$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft File: XozcAfwJtFN0mgHuUjmzXt4kvmw.mft (raw, json) Hash identifier: l+/OifVj9CiokY3czFndozNyQbkOuKb9vBzuLEa43q8= Subject key identifier: DE:44:38:72:D9:FB:88:7C:4D:30:5B:D4:D0:EB:8B:57:14:49:2A:23 Authority key identifier: 5E:8C:DC:01:FC:09:B4:53:74:9A:01:EE:52:39:B3:5E:DE:24:BE:6C Certificate issuer: /CN=A91F4CFA/serialNumber=5E8CDC01FC09B453749A01EE5239B35EDE24BE6C Certificate serial: 0671 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft Manifest number: 066C Signing time: Sat 04 May 2024 23:41:32 +0000 Manifest this update: Sat 04 May 2024 23:41:32 +0000 Manifest next update: Sat 11 May 2024 23:41:32 +0000 Files and hashes: 1: XozcAfwJtFN0mgHuUjmzXt4kvmw.crl (hash: H8ODs41s7d3FqagrVZsSWWJbzxGrESdXeIp0+8M3l00=) 2: A5D573E4305A11EB921D6332C4F9AE02.roa (hash: K6694ItlfbumtbL39COqWlYQugZFNwdV2Wxv0zsctho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.crl rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1649 (0x671) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4CFA/serialNumber=5E8CDC01FC09B453749A01EE5239B35EDE24BE6C Validity Not Before: May 4 23:41:32 2024 GMT Not After : May 11 23:41:32 2024 GMT Subject: CN=6636c7ac-0825 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:00:47:d9:21:a4:d1:75:21:ca:5a:52:74:45: a1:dd:2f:85:dd:2a:de:8c:e4:fe:7a:2d:c5:1a:a5: ae:e3:8a:65:39:0a:53:c6:32:11:b0:9a:86:aa:e7: 74:fa:c0:11:76:57:20:36:de:21:6b:20:11:07:86: 42:56:ad:2e:1c:14:e5:db:68:45:bd:45:30:83:84: 5e:d9:31:fb:88:da:0f:36:19:c1:8b:db:5b:25:64: a8:4e:d2:92:3a:c4:f8:17:4c:a1:0d:a2:27:ff:a5: f3:d7:92:84:4d:ab:5e:21:b3:97:8c:83:d5:b1:53: 67:0b:e2:4e:8d:ba:f2:d3:fe:08:11:a1:64:6f:d5: 8c:29:2b:ad:82:2a:be:5f:91:37:2d:89:0a:30:46: f3:9a:54:b7:48:e2:b7:b1:65:cd:f3:d4:29:1c:39: 5f:da:2b:32:2a:f1:69:57:91:3d:89:88:f4:59:ec: 5c:54:30:71:a4:f6:dc:78:71:7e:b5:18:eb:2c:1e: c5:21:32:bd:12:84:ac:ce:fa:de:39:88:16:8f:1f: 0f:23:a5:db:de:8f:09:2d:4c:9d:d5:85:c5:0b:3b: 6b:fa:e8:ae:68:59:cc:74:3a:f1:8c:78:b3:8d:b8: 93:c1:f6:23:4c:7c:7c:16:8e:87:8c:ee:ab:c4:0b: 5c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:44:38:72:D9:FB:88:7C:4D:30:5B:D4:D0:EB:8B:57:14:49:2A:23 X509v3 Authority Key Identifier: keyid:5E:8C:DC:01:FC:09:B4:53:74:9A:01:EE:52:39:B3:5E:DE:24:BE:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:ff:9a:5e:d9:62:d8:a9:75:8e:ce:17:85:10:cf:9b:eb:f7: 