$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft File: XcAwMzGJiu_bheTZFABriTdr7-E.mft (raw, json) Hash identifier: OXfuQmA+fnavN3HfPtI17AOWg6feh3hxpzF2JyX5Wxg= Subject key identifier: 48:9E:A7:2E:C7:A6:94:BC:58:AC:1F:55:57:A1:20:69:6E:C8:62:5B Authority key identifier: 5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 Certificate issuer: /CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Certificate serial: 059D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft Manifest number: 0595 Signing time: Tue 07 May 2024 00:30:26 +0000 Manifest this update: Tue 07 May 2024 00:30:25 +0000 Manifest next update: Tue 14 May 2024 00:30:25 +0000 Files and hashes: 1: XcAwMzGJiu_bheTZFABriTdr7-E.crl (hash: zKoi3J6Bo0upL6sp59Q2O+ZhBDeZAqyeFxFHLHJ8qwA=) 2: 81E3F4ACBBDA11ED8FDB4E45C4F9AE02.roa (hash: cLgA7xnd/ORzlGyzEqpdvqynx6Azs/zgMFHJfS1P+08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 00:30:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1437 (0x59d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Validity Not Before: May 7 00:30:25 2024 GMT Not After : May 14 00:30:25 2024 GMT Subject: CN=66397622-6c49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0b:27:94:5e:ea:93:f6:92:90:e5:4a:5f:00: 56:7d:e5:fc:0d:f7:de:dc:af:c8:34:0b:9e:4f:9f: 40:9a:6b:d4:33:76:bf:68:2d:8e:4e:0a:ad:9f:34: 74:f6:e6:06:b4:65:60:36:9f:54:26:01:60:0f:10: 6a:61:8b:a0:49:bf:d5:f8:02:76:88:97:a0:ba:8d: de:86:b5:a7:0d:04:79:ac:7d:8e:23:3e:34:54:42: 24:37:77:96:a8:3a:96:8c:ff:f3:3b:c5:70:fa:6e: d4:21:05:29:6f:96:90:da:84:d7:34:59:2f:cb:11: 91:a8:dd:56:ae:b3:0b:47:32:8b:7a:db:74:1d:e4: 2b:c8:ea:e5:de:7f:95:23:72:02:fa:53:68:07:84: 02:b9:e5:9b:9e:99:13:57:14:46:de:5d:e2:26:11: e1:42:c1:36:0f:08:e3:5d:d6:5d:7a:62:06:46:f7: 06:8a:1a:eb:43:16:bb:2c:5f:44:94:67:de:63:02: bc:1f:c5:4a:74:8d:e5:9c:4d:af:13:9a:67:2d:5c: 39:6b:88:46:98:e3:33:01:1e:eb:6d:72:ff:61:b7: ac:97:23:43:ce:bb:53:d1:27:c5:af:7e:67:07:85: 74:f0:ad:5d:5f:ec:8e:6c:fb:1d:66:d7:66:a5:8d: 4b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:9E:A7:2E:C7:A6:94:BC:58:AC:1F:55:57:A1:20:69:6E:C8:62:5B X509v3 Authority Key Identifier: keyid:5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:6d:60:2b:ac:98:bf:a3:ec:41:c5:8c:9b:33:7e:dc:89:b2: 4f:fb:dd:bf:65:08:20:41:5e:32:ac:f6:9b:d7:4f:ea:02:f2: 44:c2:42:4d:81:22:ff:1b:6a:15:02:e0:32:b4:c1:88:bc:1e: 2a:61:fe:76:4b:1d:5b:bd:14:33:18:68:a6:ed:37:f1:1a:85: ec:28:ad:3f:22:41:4d:a8:80:40:1b:3b:1f:50:fb:f6:ec:03: 13:e0:0f:ff:cd:b2:b4:57:7c:1b:7b:77:f4:95:bc:55:55:c5: 5f:f5:08:8d:13:09:a3:7e:9c:dc:54:0c:42:d1:77:a7:6b:ec: 23:86:9c:7e:fe:70:94:f0:c4:da:d6:77:f3:f1:b3:22:d7:96: f7:a6:af:8a:fe:e1:00:cc:02:c1:9e:d1:b3:7a:4d:24:95:05: 96:8a:54:d4:5a:c5:b7:46:9b:c4:f2:4f:63:24:4d:3c:52:4d: 45:dc:e6:89:da:9f:95:5a:32:7c:9d:23:1e:91:14:e6:14:ea: 01:e8:0b:d5:9a:42:98:dc:5f:d7:0a:97:2d:20:ff:9c:94:d5: 13:63:71:a6:b7:61:57:c1:71:f0:37:44:d0:91:bc:04:46:90: 32:1d:5e:7a:13:63:28:f1:47:e1:fb:9d:25:12:8f:7f:37:e1: bc:c6:b4:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCRDQxMTAvBgNVBAUTKDVEQzAzMDMzMzE4OThBRUZEQjg1RTREOTE0MDA2Qjg5 Mzc2QkVGRTEwHhcNMjQwNTA3MDAzMDI1WhcNMjQwNTE0MDAzMDI1WjAYMRYwFAYD VQQDEw02NjM5NzYyMi02YzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwsnlF7qk/aSkOVKXwBWfeX8Dffe3K/INAueT59AmmvUM3a/aC2OTgqtnzR0 9uYGtGVgNp9UJgFgDxBqYYugSb/V+AJ2iJeguo3ehrWnDQR5rH2OIz40VEIkN3eW qDqWjP/zO8Vw+m7UIQUpb5aQ2oTXNFkvyxGRqN1WrrMLRzKLett0HeQryOrl3n+V I3IC+lNoB4QCueWbnpkTVxRG3l3iJhHhQsE2DwjjXdZdemIGRvcGihrrQxa7LF9E lGfeYwK8H8VKdI3lnE2vE5pnLVw5a4hGmOMzAR7rbXL/YbeslyNDzrtT0SfFr35n B4V08K1dX+yObPsdZtdmpY1LCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEiepy7H ppS8WKwfVVehIGluyGJbMB8GA1UdIwQYMBaAFF3AMDMxiYrv24Xk2RQAa4k3a+/h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JENC80RTg3QTQ2QTg2 QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1X2JoZVRaRkFCcmlUZHI3 LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjQXdNekdKaXVfYmhlVFpGQUJyaVRkcjctRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JENC80RTg3QTQ2QTg2QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1 X2JoZVRaRkFCcmlUZHI3LUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRbWArrJi/o+xBxYybM37cibJP+92/ZQggQV4yrPab10/qAvJEwkJN gSL/G2oVAuAytMGIvB4qYf52Sx1bvRQzGGim7TfxGoXsKK0/IkFNqIBAGzsfUPv2 7AMT4A//zbK0V3wbe3f0lbxVVcVf9QiNEwmjfpzcVAxC0Xena+wjhpx+/nCU8MTa 1nfz8bMi15b3pq+K/uEAzALBntGzek0klQWWilTUWsW3RpvE8k9jJE08Uk1F3OaJ 2p+VWjJ8nSMekRTmFOoB6AvVmkKY3F/XCpctIP+clNUTY3Gmt2FXwXHwN0TQkbwE RpAyHV56E2Mo8Ufh+50lEo9/N+G8xrQ9 -----END CERTIFICATE-----Generated at Tue May 7 01:58:31 2024 by rpki-client on console-fra.rpki-client.org