e6:6a:c2:9f:2f: 68:71:01:f4:74:d7:a9:53:42:83:90:2d:b5:16:13:b8:10:a0: ad:88:8e:3a:da:2a:e2:d0:5d:6c:23:27:7d:f5:e4:60:40:c4: 95:e8:ad:e3:97:e9:36:74:8c:8b:35:eb:62:68:3d:da:ab:cb: 90:86:a3:fe:00:0f:7f:ab:47:aa:9c:8c:77:6a:b7:ad:9f:8b: 6a:99:0c:07 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RjJGRDExMC8GA1UEBRMoNUYyQjU4MjFERDQzQzI5NDM5RDJCQUVFNUJEQzA0MzI5 MUM0N0JBRjAeFw0yNDA1MTcwODQxNTVaFw0yNDA1MjQwODQxNTVaMBgxFjAUBgNV BAMTDTY2NDcxODU0LTdlYmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5ptCU3qVghAdQcF7Xl53BaRG1irF0lf+VAc12ME6eTboMLWcwjZMwe9QKRk6j MrJIlLHfLsUzwZ3zmTxfBzeptjG5jXeWdbNr3kTfcsrmN3JXYoEzS46QJKjgMbLA CYqKmXGt16qLpDpnfSpC+kKXJ7Z0NcwW7AKKl9XqEtHr9Y0Cdug2noIRc8IRSvhc 4zKl04tYucMHKP+KKwzVTuEDnFhid1ejj82IFV6GHLQidgkaRG8wBFNNttW6TcX0 wFnUAhpydWR3QqRD+MDKfqnYIHWM4K/bmtm73X+sucVmffycA2346ROor9qZ9QZy sFN5l7M0qGCi6zrXja0mi9C7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2lZz0tBj vj3HHhBrDj/gjpK36CYwHwYDVR0jBBgwFoAUXytYId1DwpQ50rruW9wEMpHEe68w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGMkZELzYzOEQ2MkEwRTEx MjExRUVBQzc4NjEzOEM0RjlBRTAyL1h5dFlJZDFEd3BRNTBycnVXOXdFTXBIRWU2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWHl0WUlkMUR3cFE1MHJydVc5d0VNcEhFZTY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJG MkZELzYzOEQ2MkEwRTExMjExRUVBQzc4NjEzOEM0RjlBRTAyL1h5dFlJZDFEd3BR NTBycnVXOXdFTXBIRWU2OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACGG2iQJzJeTqHaqm9o9AZtO6bU3b5kB7A5/sgTSX1rgqf2RgEQ3W4tU DE/QJk94TRhtttdyWhL9wrl8UL5zPYLzOnTVEo644QxXCGeq3WYsm/QBrAffWY7/ 5i6zNrs1gwmf6nel6qUDTmILVcEcTZfi11SFJNmo6pGuFyHn5nHoeHZTYy3vs/Zo kpLoX1jP7W/FnBSr8WR/C0bu3dd7M6kuLu9sbhA5kLAa/SEQYVbmasKfL2hxAfR0 16lTQoOQLbUWE7gQoK2IjjraKuLQXWwjJ3315GBAxJXoreOX6TZ0jIs162JoPdqr y5CGo/4AD3+rR6qcjHdqt62fi2qZDAc= -----END CERTIFICATE-----Generated at Fri May 17 10:59:13 2024 by rpki-client on console-ams.rpki-client.org