$ rpki-client -vvf rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft File: X3A2SNc_YGlFARjbom-WaC1a5so.mft (raw, json) Hash identifier: J0qxe6ceEiXUQrmxBRf6qDwaaSfltogfH0MrOPbjBXo= Subject key identifier: BF:DB:D2:DE:7C:42:C0:2A:85:F6:D1:F3:8C:06:EB:DD:32:64:5A:F1 Authority key identifier: 5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA Certificate issuer: /CN=A91508BB/serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Certificate serial: 33C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft Manifest number: 33C3 Signing time: Sat 18 May 2024 14:41:48 +0000 Manifest this update: Sat 18 May 2024 14:41:47 +0000 Manifest next update: Sat 25 May 2024 14:41:47 +0000 Files and hashes: 1: X3A2SNc_YGlFARjbom-WaC1a5so.crl (hash: nzWS9sJaXlenRldhTNrGf72Njy7a8hUWzaitavfOj7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:41:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13251 (0x33c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508BB/serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Validity Not Before: May 18 14:41:47 2024 GMT Not After : May 25 14:41:47 2024 GMT Subject: CN=6648be2b-a7c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0e:ae:63:20:a4:af:ab:ad:4a:0b:4b:89:b8: 22:91:e8:9f:bf:62:40:4c:63:ae:09:81:d0:8e:0b: 52:cf:84:56:5f:43:b7:ae:5a:58:ad:e6:a8:ea:91: b2:20:99:55:c1:bd:38:c1:bb:d5:b0:a9:31:12:18: 51:20:76:69:f0:a0:34:42:d9:57:c9:12:e9:5e:51: 94:af:8f:52:25:c6:dd:1a:be:1e:04:b6:56:85:a4: e3:b5:0b:75:3a:ca:ed:1f:b2:dd:ca:cf:f5:4f:e1: 8a:94:88:67:a6:82:f1:1d:54:c8:af:ee:c6:72:b4: f2:f3:44:8a:17:cb:31:3a:ea:e6:19:9b:06:a1:53: 72:49:6e:67:8b:95:81:e5:b6:11:86:70:b9:7c:06: 9e:84:42:17:56:e7:e4:fc:3f:2c:6e:a2:0c:11:48: 9a:95:1d:70:f4:c7:0f:5d:17:43:18:e0:c2:d6:63: b0:19:d1:d8:19:fa:90:ec:7d:2d:fc:b1:7a:a5:b6: eb:5b:b5:9d:16:26:9c:bb:d2:0f:a1:0f:12:83:04: e5:d3:29:f4:e8:62:f1:fa:0a:03:49:fa:00:f5:3e: ca:74:5e:db:47:a7:27:9e:2c:d8:82:9e:d4:9c:71: ed:c4:a6:17:61:28:80:d4:41:a6:56:98:49:fa:e7: 84:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:DB:D2:DE:7C:42:C0:2A:85:F6:D1:F3:8C:06:EB:DD:32:64:5A:F1 X509v3 Authority Key Identifier: keyid:5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:46:06:c2:1d:dd:7e:dd:cc:7f:ff:11:94:0f:af:f6:01:ef: b8:de:ab:6f:37:46:24:2a:d6:60:73:7b:0e:c4:e7:76:b0:b9: a8:19:5e:83:43:26:5e:88:3e:d2:8e:82:98:0e:d0:1b:78:a2: 72:26:3f:2a:e3:ee:f5:bd:52:4a:d1:77:e9:b3:d3:ed:4c:61: 09:66:3b:8e:d9:e7:a5:ae:34:e2:cc:6a:8c:ab:0f:e2:6d:63: 40:cc:1c:03:07:3f:53:02:e3:f0:39:50:9e:b3:ac:90:51:d4: 7f:c5:e7:81:39:18:26:22:86:3b:6d:f6:cc:28:58:f8:8a:64: 70:d6:22:81:8b:7e:3d:99:46:f2:41:26:6d:a2:e5:ac:1e:9a: e8:cc:cd:b8:ce:55:3d:51:60:6d:ef:cb:2c:82:a3:56:6a:c6: 9c:a2:d9:e4:bc:54:1e:6d:b0:9c:d5:2f:ed:68:0a:53:43:64: bd:b8:5d:c7:46:65:e0:30:98:95:2d:4e:85:c4:7d:22:22:ac: fb:43:4c:5c:9b:ad:59:81:86:a0:55:62:94:86:bf:84:f6:a8: fb:14:25:8f:05:61:6e:e2:60:06:b0:e5:eb:b0:8b:40:bd:c3: 4d:33:d6:04:37:de:29:7e:61:e0:bc:24:f5:6d:ad:83:14:56: 73:fa:2a:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QkIxMTAvBgNVBAUTKDVGNzAzNjQ4RDczRjYwNjk0NTAxMThEQkEyNkY5NjY4 MkQ1QUU2Q0EwHhcNMjQwNTE4MTQ0MTQ3WhcNMjQwNTI1MTQ0MTQ3WjAYMRYwFAYD VQQDEw02NjQ4YmUyYi1hN2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsA6uYyCkr6utSgtLibgikeifv2JATGOuCYHQjgtSz4RWX0O3rlpYreao6pGy IJlVwb04wbvVsKkxEhhRIHZp8KA0QtlXyRLpXlGUr49SJcbdGr4eBLZWhaTjtQt1 OsrtH7Ldys/1T+GKlIhnpoLxHVTIr+7GcrTy80SKF8sxOurmGZsGoVNySW5ni5WB 5bYRhnC5fAaehEIXVufk/D8sbqIMEUialR1w9McPXRdDGODC1mOwGdHYGfqQ7H0t /LF6pbbrW7WdFiacu9IPoQ8SgwTl0yn06GLx+goDSfoA9T7KdF7bR6cnnizYgp7U nHHtxKYXYSiA1EGmVphJ+ueEJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/b0t58 QsAqhfbR84wG690yZFrxMB8GA1UdIwQYMBaAFF9wNkjXP2BpRQEY26JvlmgtWubK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhCQi81QTBEOTU4ODFE OEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lHbEZBUmpib20tV2FDMWE1 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gzQTJTTmNfWUdsRkFSamJvbS1XYUMxYTVzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhCQi81QTBEOTU4ODFEOEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lH bEZBUmpib20tV2FDMWE1c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFRgbCHd1+3cx//xGUD6/2Ae+43qtvN0YkKtZgc3sOxOd2sLmoGV6D QyZeiD7SjoKYDtAbeKJyJj8q4+71vVJK0Xfps9PtTGEJZjuO2eelrjTizGqMqw/i bWNAzBwDBz9TAuPwOVCes6yQUdR/xeeBORgmIoY7bfbMKFj4imRw1iKBi349mUby QSZtouWsHprozM24zlU9UWBt78ssgqNWasacotnkvFQebbCc1S/taApTQ2S9uF3H RmXgMJiVLU6FxH0iIqz7Q0xcm61ZgYagVWKUhr+E9qj7FCWPBWFu4mAGsOXrsItA vcNNM9YEN94pfmHgvCT1ba2DFFZz+iqj -----END CERTIFICATE-----Generated at Sat May 18 15:58:22 2024 by rpki-client on console-ams.rpki-client.org