$ rpki-client -vvf rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft File: aamToYghmKytXxzqNQZrr0nn1dA.mft (raw, json) Hash identifier: qBbwzigYYvBKSVkS44xK7ClTzoFeORYPmiFLTHeAPAg= Subject key identifier: 3A:1C:4B:23:10:C3:B0:B7:9A:4E:D9:4E:C8:74:2C:55:FC:09:03:9B Authority key identifier: 69:A9:93:A1:88:21:98:AC:AD:5F:1C:EA:35:06:6B:AF:49:E7:D5:D0 Certificate issuer: /CN=A912B23F/serialNumber=69A993A1882198ACAD5F1CEA35066BAF49E7D5D0 Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft Manifest number: 21 Signing time: Sun 19 May 2024 08:34:18 +0000 Manifest this update: Sun 19 May 2024 08:34:17 +0000 Manifest next update: Sun 26 May 2024 08:34:17 +0000 Files and hashes: 1: aamToYghmKytXxzqNQZrr0nn1dA.crl (hash: Q/AVT/pz1MtuO5sLkQyAsAswiK9HhCXiEBLmuUc1J+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.crl rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B23F/serialNumber=69A993A1882198ACAD5F1CEA35066BAF49E7D5D0 Validity Not Before: May 19 08:34:17 2024 GMT Not After : May 26 08:34:17 2024 GMT Subject: CN=6649b989-3f46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:71:a5:c8:a0:37:d7:38:57:68:a2:e9:32:af: a2:3a:cf:94:89:61:46:3f:96:99:b8:63:a6:5c:d4: 9e:e1:4b:9e:2e:14:b5:b7:cd:2f:33:f2:f3:8a:23: dd:35:89:e3:90:0e:07:4b:3f:11:46:1b:18:f5:2d: f0:f0:c2:d6:b8:d7:94:61:56:d8:ca:98:4b:50:2d: 21:22:85:28:6d:2b:ed:af:76:6c:d3:3d:bc:12:b1: 3c:b8:9e:66:de:e1:7c:b2:1b:85:77:84:e4:aa:2f: 91:52:f5:95:53:27:d3:e3:fa:3b:3c:f0:ea:99:c9: 7d:d2:a8:6a:16:fb:da:3c:46:bf:de:e6:10:67:12: 84:7c:77:70:15:85:76:d9:74:9e:63:70:b9:ab:e3: ed:5f:fe:a0:88:27:24:f8:e1:fa:d4:f8:97:b3:8e: 28:04:60:cc:4b:b4:95:85:ec:2b:3c:f0:a5:0c:2f: f5:06:3a:1a:c7:96:9b:b4:c3:95:06:84:67:65:99: 8a:55:c9:7c:ca:56:5a:0a:20:65:20:31:7c:d6:f8: f6:e1:8c:a0:b0:91:6b:6e:d7:9d:bc:04:0f:d6:f3: 00:5c:53:3d:d5:ee:63:b5:9b:ba:fd:05:5f:7c:cd: d6:e0:c8:79:7a:fe:49:9a:30:a1:58:c8:95:ba:f2: 07:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:1C:4B:23:10:C3:B0:B7:9A:4E:D9:4E:C8:74:2C:55:FC:09:03:9B X509v3 Authority Key Identifier: keyid:69:A9:93:A1:88:21:98:AC:AD:5F:1C:EA:35:06:6B:AF:49:E7:D5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:52:7a:47:8e:3b:ac:c8:aa:bd:b6:99:4c:6d:e9:f4:c4:19: dc:fd:0f:5b:19:af:0d:1c:e7:9f:96:24:26:38:fa:e4:28:ed: 