$ rpki-client -vvf rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft File: MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft (raw, json) Hash identifier: 7flTmtlX/+JrHq0wl9BUJteq7OzfJpln61Mtz4JdeZQ= Subject key identifier: 15:1C:BB:B8:2C:10:F2:E1:38:68:56:55:8A:EB:AE:7B:35:0A:02:48 Authority key identifier: 31:B3:D9:04:57:D1:FD:F8:3C:35:74:CB:D1:7F:C2:8B:2C:DD:56:EF Certificate issuer: /CN=A91222CD/serialNumber=31B3D90457D1FDF83C3574CBD17FC28B2CDD56EF Certificate serial: 1A68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MbPZBFfR_fg8NXTL0X_CiyzdVu8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft Manifest number: 1A67 Signing time: Sat 18 May 2024 16:44:40 +0000 Manifest this update: Sat 18 May 2024 16:44:40 +0000 Manifest next update: Sat 25 May 2024 16:44:40 +0000 Files and hashes: 1: MbPZBFfR_fg8NXTL0X_CiyzdVu8.crl (hash: RXoRGsu2spXSBgYRYbVKPj1DEFswO1MgD4C8bDBd32Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.crl rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MbPZBFfR_fg8NXTL0X_CiyzdVu8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6760 (0x1a68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91222CD/serialNumber=31B3D90457D1FDF83C3574CBD17FC28B2CDD56EF Validity Not Before: May 18 16:44:40 2024 GMT Not After : May 25 16:44:40 2024 GMT Subject: CN=6648daf8-9bd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:96:3b:e4:f9:82:85:5e:6b:bb:5a:92:f5:94: de:9e:e8:fc:be:d8:ac:f1:e2:09:b2:f3:f3:8a:a5: c2:6b:e5:94:33:b8:d7:1f:e0:d7:db:59:f4:59:dd: e6:c0:cc:7e:eb:d1:8d:6e:b2:e7:7f:33:8b:52:82: e7:50:71:80:71:73:57:0d:f6:aa:6a:4b:73:49:a2: a0:26:0a:cd:f4:47:d2:2a:00:63:6d:1f:bf:ea:5d: 8e:7e:70:55:a4:2a:b3:9f:81:7e:4d:43:c5:85:fb: 87:11:d6:4c:d6:d9:af:83:ea:18:b6:f0:43:80:ab: 59:ee:f0:37:69:30:d5:9d:71:77:98:9f:d8:71:7c: d9:cd:9e:b8:af:eb:37:a0:02:13:f4:fd:ef:ef:bd: 1f:c0:96:27:45:31:3a:06:5f:7a:fb:03:ee:9f:78: 01:ff:61:1d:b0:3e:f1:4f:d9:a0:4d:f8:72:a0:c1: 83:f5:c9:43:d6:60:71:47:aa:24:fe:03:d4:a1:90: e5:6a:1b:ce:76:8e:de:5e:de:33:a5:94:17:51:be: be:67:88:e5:77:a5:34:61:18:32:ee:d9:81:82:8d: 78:d5:1a:a5:ac:be:4a:2d:8c:c3:d3:ae:51:7f:c6: 03:ac:81:0b:c3:1b:10:07:68:08:1b:50:c4:25:9b: 72:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:1C:BB:B8:2C:10:F2:E1:38:68:56:55:8A:EB:AE:7B:35:0A:02:48 X509v3 Authority Key Identifier: keyid:31:B3:D9:04:57:D1:FD:F8:3C:35:74:CB:D1:7F:C2:8B:2C:DD:56:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MbPZBFfR_fg8NXTL0X_CiyzdVu8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:a1:48:16:56:d5:f4:03:3f:cd:d4:10:85:5e:5f:e8:11:dd: 