$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft File: XlEJvjS4HAy74OQ1mneBpGJLn80.mft (raw, json) Hash identifier: 18UhqU3VrrbQncPZVtGPUbIUXKL0c0HxpRhSgZJlPVM= Subject key identifier: 7F:D5:D6:1F:10:79:1D:02:B6:BB:78:1E:2F:38:FE:47:C0:78:D8:04 Authority key identifier: 5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD Certificate issuer: /CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Certificate serial: 11F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft Manifest number: 4601 Signing time: Fri 24 May 2024 14:22:28 +0000 Manifest this update: Fri 24 May 2024 14:22:28 +0000 Manifest next update: Fri 31 May 2024 14:22:28 +0000 Files and hashes: 1: XlEJvjS4HAy74OQ1mneBpGJLn80.crl (hash: XOhuNPOvCWsb06XSqynrGgNJcorOQWBHMqLBruW7W9s=) 2: C5FA430E179711EDB9008D18C4F9AE02.roa (hash: B1hjBTYwx940cc+Ga3+hdRGNrla7mnw/WcZJINp2Si4=) 3: 12300E80ECD911EEB21F7B7FC4F9AE02.roa (hash: 0glwFJX1i+64ukwswEdh5zuYeLvunHaXx0SdaO9iu3k=) 4: 792023A8E0DD11EE86DB926AC4F9AE02.roa (hash: DKJ8iu+zuHS7KwrheI8Sl8n5VdUWE4MJD7AtLu88Mok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 14:22:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4601 (0x11f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Validity Not Before: May 24 14:22:28 2024 GMT Not After : May 31 14:22:28 2024 GMT Subject: CN=6650a2a4-ecf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f5:a2:82:21:27:5b:88:f0:58:e6:22:3c:e9: a5:02:80:6a:d8:4b:48:fb:c9:27:10:74:48:6e:b8: 03:4b:50:a9:d7:e7:b1:ce:e0:0d:c3:fa:14:17:f5: 12:d8:d0:6f:59:8a:ae:6d:95:9b:22:1e:d9:94:22: c0:2b:a8:f6:07:7b:ff:9d:a2:44:ff:6c:19:b1:0c: 06:85:c4:05:58:7a:e8:42:52:d7:40:38:3a:e3:8c: 40:a5:eb:ba:eb:78:78:86:2b:99:22:09:94:89:d3: af:34:3c:1e:29:30:4f:e2:1f:6d:13:cc:c3:3f:d0: 5b:22:2f:c8:33:59:d3:fd:3f:d9:4d:17:ad:04:76: 96:dc:7b:c7:f7:b2:39:8a:49:a0:b2:61:3a:a6:ea: 55:26:91:bd:ad:63:3e:8e:a3:bd:a1:73:83:c6:fe: 7f:d6:53:12:f8:84:05:5e:9c:97:3a:e9:20:88:88: 4e:ca:ae:ef:b9:0d:1b:7c:78:06:9e:83:6b:f1:d3: 17:eb:8d:66:6c:9a:d5:b9:bc:d5:0c:d4:36:8c:af: 02:02:36:dc:d5:ff:2d:4c:2c:5e:64:02:ec:03:34: 6e:2f:43:f5:7d:a8:99:10:cc:60:dc:39:95:a9:9f: d0:f1:e9:01:f3:b8:77:24:6c:a5:52:b8:d4:83:4a: 0f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:D5:D6:1F:10:79:1D:02:B6:BB:78:1E:2F:38:FE:47:C0:78:D8:04 X509v3 Authority Key Identifier: keyid:5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:91:ef:b7:3d:b8:f6:03:f2:c7:fe:7b:ea:01:5d:80:8e:9e: