$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft File: XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft (raw, json) Hash identifier: JiEN3Bp1a4qKurSTSGHkkdoCFjQ6MqnzkFfV1UPm9s8= Subject key identifier: 3B:C4:A0:0F:60:C9:5F:8D:4B:9D:B6:3F:A7:74:E4:74:B6:A0:50:9E Authority key identifier: 5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 Certificate issuer: /CN=A91C9561/serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Certificate serial: 022F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft Manifest number: 022E Signing time: Fri 03 May 2024 04:06:42 +0000 Manifest this update: Fri 03 May 2024 04:06:42 +0000 Manifest next update: Fri 10 May 2024 04:06:42 +0000 Files and hashes: 1: XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl (hash: vd4DXS9xJKS2knGFlDcorLhRLPJYGIIPfYSkKTkoTU8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 559 (0x22f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9561/serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Validity Not Before: May 3 04:06:42 2024 GMT Not After : May 10 04:06:42 2024 GMT Subject: CN=663462d2-d332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:13:94:95:9b:39:72:67:33:11:41:f3:38:3a: 06:0a:db:e4:32:12:95:be:40:7a:98:1a:b8:53:0f: 7a:ae:4b:94:8f:4f:66:dc:76:f0:d4:90:55:c5:db: f3:cc:dd:1b:10:ba:2d:e2:46:ae:05:61:19:ba:b3: bc:83:aa:98:83:f4:05:7c:a5:ab:b5:87:e0:c1:b7: 61:e1:da:78:e6:2c:3c:40:56:06:d0:b8:06:04:99: 4e:e2:80:5c:73:99:6b:4b:a8:b4:3d:ac:31:6f:86: ff:a4:cd:d5:7d:8a:d0:a0:70:d8:a3:ac:57:99:08: b5:c5:3e:7d:35:d2:ee:61:21:9b:1e:15:74:bc:bc: 5b:53:b2:fb:19:4a:58:fe:b1:34:1f:29:e9:f1:ef: ff:d6:ac:dc:ca:4c:52:c5:46:c1:72:1a:e9:05:b9: af:d9:13:bf:91:0f:d8:6a:6e:fd:a4:69:6a:f4:a1: 14:65:1e:51:c2:af:37:6a:65:7a:37:19:26:34:9d: d1:fb:43:c2:47:c3:d3:1d:8c:7c:05:b9:69:f7:1c: 2d:83:1a:36:fb:5c:ba:3c:70:17:5a:06:65:43:4d: 8a:25:86:d9:b6:d8:90:d3:76:6a:b3:83:ed:5c:54: 95:44:46:21:22:c5:cb:63:0e:85:93:ba:e2:5a:2c: d2:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:C4:A0:0F:60:C9:5F:8D:4B:9D:B6:3F:A7:74:E4:74:B6:A0:50:9E X509v3 Authority Key Identifier: keyid:5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:53:48:c3:58:09:8d:ea:64:73:51:9d:9a:13:a2:58:a7:ce: a0:76:a1:b3:3b:81:ba:a1:87:5c:bc:23:9a:8b:05:ee:58:52: e2:1a:7d:51:a3:83:ee:a9:8c:c7:fa:f0:5c:38:36:cc:ee:e7: 0d:0e:3c:8c:9d:02:0a:e8:44:f6:b5:c0:2a:41:4a:10:25:07: be:a4:8c:5f:8c:ac:5e:52:e1:d7:5f:96:5a:d4:9b:b8:ad:e9: 42:d1:7e:ca:c8:b0:9d:b2:dc:64:c3:6a:f7:d8:0c:c9:43:8d: 09:a1:bc:cd:d6:57:c6:29:7b:1f:06:0b:7d:74:d0:e3:6d:e8: a9:fc:50:45:ee:be:30:60:31:54:07:0d:f7:bb:b5:53:22:e7: 53:49:e9:ab:c8:22:c6:43:7f:f5:54:1c:58:cc:6c:fd:f8:b9: 6c:6f:13:7c:d6:ce:77:16:2a:d7:32:e1:20:d4:5f:26:d6:33: b6:60:1e:8c:ef:6b:09:9e:1a:7d:00:a5:d6:24:c3:4a:a7:16: ec:29:c7:88:ab:3b:b8:d8:8e:a5:d9:75:04:91:52:ea:8f:c6: 8b:78:f5:11:1c:af:2d:57:fc:70:53:63:cb:8b:03:61:b9:13: bf:3a:56:62:76:1d:c7:ff:47:7c:00:4e:2c:85:62:e7:45:15: 48:f0:6e:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NjExMTAvBgNVBAUTKDVFM0NGMDI1MUQ4QTYwMDZCODI4NUJEMDk0OUZDRDlC QTNGOUVCQjgwHhcNMjQwNTAzMDQwNjQyWhcNMjQwNTEwMDQwNjQyWjAYMRYwFAYD VQQDEw02NjM0NjJkMi1kMzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhOUlZs5cmczEUHzODoGCtvkMhKVvkB6mBq4Uw96rkuUj09m3Hbw1JBVxdvz zN0bELot4kauBWEZurO8g6qYg/QFfKWrtYfgwbdh4dp45iw8QFYG0LgGBJlO4oBc c5lrS6i0Pawxb4b/pM3VfYrQoHDYo6xXmQi1xT59NdLuYSGbHhV0vLxbU7L7GUpY /rE0Hynp8e//1qzcykxSxUbBchrpBbmv2RO/kQ/Yam79pGlq9KEUZR5Rwq83amV6 NxkmNJ3R+0PCR8PTHYx8Bblp9xwtgxo2+1y6PHAXWgZlQ02KJYbZttiQ03Zqs4Pt XFSVREYhIsXLYw6Fk7riWizSjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvEoA9g yV+NS522P6d05HS2oFCeMB8GA1UdIwQYMBaAFF488CUdimAGuChb0JSfzZuj+eu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2MS9DOUE4REZEQURB NjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lBYTRLRnZRbEpfTm02UDU2 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hqendKUjJLWUFhNEtGdlFsSl9ObTZQNTY3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2MS9DOUE4REZEQURBNjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lB YTRLRnZRbEpfTm02UDU2N2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6U0jDWAmN6mRzUZ2aE6JYp86gdqGzO4G6oYdcvCOaiwXuWFLiGn1R o4PuqYzH+vBcODbM7ucNDjyMnQIK6ET2tcAqQUoQJQe+pIxfjKxeUuHXX5Za1Ju4 relC0X7KyLCdstxkw2r32AzJQ40JobzN1lfGKXsfBgt9dNDjbeip/FBF7r4wYDFU Bw33u7VTIudTSemryCLGQ3/1VBxYzGz9+LlsbxN81s53FirXMuEg1F8m1jO2YB6M 72sJnhp9AKXWJMNKpxbsKceIqzu42I6l2XUEkVLqj8aLePURHK8tV/xwU2PLiwNh uRO/OlZidh3H/0d8AE4shWLnRRVI8G7F -----END CERTIFICATE-----Generated at Fri May 3 06:29:23 2024 by rpki-client on console-fra.rpki-client.org