$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft File: aZoPjRWjT1mVbLSADGxEBNwOvV0.mft (raw, json) Hash identifier: bLnX2KJQOWTunrGcFmF1LApO62Di318e3ZjAGsfAzVQ= Subject key identifier: D1:BB:C0:13:3D:9C:C6:20:D2:55:2C:4C:DC:7F:A0:50:67:67:BE:92 Authority key identifier: 69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D Certificate issuer: /CN=A915C1FE/serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Certificate serial: 33EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft Manifest number: 33CF Signing time: Sat 18 May 2024 15:32:50 +0000 Manifest this update: Sat 18 May 2024 15:32:49 +0000 Manifest next update: Sat 25 May 2024 15:32:49 +0000 Files and hashes: 1: aZoPjRWjT1mVbLSADGxEBNwOvV0.crl (hash: CzfZVkvNVNrWwvwp5AJmdMEkPS5h7Si8krlk86LT7kM=) 2: 6BC5DC4AB10511E591A3E484C4F9AE02.roa (hash: c0HT9dBg6yx92mNeJl9gTHdunA9v+Kix8k9fOS4ZSW0=) 3: 6A9E6940B10511E591A3E484C4F9AE02.roa (hash: XofMmICfUItPgFjfW0OoLeb3QmcPJWVmjOy3e6yJoIY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13290 (0x33ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1FE/serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Validity Not Before: May 18 15:32:49 2024 GMT Not After : May 25 15:32:49 2024 GMT Subject: CN=6648ca21-cbe5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:78:d8:6f:ce:ec:84:6e:14:63:d8:93:a9:d0: a9:8e:44:a0:4f:1e:10:6f:03:80:5c:a0:48:16:a8: 82:76:5f:29:1b:45:b9:75:32:54:49:e8:ba:9e:b6: 98:d8:a5:5d:73:b0:fa:29:66:4a:42:3c:cb:33:1a: 7b:1b:1b:ac:a1:75:57:32:1f:2b:32:70:69:eb:54: fe:91:31:ca:55:22:86:94:44:0d:33:6e:4b:f5:d5: ee:37:d0:47:61:5f:05:b1:65:f1:9a:b7:3a:3e:86: 6d:bc:49:75:a5:b3:19:95:39:ee:c2:85:1a:bb:7f: c2:46:b6:28:a3:30:23:2c:11:0d:89:2f:23:0c:53: 4b:ee:eb:ed:e2:13:8f:8f:0b:86:5f:1d:8f:8f:3b: c3:c2:c3:5c:5a:f2:87:e6:52:c4:7e:c6:bf:20:f6: cc:d0:3e:9e:df:29:a7:cc:7f:80:76:92:c6:2a:fd: 3a:b0:57:d8:66:d5:0e:17:69:56:8e:0c:39:c4:bb: 37:90:6b:42:f1:d1:ac:98:5c:83:b2:e6:bb:1c:0b: e3:78:e5:ba:79:87:f1:60:82:46:a0:ba:af:0a:43: 61:73:46:59:66:76:94:67:33:c6:b6:70:3f:74:f1: 0d:ea:71:5c:0a:b9:c4:b3:da:64:63:1b:ec:85:18: 6a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:BB:C0:13:3D:9C:C6:20:D2:55:2C:4C:DC:7F:A0:50:67:67:BE:92 X509v3 Authority Key Identifier: keyid:69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:65:f5:cf:38:29:30:3c:0e:b2:a0:33:bc:e1:7a:7a:c1:6e: