$ rpki-client -vvf rpki.apnic.net/member_repository/A914B610/4393EAE01DA711E2842FDCA008B02CD2/fHKLlwQp1HAJeXihbnZ7IdxuOx8.mft File: fHKLlwQp1HAJeXihbnZ7IdxuOx8.mft (raw, json) Hash identifier: LRirGJ2NFBwfkBqBH5ksUleOIYlUVjKZEr57u9lx0Ic= Subject key identifier: 4B:A1:02:C2:39:F5:42:D1:E0:CE:4A:0F:6F:C2:1F:DA:54:A2:C3:2B Authority key identifier: 7C:72:8B:97:04:29:D4:70:09:79:78:A1:6E:76:7B:21:DC:6E:3B:1F Certificate issuer: /CN=A914B610/serialNumber=7C728B970429D470097978A16E767B21DC6E3B1F Certificate serial: 33C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHKLlwQp1HAJeXihbnZ7IdxuOx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B610/4393EAE01DA711E2842FDCA008B02CD2/fHKLlwQp1HAJeXihbnZ7IdxuOx8.mft Manifest number: 33C5 Signing time: Fri 31 May 2024 15:31:10 +0000 Manifest this update: Fri 31 May 2024 15:31:09 +0000 Manifest next update: Fri 07 Jun 2024 15:31:09 +0000 Files and hashes: 1: fHKLlwQp1HAJeXihbnZ7IdxuOx8.crl (hash: voMr5NS+OiMQA1mzCLsSRNwtWiWgA/8d25P2vILEh2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B610/4393EAE01DA711E2842FDCA008B02CD2/fHKLlwQp1HAJeXihbnZ7IdxuOx8.crl rsync://rpki.apnic.net/member_repository/A914B610/4393EAE01DA711E2842FDCA008B02CD2/fHKLlwQp1HAJeXihbnZ7IdxuOx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHKLlwQp1HAJeXihbnZ7IdxuOx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 15:31:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13254 (0x33c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B610/serialNumber=7C728B970429D470097978A16E767B21DC6E3B1F Validity Not Before: May 31 15:31:09 2024 GMT Not After : Jun 7 15:31:09 2024 GMT Subject: CN=6659ed3e-85e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:de:6c:6a:59:8e:7f:14:bd:6b:d3:66:22:29: 6d:ef:f8:50:e2:46:87:b6:44:4c:10:cd:95:59:30: 61:28:91:68:ef:5f:69:aa:ef:7a:47:33:96:f8:4d: 17:46:5a:32:5c:f3:47:4d:84:1a:fc:48:47:23:9c: a6:ef:e9:d4:78:d0:02:b7:d1:6e:4d:8a:cb:0b:76: 75:b6:f0:e2:21:87:ab:e9:a2:ce:50:cf:2e:30:d2: 2b:3b:78:65:e8:c5:cf:7f:58:9c:df:bd:37:7b:e2: 72:2d:8e:b1:57:9a:d4:8c:9f:ff:c3:3c:ac:3e:02: 0d:44:33:65:8b:38:7d:c5:7d:ef:84:e0:53:da:7f: a9:e4:8e:79:14:25:c8:e5:91:36:8e:13:d8:c3:c7: da:07:fb:dd:ba:10:c5:1c:1d:f8:fa:e1:a8:89:4e: e0:d1:0e:f8:b1:44:76:f1:46:c3:59:f5:ef:eb:a9: 06:03:14:db:94:90:1c:62:35:39:f1:21:29:2d:32: 77:a4:5c:71:9a:41:79:bf:bc:5e:45:3f:c1:bf:78: 00:96:4f:50:68:0f:85:6d:c3:a2:7d:b0:ff:63:0f: f0:21:aa:97:d0:54:52:05:cd:51:71:43:06:c1:89: 41:a7:f0:31:11:d2:83:a6:3d:c7:ed:15:75:87:ea: 2d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A1:02:C2:39:F5:42:D1:E0:CE:4A:0F:6F:C2:1F:DA:54:A2:C3:2B X509v3 Authority Key Identifier: