$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft File: 33HZn0zTs4Mms-1HyOSl35ieQvI.mft (raw, json) Hash identifier: i9I7wITGSwysyIg5rn87pMcQNMpfMwXLAros/wD9gAo= Subject key identifier: 01:E7:4A:DD:23:FD:52:F9:8E:1D:4A:2B:E3:39:93:B9:98:19:04:5A Authority key identifier: DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 Certificate issuer: /CN=A915A0EE/serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft Manifest number: B6 Signing time: Sun 19 May 2024 06:34:04 +0000 Manifest this update: Sun 19 May 2024 06:34:03 +0000 Manifest next update: Sun 26 May 2024 06:34:03 +0000 Files and hashes: 1: 33HZn0zTs4Mms-1HyOSl35ieQvI.crl (hash: JuHjS2sFO4Ey15lcLEq2A8NfNUNwa4KhDe345zQscXI=) 2: 1BDBCE5013A011EE91039C41C4F9AE02.roa (hash: INeGiGvtWUNvN/8qvcL38WjDdtA6rWDDaUJdGibX87s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0EE/serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Validity Not Before: May 19 06:34:03 2024 GMT Not After : May 26 06:34:03 2024 GMT Subject: CN=66499d5b-3c81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:72:f3:15:2f:11:86:c3:22:f0:74:4b:b3:eb: ba:14:da:77:2d:16:b1:14:1d:92:1d:31:ad:ae:d7: 3d:e0:7b:e1:96:db:c3:d4:20:36:69:91:55:be:7c: eb:7d:77:31:e4:a5:f5:a1:f1:0d:18:90:9e:5b:78: 2d:b9:54:91:e0:9c:2d:1f:aa:cb:fc:2c:80:97:25: 92:8a:c6:07:96:e9:6e:e6:72:96:7a:38:f7:e8:68: f7:f3:89:41:5f:93:ce:d2:50:d2:9e:47:88:52:2e: e7:bd:4c:c8:76:e2:f0:45:9d:01:aa:f7:38:73:6d: c5:5e:90:05:c3:56:5a:c9:59:8b:d7:be:d0:e1:9d: 26:72:d4:02:ca:df:18:69:8e:c2:05:b6:6f:75:a3: ca:9c:5f:c3:1e:00:cd:06:3d:27:f2:52:5a:30:ed: 28:97:89:0e:83:3c:e8:cf:09:df:e1:25:ef:f5:9c: 0d:6e:59:28:6f:e1:fa:76:00:b3:c8:be:41:35:9f: ad:59:39:3f:7e:bf:01:e2:17:df:8b:95:73:2b:0b: 06:a5:0c:bc:bd:a7:e4:09:2c:df:74:f0:81:d3:2f: 10:69:46:e1:ee:8f:ee:89:60:85:52:0d:54:33:2c: 18:b9:df:a7:17:fd:44:aa:be:45:85:b5:3f:36:d2: c9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:E7:4A:DD:23:FD:52:F9:8E:1D:4A:2B:E3:39:93:B9:98:19:04:5A X509v3 Authority Key Identifier: keyid:DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:7c:43:b5:27:03:ab:b1:ac:e9:ed:de:bc:5e:e3:b2:b2:1f: 1f:07:cf:ac:87:62:d5:c0:5a:b9:19:90:f0:02:a0:fb:57:7b: 20:91:7d:bf:48:54:34:fe:9d:57:59:2d:84:59:e0:5d:70:fa: 57:ac:3f:ef:5d:a4:48:12:ed:c5:05:6d:fa:d9:98:2f:be:f4: 5a:85:21:30:1a:42:b2:d1:c0:ef:5e:f5:ae:20:fe:58:fa:69: 23:c2:dd:7d:3e:db:3f:ae:a5:19:1c:52:9a:44:43:97:55:b2: 6f:49:8f:08:25:fa:34:3f:d0:e0:cd:fc:e5:ac:1f:e8:69:50: ad:12:45:70:45:7c:35:b3:ed:01:6e:6e:c8:da:e8:3f:22:83: 81:2e:89:27:60:98:b6:19:d2:ad:39:b7:14:f1:9f:bc:9a:10: 87:d0:5d:25:fc:23:da:7d:03:12:33:89:25:53:ad:4b:e1:f6: a5:83:d6:c8:46:e3:78:c0:f5:cb:44:57:f7:d8:ab:6d:f8:11: 81:cd:36:00:d6:40:a5:95:f8:fe:de:5b:f0:99:d9:9b:4e:b2: 81:1d:80:6c:db:6a:b9:4c:cd:6f:ae:19:95:70:99:2b:ad:37: 60:22:90:c7:80:8e:00:af:e6:01:50:99:65:02:58:b5:7b:d2: 3c:d2:92:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRUUxMTAvBgNVBAUTKERGNzFEOTlGNENEM0IzODMyNkIzRUQ0N0M4RTRBNURG OTg5RTQyRjIwHhcNMjQwNTE5MDYzNDAzWhcNMjQwNTI2MDYzNDAzWjAYMRYwFAYD VQQDEw02NjQ5OWQ1Yi0zYzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXLzFS8RhsMi8HRLs+u6FNp3LRaxFB2SHTGtrtc94HvhltvD1CA2aZFVvnzr fXcx5KX1ofENGJCeW3gtuVSR4JwtH6rL/CyAlyWSisYHlulu5nKWejj36Gj384lB X5PO0lDSnkeIUi7nvUzIduLwRZ0Bqvc4c23FXpAFw1ZayVmL177Q4Z0mctQCyt8Y aY7CBbZvdaPKnF/DHgDNBj0n8lJaMO0ol4kOgzzozwnf4SXv9ZwNblkob+H6dgCz yL5BNZ+tWTk/fr8B4hffi5VzKwsGpQy8vafkCSzfdPCB0y8QaUbh7o/uiWCFUg1U MywYud+nF/1Eqr5FhbU/NtLJgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAHnSt0j /VL5jh1KK+M5k7mYGQRaMB8GA1UdIwQYMBaAFN9x2Z9M07ODJrPtR8jkpd+YnkLy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBFRS81NUM4MDNDQTA5 QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0TW1zLTFIeU9TbDM1aWVR dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzSFpuMHpUczRNbXMtMUh5T1NsMzVpZVF2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBFRS81NUM4MDNDQTA5QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0 TW1zLTFIeU9TbDM1aWVRdkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8fEO1JwOrsazp7d68XuOysh8fB8+sh2LVwFq5GZDwAqD7V3sgkX2/ SFQ0/p1XWS2EWeBdcPpXrD/vXaRIEu3FBW362ZgvvvRahSEwGkKy0cDvXvWuIP5Y +mkjwt19Pts/rqUZHFKaREOXVbJvSY8IJfo0P9DgzfzlrB/oaVCtEkVwRXw1s+0B bm7I2ug/IoOBLoknYJi2GdKtObcU8Z+8mhCH0F0l/CPafQMSM4klU61L4falg9bI RuN4wPXLRFf32Ktt+BGBzTYA1kCllfj+3lvwmdmbTrKBHYBs22q5TM1vrhmVcJkr rTdgIpDHgI4Ar+YBUJllAli1e9I80pLx -----END CERTIFICATE-----Generated at Sun May 19 08:25:01 2024 by rpki-client on console-ams.rpki-client.org