cf:2f:75:9b:b1:57:c1:b0:0c:ba:20:55:5d:39:b8:76:2d:71: bd:ae:9a:02:b9:0c:86:10:0e:fe:96:ad:b8:3a:7b:6a:da:fe: f9:f4:ea:aa:ac:fb:75:b5:44:35:16:6c:95:23:ec:aa:ec:39: 6b:bc:d3:04:1d:3c:3f:68:f2:7f:0c:64:e0:80:92:7e:6b:cc: 93:a6:3f:11:ae:05:ca:ab:df:bf:e9:03:50:3d:f4:d5:35:a0: a2:3d:98:1f:0b:bf:6c:c5:13:22:f9:7d:99:38:80:b3:09:58: c8:61:71:40:4c:3e:69:52:8c:56:e1:87:88:7b:60:4d:11:aa: d1:54:5f:96:88:df:31:eb:bf:72:69:c2:3e:b4:4f:c3:66:b2: 56:9b:41:5d:d1:f3:63:61:17:98:68:6e:a3:b7:c8:6f:14:7d: 84:71:a2:be:13:0c:da:ae:0b:bf:b9:c8:26:26:ce:50:fb:5f: 1d:5b:6e:f0:84:03:79:78:23:7f:b3:a5:4a:6a:41:b3:90:5a: 67:4c:35:9d:87:9a:d9:de:cc:75:40:4f:58:a4:49:e8:b5:38: 11:b5:b4:4e:01:7a:48:4b:6d:49:04:10:96:9c:6b:e9:5b:a3: 60:51:b1:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDVFNTEwOUJFMzRCODFDMENCQkUwRTQzNTlBNzc4MUE0 NjI0QjlGQ0QwHhcNMjQwNTI0MTQyMjI4WhcNMjQwNTMxMTQyMjI4WjAYMRYwFAYD VQQDEw02NjUwYTJhNC1lY2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzfWigiEnW4jwWOYiPOmlAoBq2EtI+8knEHRIbrgDS1Cp1+exzuANw/oUF/US 2NBvWYqubZWbIh7ZlCLAK6j2B3v/naJE/2wZsQwGhcQFWHroQlLXQDg644xApeu6 63h4hiuZIgmUidOvNDweKTBP4h9tE8zDP9BbIi/IM1nT/T/ZTRetBHaW3HvH97I5 ikmgsmE6pupVJpG9rWM+jqO9oXODxv5/1lMS+IQFXpyXOukgiIhOyq7vuQ0bfHgG noNr8dMX641mbJrVubzVDNQ2jK8CAjbc1f8tTCxeZALsAzRuL0P1faiZEMxg3DmV qZ/Q8ekB87h3JGylUrjUg0oPrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/V1h8Q eR0Ctrt4Hi84/kfAeNgEMB8GA1UdIwQYMBaAFF5RCb40uBwMu+DkNZp3gaRiS5/N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8wQzZBMEM5RTFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhBeTc0T1ExbW5lQnBHSkxu ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hsRUp2alM0SEF5NzRPUTFtbmVCcEdKTG44MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8wQzZBMEM5RTFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhB eTc0T1ExbW5lQnBHSkxuODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlke+3Pbj2A/LH/nvqAV2Ajp7PL3WbsVfBsAy6IFVdObh2LXG9rpoC uQyGEA7+lq24Ontq2v759OqqrPt1tUQ1FmyVI+yq7DlrvNMEHTw/aPJ/DGTggJJ+ a8yTpj8RrgXKq9+/6QNQPfTVNaCiPZgfC79sxRMi+X2ZOICzCVjIYXFATD5pUoxW 4YeIe2BNEarRVF+WiN8x679yacI+tE/DZrJWm0Fd0fNjYReYaG6jt8hvFH2EcaK+ Ewzargu/ucgmJs5Q+18dW27whAN5eCN/s6VKakGzkFpnTDWdh5rZ3sx1QE9YpEno tTgRtbROAXpIS21JBBCWnGvpW6NgUbEa -----END CERTIFICATE-----Generated at Fri May 24 18:24:02 2024 by rpki-client on console-ams.rpki-client.org