$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft File: XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft (raw, json) Hash identifier: pEF/qBefqwb9gsUp/saXRT1WsP5UHV8PhfaSpZyfylQ= Subject key identifier: AF:12:F2:6D:D1:01:BF:FD:BA:97:99:00:84:F2:35:7B:28:76:36:8A Authority key identifier: 5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 Certificate issuer: /CN=A91E9F89/serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Certificate serial: 079B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft Manifest number: 0797 Signing time: Sat 04 May 2024 22:19:58 +0000 Manifest this update: Sat 04 May 2024 22:19:58 +0000 Manifest next update: Sat 11 May 2024 22:19:58 +0000 Files and hashes: 1: XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl (hash: +FCUxjWM3AAPlZ8QccE4iszpq9YSClfZ2heWq36nddo=) 2: 05B67AF8C6A011EAA70D183FC4F9AE02.roa (hash: pRfD4W3UyxQsn5v1HevPqgz+tXgve4FmW7tWiMSTSas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1947 (0x79b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9F89/serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Validity Not Before: May 4 22:19:58 2024 GMT Not After : May 11 22:19:58 2024 GMT Subject: CN=6636b48e-e5f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:9d:20:d5:ce:12:83:f2:1b:23:ff:00:32:60: d5:8a:d8:05:bd:81:7b:31:33:d1:47:03:14:de:ae: 6c:68:09:de:08:32:b1:eb:cb:94:c8:b9:82:d2:8b: d4:6b:26:53:02:bd:57:30:fa:76:52:b3:ab:68:ba: 65:73:0d:d1:a6:7f:bb:1c:1d:fe:d4:0f:ff:fd:34: 19:69:d5:4e:39:bd:dc:d0:da:d8:07:a2:63:a5:fa: c9:e2:3b:35:cd:f5:06:b1:39:98:8a:5d:cc:8a:ab: f5:75:9e:fa:38:ef:7c:4f:09:ae:51:19:79:05:bc: 7c:bc:ee:4e:40:ed:6b:86:75:5c:cf:40:fb:76:7e: 11:b2:09:4b:95:6d:25:29:1d:ac:f2:2c:9d:66:34: f2:e9:48:3e:9f:40:d9:6a:e0:9f:15:e8:db:11:0f: 9b:ed:1b:5e:9f:04:5c:2c:17:e9:ca:40:52:17:dc: 7b:01:85:31:4e:03:38:10:37:f6:da:a1:96:47:45: ad:a6:0e:35:a9:93:9b:f7:33:94:d3:4c:90:e0:fc: 9a:42:3d:b2:68:c3:50:11:cb:4e:f7:ad:bf:7f:79: d3:5e:cb:0d:44:61:eb:6e:31:2e:17:dc:de:d4:5a: 79:c4:f4:ae:c3:b7:7b:c4:7d:64:a8:c9:7c:79:b8: 95:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:12:F2:6D:D1:01:BF:FD:BA:97:99:00:84:F2:35:7B:28:76:36:8A X509v3 Authority Key Identifier: keyid:5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:dd:aa:1a:7f:c8:2c:df:f3:4a:8d:7e:d0:ba:d9:3d:d1:40: 6b:10:eb:1d:a8:d4:16:3b:72:a4:49:55:28:d1:45:c4:75:70: 46:44:90:bb:9a:bf:e8:64:d1:c5:82:8f:d7:52:6f:ea:e7:a6: dd:6c:47:7a:7c:ee:c0:ec:29:d3:0e:af:0e:a4:8e:b2:d0:db: b2:c0:b1:55:b6:60:fc:c6:e8:cb:47:c0:64:15:c2:8d:b5:42: 83:04:7a:1e:0b:b0:86:c1:3d:bc:aa:6c:0d:fe:f4:3b:cc:61: 2f:21:d3:69:6f:48:ff:ab:ba:da:7f:6f:e4:64:29:43:9e:11: da:64:58:8e:5e:9e:68:5f:45:34:6a:c8:85:a2:b0:14:5f:9b: aa:f9:95:fe:c2:3c:94:0d:0b:1f:9b:f9:e3:de:45:9d:21:97: b1:0e:4e:b4:86:aa:41:66:d5:af:96:41:fc:40:c8:73:97:6e: c4:a3:76:2a:eb:2d:f2:2a:61:f6:e9:77:3f:c6:5e:46:c9:9e: 81:a6:31:04:a3:70:ec:71:03:cc:13:99:33:8a:77:b8:93:ac: 36:0b:82:6e:45:6b:03:32:97:ec:fa:a8:6a:3c:60:0d:ca:0d: 9c:f4:84:eb:a3:5d:58:77:0c:ad:43:f9:56:6f:73:94:64:96: 1a:e5:14:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlGODkxMTAvBgNVBAUTKDVGMzA3RTYyNzRBQzM5RTU0RTk5ODY2REFCQjg1QzJD OUVGRDE2QjEwHhcNMjQwNTA0MjIxOTU4WhcNMjQwNTExMjIxOTU4WjAYMRYwFAYD VQQDEw02NjM2YjQ4ZS1lNWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo50g1c4Sg/IbI/8AMmDVitgFvYF7MTPRRwMU3q5saAneCDKx68uUyLmC0ovU ayZTAr1XMPp2UrOraLplcw3Rpn+7HB3+1A///TQZadVOOb3c0NrYB6JjpfrJ4js1 zfUGsTmYil3Miqv1dZ76OO98TwmuURl5Bbx8vO5OQO1rhnVcz0D7dn4RsglLlW0l KR2s8iydZjTy6Ug+n0DZauCfFejbEQ+b7RtenwRcLBfpykBSF9x7AYUxTgM4EDf2 2qGWR0Wtpg41qZOb9zOU00yQ4PyaQj2yaMNQEctO962/f3nTXssNRGHrbjEuF9ze 1Fp5xPSuw7d7xH1kqMl8ebiV+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK8S8m3R Ab/9upeZAITyNXsodjaKMB8GA1UdIwQYMBaAFF8wfmJ0rDnlTpmGbau4XCye/Rax MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUY4OS81QkU3NDg3OEM2 OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09lVk9tWVp0cTdoY0xKNzlG ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h6Qi1ZblNzT2VWT21ZWnRxN2hjTEo3OUZyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUY4OS81QkU3NDg3OEM2OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09l Vk9tWVp0cTdoY0xKNzlGckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBP3aoaf8gs3/NKjX7Qutk90UBrEOsdqNQWO3KkSVUo0UXEdXBGRJC7 mr/oZNHFgo/XUm/q56bdbEd6fO7A7CnTDq8OpI6y0NuywLFVtmD8xujLR8BkFcKN tUKDBHoeC7CGwT28qmwN/vQ7zGEvIdNpb0j/q7raf2/kZClDnhHaZFiOXp5oX0U0 asiForAUX5uq+ZX+wjyUDQsfm/nj3kWdIZexDk60hqpBZtWvlkH8QMhzl27Eo3Yq 6y3yKmH26Xc/xl5GyZ6BpjEEo3DscQPME5kzine4k6w2C4JuRWsDMpfs+qhqPGAN yg2c9ITro11YdwytQ/lWb3OUZJYa5RR4 -----END CERTIFICATE-----Generated at Sun May 5 00:12:34 2024 by rpki-client on console-fra.rpki-client.org