$ rpki-client -vvf rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.mft File: xsPe6PYn19lovt8i_GEJRiUwF4M.mft (raw, json) Hash identifier: g4Gz5Cuarwx08ndwdUgCFltetzM/3/PScBezxaDwEzs= Subject key identifier: 3E:32:60:EB:75:39:2C:AB:BC:D0:1E:18:F1:28:50:61:8E:0C:24:53 Authority key identifier: C6:C3:DE:E8:F6:27:D7:D9:68:BE:DF:22:FC:61:09:46:25:30:17:83 Certificate issuer: /CN=A9151258/serialNumber=C6C3DEE8F627D7D968BEDF22FC61094625301783 Certificate serial: 33C2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.mft Manifest number: 33C2 Signing time: Sat 18 May 2024 15:25:34 +0000 Manifest this update: Sat 18 May 2024 15:25:33 +0000 Manifest next update: Sat 25 May 2024 15:25:33 +0000 Files and hashes: 1: xsPe6PYn19lovt8i_GEJRiUwF4M.crl (hash: LhGihGzUXBg+Y+6aoFpmEDrenx9SoKEN+g+UTxAkR1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.crl rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13250 (0x33c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151258/serialNumber=C6C3DEE8F627D7D968BEDF22FC61094625301783 Validity Not Before: May 18 15:25:33 2024 GMT Not After : May 25 15:25:33 2024 GMT Subject: CN=6648c86e-8d23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:75:cb:94:4f:05:78:2d:51:58:43:2d:6e:cf: 33:92:8f:bc:6c:a1:63:6c:f4:6b:da:86:8a:09:b3: 71:ae:ae:a3:e0:15:cc:c9:09:43:de:6b:3c:b3:5d: dd:3f:fd:2c:f0:5b:4a:a0:fe:71:ea:50:be:de:4d: 6f:b2:be:2f:a7:6a:87:43:a1:e9:7f:d8:76:09:2e: 18:3e:1e:19:98:60:0b:a0:2c:b5:37:76:d3:3f:68: 21:76:b7:6e:f0:4b:89:a6:b6:e6:f1:6a:cb:d9:88: b5:f8:a1:53:59:06:9a:d8:8b:87:12:b6:ab:c5:21: ed:a7:e6:8b:6b:04:3e:1b:86:79:86:e1:97:b4:89: 8d:4f:92:2c:65:1f:27:78:6d:74:b6:ce:48:e0:0e: 6c:4e:14:17:54:79:bf:8e:88:1e:53:bb:a7:31:03: 88:fb:dd:95:e2:cc:52:4f:2e:1a:67:12:32:b7:52: fc:e1:6d:14:62:a8:19:a4:1f:ca:33:82:d0:ec:ca: 6d:74:b7:a6:96:ee:4d:1d:e0:2c:eb:a5:08:36:b7: 4e:4b:58:84:c5:d8:76:8b:8c:9e:1c:15:b8:17:16: 39:58:ff:a9:74:31:95:9b:5e:a0:fa:a6:ff:8e:0b: 48:d1:7e:5e:44:7e:c8:bd:7a:cc:f6:8a:23:c7:a6: 8f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:32:60:EB:75:39:2C:AB:BC:D0:1E:18:F1:28:50:61:8E:0C:24:53 X509v3 Authority Key Identifier: keyid:C6:C3:DE:E8:F6:27:D7:D9:68:BE:DF:22:FC:61:09:46:25:30:17:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:67:16:b1:d3:20:7f:ce:7b:28:6e:46:0d:61:81:7a:45:49: 