$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft File: XpnXCH3VTqLn519cgIcHE4Posp4.mft (raw, json) Hash identifier: eT76+YlPtHaBeOS+cVzLsIZh2PGQMcf7otvNC0bdGjA= Subject key identifier: 8B:80:4C:48:DF:58:2F:26:03:8B:03:B3:B9:42:4F:CE:8A:65:58:79 Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E Certificate issuer: /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Certificate serial: 0A14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft Manifest number: 09FA Signing time: Sat 04 May 2024 20:51:58 +0000 Manifest this update: Sat 04 May 2024 20:51:57 +0000 Manifest next update: Sat 11 May 2024 20:51:57 +0000 Files and hashes: 1: XpnXCH3VTqLn519cgIcHE4Posp4.crl (hash: 4wkutL0eRElOmK8l9ICrdTCa4DFEqJ2yG7YYVkQyKhI=) 2: 79BBD5780A3511EB93ACB11CC4F9AE02.roa (hash: p3Evu360d8sJaOIhPj+V+IcCcGPKVkKX45bmHYZFDuU=) 3: FA07C7FAC3E711ED97AAC038C4F9AE02.roa (hash: kdcQORxOazOv3d/psZbVYLp347mdF2gbZSdta1IYMGM=) 4: B27D5318C3D411ED97604930C4F9AE02.roa (hash: ozVhElbEnt1VdNVmiBrCNy8Ch9GY08iOB8Xrths/F/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2580 (0xa14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Validity Not Before: May 4 20:51:57 2024 GMT Not After : May 11 20:51:57 2024 GMT Subject: CN=66369fee-5a5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c4:42:bb:4f:0b:1f:1d:01:09:ee:9c:9e:51: 8c:54:fe:e6:e3:a3:46:e6:11:3e:a2:88:9a:da:60: da:70:b4:10:af:ba:0b:20:1d:3a:20:b0:f0:d1:20: 5e:1d:99:c4:52:9c:7a:50:02:6b:2e:07:0e:6e:a7: a3:a3:06:1c:a3:65:66:47:1d:ad:9d:c3:30:5e:99: d0:e0:1f:21:d7:3e:b1:ac:2c:05:e7:f3:e2:87:f4: 63:e5:d1:df:82:b9:3d:a9:cc:e3:f1:30:25:2c:25: 77:b7:73:7c:a8:34:5c:41:0e:60:b0:18:ef:ca:a5: 8c:80:c2:b2:14:7e:83:fe:ab:98:9a:24:66:f7:7d: 78:81:f3:c5:6b:5c:9f:46:99:b2:16:7d:6b:97:49: 5e:7d:8a:e4:03:6b:a9:7d:4d:f6:b8:05:33:0f:4f: f9:19:fa:84:0b:51:e7:4b:45:74:2f:47:61:ee:9f: a5:9b:c5:36:27:08:87:37:96:19:df:d1:e7:ae:11: 88:bf:a7:1f:ad:db:81:7d:32:bb:09:67:39:1e:9f: 55:2c:0d:4c:68:05:f6:aa:61:b2:dc:19:c8:1a:b8: aa:6f:d8:e2:1f:26:5d:2d:97:61:b8:f4:9f:5e:8f: a1:ab:b2:88:23:6a:b5:a1:35:a9:24:3a:f0:fd:e0: 13:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:80:4C:48:DF:58:2F:26:03:8B:03:B3:B9:42:4F:CE:8A:65:58:79 X509v3 Authority Key Identifier: keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:40:ac:e8:61:1c:f7:d0:14:24:3e:d3:64:45:b8:16:95:44: d8:eb:6e:8e:d9:16:af:ea:9e:1c:79:a7:4e:33:ba:ad:18:ea: 53:ea:e1:c1:b2:ee:e2:93:49:3d:5f:d9:52:01:bb:39:49:b4: da:10:2f:c1:d2:de:1e:7e:2c:99:32:67:89:80:19:25:92:a8: 89:6c:f9:54:ef:26:51:08:fa:74:52:df:09:a8:68:f7:6d:04: 53:3a:af:a0:36:f6:2f:4a:e3:07:5f:db:58:68:55:c8:77:7b: f3:1c:90:1f:3f:17:3b:b6:1e:6a:f0:64:0d:8b:2c:31:bb:14: fc:a2:3b:ad:a0:2d:75:b4:6e:6b:5f:9d:b3:00:bd:18:c9:c2: d3:f1:cf:03:e3:ff:fc:c8:16:32:49:23:2b:05:11:b4:6e:47: eb:95:a5:45:0e:cc:d0:a4:86:8c:a1:f9:0e:66:89:f0:da:90: 92:e2:2d:56:5e:2c:37:a7:20:dc:4b:9b:35:9d:c4:45:f1:54: 13:86:8e:1e:30:36:ff:c4:8c:0c:56:c5:f0:76:56:35:0c:d5: d3:aa:6b:de:fa:1d:46:9f:fc:3d:b1:bb:23:27:93:5f:79:79: 80:a1:5a:e8:a2:09:71:b0:74:f4:db:71:dd:40:27:b9:d1:1a: e3:9f:37:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxRDMxMTAvBgNVBAUTKDVFOTlENzA4N0RENTRFQTJFN0U3NUY1QzgwODcwNzEz ODNFOEIyOUUwHhcNMjQwNTA0MjA1MTU3WhcNMjQwNTExMjA1MTU3WjAYMRYwFAYD VQQDEw02NjM2OWZlZS01YTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08RCu08LHx0BCe6cnlGMVP7m46NG5hE+ooia2mDacLQQr7oLIB06ILDw0SBe HZnEUpx6UAJrLgcObqejowYco2VmRx2tncMwXpnQ4B8h1z6xrCwF5/Pih/Rj5dHf grk9qczj8TAlLCV3t3N8qDRcQQ5gsBjvyqWMgMKyFH6D/quYmiRm9314gfPFa1yf RpmyFn1rl0lefYrkA2upfU32uAUzD0/5GfqEC1HnS0V0L0dh7p+lm8U2JwiHN5YZ 39HnrhGIv6cfrduBfTK7CWc5Hp9VLA1MaAX2qmGy3BnIGriqb9jiHyZdLZdhuPSf Xo+hq7KII2q1oTWpJDrw/eATuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuATEjf WC8mA4sDs7lCT86KZVh5MB8GA1UdIwQYMBaAFF6Z1wh91U6i5+dfXICHBxOD6LKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFEMy8wQTg0NTlGNDUy MzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRxTG41MTljZ0ljSEU0UG9z cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hwblhDSDNWVHFMbjUxOWNnSWNIRTRQb3NwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFEMy8wQTg0NTlGNDUyMzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRx TG41MTljZ0ljSEU0UG9zcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlQKzoYRz30BQkPtNkRbgWlUTY626O2Rav6p4ceadOM7qtGOpT6uHB su7ik0k9X9lSAbs5SbTaEC/B0t4efiyZMmeJgBklkqiJbPlU7yZRCPp0Ut8JqGj3 bQRTOq+gNvYvSuMHX9tYaFXId3vzHJAfPxc7th5q8GQNiywxuxT8ojutoC11tG5r X52zAL0YycLT8c8D4//8yBYySSMrBRG0bkfrlaVFDszQpIaMofkOZonw2pCS4i1W Xiw3pyDcS5s1ncRF8VQTho4eMDb/xIwMVsXwdlY1DNXTqmve+h1Gn/w9sbsjJ5Nf eXmAoVrooglxsHT023HdQCe50RrjnzeB -----END CERTIFICATE-----Generated at Sat May 4 21:33:02 2024 by rpki-client on console-fra.rpki-client.org