$ rpki-client -vvf rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft File: 5k3PxJR4oTweMa6HKi-sEL-4lTE.mft (raw, json) Hash identifier: Txn/f060Six0zw4qlKMybitNgGJI9LD5c2t22Saevw0= Subject key identifier: B2:05:DF:08:02:1E:54:C6:F7:33:47:E6:95:EF:74:1A:4D:7D:92:D4 Authority key identifier: E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31 Certificate issuer: /CN=A915F67F/serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531 Certificate serial: 33CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft Manifest number: 33CC Signing time: Fri 31 May 2024 14:37:17 +0000 Manifest this update: Fri 31 May 2024 14:37:17 +0000 Manifest next update: Fri 07 Jun 2024 14:37:17 +0000 Files and hashes: 1: 5k3PxJR4oTweMa6HKi-sEL-4lTE.crl (hash: QcqLsr1m+/G7f6t4YWV2j7YaY9UjZuLxTZG3FkmIBKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13260 (0x33cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F67F/serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531 Validity Not Before: May 31 14:37:17 2024 GMT Not After : Jun 7 14:37:17 2024 GMT Subject: CN=6659e09d-cff4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:21:62:de:63:71:4a:b8:c2:3a:1c:e0:45:86: 34:bd:8e:90:b5:af:fd:95:78:1d:f1:47:f5:3d:2c: 97:8f:7c:aa:d8:6e:b6:eb:23:df:ff:d4:e1:b9:d3: de:64:0d:bf:49:ec:b3:d6:0d:c0:06:5c:70:42:6a: 3f:61:78:ba:90:a1:6a:ec:5f:c9:4b:0a:fb:d6:6e: 86:25:83:87:53:45:c2:4a:54:bb:10:00:c2:d0:7f: 2b:91:ab:16:8c:aa:5b:86:e5:ea:76:6b:ad:f5:0a: dc:c1:b9:e8:d5:33:c2:1a:31:cc:c4:b7:02:c3:92: 2e:22:51:73:ce:fe:87:ae:83:0b:8b:3d:20:7a:ba: b4:a0:dc:69:73:93:a3:9e:6e:f6:5c:3c:70:09:05: 49:69:0c:28:1e:59:0c:5a:53:68:e5:b2:bd:d2:70: cb:08:90:4c:38:08:f8:67:fd:ef:a4:19:71:93:55: 96:3e:d3:88:56:64:df:2d:cd:52:df:b8:16:b9:0a: 8a:6c:42:19:e0:19:41:fe:27:84:fe:c8:20:39:cd: 47:a3:81:1f:0b:5b:e0:57:1f:e6:de:cc:6c:77:03: 04:d8:eb:03:ce:30:12:b2:79:97:6b:3f:fc:de:05: 2c:4c:4a:08:5d:7c:c5:3d:06:96:f5:a5:ce:e8:d2: 2f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:05:DF:08:02:1E:54:C6:F7:33:47:E6:95:EF:74:1A:4D:7D:92:D4 X509v3 Authority Key Identifier: keyid:E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:b3:42:3f:2b:68:9f:59:ea:c5:64:41:c5:62:34:f5:38:67: cb:68:9a:3c:32:22:4c:e9:92:5d:58:8f:6c:38:e1:ed:80:90: 9b:3d:0e:86:75:d8:5a:c3:91:0b:8a:be:32:88:87:9c:58:94: a3:3c:55:39:ab:5d:a3:fc:39:db:59:57:ea:33:83:0c:68:f8: fa:2f:ca:59:21:a7:a4:4b:1b:7a:8f:83:f8:02:2a:db:90:6e: 27:1b:c4:a3:89:55:a2:21:11:df:90:9a:db:15:8c:0a:4a:89: 5f:e5:7a:4d:d0:47:3b:c2:c7:cc:38:85:9f:25:86:d3:1c:57: 41:0a:ca:33:de:17:63:2e:1e:96:7b:e0:db:cc:79:cf:cc:98: 01:2b:39:da:1b:d7:79:44:d6:bd:80:e4:bc:c5:f7:81:15:de: a2:9b:11:c6:d2:8c:fa:34:d5:46:57:52:3e:7a:6f:da:9a:06: 1c:45:d3:c0:2d:a3:71:7a:75:18:83:b4:ae:2c:46:dd:b3:dc: 2d:a7:da:16:4f:4c:7d:5c:e0:16:b2:bc:2d:e1:5d:24:6b:88: fb:ee:c6:f7:80:ce:fb:76:39:1a:0d:a3:43:6a:69:d8:b5:60: 0d:9b:06:67:64:d4:a3:d7:10:02:63:58:b3:25:b3:7f:91:14: 37:d0:a2:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY2N0YxMTAvBgNVBAUTKEU2NERDRkM0OTQ3OEExM0MxRTMxQUU4NzJBMkZBQzEw QkZCODk1MzEwHhcNMjQwNTMxMTQzNzE3WhcNMjQwNjA3MTQzNzE3WjAYMRYwFAYD VQQDEw02NjU5ZTA5ZC1jZmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAviFi3mNxSrjCOhzgRYY0vY6Qta/9lXgd8Uf1PSyXj3yq2G626yPf/9ThudPe ZA2/Seyz1g3ABlxwQmo/YXi6kKFq7F/JSwr71m6GJYOHU0XCSlS7EADC0H8rkasW jKpbhuXqdmut9Qrcwbno1TPCGjHMxLcCw5IuIlFzzv6HroMLiz0gerq0oNxpc5Oj nm72XDxwCQVJaQwoHlkMWlNo5bK90nDLCJBMOAj4Z/3vpBlxk1WWPtOIVmTfLc1S 37gWuQqKbEIZ4BlB/ieE/sggOc1Ho4EfC1vgVx/m3sxsdwME2OsDzjASsnmXaz/8 3gUsTEoIXXzFPQaW9aXO6NIvqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIF3wgC HlTG9zNH5pXvdBpNfZLUMB8GA1UdIwQYMBaAFOZNz8SUeKE8HjGuhyovrBC/uJUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjY3Ri85MUI5ODNDODFE OEExMUUyQjBFNDk0RTQwOEIwMkNEMi81azNQeEpSNG9Ud2VNYTZIS2ktc0VMLTRs VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVrM1B4SlI0b1R3ZU1hNkhLaS1zRUwtNGxURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjY3Ri85MUI5ODNDODFEOEExMUUyQjBFNDk0RTQwOEIwMkNEMi81azNQeEpSNG9U d2VNYTZIS2ktc0VMLTRsVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfs0I/K2ifWerFZEHFYjT1OGfLaJo8MiJM6ZJdWI9sOOHtgJCbPQ6G ddhaw5ELir4yiIecWJSjPFU5q12j/DnbWVfqM4MMaPj6L8pZIaekSxt6j4P4Airb kG4nG8SjiVWiIRHfkJrbFYwKSolf5XpN0Ec7wsfMOIWfJYbTHFdBCsoz3hdjLh6W e+DbzHnPzJgBKznaG9d5RNa9gOS8xfeBFd6imxHG0oz6NNVGV1I+em/amgYcRdPA LaNxenUYg7SuLEbds9wtp9oWT0x9XOAWsrwt4V0ka4j77sb3gM77djkaDaNDamnY tWANmwZnZNSj1xACY1izJbN/kRQ30KIt -----END CERTIFICATE-----Generated at Fri May 31 15:08:09 2024 by rpki-client on console-fra.rpki-client.org