43:30:3e:d1:3c:c3:49:7b:e0:e9:00:cd:1d:ee:e0:a1:91:c6: d0:7b:10:32:80:f2:f7:ef:43:7e:dc:12:0e:9c:2e:d0:2e:64: cb:58:84:03:12:ad:9a:f3:f4:c5:9d:37:73:27:c1:73:f2:95: 45:15:36:08:a9:e7:7a:12:7e:5f:e7:20:10:c8:f7:ef:22:61: bb:24:7f:1d:97:4c:2f:2f:eb:2f:6e:27:b4:35:1c:b3:81:65: 9a:17:fc:2e:4b:82:11:62:a7:c6:c0:55:33:59:b7:4c:bc:aa: 9e:90:52:43:d1:3d:d3:f2:53:5c:83:ca:95:2d:04:1a:b7:81: b2:05:77:ba:24:9a:2e:8a:73:6a:c9:90:2a:57:a1:ee:ff:dc: f1:5b:1e:05:b8:76:77:26:5b:ad:49:57:43:b6:ad:c5:f3:08: d6:a7:0e:2d:3a:2a:d3:06:bb:0c:7f:d4:c6:2a:c3:a7:66:84: 28:ee:cd:2e:2d:82:e6:c3:21:76:6c:5c:7f:c3:a0:ff:84:d9: 33:77:7e:a4:06:8f:3f:6b:ae:54:60:a2:47:20:d6:69:63:50: 52:04:30:b0:1f:27:a6:c2:e6:a2:a5:a6:90:10:44:ab:52:86: 04:66:b3:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEyNTgxMTAvBgNVBAUTKEM2QzNERUU4RjYyN0Q3RDk2OEJFREYyMkZDNjEwOTQ2 MjUzMDE3ODMwHhcNMjQwNTE4MTUyNTMzWhcNMjQwNTI1MTUyNTMzWjAYMRYwFAYD VQQDEw02NjQ4Yzg2ZS04ZDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3XLlE8FeC1RWEMtbs8zko+8bKFjbPRr2oaKCbNxrq6j4BXMyQlD3ms8s13d P/0s8FtKoP5x6lC+3k1vsr4vp2qHQ6Hpf9h2CS4YPh4ZmGALoCy1N3bTP2ghdrdu 8EuJprbm8WrL2Yi1+KFTWQaa2IuHErarxSHtp+aLawQ+G4Z5huGXtImNT5IsZR8n eG10ts5I4A5sThQXVHm/jogeU7unMQOI+92V4sxSTy4aZxIyt1L84W0UYqgZpB/K M4LQ7MptdLemlu5NHeAs66UINrdOS1iExdh2i4yeHBW4FxY5WP+pdDGVm16g+qb/ jgtI0X5eRH7IvXrM9oojx6aP6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD4yYOt1 OSyrvNAeGPEoUGGODCRTMB8GA1UdIwQYMBaAFMbD3uj2J9fZaL7fIvxhCUYlMBeD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTI1OC9CQjJERENFMjFE QTYxMUUyODZEOTFEOUUwOEIwMkNEMi94c1BlNlBZbjE5bG92dDhpX0dFSlJpVXdG NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hzUGU2UFluMTlsb3Z0OGlfR0VKUmlVd0Y0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTI1OC9CQjJERENFMjFEQTYxMUUyODZEOTFEOUUwOEIwMkNEMi94c1BlNlBZbjE5 bG92dDhpX0dFSlJpVXdGNE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUZxax0yB/znsobkYNYYF6RUlDMD7RPMNJe+DpAM0d7uChkcbQexAy gPL370N+3BIOnC7QLmTLWIQDEq2a8/TFnTdzJ8Fz8pVFFTYIqed6En5f5yAQyPfv ImG7JH8dl0wvL+svbie0NRyzgWWaF/wuS4IRYqfGwFUzWbdMvKqekFJD0T3T8lNc g8qVLQQat4GyBXe6JJouinNqyZAqV6Hu/9zxWx4FuHZ3JlutSVdDtq3F8wjWpw4t OirTBrsMf9TGKsOnZoQo7s0uLYLmwyF2bFx/w6D/hNkzd36kBo8/a65UYKJHINZp Y1BSBDCwHyemwuaipaaQEESrUoYEZrMx -----END CERTIFICATE-----Generated at Sat May 18 17:20:04 2024 by rpki-client on console-ams.rpki-client.org