45:7e:0f:7d:76:20:ec:64:76:57:4a:a0:00:88:f7:98:c2:07: 97:52:09:54:2e:30:fe:97:58:c1:8c:fb:84:01:de:01:27:f6: 7d:01:21:3b:9a:5f:06:e4:cb:c2:56:c9:4a:a1:cf:c3:14:27: 53:c2:11:31:99:84:aa:b6:59:1f:90:a0:47:f8:8a:9c:95:c0: 4d:4e:83:39:61:18:9f:0e:9f:7b:00:0e:21:7f:ce:f8:ef:51: 37:89:53:b2:80:09:26:eb:d2:e0:a4:42:77:e3:9e:01:d3:01: ca:42:7b:b7:03:1b:64:87:ce:b6:f5:f6:b2:1d:c5:07:b7:f5: 7a:be:43:77:9e:43:2a:8b:49:1f:fd:79:1b:43:16:2f:64:57: e6:49:bf:b3:d3:02:0e:ef:e4:25:84:88:2e:15:0e:85:99:d6: 73:a1:f1:f4:43:22:a0:ca:72:b7:a4:44:e7:27:d4:5b:f3:4a: f8:e3:39:4b:f4:a9:01:e0:09:df:22:1d:98:f4:f5:8a:60:5d: 78:18:85:8b:a1:ee:14:08:61:49:da:4a:21:1b:64:21:64:f6: c9:d8:a0:b2:dc:d4:ac:ab:eb:bf:c9:79:f0:12:8e:90:9f:ea: 0b:d7:8f:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRDRkExMTAvBgNVBAUTKDVFOENEQzAxRkMwOUI0NTM3NDlBMDFFRTUyMzlCMzVF REUyNEJFNkMwHhcNMjQwNTA0MjM0MTMyWhcNMjQwNTExMjM0MTMyWjAYMRYwFAYD VQQDEw02NjM2YzdhYy0wODI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzgBH2SGk0XUhylpSdEWh3S+F3SrejOT+ei3FGqWu44plOQpTxjIRsJqGqud0 +sARdlcgNt4hayARB4ZCVq0uHBTl22hFvUUwg4Re2TH7iNoPNhnBi9tbJWSoTtKS OsT4F0yhDaIn/6Xz15KETateIbOXjIPVsVNnC+JOjbry0/4IEaFkb9WMKSutgiq+ X5E3LYkKMEbzmlS3SOK3sWXN89QpHDlf2isyKvFpV5E9iYj0WexcVDBxpPbceHF+ tRjrLB7FITK9EoSszvreOYgWjx8PI6Xb3o8JLUyd1YXFCztr+uiuaFnMdDrxjHiz jbiTwfYjTHx8Fo6HjO6rxAtcMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5EOHLZ +4h8TTBb1NDri1cUSSojMB8GA1UdIwQYMBaAFF6M3AH8CbRTdJoB7lI5s17eJL5s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNENGQS8xQzJGQUIyRTMw NTkxMUVCQjgzNUMxMzBDNEY5QUUwMi9Yb3pjQWZ3SnRGTjBtZ0h1VWptelh0NGt2 bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvemNBZndKdEZOMG1nSHVVam16WHQ0a3Ztdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NENGQS8xQzJGQUIyRTMwNTkxMUVCQjgzNUMxMzBDNEY5QUUwMi9Yb3pjQWZ3SnRG TjBtZ0h1VWptelh0NGt2bXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAi/5pe2WLYqXWOzheFEM+b6/dFfg99diDsZHZXSqAAiPeYwgeXUglU LjD+l1jBjPuEAd4BJ/Z9ASE7ml8G5MvCVslKoc/DFCdTwhExmYSqtlkfkKBH+Iqc lcBNToM5YRifDp97AA4hf87471E3iVOygAkm69LgpEJ3454B0wHKQnu3Axtkh862 9fayHcUHt/V6vkN3nkMqi0kf/XkbQxYvZFfmSb+z0wIO7+QlhIguFQ6FmdZzofH0 QyKgynK3pETnJ9Rb80r44zlL9KkB4AnfIh2Y9PWKYF14GIWLoe4UCGFJ2kohG2Qh ZPbJ2KCy3NSsq+u/yXnwEo6Qn+oL14/A -----END CERTIFICATE-----Generated at Sun May 5 00:12:35 2024 by rpki-client on console-fra.rpki-client.org