$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft File: xIoOQPt_45dbEsI-AwrFTFIFcWM.mft (raw, json) Hash identifier: UUJ1/2Hnool8m1NtXMzzPhlYW7DZ4TOkzOZs2Bs34PU= Subject key identifier: C6:6F:F3:B0:E6:29:2A:1B:67:AA:AF:39:20:5E:7C:1A:26:34:ED:80 Authority key identifier: C4:8A:0E:40:FB:7F:E3:97:5B:12:C2:3E:03:0A:C5:4C:52:05:71:63 Certificate issuer: /CN=A91D28BC/serialNumber=C48A0E40FB7FE3975B12C23E030AC54C52057163 Certificate serial: 0491 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft Manifest number: 048E Signing time: Sun 05 May 2024 01:45:02 +0000 Manifest this update: Sun 05 May 2024 01:45:01 +0000 Manifest next update: Sun 12 May 2024 01:45:01 +0000 Files and hashes: 1: xIoOQPt_45dbEsI-AwrFTFIFcWM.crl (hash: BY+eRjMYARk3rhg0uV0OrW+pYZ6EQRkcRHGK46KgE1I=) 2: 2B07FA82EADC11EBBE430B5EC4F9AE02.roa (hash: tOaWIn0hKgLGbTa/9KsuAGYfXUTZkuc/qe0+6/vgHdw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.crl rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1169 (0x491) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28BC/serialNumber=C48A0E40FB7FE3975B12C23E030AC54C52057163 Validity Not Before: May 5 01:45:01 2024 GMT Not After : May 12 01:45:01 2024 GMT Subject: CN=6636e49e-06d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:98:01:d5:3d:5d:74:ea:1b:6e:41:4d:4b:74: a1:69:4c:63:fb:e0:83:93:d3:c2:d6:8e:1d:f9:94: eb:30:c0:2a:56:41:87:0e:f5:0e:7c:1b:1b:2d:09: 62:8e:4b:7e:64:2c:74:59:83:ed:08:db:35:40:26: 60:b1:82:52:56:29:9e:bb:42:25:de:f6:8c:18:9d: 14:a4:88:df:79:44:2a:66:a8:d2:2a:ad:01:7b:7a: 7f:64:7e:04:2f:dd:e1:4b:c2:15:40:92:53:2a:ea: 3f:49:ec:cb:5f:f6:87:b7:a8:3b:01:97:91:e4:f0: cd:cb:c2:0b:59:8a:7b:d8:03:d5:48:e5:53:60:1b: 78:41:6b:36:fd:a6:5d:ec:8d:7a:68:d4:ee:60:0a: c5:6c:a7:9c:c7:11:f1:b3:d0:be:cd:f4:07:f4:8d: e8:04:65:34:ad:fa:7b:d3:0b:cc:c4:9c:7b:21:70: aa:78:dd:35:f8:3a:1f:f0:ac:23:08:d9:9a:60:ed: 1d:58:d3:34:9b:61:97:ec:ee:3e:e5:52:03:69:2f: 1d:f8:fd:a9:80:cf:4b:c7:7a:b8:7d:75:86:fb:d8: 65:70:04:60:7d:07:63:ff:c9:9a:fa:13:1e:38:8b: 11:2a:c5:ae:f0:fd:85:f3:ce:2f:e6:11:2e:62:81: 81:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:6F:F3:B0:E6:29:2A:1B:67:AA:AF:39:20:5E:7C:1A:26:34:ED:80 X509v3 Authority Key Identifier: keyid:C4:8A:0E:40:FB:7F:E3:97:5B:12:C2:3E:03:0A:C5:4C:52:05:71:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:dc:20:33:f3:a6:ed:4d:5c:1d:6a:41:3b:8a:b0:b0:9d:f0: