$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft File: PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json) Hash identifier: hU+Qq52u2Wk5EI6GG+inksp88yllUjk+sfzfTKBRojY= Subject key identifier: CD:CE:8F:12:73:DD:4C:B2:B8:E6:BB:B2:14:28:83:CA:3A:67:71:6D Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D Certificate issuer: /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Certificate serial: 33C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft Manifest number: 33BE Signing time: Sat 18 May 2024 15:20:43 +0000 Manifest this update: Sat 18 May 2024 15:20:42 +0000 Manifest next update: Sat 25 May 2024 15:20:42 +0000 Files and hashes: 1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: ZFCiDBXtdQTqOqFoLgMNuq3tJ1hGXhTzhgpW5yR1fUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13249 (0x33c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Validity Not Before: May 18 15:20:42 2024 GMT Not After : May 25 15:20:42 2024 GMT Subject: CN=6648c74a-1f1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:46:63:08:4f:ae:ac:9c:23:ed:3d:55:72:d9: 9c:32:42:54:8f:03:2f:58:54:e1:fc:20:42:dc:e3: ea:a6:0a:97:06:d6:5c:c9:2c:21:82:07:73:01:d0: 77:55:25:8e:21:77:2f:17:ff:0f:77:70:14:9b:c3: 60:f1:bf:4f:9c:a3:c0:6f:83:d0:59:19:53:5a:0b: 2f:06:3e:d8:5d:02:f2:11:d6:c8:3d:36:54:c7:e4: 10:b7:a6:0a:c8:32:91:45:70:dd:67:11:2d:1c:74: d7:54:2b:56:2f:23:c3:c7:1e:d1:f5:ca:7b:3b:90: 56:49:65:d4:8a:2d:08:82:85:39:d8:d8:98:4a:15: 62:8d:8b:ee:92:f8:69:98:8d:ba:23:38:24:09:4e: 18:3e:d4:61:57:63:47:05:c0:a4:5a:6b:66:dd:c3: fa:83:91:4a:4b:85:df:8f:ae:f1:7f:8f:12:a6:06: ae:2f:35:c5:a5:08:0c:ce:7d:8f:75:18:0c:64:81: 17:a6:27:cc:df:c8:08:c0:2f:c5:94:8e:1f:60:dd: b7:c1:33:1c:1a:7e:07:1d:75:1c:fd:14:f9:7a:39: 9c:a3:4e:23:b4:03:48:6f:ca:22:97:eb:dc:80:f3: 9e:3d:d5:e9:69:de:6d:3c:a6:e3:9f:c7:8f:0f:47: e5:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:CE:8F:12:73:DD:4C:B2:B8:E6:BB:B2:14:28:83:CA:3A:67:71:6D X509v3 Authority Key Identifier: keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:29:3b:d8:8a:64:b1:69:b1:12:02:77:02:d1:83:af:d1:79: 91:cd:dd:c4:0e:a7:96:fa:d7:17:35:f8:c6:aa:69:71:38:4e: ef:66:7a:3f:d8:f1:31:53:b5:3e:82:f6:ca:4d:f1:7f:62:37: 82:df:95:66:66:bd:6a:2c:a8:b9:99:bb:12:d4:cc:46:bc:9f: 9a:6b:79:99:92:4e:a6:fe:40:de:19:94:82:c6:74:bf:8a:23: ad:2c:24:5c:94:c4:fb:d2:fb:ee:87:d3:03:bb:67:18:f3:4a: f3:c6:75:44:3e:12:e6:ec:92:a9:f4:47:41:04:5b:6d:2c:f4: f6:55:9b:37:eb:80:b1:03:fe:a2:e3:36:a8:c9:79:7b:5e:a9: 65:35:4d:08:7d:2d:68:a2:b2:ff:79:cb:e6:5f:45:f0:34:9c: fd:8b:f7:3c:40:e7:e6:b3:8c:8b:eb:40:a1:58:c4:1d:33:08: 68:0e:1a:ab:05:83:6c:22:df:21:6e:ac:7f:4e:bc:c7:14:e2: fb:83:27:db:8b:f9:8d:37:5b:7e:ea:5b:50:02:77:8f:b0:d4: a9:da:56:5d:60:93:29:8c:de:6a:ce:09:ab:56:17:e0:f4:58: be:d9:35:45:c1:09:95:80:4f:3e:a1:7a:e3:22:d6:49:33:5a: b7:57:11:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCNDcxMTAvBgNVBAUTKDNFNDNFMDIzQzA4NTM1OTRFQUQ3N0IyODI4OUEzRjFG MTBDMzA5MUQwHhcNMjQwNTE4MTUyMDQyWhcNMjQwNTI1MTUyMDQyWjAYMRYwFAYD VQQDEw02NjQ4Yzc0YS0xZjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0ZjCE+urJwj7T1VctmcMkJUjwMvWFTh/CBC3OPqpgqXBtZcySwhggdzAdB3 VSWOIXcvF/8Pd3AUm8Ng8b9PnKPAb4PQWRlTWgsvBj7YXQLyEdbIPTZUx+QQt6YK yDKRRXDdZxEtHHTXVCtWLyPDxx7R9cp7O5BWSWXUii0IgoU52NiYShVijYvukvhp mI26IzgkCU4YPtRhV2NHBcCkWmtm3cP6g5FKS4Xfj67xf48SpgauLzXFpQgMzn2P dRgMZIEXpifM38gIwC/FlI4fYN23wTMcGn4HHXUc/RT5ejmco04jtANIb8oil+vc gPOePdXpad5tPKbjn8ePD0fl3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3OjxJz 3UyyuOa7shQog8o6Z3FtMB8GA1UdIwQYMBaAFD5D4CPAhTWU6td7KCiaPx8Qwwkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI0Ny9EQTE3NTU3ODFE QTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5aVHExM3NvS0pvX0h4RERD UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrUGdJOENGTlpUcTEzc29LSm9fSHhERENSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI0Ny9EQTE3NTU3ODFEQTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5a VHExM3NvS0pvX0h4RERDUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVKTvYimSxabESAncC0YOv0XmRzd3EDqeW+tcXNfjGqmlxOE7vZno/ 2PExU7U+gvbKTfF/YjeC35VmZr1qLKi5mbsS1MxGvJ+aa3mZkk6m/kDeGZSCxnS/ iiOtLCRclMT70vvuh9MDu2cY80rzxnVEPhLm7JKp9EdBBFttLPT2VZs364CxA/6i 4zaoyXl7XqllNU0IfS1oorL/ecvmX0XwNJz9i/c8QOfms4yL60ChWMQdMwhoDhqr BYNsIt8hbqx/TrzHFOL7gyfbi/mNN1t+6ltQAnePsNSp2lZdYJMpjN5qzgmrVhfg 9Fi+2TVFwQmVgE8+oXrjItZJM1q3VxHo -----END CERTIFICATE-----Generated at Sat May 18 15:58:22 2024 by rpki-client on console-ams.rpki-client.org