$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft File: xbajYOSK75Kf3CcpbR1S9b9umRY.mft (raw, json) Hash identifier: qQVRxsOGN7CKXJMvihQSlrOz3W3lmuvGHxdrwWb1QeM= Subject key identifier: 63:7C:4A:55:F4:02:66:AA:9D:13:55:B8:D5:4E:37:86:8E:E8:F1:82 Authority key identifier: C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 Certificate issuer: /CN=A91FD088/serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Certificate serial: 06F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft Manifest number: 06ED Signing time: Sat 04 May 2024 22:56:06 +0000 Manifest this update: Sat 04 May 2024 22:56:05 +0000 Manifest next update: Sat 11 May 2024 22:56:05 +0000 Files and hashes: 1: xbajYOSK75Kf3CcpbR1S9b9umRY.crl (hash: pIm9QsGOy1flFyyLXj56JJgO4ZUrEqA0f2KQuFh2PFs=) 2: 423EA4CC039B11EBB3C1465CC4F9AE02.roa (hash: +Lakmeku8+RHZ+2Qos9KTETrdWjDpNHkpVECvcnNXC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1779 (0x6f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD088/serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Validity Not Before: May 4 22:56:05 2024 GMT Not After : May 11 22:56:05 2024 GMT Subject: CN=6636bd06-715e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6c:23:f6:03:47:4d:02:22:a5:57:96:1c:39: 0f:15:e0:72:7c:e0:d0:03:74:7b:cd:89:9c:57:5c: 14:e0:1d:0d:f4:b8:c5:e6:33:eb:27:ff:9f:ef:db: c9:aa:fc:5b:54:56:b9:b4:23:5b:c2:cf:da:c0:d1: f9:f4:76:dc:5d:4f:af:8c:4e:aa:4a:a2:9a:5b:44: b5:cb:89:e3:c2:68:48:7b:c9:bd:ec:fc:7b:52:b8: 09:9b:11:dd:31:4b:0e:f1:b7:48:fa:22:44:40:0b: 42:e8:41:bb:2c:fd:2e:ba:d6:9e:b5:bd:de:e8:1e: 3a:d8:17:7b:f8:ae:d8:f1:4c:bb:77:b8:57:27:4b: e7:dd:8f:ff:48:81:64:33:1c:d6:ba:8b:38:6c:84: e5:a9:c6:00:43:10:e2:99:2e:1e:68:10:5e:dc:99: 4f:a7:4d:d3:0c:b2:3e:86:e5:1d:4c:cf:42:6f:fc: c6:73:39:67:d9:30:63:aa:c9:0a:d6:4d:ac:5f:1a: e5:bc:47:8d:1b:56:b2:c1:89:ea:9c:98:3f:0c:8f: 87:df:4e:e6:cb:d1:6b:e8:8e:b1:17:a8:51:98:f7: 9c:ef:fe:f4:aa:8e:67:f3:ec:1f:4a:bf:3c:90:15: cf:fa:a0:5d:94:22:b7:e7:b8:6f:40:49:49:ce:35: 67:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:7C:4A:55:F4:02:66:AA:9D:13:55:B8:D5:4E:37:86:8E:E8:F1:82 X509v3 Authority Key Identifier: keyid:C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:50:e0:e6:73:0a:95:b5:85:e9:f9:70:9e:31:6d:56:06:5c: f5:5b:c5:5b:dc:4f:17:35:4b:1a:29:01:8f:55:a6:98:43:4d: e5:0d:11:d3:da:cc:a2:b3:0a:cb:bd:68:42:9a:9b:73:59:e8: 42:cd:34:01:6e:cc:3b:e1:86:3b:1f:45:1d:8a:2c:8d:c1:d7: 08:e3:8d:73:6e:9c:5f:99:e0:17:31:a0:d8:d0:33:3a:08:93: fe:8c:85:e1:fb:19:6d:e5:0c:74:43:5f:c2:b2:28:46:82:7d: d7:76:02:b1:13:bf:7a:b1:1a:6e:65:e8:a6:4f:53:1e:38:ac: f5:38:21:d6:36:8d:ab:77:a8:f7:9b:6e:a8:d6:6e:9b:76:6e: 61:1a:20:73:fd:0f:dd:94:52:17:81:f5:b6:0f:90:38:5d:1f: 9f:d0:0d:00:f3:f4:09:35:82:a5:a8:00:54:fb:2c:96:60:d8: 53:a6:c7:6e:4d:52:9f:4d:62:11:1e:e5:26:2b:c9:b9:4c:56: 41:1d:c2:dd:dc:74:19:f7:b9:21:b3:6f:73:bf:25:51:82:1e: d2:e6:fa:6e:43:7b:7d:f4:cc:43:12:d2:ef:07:af:dd:4e:23: f3:41:e7:28:80:b7:91:4e:22:81:93:bc:87:80:d6:84:42:c7: c9:6f:9e:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQwODgxMTAvBgNVBAUTKEM1QjZBMzYwRTQ4QUVGOTI5RkRDMjcyOTZEMUQ1MkY1 QkY2RTk5MTYwHhcNMjQwNTA0MjI1NjA1WhcNMjQwNTExMjI1NjA1WjAYMRYwFAYD VQQDEw02NjM2YmQwNi03MTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGwj9gNHTQIipVeWHDkPFeByfODQA3R7zYmcV1wU4B0N9LjF5jPrJ/+f79vJ qvxbVFa5tCNbws/awNH59HbcXU+vjE6qSqKaW0S1y4njwmhIe8m97Px7UrgJmxHd MUsO8bdI+iJEQAtC6EG7LP0uutaetb3e6B462Bd7+K7Y8Uy7d7hXJ0vn3Y//SIFk MxzWuos4bITlqcYAQxDimS4eaBBe3JlPp03TDLI+huUdTM9Cb/zGczln2TBjqskK 1k2sXxrlvEeNG1aywYnqnJg/DI+H307my9Fr6I6xF6hRmPec7/70qo5n8+wfSr88 kBXP+qBdlCK357hvQElJzjVnTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGN8SlX0 AmaqnRNVuNVON4aO6PGCMB8GA1UdIwQYMBaAFMW2o2Dkiu+Sn9wnKW0dUvW/bpkW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDA4OC80NEJBN0NBMkZE OUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1S2YzQ2NwYlIxUzliOXVt UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hiYWpZT1NLNzVLZjNDY3BiUjFTOWI5dW1SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDA4OC80NEJBN0NBMkZEOUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1 S2YzQ2NwYlIxUzliOXVtUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVUODmcwqVtYXp+XCeMW1WBlz1W8Vb3E8XNUsaKQGPVaaYQ03lDRHT 2syiswrLvWhCmptzWehCzTQBbsw74YY7H0UdiiyNwdcI441zbpxfmeAXMaDY0DM6 CJP+jIXh+xlt5Qx0Q1/CsihGgn3XdgKxE796sRpuZeimT1MeOKz1OCHWNo2rd6j3 m26o1m6bdm5hGiBz/Q/dlFIXgfW2D5A4XR+f0A0A8/QJNYKlqABU+yyWYNhTpsdu TVKfTWIRHuUmK8m5TFZBHcLd3HQZ97khs29zvyVRgh7S5vpuQ3t99MxDEtLvB6/d TiPzQecogLeRTiKBk7yHgNaEQsfJb56Z -----END CERTIFICATE-----Generated at Sun May 5 00:12:36 2024 by rpki-client on console-fra.rpki-client.org