fc:55:c7:84:80:75:cc:d5:1b:af:54:c6:14:75:0c:de:92:be: 35:80:06:69:8c:6f:e3:79:1c:90:90:72:61:11:22:0c:ac:c9: ef:12:da:56:17:80:8e:2c:ee:ab:fb:d6:80:d8:58:6b:ab:eb: 74:78:ad:7d:d5:07:e3:6d:b3:d6:72:f5:79:ff:57:d5:2f:d8: 92:a1:5e:43:1e:9c:96:a3:d1:e2:5f:f0:3a:71:ff:f7:cf:b1: 72:5c:27:4b:51:a8:3d:21:22:20:3f:26:cc:30:c1:30:64:6b: e4:d5:4c:3e:6c:1d:c7:c3:07:5f:3b:d1:ef:8f:62:4c:8b:b6: bb:80:df:83:3e:9e:e3:41:2f:49:35:db:17:f2:48:85:93:11: 7b:dc:cb:c0:72:73:58:85:cf:02:1f:0d:09:5b:af:50:4b:ff: cf:57:da:3a:00:25:b7:23:13:9b:58:35:c1:e1:11:74:b4:91: 43:bf:55:6b:82:0f:73:a7:d6:9a:ef:00:d4:5b:7a:9b:6b:8c: 81:fc:bf:01:82:c1:4d:c3:c3:23:d4:c2:e7:fb:79:98:96:03: b4:ea:b4:0b:45:77:7b:25:c9:61:de:9e:ee:59:ab:bd:36:a7: 4f:04:9d:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxRkUxMTAvBgNVBAUTKDY5OUEwRjhEMTVBMzRGNTk5NTZDQjQ4MDBDNkM0NDA0 REMwRUJENUQwHhcNMjQwNTE4MTUzMjQ5WhcNMjQwNTI1MTUzMjQ5WjAYMRYwFAYD VQQDEw02NjQ4Y2EyMS1jYmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7HjYb87shG4UY9iTqdCpjkSgTx4QbwOAXKBIFqiCdl8pG0W5dTJUSei6nraY 2KVdc7D6KWZKQjzLMxp7GxusoXVXMh8rMnBp61T+kTHKVSKGlEQNM25L9dXuN9BH YV8FsWXxmrc6PoZtvEl1pbMZlTnuwoUau3/CRrYoozAjLBENiS8jDFNL7uvt4hOP jwuGXx2PjzvDwsNcWvKH5lLEfsa/IPbM0D6e3ymnzH+AdpLGKv06sFfYZtUOF2lW jgw5xLs3kGtC8dGsmFyDsua7HAvjeOW6eYfxYIJGoLqvCkNhc0ZZZnaUZzPGtnA/ dPEN6nFcCrnEs9pkYxvshRhqswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNG7wBM9 nMYg0lUsTNx/oFBnZ76SMB8GA1UdIwQYMBaAFGmaD40Vo09ZlWy0gAxsRATcDr1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFGRS9EMTE4QUFCQTFE QUExMUUyQTJFQ0NBQTYwOEIwMkNEMi9hWm9QalJXalQxbVZiTFNBREd4RUJOd092 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Fab1BqUldqVDFtVmJMU0FER3hFQk53T3ZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFGRS9EMTE4QUFCQTFEQUExMUUyQTJFQ0NBQTYwOEIwMkNEMi9hWm9QalJXalQx bVZiTFNBREd4RUJOd092VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2ZfXPOCkwPA6yoDO84Xp6wW78VceEgHXM1RuvVMYUdQzekr41gAZp jG/jeRyQkHJhESIMrMnvEtpWF4COLO6r+9aA2Fhrq+t0eK191QfjbbPWcvV5/1fV L9iSoV5DHpyWo9HiX/A6cf/3z7FyXCdLUag9ISIgPybMMMEwZGvk1Uw+bB3Hwwdf O9Hvj2JMi7a7gN+DPp7jQS9JNdsX8kiFkxF73MvAcnNYhc8CHw0JW69QS//PV9o6 ACW3IxObWDXB4RF0tJFDv1Vrgg9zp9aa7wDUW3qba4yB/L8BgsFNw8Mj1MLn+3mY lgO06rQLRXd7Jclh3p7uWau9NqdPBJ3u -----END CERTIFICATE-----Generated at Sat May 18 16:19:53 2024 by rpki-client on console-fra.rpki-client.org