$ rpki-client -vvf rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft File: XUXapVj_ZfZmNblniAm4rPBAc9I.mft (raw, json) Hash identifier: oBObNUeCua8EbMRe987gl54sadkhqKIx5q1t0GfPg+Y= Subject key identifier: 80:2A:40:C7:24:00:77:E0:1B:71:06:01:F2:CA:EF:01:7E:B4:14:90 Authority key identifier: 5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 Certificate issuer: /CN=A91F52FD/serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Certificate serial: 0517 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft Manifest number: 0510 Signing time: Sun 05 May 2024 01:17:15 +0000 Manifest this update: Sun 05 May 2024 01:17:15 +0000 Manifest next update: Sun 12 May 2024 01:17:15 +0000 Files and hashes: 1: XUXapVj_ZfZmNblniAm4rPBAc9I.crl (hash: DRrnjINdkYuOqYCRgnvQpiilX8svWE8ZimIvf++K4ug=) 2: 48459AB0BACF11EBAA321370C4F9AE02.roa (hash: x6jQohCoj+QUFQmVSGaEL1Y1YeIhw7aEECJy7REJd6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1303 (0x517) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F52FD/serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Validity Not Before: May 5 01:17:15 2024 GMT Not After : May 12 01:17:15 2024 GMT Subject: CN=6636de1b-ef2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:42:83:a5:38:fe:de:18:c3:d6:09:6f:c2:d0: f8:c1:0e:1e:1a:23:30:e4:c9:68:80:75:ba:39:e5: ff:7c:99:12:37:e3:e2:c8:41:53:0c:63:c1:89:d0: c0:d6:82:87:3a:8e:01:b4:b2:16:08:86:24:4d:5c: 31:23:52:2e:86:2e:59:bd:ad:69:07:2f:11:ba:64: f9:b8:81:16:73:03:bb:d5:40:a4:e1:91:ec:ac:53: 1e:19:f4:e7:af:ca:ed:5d:07:b6:f5:18:1d:4b:3a: 6a:69:2a:52:ea:92:58:e6:44:28:b1:7d:da:bd:73: 65:f6:63:09:cf:a8:b8:ef:7d:e3:91:97:96:90:d6: f2:bf:f0:ea:66:a0:0b:c2:e1:0d:2e:07:9b:a3:21: 0a:3b:8a:e8:ec:02:d4:88:8f:20:e6:4e:52:2e:f5: b9:71:e8:09:5f:a8:17:f4:36:7f:c5:2b:e5:5d:a6: 0c:07:f8:46:8f:04:ef:fc:2e:6e:04:6c:a0:90:2d: 52:ed:fe:a7:58:04:1b:c0:76:2c:82:51:63:8d:3b: fd:f4:c7:05:c3:8b:aa:23:78:c6:74:4d:3b:85:f8: 2d:5c:fb:b5:53:fe:5a:19:6e:90:ba:15:0f:5a:84: 32:74:7b:55:ab:c3:46:bc:7d:4a:a9:55:4f:6a:ed: c9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:2A:40:C7:24:00:77:E0:1B:71:06:01:F2:CA:EF:01:7E:B4:14:90 X509v3 Authority Key Identifier: keyid:5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:1b:51:7d:6a:b3:b7:f1:7f:6c:aa:07:4b:93:18:fc:96:d9: 63:58:c4:aa:08:41:eb:db:f3:d4:4e:08:80:2e:fe:13:cb:a8: c8:b1:9f:ba:95:ba:7a:0c:d0:0d:4f:cc:1f:7b:a9:0b:9d:1c: 53:34:7e:2b:cf:8a:6f:79:23:84:ab:ec:57:b8:85:35:00:57: 99:15:b7:01:98:92:0d:79:84:02:f9:a6:b1:09:26:1f:62:c7: 25:5a:18:15:82:e2:d0:b7:f8:d7:37:38:6c:ba:d8:91:87:03: cd:bb:6e:21:d3:f8:b7:5b:3b:fd:d8:ac:e0:e6:d1:82:1b:d6: af:4f:ab:34:29:8e:df:f1:e1:96:c5:27:04:94:6f:5e:aa:bf: 4d:68:2f:3b:a7:c7:05:91:8e:bd:56:34:9c:ce:55:be:74:48: 92:7f:cb:73:43:43:30:8b:d5:e2:8c:26:aa:2a:6b:40:59:35: 45:1f:f6:6a:f3:a3:76:5d:68:80:c6:bc:92:73:ed:53:60:14: 6c:c9:b0:41:2e:f3:50:c4:6f:60:fd:1a:f9:9a:4b:42:1c:1c: f3:cb:d3:ce:81:1c:74:cd:d3:0c:6e:5e:97:c3:0a:9b:bf:de: bb:b8:61:27:57:44:74:53:5e:3b:44:e3:d0:e8:61:38:cf:5a: 32:ce:01:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyRkQxMTAvBgNVBAUTKDVENDVEQUE1NThGRjY1RjY2NjM1Qjk2Nzg4MDlCOEFD RjA0MDczRDIwHhcNMjQwNTA1MDExNzE1WhcNMjQwNTEyMDExNzE1WjAYMRYwFAYD VQQDEw02NjM2ZGUxYi1lZjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4kKDpTj+3hjD1glvwtD4wQ4eGiMw5MlogHW6OeX/fJkSN+PiyEFTDGPBidDA 1oKHOo4BtLIWCIYkTVwxI1Iuhi5Zva1pBy8RumT5uIEWcwO71UCk4ZHsrFMeGfTn r8rtXQe29RgdSzpqaSpS6pJY5kQosX3avXNl9mMJz6i4733jkZeWkNbyv/DqZqAL wuENLgeboyEKO4ro7ALUiI8g5k5SLvW5cegJX6gX9DZ/xSvlXaYMB/hGjwTv/C5u BGygkC1S7f6nWAQbwHYsglFjjTv99McFw4uqI3jGdE07hfgtXPu1U/5aGW6QuhUP WoQydHtVq8NGvH1KqVVPau3J1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAqQMck AHfgG3EGAfLK7wF+tBSQMB8GA1UdIwQYMBaAFF1F2qVY/2X2ZjW5Z4gJuKzwQHPS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTJGRC82MjVGMEYwQUJB Q0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pmWm1OYmxuaUFtNHJQQkFj OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVWGFwVmpfWmZabU5ibG5pQW00clBCQWM5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTJGRC82MjVGMEYwQUJBQ0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pm Wm1OYmxuaUFtNHJQQkFjOUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSG1F9arO38X9sqgdLkxj8ltljWMSqCEHr2/PUTgiALv4Ty6jIsZ+6 lbp6DNANT8wfe6kLnRxTNH4rz4pveSOEq+xXuIU1AFeZFbcBmJINeYQC+aaxCSYf YsclWhgVguLQt/jXNzhsutiRhwPNu24h0/i3Wzv92Kzg5tGCG9avT6s0KY7f8eGW xScElG9eqr9NaC87p8cFkY69VjSczlW+dEiSf8tzQ0Mwi9XijCaqKmtAWTVFH/Zq 86N2XWiAxrySc+1TYBRsybBBLvNQxG9g/Rr5mktCHBzzy9POgRx0zdMMbl6Xwwqb v967uGEnV0R0U147ROPQ6GE4z1oyzgH5 -----END CERTIFICATE-----Generated at Sun May 5 02:33:39 2024 by rpki-client on console-fra.rpki-client.org