c5:0c:78:be:7b:65:d3:13:b4:53:0f:bb:e6:03:9a:3f:a9:3f: 7e:13:5b:57:0d:14:0e:45:3d:fb:e1:e1:de:27:38:0e:73:42: fd:aa:25:72:af:1d:07:46:8a:4f:7b:9f:98:87:54:98:bf:fc: ff:e4:71:ee:de:7a:23:84:48:0a:bf:b0:27:16:d9:b7:e6:79: 5d:c5:d8:e3:6a:bc:8b:ed:16:b3:72:77:f8:78:f7:8f:65:c8: ae:fc:fb:f3:d8:e9:b7:27:47:6c:98:dc:d7:a2:5d:e2:3c:3f: 60:13:a9:78:15:43:c3:a8:57:3d:ff:a2:34:41:df:d4:4d:2a: c3:f4:b4:35:67:8e:40:7e:58:8b:a8:da:7b:df:a2:d9:56:2c: 2f:c8:b6:dd:bd:3e:bc:62:4f:b3:21:85:d2:25:bd:db:36:6f: e4:3d:59:52:84:70:6d:75:3d:4d:45:c8:b3:d5:28:d9:bf:f2: 67:4a:fe:42:60:55:1c:62:a7:a1:e4:9d:62:b0:5a:c7:88:5f: 68:60:0d:f6:58:f2:16:6d:df:88:fd:5e:e5:f6:d4:2b:eb:15: 2d:72:92:46:01:46:21:22:64:4f:e2:55:25:83:3d:26:fb:4f: 50:01:e0:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4QkMxMTAvBgNVBAUTKEM0OEEwRTQwRkI3RkUzOTc1QjEyQzIzRTAzMEFDNTRD NTIwNTcxNjMwHhcNMjQwNTA1MDE0NTAxWhcNMjQwNTEyMDE0NTAxWjAYMRYwFAYD VQQDEw02NjM2ZTQ5ZS0wNmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZgB1T1ddOobbkFNS3ShaUxj++CDk9PC1o4d+ZTrMMAqVkGHDvUOfBsbLQli jkt+ZCx0WYPtCNs1QCZgsYJSVimeu0Il3vaMGJ0UpIjfeUQqZqjSKq0Be3p/ZH4E L93hS8IVQJJTKuo/SezLX/aHt6g7AZeR5PDNy8ILWYp72APVSOVTYBt4QWs2/aZd 7I16aNTuYArFbKecxxHxs9C+zfQH9I3oBGU0rfp70wvMxJx7IXCqeN01+Dof8Kwj CNmaYO0dWNM0m2GX7O4+5VIDaS8d+P2pgM9Lx3q4fXWG+9hlcARgfQdj/8ma+hMe OIsRKsWu8P2F884v5hEuYoGB0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMZv87Dm KSobZ6qvOSBefBomNO2AMB8GA1UdIwQYMBaAFMSKDkD7f+OXWxLCPgMKxUxSBXFj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhCQy85MjA5MjM5MEVB RDgxMUVCQkQyQ0M3NThDNEY5QUUwMi94SW9PUVB0XzQ1ZGJFc0ktQXdyRlRGSUZj V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJb09RUHRfNDVkYkVzSS1Bd3JGVEZJRmNXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhCQy85MjA5MjM5MEVBRDgxMUVCQkQyQ0M3NThDNEY5QUUwMi94SW9PUVB0XzQ1 ZGJFc0ktQXdyRlRGSUZjV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAY3CAz86btTVwdakE7irCwnfDFDHi+e2XTE7RTD7vmA5o/qT9+E1tX DRQORT374eHeJzgOc0L9qiVyrx0HRopPe5+Yh1SYv/z/5HHu3nojhEgKv7AnFtm3 5nldxdjjaryL7Razcnf4ePePZciu/Pvz2Om3J0dsmNzXol3iPD9gE6l4FUPDqFc9 /6I0Qd/UTSrD9LQ1Z45AfliLqNp736LZViwvyLbdvT68Yk+zIYXSJb3bNm/kPVlS hHBtdT1NRciz1SjZv/JnSv5CYFUcYqeh5J1isFrHiF9oYA32WPIWbd+I/V7l9tQr 6xUtcpJGAUYhImRP4lUlgz0m+09QAeCJ -----END CERTIFICATE-----Generated at Sun May 5 02:33:39 2024 by rpki-client on console-fra.rpki-client.org