$ rpki-client -vvf rpki.apnic.net/member_repository/A915BDD9/2272C5F0F1B411EE9FDFB867C4F9AE02/Shbh6zvfjdRgc8JVc1Ok_Ohwh80.mft File: Shbh6zvfjdRgc8JVc1Ok_Ohwh80.mft (raw, json) Hash identifier: R5zAV8HA6c0Q/CJKeioSH7hwDTyMO9DmaEVge30tSyY= Subject key identifier: 67:E0:66:F7:29:06:BB:12:37:29:AD:3B:25:BA:4B:05:0E:21:5F:71 Authority key identifier: 4A:16:E1:EB:3B:DF:8D:D4:60:73:C2:55:73:53:A4:FC:E8:70:87:CD Certificate issuer: /CN=A915BDD9/serialNumber=4A16E1EB3BDF8DD46073C2557353A4FCE87087CD Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Shbh6zvfjdRgc8JVc1Ok_Ohwh80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BDD9/2272C5F0F1B411EE9FDFB867C4F9AE02/Shbh6zvfjdRgc8JVc1Ok_Ohwh80.mft Manifest number: 17 Signing time: Sun 19 May 2024 08:43:16 +0000 Manifest this update: Sun 19 May 2024 08:43:16 +0000 Manifest next update: Sun 26 May 2024 08:43:16 +0000 Files and hashes: 1: Shbh6zvfjdRgc8JVc1Ok_Ohwh80.crl (hash: daLaoIgF/zcKfA/XbKUWKy++2DCJSr+0YXUHR0+Gqek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BDD9/2272C5F0F1B411EE9FDFB867C4F9AE02/Shbh6zvfjdRgc8JVc1Ok_Ohwh80.crl rsync://rpki.apnic.net/member_repository/A915BDD9/2272C5F0F1B411EE9FDFB867C4F9AE02/Shbh6zvfjdRgc8JVc1Ok_Ohwh80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Shbh6zvfjdRgc8JVc1Ok_Ohwh80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BDD9/serialNumber=4A16E1EB3BDF8DD46073C2557353A4FCE87087CD Validity Not Before: May 19 08:43:16 2024 GMT Not After : May 26 08:43:16 2024 GMT Subject: CN=6649bba4-992b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:8e:45:73:13:1a:91:ac:b9:77:28:45:3f:87: 80:ee:37:4a:38:dc:36:d8:3e:1f:01:5c:c0:0c:77: 73:bc:d0:5f:0a:d4:3f:49:7c:05:1d:64:45:02:46: d9:32:ec:1d:51:10:03:cf:cb:dd:59:1f:0a:4c:9f: 8b:ef:33:17:e3:c5:7b:8b:95:1a:65:1b:4b:b8:b1: 20:49:dd:81:a0:96:36:9a:f6:a7:23:42:41:68:ff: 3d:3f:09:4d:40:bc:05:49:71:ba:c9:eb:1b:0b:2c: a1:76:0c:f4:87:8b:7c:67:97:a3:ca:b7:73:0c:29: 95:ef:f8:9f:9b:f4:34:a4:89:c1:bc:d8:71:92:4f: 01:bc:9f:ef:9e:f3:6b:64:9a:d9:b2:c1:cd:ab:a4: 78:5d:46:d9:d2:6e:3e:68:65:9e:8d:95:3a:34:7d: 7b:af:31:72:97:7d:d7:51:d9:0a:75:73:2a:74:3c: ca:bc:e8:ca:21:98:f9:8e:51:91:53:f8:5c:75:11: bf:4f:85:87:a6:f6:af:cb:f7:57:07:1e:1d:d1:8c: 6f:08:de:67:a8:ae:5b:08:8b:f2:f7:42:2a:4f:a9: db:a8:12:e1:b9:4f:cb:23:f8:18:23:97:dd:1e:d5: 65:93:a7:31:c9:88:75:2f:ca:b0:f3:13:ff:3d:3f: 3a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E0:66:F7:29:06:BB:12:37:29:AD:3B:25:BA:4B:05:0E:21:5F:71 X509v3 Authority Key Identifier: keyid:4A:16:E1:EB:3B:DF:8D:D4:60:73:C2:55:73:53:A4:FC:E8:70:87:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BDD9/2272C5F0F1B411EE9FDFB867C4F9AE02/Shbh6zvfjdRgc8JVc1Ok_Ohwh80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Shbh6zvfjdRgc8JVc1Ok_Ohwh80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BDD9/2272C5F0F1B411EE9FDFB867C4F9AE02/Shbh6zvfjdRgc8JVc1Ok_Ohwh80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:86:d3:98:9f:d5:13:3e:da:b0:79:fe:3d:da:4b:a2:d7:28: b2:c2:90:de:e1:01:4a:63:15:94:da:55:c7:e6:a7:87:8f:20: 01:10:73:12:22:75:6d:94:02:ed:b5:6c:50:e3:01:0f:92:62: 84:37:d9:08:3d:b2:28:06:03:43:1a:16:25:21:c8:3a:4e:ba: d8:3a:a6:b6:c6:f5:a1:16:f2:f3:f1:73:4d:06:c7:19:b3:c1: a3:00:65:9f:19:c6:39:a2:ad:4f:2c:64:c6:7e:4f:75:ad:20: 6b:12:bf:c8:4f:6e:d4:54:35:58:75:bb:a4:dc:1f:de:ee:1e: 63:0e:d1:40:7f:06:3d:5b:a8:57:24:61:54:51:e5:b4:0d:12: 0f:48:b3:08:09:f8:88:c4:19:4c:d5:49:89:5a:7d:65:71:fa: 93:4e:f2:3d:9e:4c:f4:0a:2f:f4:11:b7:01:bd:37:11:64:6b: 9f:a7:24:52:e2:31:82:58:ae:f2:f9:c9:d0:37:ab:5a:4d:ad: 8e:c0:31:90:ae:19:11:fe:a0:9a:e4:9d:8e:30:ba:e8:a7:04: 68:51:a9:68:c1:1d:33:ce:af:a5:06:85:ee:d7:44:d3:f3:c4: c6:30:f6:81:dd:a1:b9:f7:f7:1a:b1:81:1a:31:de:ce:87:03: 57:d1:09:cc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QkREOTExMC8GA1UEBRMoNEExNkUxRUIzQkRGOERENDYwNzNDMjU1NzM1M0E0RkNF ODcwODdDRDAeFw0yNDA1MTkwODQzMTZaFw0yNDA1MjYwODQzMTZaMBgxFjAUBgNV BAMTDTY2NDliYmE0LTk5MmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVjkVzExqRrLl3KEU/h4DuN0o43DbYPh8BXMAMd3O80F8K1D9JfAUdZEUCRtky 7B1REAPPy91ZHwpMn4vvMxfjxXuLlRplG0u4sSBJ3YGgljaa9qcjQkFo/z0/CU1A vAVJcbrJ6xsLLKF2DPSHi3xnl6PKt3MMKZXv+J+b9DSkicG82HGSTwG8n++e82tk mtmywc2rpHhdRtnSbj5oZZ6NlTo0fXuvMXKXfddR2Qp1cyp0PMq86MohmPmOUZFT +Fx1Eb9PhYem9q/L91cHHh3RjG8I3meorlsIi/L3QipPqduoEuG5T8sj+Bgjl90e 1WWTpzHJiHUvyrDzE/89PzrtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZ+Bm9ykG uxI3Ka07JbpLBQ4hX3EwHwYDVR0jBBgwFoAUShbh6zvfjdRgc8JVc1Ok/Ohwh80w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVCREQ5LzIyNzJDNUYwRjFC NDExRUU5RkRGQjg2N0M0RjlBRTAyL1NoYmg2enZmamRSZ2M4SlZjMU9rX09od2g4 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU2hiaDZ6dmZqZFJnYzhKVmMxT2tfT2h3aDgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVC REQ5LzIyNzJDNUYwRjFCNDExRUU5RkRGQjg2N0M0RjlBRTAyL1NoYmg2enZmamRS Z2M4SlZjMU9rX09od2g4MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALyG05if1RM+2rB5/j3aS6LXKLLCkN7hAUpjFZTaVcfmp4ePIAEQcxIi dW2UAu21bFDjAQ+SYoQ32Qg9sigGA0MaFiUhyDpOutg6prbG9aEW8vPxc00Gxxmz waMAZZ8ZxjmirU8sZMZ+T3WtIGsSv8hPbtRUNVh1u6TcH97uHmMO0UB/Bj1bqFck YVRR5bQNEg9IswgJ+IjEGUzVSYlafWVx+pNO8j2eTPQKL/QRtwG9NxFka5+nJFLi MYJYrvL5ydA3q1pNrY7AMZCuGRH+oJrknY4wuuinBGhRqWjBHTPOr6UGhe7XRNPz xMYw9oHdobn39xqxgRox3s6HA1fRCcw= -----END CERTIFICATE-----Generated at Sun May 19 09:38:26 2024 by rpki-client on console-fra.rpki-client.org