$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft File: xOTw2gEK9YY3zFlihHHpmLckPFI.mft (raw, json) Hash identifier: lTz5EZsRSozS69M70QtqM8UNNIQvxwRFZc52jUOpadw= Subject key identifier: 05:CF:D8:F9:F5:CD:C4:13:A6:D2:FE:1C:B9:0A:29:61:95:3F:27:97 Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Certificate serial: 0834 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft Manifest number: 0822 Signing time: Sat 18 May 2024 21:49:45 +0000 Manifest this update: Sat 18 May 2024 21:49:45 +0000 Manifest next update: Sat 25 May 2024 21:49:45 +0000 Files and hashes: 1: xOTw2gEK9YY3zFlihHHpmLckPFI.crl (hash: 6i8ibJMHaeVYQBnCeVelyDEVvhWDdKopdhPRxXv1OV4=) 2: 5353EA28781F11EEBA05B17FC4F9AE02.roa (hash: yfWpHkNEQh2G2/td7i4AwoD5izJRxTmfi2zYrBb7ip0=) 3: 863670328FD011EEB6FFC636C4F9AE02.roa (hash: LXbUGEX0BzxPJTGdu8cpn4olWR+ALKon9w0YiyjSIgs=) 4: 03706138786411EC8624EB12C4F9AE02.roa (hash: v1LJQRKcSsr5fZtI1cfsXADOOD23gM5W/71UiLOuA2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2100 (0x834) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Validity Not Before: May 18 21:49:45 2024 GMT Not After : May 25 21:49:45 2024 GMT Subject: CN=66492279-5626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e9:69:d3:16:5e:c7:bb:0c:87:80:04:27:cf: 3d:b2:86:ec:97:22:57:ac:2a:8a:d2:2c:ae:8f:6f: 97:e1:25:d3:3d:a1:69:5f:b7:57:07:31:bd:85:7b: cd:58:5e:f3:33:dc:c6:a8:cd:13:b7:91:5a:29:fb: 1d:62:48:65:44:0f:ad:99:9b:ca:1e:ac:84:25:99: dc:33:a9:0a:58:1e:91:08:2a:a9:6c:e4:eb:55:03: 27:15:05:85:49:10:76:0e:97:bc:fa:c5:a2:73:ee: dc:5d:52:f1:58:ff:ab:ed:1a:91:78:95:c0:72:56: bb:72:e2:31:e0:14:72:53:95:2e:ac:14:3f:f0:70: 9e:78:89:e9:cc:d7:a3:36:97:44:81:14:ce:96:c3: 1a:d4:78:5c:cb:42:f5:2c:e9:ef:f5:17:8c:eb:82: 9f:4a:0b:86:6e:bb:e1:bb:50:45:7b:77:1e:05:9c: b8:bc:9a:14:ce:c9:37:aa:ad:6d:81:db:e0:06:18: 29:7c:dd:2a:bd:16:95:cb:8d:07:2a:7b:39:0e:f7: 08:24:ab:7b:a7:82:be:76:d7:e8:44:88:22:0e:38: 0d:69:25:65:b6:ae:e3:69:e5:be:8d:a3:9c:33:e1: 42:d7:8e:b2:4e:79:e6:ba:3e:2e:46:83:f2:8e:cb: 3d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:CF:D8:F9:F5:CD:C4:13:A6:D2:FE:1C:B9:0A:29:61:95:3F:27:97 X509v3 Authority Key Identifier: keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:11:7e:b7:1c:aa:58:67:0a:69:ff:cf:77:57:06:c2:b0:05: f8:47:2d:c3:67:04:95:a9:17:40:0c:7b:e5:73:42:05:f8:e2: 5f:f4:bb:06:6c:62:ad:c7:e0:4e:40:f5:f4:dc:16:77:59:8f: e2:d9:6c:d0:c0:ec:44:d1:4e:11:75:a3:c5:78:a0:4e:73:29: 29:40:8c:15:cb:1a:73:81:5f:08:2a:ab:b5:9e:f7:0a:d7:81: 43:2b:88:da:57:8f:2e:78:e0:f5:5d:83:3b:61:e3:56:a0:25: 23:82:25:40:f5:46:6f:a2:ba:b4:05:f1:b5:a0:03:da:75:4c: e9:e2:36:f8:2f:0d:07:22:6c:73:f1:59:67:0a:ae:e5:e6:0c: b6:bb:bc:b1:ef:b0:fa:d5:92:66:7e:62:0a:19:fa:1f:cd:93: 2e:38:19:16:69:70:92:25:55:ce:ae:36:93:a3:fc:cb:e8:95: eb:71:95:6e:03:4c:ba:de:78:b5:38:6f:c8:1a:ad:0b:0d:e5: 44:93:45:31:3e:80:0d:83:63:63:bc:ff:b9:64:70:5e:31:f4: 6a:ba:e5:58:c3:7f:f4:28:73:d4:25:92:c9:ea:18:05:04:2f: ab:93:a6:3f:fe:67:cd:1f:fe:21:6c:cb:d1:e2:9b:41:bc:ef: 13:cf:9a:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKEM0RTRGMERBMDEwQUY1ODYzN0NDNTk2Mjg0NzFFOTk4 QjcyNDNDNTIwHhcNMjQwNTE4MjE0OTQ1WhcNMjQwNTI1MjE0OTQ1WjAYMRYwFAYD VQQDEw02NjQ5MjI3OS01NjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Olp0xZex7sMh4AEJ889sobslyJXrCqK0iyuj2+X4SXTPaFpX7dXBzG9hXvN WF7zM9zGqM0Tt5FaKfsdYkhlRA+tmZvKHqyEJZncM6kKWB6RCCqpbOTrVQMnFQWF SRB2Dpe8+sWic+7cXVLxWP+r7RqReJXAcla7cuIx4BRyU5UurBQ/8HCeeInpzNej NpdEgRTOlsMa1Hhcy0L1LOnv9ReM64KfSguGbrvhu1BFe3ceBZy4vJoUzsk3qq1t gdvgBhgpfN0qvRaVy40HKns5DvcIJKt7p4K+dtfoRIgiDjgNaSVltq7jaeW+jaOc M+FC146yTnnmuj4uRoPyjss9zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXP2Pn1 zcQTptL+HLkKKWGVPyeXMB8GA1UdIwQYMBaAFMTk8NoBCvWGN8xZYoRx6Zi3JDxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wQTE2MjA4QUFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZWTN6RmxpaEhIcG1MY2tQ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hPVHcyZ0VLOVlZM3pGbGloSEhwbUxja1BGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wQTE2MjA4QUFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZ WTN6RmxpaEhIcG1MY2tQRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMEX63HKpYZwpp/893VwbCsAX4Ry3DZwSVqRdADHvlc0IF+OJf9LsG bGKtx+BOQPX03BZ3WY/i2WzQwOxE0U4RdaPFeKBOcykpQIwVyxpzgV8IKqu1nvcK 14FDK4jaV48ueOD1XYM7YeNWoCUjgiVA9UZvorq0BfG1oAPadUzp4jb4Lw0HImxz 8VlnCq7l5gy2u7yx77D61ZJmfmIKGfofzZMuOBkWaXCSJVXOrjaTo/zL6JXrcZVu A0y63ni1OG/IGq0LDeVEk0UxPoANg2NjvP+5ZHBeMfRquuVYw3/0KHPUJZLJ6hgF BC+rk6Y//mfNH/4hbMvR4ptBvO8Tz5ob -----END CERTIFICATE-----Generated at Sun May 19 00:16:19 2024 by rpki-client on console-fra.rpki-client.org