$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: /uDYxRo1zORxa6OlLjKor5FZuR0U1MkyRAs+BFoKCew= Subject key identifier: CE:A3:A6:84:EE:47:5B:D3:90:ED:2C:81:75:AB:F8:C2:01:94:69:34 Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 2441 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 2441 Signing time: Mon 06 May 2024 14:37:00 +0000 Manifest this update: Mon 06 May 2024 14:36:59 +0000 Manifest next update: Mon 13 May 2024 14:36:59 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: Uvmacn1ObJn5f+GZGffRx+UT9QsMBPLQcINJWigA/j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 14:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9281 (0x2441) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: May 6 14:36:59 2024 GMT Not After : May 13 14:36:59 2024 GMT Subject: CN=6638eb0c-7886 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a8:d4:75:4e:74:f9:c2:2e:7a:25:d1:0e:36: 25:32:d9:0a:56:32:32:c4:4e:e0:21:b4:c4:ae:67: e8:8e:e9:4e:9c:e3:f3:38:43:a2:25:3d:20:ab:1a: 74:66:6c:8e:4d:e0:72:79:28:ad:aa:b4:c0:4e:ce: 1e:9d:b0:9e:ab:d7:5d:db:eb:74:1e:46:a7:b0:2a: 15:09:40:19:00:28:24:9c:20:f8:90:53:2f:d0:c2: 62:a2:46:a9:4b:ee:19:0e:b4:75:3f:3a:0e:ee:e4: a0:be:64:81:7c:7b:58:b5:59:9b:29:6f:f8:a5:64: 28:8f:f6:9f:16:fd:55:fa:b3:60:38:ae:13:54:72: 6e:ef:af:e8:75:47:76:09:8a:8c:39:cb:88:90:58: ef:39:cf:63:1f:bc:d8:a5:94:a9:d8:30:56:a4:2d: 7d:29:c3:4b:02:8e:05:4f:a0:ba:b7:04:dc:73:f3: 58:6e:4f:7a:51:58:5a:11:6c:ae:b3:4d:d7:8a:79: 32:ab:54:a1:2d:aa:a7:fb:1a:dc:59:f8:9e:ba:1d: 2e:e5:d5:5b:84:96:b2:cb:1e:cc:98:75:06:e1:e6: ce:73:4e:c8:48:27:32:a2:95:81:a3:ba:d7:c2:89: 68:b7:bf:05:c8:07:39:2a:6f:2d:65:b6:ea:7d:e6: 90:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:A3:A6:84:EE:47:5B:D3:90:ED:2C:81:75:AB:F8:C2:01:94:69:34 X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:36:16:f3:65:78:ce:e8:d8:b9:e1:6f:03:1b:69:7a:3d:66: 6e:af:59:66:f1:ae:52:2d:bc:50:2f:f4:31:7e:b7:41:25:9b: 50:fd:82:47:d0:cb:0c:3e:cc:55:c4:b6:41:b1:1f:dc:b5:fa: 43:bc:b1:38:3b:26:e1:45:64:1e:c9:cf:95:df:3f:1c:82:52: b4:5d:d3:98:da:8d:2b:12:4a:8a:0d:d8:0d:8d:88:84:02:59: 2d:0a:ec:bd:26:3b:39:68:e0:b7:76:39:11:71:b8:0c:61:6f: 4b:02:e6:e4:1d:8e:62:2b:0c:77:11:f9:8a:51:bd:2e:1e:13: 8b:b8:09:4d:f3:7a:8d:96:20:7c:59:78:e9:ce:a7:a7:b3:9f: a1:33:93:59:4e:e6:5d:40:1c:11:2e:05:55:9f:63:6b:2b:87: 6b:54:6f:77:d1:a6:5a:50:77:0d:4b:23:24:b2:60:8d:eb:49: d0:c9:f9:4b:e6:a9:d7:01:69:1c:70:f8:fd:98:87:9c:7f:be: 92:ab:21:2e:f3:29:a8:b2:a9:01:a8:4e:47:92:db:38:28:5f: b7:37:44:7e:2d:c1:6b:19:49:15:ba:56:36:02:44:43:59:af: 23:5c:15:83:dd:29:b9:63:fe:40:ca:39:12:46:0a:8d:c2:fd: 19:af:84:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjQwNTA2MTQzNjU5WhcNMjQwNTEzMTQzNjU5WjAYMRYwFAYD VQQDEw02NjM4ZWIwYy03ODg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKjUdU50+cIueiXRDjYlMtkKVjIyxE7gIbTErmfojulOnOPzOEOiJT0gqxp0 ZmyOTeByeSitqrTATs4enbCeq9dd2+t0HkansCoVCUAZACgknCD4kFMv0MJiokap S+4ZDrR1PzoO7uSgvmSBfHtYtVmbKW/4pWQoj/afFv1V+rNgOK4TVHJu76/odUd2 CYqMOcuIkFjvOc9jH7zYpZSp2DBWpC19KcNLAo4FT6C6twTcc/NYbk96UVhaEWyu s03Xinkyq1ShLaqn+xrcWfieuh0u5dVbhJayyx7MmHUG4ebOc07ISCcyopWBo7rX wolot78FyAc5Km8tZbbqfeaQoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM6jpoTu R1vTkO0sgXWr+MIBlGk0MB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWNhbzZXjO6Ni54W8DG2l6PWZur1lm8a5SLbxQL/QxfrdBJZtQ/YJH 0MsMPsxVxLZBsR/ctfpDvLE4OybhRWQeyc+V3z8cglK0XdOY2o0rEkqKDdgNjYiE AlktCuy9Jjs5aOC3djkRcbgMYW9LAubkHY5iKwx3EfmKUb0uHhOLuAlN83qNliB8 WXjpzqens5+hM5NZTuZdQBwRLgVVn2NrK4drVG930aZaUHcNSyMksmCN60nQyflL 5qnXAWkccPj9mIecf76SqyEu8ymosqkBqE5Hkts4KF+3N0R+LcFrGUkVulY2AkRD Wa8jXBWD3Sm5Y/5AyjkSRgqNwv0Zr4SN -----END CERTIFICATE-----Generated at Mon May 6 17:43:27 2024 by rpki-client on console-ams.rpki-client.org