$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft File: XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft (raw, json) Hash identifier: EC0ar5e1M/GjGMeuBhjwa/bWCz6iM/ZUANWRkhyzL8I= Subject key identifier: E1:BB:CA:00:96:2B:B8:0A:2D:B4:64:0E:9D:BD:40:92:95:9B:E6:EE Authority key identifier: 5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 Certificate issuer: /CN=A91D0B34/serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Certificate serial: 0913 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft Manifest number: 0907 Signing time: Thu 02 May 2024 21:23:35 +0000 Manifest this update: Thu 02 May 2024 21:23:34 +0000 Manifest next update: Thu 09 May 2024 21:23:34 +0000 Files and hashes: 1: XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl (hash: zKA8Q84FBCkgTuxnvPq5UGKglQoJXaIQAk3V+kKQBKQ=) 2: 97E61FE46F2111EB85D19531C4F9AE02.roa (hash: DssmlY3zYyoAn6gxMuCReXOjnO4QTscqjjMKPq7u2r0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:23:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2323 (0x913) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B34/serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Validity Not Before: May 2 21:23:34 2024 GMT Not After : May 9 21:23:34 2024 GMT Subject: CN=66340457-0366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:df:cf:7e:26:ea:a6:6d:2f:df:d0:ed:7a:55: 54:50:43:c1:4f:65:7c:76:c7:e7:bc:bb:41:d7:7a: ec:15:3b:4c:fa:b8:4a:bb:1b:58:47:f4:09:1b:dd: 1d:f2:26:5c:50:63:78:9b:fa:ab:3e:51:3b:98:56: 2b:95:8f:6d:b8:8f:4d:2e:ed:03:9e:00:df:44:66: 6c:f0:4c:f1:72:5d:22:01:7e:e0:c7:62:d7:12:6a: 25:56:37:40:c3:a0:c0:f1:59:70:cc:94:c6:14:11: 7a:c1:52:c9:f4:38:5b:ae:d2:2c:0b:f3:3c:26:49: 7f:24:c4:b0:3f:44:db:cc:d8:10:de:88:28:b6:3f: ac:e1:9e:b7:fc:f1:2c:4f:e1:b5:d5:d1:c7:3f:8c: 37:cf:f4:75:fe:15:b6:49:18:be:41:86:c9:b5:56: d5:bb:2f:81:38:c4:27:22:a1:ee:da:45:39:d0:0d: b4:16:4e:97:1c:2c:8c:07:6b:f3:4d:ad:b2:8c:49: bb:b0:f5:6c:b4:8f:6e:50:17:13:c2:68:3d:e4:30: b9:74:be:fc:e4:7a:58:03:76:92:e3:40:af:a2:63: d1:4e:2a:94:73:31:de:89:92:40:80:0a:3f:49:ce: b4:4d:28:a6:87:5a:48:75:4f:89:71:f1:52:d8:f5: b2:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:BB:CA:00:96:2B:B8:0A:2D:B4:64:0E:9D:BD:40:92:95:9B:E6:EE X509v3 Authority Key Identifier: keyid:5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:33:2f:3b:bf:33:fa:24:d9:c7:24:83:ff:c3:88:41:54:8f: 33:87:24:99:2c:f8:20:80:67:2c:5a:5b:30:c0:96:bc:94:6d: f4:38:ca:ab:ea:77:36:66:30:9f:ae:75:dd:c6:84:cf:13:39: ba:e2:ad:56:50:ca:6e:2c:1e:1a:30:fb:8a:9c:7f:e4:eb:91: 11:c8:16:c0:b8:8c:7a:58:a9:be:b9:d1:cc:03:4c:53:75:c7: d7:c2:5d:bc:5c:86:a0:fb:69:30:3a:79:4a:b4:67:31:66:d6: 88:87:c5:2a:a5:eb:d5:e5:76:3a:90:88:c7:fa:0d:21:c4:c2: f6:99:39:08:82:99:7a:b4:30:2a:3f:40:4d:91:74:cf:86:5f: da:1b:49:e1:b9:8f:3f:48:b2:79:96:d4:31:d0:4f:1a:9d:96: 68:55:19:2c:a4:90:88:b7:0e:7e:75:d3:ba:f8:e8:5b:e0:18: e4:0f:c4:2b:3f:22:ff:20:6b:da:51:38:de:f5:5a:c9:e6:61: 56:76:11:ff:c2:c2:85:d0:46:e5:03:c1:6a:71:cf:10:cf:0c: 6c:34:ab:39:d8:37:31:5e:71:f2:b1:fe:86:c4:52:64:ee:28: 9a:a1:52:89:84:72:e4:4c:b0:53:70:3d:d8:b3:f8:2a:ca:45: e5:db:81:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMzQxMTAvBgNVBAUTKDVERjEwMkUyQTVFNzM2NzcyMUMxMThEQkVDREE2MDJB ODAyOUVFOTQwHhcNMjQwNTAyMjEyMzM0WhcNMjQwNTA5MjEyMzM0WjAYMRYwFAYD VQQDEw02NjM0MDQ1Ny0wMzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzd/Pfibqpm0v39DtelVUUEPBT2V8dsfnvLtB13rsFTtM+rhKuxtYR/QJG90d 8iZcUGN4m/qrPlE7mFYrlY9tuI9NLu0DngDfRGZs8Ezxcl0iAX7gx2LXEmolVjdA w6DA8VlwzJTGFBF6wVLJ9DhbrtIsC/M8Jkl/JMSwP0TbzNgQ3ogotj+s4Z63/PEs T+G11dHHP4w3z/R1/hW2SRi+QYbJtVbVuy+BOMQnIqHu2kU50A20Fk6XHCyMB2vz Ta2yjEm7sPVstI9uUBcTwmg95DC5dL785HpYA3aS40CvomPRTiqUczHeiZJAgAo/ Sc60TSimh1pIdU+JcfFS2PWy3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOG7ygCW K7gKLbRkDp29QJKVm+buMB8GA1UdIwQYMBaAFF3xAuKl5zZ3IcEY2+zaYCqAKe6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIzNC82MDM3RDVEQzgy QTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5uY2h3UmpiN05wZ0tvQXA3 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmRUM0cVhuTm5jaHdSamI3TnBnS29BcDdwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIzNC82MDM3RDVEQzgyQTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5u Y2h3UmpiN05wZ0tvQXA3cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFMy87vzP6JNnHJIP/w4hBVI8zhySZLPgggGcsWlswwJa8lG30OMqr 6nc2ZjCfrnXdxoTPEzm64q1WUMpuLB4aMPuKnH/k65ERyBbAuIx6WKm+udHMA0xT dcfXwl28XIag+2kwOnlKtGcxZtaIh8UqpevV5XY6kIjH+g0hxML2mTkIgpl6tDAq P0BNkXTPhl/aG0nhuY8/SLJ5ltQx0E8anZZoVRkspJCItw5+ddO6+Ohb4BjkD8Qr PyL/IGvaUTje9VrJ5mFWdhH/wsKF0EblA8Fqcc8QzwxsNKs52DcxXnHysf6GxFJk 7iiaoVKJhHLkTLBTcD3Ys/gqykXl24Fo -----END CERTIFICATE-----Generated at Thu May 2 22:13:23 2024 by rpki-client on console-fra.rpki-client.org