97:ce:0e:a3:fc:7e:31:33:f1:07:13:ff:5d:d6:e0:5b:08:46: aa:7d:dc:8d:58:46:94:95:9c:75:8e:6c:d7:d2:87:50:7a:7e: 8b:3b:fc:7c:33:ae:94:fb:53:25:3e:36:39:d0:88:92:8c:24: ed:c0:4a:59:12:45:83:16:92:38:b5:e6:b7:b6:fd:94:df:23: d2:57:62:59:e0:3c:f5:3a:09:10:ca:39:4d:87:00:ce:b8:88: 23:ad:1f:fb:02:82:33:22:d8:b9:ad:1b:8a:34:fa:78:2e:4b: 6a:72:41:c8:1c:42:93:38:e1:cb:7c:e1:0a:0a:ea:ef:e6:b1: 41:b1:9b:7d:95:fd:77:16:e8:83:bc:b3:b7:7b:50:34:ee:6b: a2:dc:e5:a6:63:15:3d:67:22:45:e0:d5:e9:43:d6:a5:0f:cf: b2:c9:72:48:2b:32:f9:01:1a:05:35:cd:ed:24:fe:2d:53:23: 3d:76:d3:5d:cb:65:3d:5e:c7:7e:e4:8b:7c:ed:6f:a1:51:60: 4a:db:3a:76:55:c9:61:16:25:48:85:08:8f:f9:20:9e:af:01: e2:cc:03:de -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QjIzRjExMC8GA1UEBRMoNjlBOTkzQTE4ODIxOThBQ0FENUYxQ0VBMzUwNjZCQUY0 OUU3RDVEMDAeFw0yNDA1MTkwODM0MTdaFw0yNDA1MjYwODM0MTdaMBgxFjAUBgNV BAMTDTY2NDliOTg5LTNmNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6caXIoDfXOFdooukyr6I6z5SJYUY/lpm4Y6Zc1J7hS54uFLW3zS8z8vOKI901 ieOQDgdLPxFGGxj1LfDwwta415RhVtjKmEtQLSEihShtK+2vdmzTPbwSsTy4nmbe 4XyyG4V3hOSqL5FS9ZVTJ9Pj+js88OqZyX3SqGoW+9o8Rr/e5hBnEoR8d3AVhXbZ dJ5jcLmr4+1f/qCIJyT44frU+JezjigEYMxLtJWF7Cs88KUML/UGOhrHlpu0w5UG hGdlmYpVyXzKVloKIGUgMXzW+PbhjKCwkWtu1528BA/W8wBcUz3V7mO1m7r9BV98 zdbgyHl6/kmaMKFYyJW68gcfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOhxLIxDD sLeaTtlOyHQsVfwJA5swHwYDVR0jBBgwFoAUaamToYghmKytXxzqNQZrr0nn1dAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCMjNGLzY3MEMyRjJDRTI5 RjExRUVCNjgyQzYxMUM0RjlBRTAyL2FhbVRvWWdobUt5dFh4enFOUVpycjBubjFk QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYWFtVG9ZZ2htS3l0WHh6cU5RWnJyMG5uMWRBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJC MjNGLzY3MEMyRjJDRTI5RjExRUVCNjgyQzYxMUM0RjlBRTAyL2FhbVRvWWdobUt5 dFh4enFOUVpycjBubjFkQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC1SekeOO6zIqr22mUxt6fTEGdz9D1sZrw0c55+WJCY4+uQo7ZfODqP8 fjEz8QcT/13W4FsIRqp93I1YRpSVnHWObNfSh1B6fos7/HwzrpT7UyU+NjnQiJKM JO3ASlkSRYMWkji15re2/ZTfI9JXYlngPPU6CRDKOU2HAM64iCOtH/sCgjMi2Lmt G4o0+nguS2pyQcgcQpM44ct84QoK6u/msUGxm32V/XcW6IO8s7d7UDTua6Lc5aZj FT1nIkXg1elD1qUPz7LJckgrMvkBGgU1ze0k/i1TIz12013LZT1ex37ki3ztb6FR YErbOnZVyWEWJUiFCI/5IJ6vAeLMA94= -----END CERTIFICATE-----Generated at Sun May 19 09:32:15 2024 by rpki-client on console-ams.rpki-client.org