keyid:7C:72:8B:97:04:29:D4:70:09:79:78:A1:6E:76:7B:21:DC:6E:3B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B610/4393EAE01DA711E2842FDCA008B02CD2/fHKLlwQp1HAJeXihbnZ7IdxuOx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHKLlwQp1HAJeXihbnZ7IdxuOx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B610/4393EAE01DA711E2842FDCA008B02CD2/fHKLlwQp1HAJeXihbnZ7IdxuOx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:3b:40:60:f8:73:a8:89:8e:f2:b7:06:8b:e6:81:b3:1a:05: af:34:ab:e6:6e:3a:af:15:56:87:a7:e1:a5:56:64:cb:6c:b1: d4:0a:6f:16:15:6f:e4:59:3c:af:35:9c:25:01:36:6f:97:37: 6d:12:c4:65:e1:4f:5f:21:f6:ee:cb:51:8e:aa:54:cb:5e:80: a9:90:88:49:2a:62:aa:da:c6:6e:ae:21:26:6b:57:b0:3b:72: f3:38:d9:c3:d7:35:7d:2a:32:ea:5f:4a:6f:bb:2a:d9:95:7b: 17:f9:89:9e:99:d2:fd:a2:c0:92:5c:f6:a9:03:2b:f6:2d:69: 2b:b8:41:32:e1:fc:db:61:42:d1:35:75:55:32:c5:62:21:dc: e5:5c:99:3e:74:ef:c8:66:db:c4:e2:ec:a1:f4:b8:fc:a3:69: 16:8f:bd:16:df:a6:5c:17:61:ca:0c:a2:01:b3:4d:35:5f:09: 79:16:db:43:f7:b1:6b:f8:8f:24:7f:35:b2:63:1b:62:58:ea: 0a:89:21:3f:74:c6:ee:7e:9f:70:07:5c:98:a8:6f:50:d5:12: ef:b9:d9:16:24:c7:cb:bb:9c:fe:f5:17:a1:b9:e4:2a:19:14: ac:c5:76:c3:71:79:1e:92:f5:68:ba:a2:54:a4:64:29:86:26: cf:91:3d:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI2MTAxMTAvBgNVBAUTKDdDNzI4Qjk3MDQyOUQ0NzAwOTc5NzhBMTZFNzY3QjIx REM2RTNCMUYwHhcNMjQwNTMxMTUzMTA5WhcNMjQwNjA3MTUzMTA5WjAYMRYwFAYD VQQDEw02NjU5ZWQzZS04NWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs95salmOfxS9a9NmIilt7/hQ4kaHtkRMEM2VWTBhKJFo719pqu96RzOW+E0X RloyXPNHTYQa/EhHI5ym7+nUeNACt9FuTYrLC3Z1tvDiIYer6aLOUM8uMNIrO3hl 6MXPf1ic3703e+JyLY6xV5rUjJ//wzysPgINRDNlizh9xX3vhOBT2n+p5I55FCXI 5ZE2jhPYw8faB/vduhDFHB34+uGoiU7g0Q74sUR28UbDWfXv66kGAxTblJAcYjU5 8SEpLTJ3pFxxmkF5v7xeRT/Bv3gAlk9QaA+FbcOifbD/Yw/wIaqX0FRSBc1RcUMG wYlBp/AxEdKDpj3H7RV1h+oteQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEuhAsI5 9ULR4M5KD2/CH9pUosMrMB8GA1UdIwQYMBaAFHxyi5cEKdRwCXl4oW52eyHcbjsf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjYxMC80MzkzRUFFMDFE QTcxMUUyODQyRkRDQTAwOEIwMkNEMi9mSEtMbHdRcDFIQUplWGloYm5aN0lkeHVP eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZIS0xsd1FwMUhBSmVYaWhiblo3SWR4dU94OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjYxMC80MzkzRUFFMDFEQTcxMUUyODQyRkRDQTAwOEIwMkNEMi9mSEtMbHdRcDFI QUplWGloYm5aN0lkeHVPeDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVO0Bg+HOoiY7ytwaL5oGzGgWvNKvmbjqvFVaHp+GlVmTLbLHUCm8W FW/kWTyvNZwlATZvlzdtEsRl4U9fIfbuy1GOqlTLXoCpkIhJKmKq2sZuriEma1ew O3LzONnD1zV9KjLqX0pvuyrZlXsX+YmemdL9osCSXPapAyv2LWkruEEy4fzbYULR NXVVMsViIdzlXJk+dO/IZtvE4uyh9Lj8o2kWj70W36ZcF2HKDKIBs001Xwl5FttD 97Fr+I8kfzWyYxtiWOoKiSE/dMbufp9wB1yYqG9Q1RLvudkWJMfLu5z+9RehueQq GRSsxXbDcXkekvVouqJUpGQphibPkT0v -----END CERTIFICATE-----Generated at Fri May 31 16:40:55 2024 by rpki-client on console-ams.rpki-client.org