$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft File: XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft (raw, json) Hash identifier: 5BPg7TLIsmtvYrIyKdw89biQON2eEV1LJHPvbyvLNTs= Subject key identifier: 37:0C:55:55:D2:89:E7:35:4D:50:8E:F1:1D:EC:FF:79:3B:51:F5:C0 Authority key identifier: 5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F Certificate issuer: /CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Certificate serial: 01FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft Manifest number: 01FA Signing time: Wed 01 May 2024 04:31:47 +0000 Manifest this update: Wed 01 May 2024 04:31:46 +0000 Manifest next update: Wed 08 May 2024 04:31:46 +0000 Files and hashes: 1: XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl (hash: TIlDLJSy1TqVFKBx9LwZZMPciNyCOe7VxhWGoTo6bZ4=) 2: FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa (hash: yRoa0c1VoVUvCnrROdI2LofNJsWKndLEn2zob8PDTCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 510 (0x1fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Validity Not Before: May 1 04:31:46 2024 GMT Not After : May 8 04:31:46 2024 GMT Subject: CN=6631c5b2-db3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b4:24:73:c3:7c:68:f9:97:a4:d4:4e:18:30: 14:5a:8e:ea:47:6a:b3:12:28:99:83:8b:4d:3c:fe: 10:7d:87:9f:11:a0:53:cf:f7:65:6f:d7:64:be:37: 81:e5:71:f3:fd:11:3a:c1:84:02:2f:7a:76:a1:a4: b0:73:f2:54:9e:cf:d9:c4:e5:ee:1b:3a:0b:fc:8c: 80:7b:b0:28:07:31:e5:92:02:32:0a:4d:f0:92:f1: 31:0d:f2:f9:4b:80:6b:a0:7d:c7:e7:0d:a5:c5:4c: cb:3e:05:49:cd:b7:6e:b1:7f:c2:ec:f8:ca:ec:55: c8:20:85:64:12:22:8a:48:51:fa:7f:76:74:28:b8: dc:0a:db:66:2c:dc:ee:61:ed:44:89:ed:b7:20:79: 7d:cf:1e:d5:8b:65:26:c2:2d:6a:e1:4e:77:38:32: aa:52:eb:e5:7b:86:e2:9c:61:77:46:a4:07:e5:92: a0:fc:5f:22:22:36:5f:d7:49:5f:08:1f:53:59:9f: f9:9a:0e:fd:08:44:1c:e2:19:4b:64:bf:f0:43:fc: cf:5b:0b:af:cd:58:89:08:ab:c0:00:df:e4:10:d4: 52:bb:93:41:95:10:86:84:f6:b3:d2:77:32:5a:11: cc:e6:c8:b1:7e:c1:7d:0f:fd:23:b1:68:d9:3e:18: 3d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:0C:55:55:D2:89:E7:35:4D:50:8E:F1:1D:EC:FF:79:3B:51:F5:C0 X509v3 Authority Key Identifier: keyid:5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:b3:84:75:35:05:83:22:be:bc:7a:51:e7:da:ea:a8:3e:84: 6a:2f:91:43:f4:58:b6:b7:00:82:90:61:4b:83:ff:1f:76:67: 0f:9a:bf:33:00:d9:e3:fc:3f:db:cd:e9:b5:d3:63:8a:98:f1: 5b:ee:7e:a7:31:f1:4e:91:36:68:0f:08:90:b7:f6:7d:c0:15: f1:58:08:2e:20:03:3d:80:63:6a:3d:b4:00:a0:45:40:ae:ff: f5:78:37:e5:53:da:6c:45:df:48:9e:51:d9:fb:aa:56:d9:f7: c5:94:6d:25:d5:68:6f:69:21:78:cc:17:b5:f4:a7:8b:22:e8: 85:ab:cc:d6:96:be:9b:69:21:71:36:aa:e6:db:cd:f1:e6:2a: f9:00:61:47:78:97:00:47:a7:1a:cc:7e:38:2c:65:f2:f6:3f: fb:f7:f3:00:80:0d:a6:22:91:8d:d1:8c:50:c1:96:37:c7:8c: a7:bb:a6:63:a5:49:99:3b:36:43:67:0b:d8:f8:fc:44:75:7f: 76:39:fe:41:1b:5c:4b:df:be:23:7f:30:a9:65:f2:41:0f:88: e8:e5:54:4e:27:eb:fc:f6:fe:69:ff:15:b4:12:83:80:ec:ff: 3f:bc:2c:14:76:b9:df:69:44:ac:f2:d0:a9:72:72:19:c4:d3: 79:89:d7:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDNzMxMTAvBgNVBAUTKDVFNzA5OTQ5QkFBNDBBN0Q0N0Q0NEQyMTE2OTBCMzc3 RTA1MUM0NUYwHhcNMjQwNTAxMDQzMTQ2WhcNMjQwNTA4MDQzMTQ2WjAYMRYwFAYD VQQDEw02NjMxYzViMi1kYjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6rQkc8N8aPmXpNROGDAUWo7qR2qzEiiZg4tNPP4QfYefEaBTz/dlb9dkvjeB 5XHz/RE6wYQCL3p2oaSwc/JUns/ZxOXuGzoL/IyAe7AoBzHlkgIyCk3wkvExDfL5 S4BroH3H5w2lxUzLPgVJzbdusX/C7PjK7FXIIIVkEiKKSFH6f3Z0KLjcCttmLNzu Ye1Eie23IHl9zx7Vi2Umwi1q4U53ODKqUuvle4binGF3RqQH5ZKg/F8iIjZf10lf CB9TWZ/5mg79CEQc4hlLZL/wQ/zPWwuvzViJCKvAAN/kENRSu5NBlRCGhPaz0ncy WhHM5sixfsF9D/0jsWjZPhg9TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDcMVVXS iec1TVCO8R3s/3k7UfXAMB8GA1UdIwQYMBaAFF5wmUm6pAp9R9RNIRaQs3fgUcRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEM3My84MjE0NTdEMkYx MzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0NuMUgxRTBoRnBDemQtQlJ4 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huQ1pTYnFrQ24xSDFFMGhGcEN6ZC1CUnhGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEM3My84MjE0NTdEMkYxMzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0Nu MUgxRTBoRnBDemQtQlJ4RjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCs4R1NQWDIr68elHn2uqoPoRqL5FD9Fi2twCCkGFLg/8fdmcPmr8z ANnj/D/bzem102OKmPFb7n6nMfFOkTZoDwiQt/Z9wBXxWAguIAM9gGNqPbQAoEVA rv/1eDflU9psRd9InlHZ+6pW2ffFlG0l1WhvaSF4zBe19KeLIuiFq8zWlr6baSFx Nqrm283x5ir5AGFHeJcAR6cazH44LGXy9j/79/MAgA2mIpGN0YxQwZY3x4ynu6Zj pUmZOzZDZwvY+PxEdX92Of5BG1xL374jfzCpZfJBD4jo5VROJ+v89v5p/xW0EoOA 7P8/vCwUdrnfaUSs8tCpcnIZxNN5iddK -----END CERTIFICATE-----Generated at Wed May 1 05:59:14 2024 by rpki-client on console-fra.rpki-client.org