$ rpki-client -vvf rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft File: XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft (raw, json) Hash identifier: VsNgHg6I2O+7FAaDum5vo17b97sAtQ1hnObCltRcOIg= Subject key identifier: 73:54:F8:E6:94:74:EA:B0:64:9E:BF:A0:E1:6D:A2:B5:96:DB:5E:D8 Authority key identifier: 5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5 Certificate issuer: /CN=A91D318A/serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft Manifest number: 5A Signing time: Wed 15 May 2024 07:49:19 +0000 Manifest this update: Wed 15 May 2024 07:49:19 +0000 Manifest next update: Wed 22 May 2024 07:49:19 +0000 Files and hashes: 1: XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl (hash: 7/71VcIq8N7KlqyoAlYjOXO9QLdEVHxV/9Yc44Hysu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:49:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D318A/serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5 Validity Not Before: May 15 07:49:19 2024 GMT Not After : May 22 07:49:19 2024 GMT Subject: CN=664468ff-e43e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f9:e0:0a:51:af:01:78:02:ec:11:de:4b:6a: fd:7f:fb:58:23:53:5e:3d:96:73:ad:a3:80:66:66: a8:0b:86:d9:ec:1d:80:f9:dc:e0:6b:bc:2a:48:87: 4c:be:f1:93:78:c6:9e:3d:ef:9a:f5:10:68:e0:f6: 7c:73:a9:89:be:32:4a:bf:e1:f5:c0:82:2e:e9:88: 0a:5e:00:80:65:67:9b:26:63:e9:3b:dc:f4:46:f4: f5:aa:71:3a:39:36:24:c2:3b:2e:48:64:f1:dd:40: dd:9a:97:6c:7b:69:1d:19:39:cc:c3:22:e3:39:d6: a0:13:6b:22:36:d9:59:f4:e4:b5:5c:3f:d0:f1:96: 51:f9:59:0a:05:32:09:d8:35:de:ac:9c:fc:17:30: 00:07:04:16:af:de:11:76:ed:ea:25:17:c4:c7:35: 34:c2:4c:74:7e:5c:1a:ec:9e:51:dc:ed:63:ca:f9: a8:06:9c:44:70:0c:fd:04:93:69:a2:f0:77:af:2e: db:42:14:6c:33:76:94:05:86:4c:c6:23:a7:e3:1b: 0e:91:b1:e6:72:d8:e0:0f:1c:c0:78:18:27:42:6b: 82:72:ad:d0:99:fd:04:c4:a6:66:e2:44:c3:29:f6: 85:4b:6d:79:fd:80:cd:a6:d5:01:49:4c:42:5a:1d: fd:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:54:F8:E6:94:74:EA:B0:64:9E:BF:A0:E1:6D:A2:B5:96:DB:5E:D8 X509v3 Authority Key Identifier: keyid:5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:96:1d:76:02:3e:9b:3a:e4:de:31:fd:be:38:d3:c4:df:78: 7d:e1:64:2e:56:4c:8c:19:56:dd:9f:85:95:b0:42:46:6a:23: db:4b:85:c7:cb:55:f9:9a:3b:22:39:cf:bf:dc:d4:a5:b9:32: bd:5a:e0:fd:a9:69:5b:98:f9:0d:30:fc:06:16:f9:29:81:e5: aa:af:55:2d:73:2b:c6:ab:d1:8b:12:7d:1a:58:45:8c:4a:94: d0:68:17:54:3a:e5:66:e3:52:cb:e7:f5:a8:71:ef:d6:c0:c3: 2e:f8:dd:39:85:16:2c:64:68:94:35:be:d9:4e:8b:d7:7f:7f: 89:01:2f:61:0b:1b:15:30:76:b9:e6:1a:79:d4:20:93:6a:88: af:b6:c0:f6:da:89:56:b4:9d:44:96:48:03:16:66:48:84:d3: 65:44:68:de:6f:e4:4e:b4:50:3c:a7:5b:25:9d:52:1a:03:79: 56:31:62:eb:f1:4f:eb:57:c4:4c:cf:04:a3:22:f1:78:32:86: 84:f4:f9:cc:c5:3f:8d:3b:00:4a:57:c2:d9:ea:6d:1a:7c:9b: 11:a2:11:24:5b:c8:38:2d:27:82:12:33:9b:eb:de:89:13:3e: 8a:9d:72:c1:8d:d0:0e:5d:a3:b2:0f:c7:52:ac:27:ce:c6:fd: c1:50:b4:2f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MzE4QTExMC8GA1UEBRMoNUNGNTVCODhBNjY5REM3RTgyMTE1RjgwNjA2OUYzQzkz Q0U2NUNCNTAeFw0yNDA1MTUwNzQ5MTlaFw0yNDA1MjIwNzQ5MTlaMBgxFjAUBgNV BAMTDTY2NDQ2OGZmLWU0M2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDL+eAKUa8BeALsEd5Lav1/+1gjU149lnOto4BmZqgLhtnsHYD53OBrvCpIh0y+ 8ZN4xp4975r1EGjg9nxzqYm+Mkq/4fXAgi7piApeAIBlZ5smY+k73PRG9PWqcTo5 NiTCOy5IZPHdQN2al2x7aR0ZOczDIuM51qATayI22Vn05LVcP9DxllH5WQoFMgnY Nd6snPwXMAAHBBav3hF27eolF8THNTTCTHR+XBrsnlHc7WPK+agGnERwDP0Ek2mi 8HevLttCFGwzdpQFhkzGI6fjGw6RseZy2OAPHMB4GCdCa4JyrdCZ/QTEpmbiRMMp 9oVLbXn9gM2m1QFJTEJaHf3LAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUc1T45pR0 6rBknr+g4W2itZbbXtgwHwYDVR0jBBgwFoAUXPVbiKZp3H6CEV+AYGnzyTzmXLUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQzMThBL0Y1QjVDQTgwODdF NjExRUU5N0U2Qzc0NkM0RjlBRTAyL1hQVmJpS1pwM0g2Q0VWLUFZR256eVR6bVhM VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWFBWYmlLWnAzSDZDRVYtQVlHbnp5VHptWExVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQz MThBL0Y1QjVDQTgwODdFNjExRUU5N0U2Qzc0NkM0RjlBRTAyL1hQVmJpS1pwM0g2 Q0VWLUFZR256eVR6bVhMVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGSWHXYCPps65N4x/b4408TfeH3hZC5WTIwZVt2fhZWwQkZqI9tLhcfL VfmaOyI5z7/c1KW5Mr1a4P2paVuY+Q0w/AYW+SmB5aqvVS1zK8ar0YsSfRpYRYxK lNBoF1Q65WbjUsvn9ahx79bAwy743TmFFixkaJQ1vtlOi9d/f4kBL2ELGxUwdrnm GnnUIJNqiK+2wPbaiVa0nUSWSAMWZkiE02VEaN5v5E60UDynWyWdUhoDeVYxYuvx T+tXxEzPBKMi8XgyhoT0+czFP407AEpXwtnqbRp8mxGiESRbyDgtJ4ISM5vr3okT PoqdcsGN0A5do7IPx1KsJ87G/cFQtC8= -----END CERTIFICATE-----Generated at Wed May 15 09:28:16 2024 by rpki-client on console-fra.rpki-client.org