26:07:83:8d:36:c6:07:76:72:e7:6a:2c:82:5c:5d:c3:25:ca: f9:e6:19:18:15:0f:a1:59:cc:61:0e:fe:34:6a:ed:81:f9:80: 0c:84:3c:54:ee:66:73:08:3c:82:74:78:2b:d1:24:18:83:f2: 38:09:b1:1a:38:88:e8:bc:8d:27:a3:e8:d5:59:4a:de:99:c4: 5d:c9:49:c5:c1:e7:70:f8:3c:35:32:b3:f8:48:9b:67:4d:5a: 91:f3:ec:29:36:07:fc:0e:d5:e7:2b:7d:93:c4:7a:d2:19:3a: ff:68:6b:3f:16:79:db:fd:5e:22:a1:d3:e6:d3:7c:40:10:93: 64:2d:14:57:86:95:10:65:10:22:61:58:a4:6a:3e:41:68:6a: 68:bd:91:56:d6:29:d3:fb:34:d6:4d:1e:f3:e1:94:a3:06:49: d4:41:1d:76:d3:12:08:f9:19:58:d2:32:a9:a2:fd:6f:1c:a1: df:e3:1a:c3:b2:ab:70:76:cc:83:ac:7d:07:d5:78:bc:81:a1: 0b:d3:43:42:cb:24:a4:d6:61:d9:5e:d2:f1:57:52:cb:12:24: 9b:00:d5:1b:08:18:44:35:e0:ae:b4:cb:d4:57:03:40:9c:55: b6:80:f2:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIyQ0QxMTAvBgNVBAUTKDMxQjNEOTA0NTdEMUZERjgzQzM1NzRDQkQxN0ZDMjhC MkNERDU2RUYwHhcNMjQwNTE4MTY0NDQwWhcNMjQwNTI1MTY0NDQwWjAYMRYwFAYD VQQDEw02NjQ4ZGFmOC05YmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ZY75PmChV5ru1qS9ZTenuj8vtis8eIJsvPziqXCa+WUM7jXH+DX21n0Wd3m wMx+69GNbrLnfzOLUoLnUHGAcXNXDfaqaktzSaKgJgrN9EfSKgBjbR+/6l2OfnBV pCqzn4F+TUPFhfuHEdZM1tmvg+oYtvBDgKtZ7vA3aTDVnXF3mJ/YcXzZzZ64r+s3 oAIT9P3v770fwJYnRTE6Bl96+wPun3gB/2EdsD7xT9mgTfhyoMGD9clD1mBxR6ok /gPUoZDlahvOdo7eXt4zpZQXUb6+Z4jld6U0YRgy7tmBgo141RqlrL5KLYzD065R f8YDrIELwxsQB2gIG1DEJZtyCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBUcu7gs EPLhOGhWVYrrrns1CgJIMB8GA1UdIwQYMBaAFDGz2QRX0f34PDV0y9F/woss3Vbv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjJDRC83RTMxMTVDODE2 NUExMUU3QjI3RjlCNDZDNEY5QUUwMi9NYlBaQkZmUl9mZzhOWFRMMFhfQ2l5emRW dTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01iUFpCRmZSX2ZnOE5YVEwwWF9DaXl6ZFZ1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjJDRC83RTMxMTVDODE2NUExMUU3QjI3RjlCNDZDNEY5QUUwMi9NYlBaQkZmUl9m ZzhOWFRMMFhfQ2l5emRWdTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1oUgWVtX0Az/N1BCFXl/oEd0mB4ONNsYHdnLnaiyCXF3DJcr55hkY FQ+hWcxhDv40au2B+YAMhDxU7mZzCDyCdHgr0SQYg/I4CbEaOIjovI0no+jVWUre mcRdyUnFwedw+Dw1MrP4SJtnTVqR8+wpNgf8DtXnK32TxHrSGTr/aGs/Fnnb/V4i odPm03xAEJNkLRRXhpUQZRAiYVikaj5BaGpovZFW1inT+zTWTR7z4ZSjBknUQR12 0xII+RlY0jKpov1vHKHf4xrDsqtwdsyDrH0H1Xi8gaEL00NCyySk1mHZXtLxV1LL EiSbANUbCBhENeCutMvUVwNAnFW2gPLq -----END CERTIFICATE-----Generated at Sat May 18 18:21:35 2024 by rpki-client on console-ams.rpki-client.org