$ rpki-client -vvf rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.mft File: a51l6unGl9ohy0vuv030zgpBkyE.mft (raw, json) Hash identifier: gbT2v9WryVkaY5SCJke4B+b9tJ9tOH+kjJ1T5gDD00c= Subject key identifier: 65:6D:53:92:91:BB:DE:1A:93:4A:73:F0:A0:A4:62:AF:F9:62:30:85 Authority key identifier: 6B:9D:65:EA:E9:C6:97:DA:21:CB:4B:EE:BF:4D:F4:CE:0A:41:93:21 Certificate issuer: /CN=A9141FD6/serialNumber=6B9D65EAE9C697DA21CB4BEEBF4DF4CE0A419321 Certificate serial: 33FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a51l6unGl9ohy0vuv030zgpBkyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.mft Manifest number: 33E3 Signing time: Sat 18 May 2024 14:48:46 +0000 Manifest this update: Sat 18 May 2024 14:48:46 +0000 Manifest next update: Sat 25 May 2024 14:48:46 +0000 Files and hashes: 1: a51l6unGl9ohy0vuv030zgpBkyE.crl (hash: O2taPMAo8AA39y/YElxgPF+YdsnW3yoo5osTgl1/EYw=) 2: 6215E9C089CF11ECA1DA1810C4F9AE02.roa (hash: zqO+6+1m7aZm2JcpbyGs7JD55ITmH3KS8z593DQAnJc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.crl rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a51l6unGl9ohy0vuv030zgpBkyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:48:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13309 (0x33fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141FD6/serialNumber=6B9D65EAE9C697DA21CB4BEEBF4DF4CE0A419321 Validity Not Before: May 18 14:48:46 2024 GMT Not After : May 25 14:48:46 2024 GMT Subject: CN=6648bfce-ba62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c0:bf:be:46:8f:86:74:d7:7f:da:b7:b4:62: cb:69:89:ec:41:53:37:0d:77:27:fa:c9:1a:10:45: 03:dd:9b:cd:74:cf:9f:29:64:0e:7b:0b:7d:25:c6: 30:e4:28:42:8e:57:01:d6:ad:a5:9f:b2:06:a0:00: e7:19:5a:8a:45:93:ba:71:39:98:7c:94:dc:df:a2: 24:62:e2:a0:9a:0c:cd:59:c1:3c:4a:64:ae:71:84: 2a:89:15:da:35:e5:96:75:72:cc:55:e6:0e:27:0f: 64:93:10:4e:b0:72:02:91:ec:bf:28:48:a4:ca:c0: 2b:b5:25:fa:a1:31:d7:3d:3b:ff:b3:d5:3b:1d:cd: 47:ca:bf:bb:55:bf:3a:f3:62:86:f3:52:3f:dc:ad: a4:70:e4:35:8f:e6:21:bc:59:06:ba:50:76:bc:79: f1:1e:c8:76:1e:22:2a:e5:5e:0c:f3:24:23:6d:0d: f7:77:7d:55:16:e6:84:05:31:69:e2:5f:93:74:8c: df:10:13:f7:69:b5:96:83:3b:0c:dc:cd:57:4f:cd: 88:31:f4:87:bc:ad:e9:2f:b3:2e:bc:b2:88:db:1b: 3c:74:d6:51:94:da:3a:de:b7:40:c6:cf:65:85:45: ec:c2:ce:bd:c2:c1:a9:fa:22:58:68:c3:fc:c0:ee: b7:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:6D:53:92:91:BB:DE:1A:93:4A:73:F0:A0:A4:62:AF:F9:62:30:85 X509v3 Authority Key Identifier: keyid:6B:9D:65:EA:E9:C6:97:DA:21:CB:4B:EE:BF:4D:F4:CE:0A:41:93:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a51l6unGl9ohy0vuv030zgpBkyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:4b:c2:6a:54:e1:44:d6:cf:9e:c4:09:54:0c:b6:b8:0a:d0: e8:47:d1:f8:0e:88:2f:f5:3d:18:24:52:2c:51:63:4c:b0:5f: f3:b1:53:26:a8:2e:d7:c1:a3:96:07:68:09:20:87:14:c2:1c: c6:c6:07:e5:d6:f3:96:56:72:25:d0:c3:9b:69:e2:e0:a0:a5: 34:0d:6c:1c:4d:bf:5b:de:f5:3c:0b:c8:b7:c2:be:ec:87:3a: a6:f5:93:ed:2c:d3:9b:18:2a:ad:c7:1a:0c:d4:60:b8:cb:f0: 63:86:9e:79:5c:dc:37:db:28:8f:6b:04:5c:a6:d5:5c:98:fb: 9d:99:b7:9c:72:65:ee:22:50:ab:65:aa:f4:14:7a:a0:78:e9: a8:20:c9:20:40:89:70:16:24:21:60:43:b9:6d:15:b7:76:f2: 9c:90:a8:f6:f0:6b:8e:cd:22:37:27:77:3d:7f:a5:80:41:52: b9:c5:fa:1a:e6:9f:94:95:58:dd:e0:d1:9f:82:53:fc:a7:30: ac:da:43:ff:0c:32:48:cc:4e:13:c7:63:f1:e6:f3:62:1e:d2: 46:76:f6:2e:22:d2:49:bb:5f:e7:65:b9:9e:51:0e:1d:81:7b: 4a:98:02:3c:29:0c:05:91:6b:09:65:e0:1f:f7:dd:62:2b:21: f1:45:65:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFGRDYxMTAvBgNVBAUTKDZCOUQ2NUVBRTlDNjk3REEyMUNCNEJFRUJGNERGNENF MEE0MTkzMjEwHhcNMjQwNTE4MTQ0ODQ2WhcNMjQwNTI1MTQ0ODQ2WjAYMRYwFAYD VQQDEw02NjQ4YmZjZS1iYTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8C/vkaPhnTXf9q3tGLLaYnsQVM3DXcn+skaEEUD3ZvNdM+fKWQOewt9JcYw 5ChCjlcB1q2ln7IGoADnGVqKRZO6cTmYfJTc36IkYuKgmgzNWcE8SmSucYQqiRXa NeWWdXLMVeYOJw9kkxBOsHICkey/KEikysArtSX6oTHXPTv/s9U7Hc1Hyr+7Vb86 82KG81I/3K2kcOQ1j+YhvFkGulB2vHnxHsh2HiIq5V4M8yQjbQ33d31VFuaEBTFp 4l+TdIzfEBP3abWWgzsM3M1XT82IMfSHvK3pL7MuvLKI2xs8dNZRlNo63rdAxs9l hUXsws69wsGp+iJYaMP8wO63IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGVtU5KR u94ak0pz8KCkYq/5YjCFMB8GA1UdIwQYMBaAFGudZerpxpfaIctL7r9N9M4KQZMh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUZENi82RUVDNjQzMDFE OTExMUUyQjY4N0E1RjMwOEIwMkNEMi9hNTFsNnVuR2w5b2h5MHZ1djAzMHpncEJr eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E1MWw2dW5HbDlvaHkwdnV2MDMwemdwQmt5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MUZENi82RUVDNjQzMDFEOTExMUUyQjY4N0E1RjMwOEIwMkNEMi9hNTFsNnVuR2w5 b2h5MHZ1djAzMHpncEJreUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3S8JqVOFE1s+exAlUDLa4CtDoR9H4Dogv9T0YJFIsUWNMsF/zsVMm qC7XwaOWB2gJIIcUwhzGxgfl1vOWVnIl0MObaeLgoKU0DWwcTb9b3vU8C8i3wr7s hzqm9ZPtLNObGCqtxxoM1GC4y/Bjhp55XNw32yiPawRcptVcmPudmbeccmXuIlCr Zar0FHqgeOmoIMkgQIlwFiQhYEO5bRW3dvKckKj28GuOzSI3J3c9f6WAQVK5xfoa 5p+UlVjd4NGfglP8pzCs2kP/DDJIzE4Tx2Px5vNiHtJGdvYuItJJu1/nZbmeUQ4d gXtKmAI8KQwFkWsJZeAf991iKyHxRWVO -----END CERTIFICATE-----Generated at Sat May 18 15:26:02 2024 by rpki-client on console-fra.rpki-client.org