$ rpki-client -vvf rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.mft File: NOt2jjwYUO8RSYszIMrNGyYdWSk.mft (raw, json) Hash identifier: 9l5q3g+WvMS5NNQ3LwD3sJqxCuXZRfLKt4EBOh0YPXs= Subject key identifier: DA:0A:00:DF:14:D5:E9:4B:AE:2A:F9:00:96:A7:34:AB:2A:F5:0E:11 Authority key identifier: 34:EB:76:8E:3C:18:50:EF:11:49:8B:33:20:CA:CD:1B:26:1D:59:29 Certificate issuer: /CN=A9163EEB/serialNumber=34EB768E3C1850EF11498B3320CACD1B261D5929 Certificate serial: 33C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOt2jjwYUO8RSYszIMrNGyYdWSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.mft Manifest number: 33C7 Signing time: Fri 31 May 2024 15:26:11 +0000 Manifest this update: Fri 31 May 2024 15:26:11 +0000 Manifest next update: Fri 07 Jun 2024 15:26:11 +0000 Files and hashes: 1: NOt2jjwYUO8RSYszIMrNGyYdWSk.crl (hash: 3OXnt7IeCrpbxGwBOEOhMWMB9gEXZmJ3yDuOpJX0dSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.crl rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOt2jjwYUO8RSYszIMrNGyYdWSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 15:26:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13257 (0x33c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163EEB/serialNumber=34EB768E3C1850EF11498B3320CACD1B261D5929 Validity Not Before: May 31 15:26:11 2024 GMT Not After : Jun 7 15:26:11 2024 GMT Subject: CN=6659ec13-7922 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e1:25:64:62:e1:ca:53:6d:3b:3b:df:ff:9c: e1:53:a2:80:f0:ae:e7:f4:09:63:20:70:bd:c6:f6: 4a:3e:ad:0f:00:6f:c6:db:38:bc:ee:8d:cc:88:d7: 8b:fc:86:0a:b7:c1:12:16:03:78:46:e3:de:5a:3d: 19:15:38:e6:d5:ff:1f:de:49:07:ce:55:26:a8:24: 0b:24:47:c1:e6:14:c7:26:b3:9b:3a:24:13:22:2d: b7:3b:5e:3f:55:13:6d:ae:63:55:72:9c:64:01:ad: f4:50:0a:e0:68:e7:f0:b5:82:a5:85:d2:e6:fd:07: 11:eb:66:5f:8a:e6:d3:0b:72:b9:1e:0f:23:50:0e: 42:72:6d:f6:4d:90:d1:84:55:ac:d3:a6:ea:a0:dc: 9f:04:f8:fc:7c:1a:d2:8b:43:23:10:a1:17:9a:02: 41:f8:5a:98:5e:65:78:8d:f0:88:5a:94:94:d4:74: 50:a5:bf:49:38:6c:eb:a8:84:94:ea:38:d5:22:74: ce:08:e6:eb:ef:f4:75:bd:6e:cb:93:9f:0e:10:f0: 45:e9:31:a0:f1:33:f3:a1:a1:53:a9:31:57:17:f4: cd:4d:fd:03:8c:a6:3c:fb:1e:24:d5:66:06:d5:44: f0:82:71:89:ec:55:08:81:2a:f7:25:72:31:b8:41: 6a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:0A:00:DF:14:D5:E9:4B:AE:2A:F9:00:96:A7:34:AB:2A:F5:0E:11 X509v3 Authority Key Identifier: keyid:34:EB:76:8E:3C:18:50:EF:11:49:8B:33:20:CA:CD:1B:26:1D:59:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOt2jjwYUO8RSYszIMrNGyYdWSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:a3:15:16:36:54:ed:44:bb:5a:18:4b:8f:af:27:0a:b8:0f: b8:cc:6f:76:78:9e:f0:d0:4a:f2:26:47:75:20:04:83:82:bb: be:ea:05:db:d8:4d:d7:3e:20:fd:2b:06:1f:6c:37:3d:8e:5a: 70:e0:0b:54:8f:2a:2d:f8:cd:74:a6:4b:c2:57:f3:6f:8d:2d: 46:d6:72:c6:21:64:25:58:a7:83:28:06:22:21:8e:36:cd:e3: 73:8b:df:a9:ae:2f:50:fe:57:4f:27:7c:42:5f:51:4c:3d:91: ff:7f:23:00:3d:a3:50:f8:c8:50:03:6d:ca:8b:bb:96:10:69: d6:f4:36:3f:4f:85:e3:76:1a:d3:76:95:e5:9e:c1:35:65:4a: 54:c5:79:c8:7b:c5:f3:1f:b0:c6:10:b0:4f:18:49:f4:17:13: b6:14:ee:91:df:ef:3f:a1:d7:cd:d2:ea:81:e5:09:da:73:9f: 04:bc:55:35:8c:20:2d:a8:32:fe:95:1e:a3:de:6a:19:b9:9d: 06:5c:c8:78:eb:7f:ea:d1:e2:30:f9:c7:71:1b:96:5f:4b:17: 44:5b:a8:c7:09:77:d5:c2:9e:e2:ee:d2:a8:75:94:23:f0:9a: 1a:19:f3:8e:4c:d2:6e:ba:43:1f:01:11:13:27:e7:87:d2:9a: 26:21:67:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNFRUIxMTAvBgNVBAUTKDM0RUI3NjhFM0MxODUwRUYxMTQ5OEIzMzIwQ0FDRDFC MjYxRDU5MjkwHhcNMjQwNTMxMTUyNjExWhcNMjQwNjA3MTUyNjExWjAYMRYwFAYD VQQDEw02NjU5ZWMxMy03OTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uElZGLhylNtOzvf/5zhU6KA8K7n9AljIHC9xvZKPq0PAG/G2zi87o3MiNeL /IYKt8ESFgN4RuPeWj0ZFTjm1f8f3kkHzlUmqCQLJEfB5hTHJrObOiQTIi23O14/ VRNtrmNVcpxkAa30UArgaOfwtYKlhdLm/QcR62ZfiubTC3K5Hg8jUA5Ccm32TZDR hFWs06bqoNyfBPj8fBrSi0MjEKEXmgJB+FqYXmV4jfCIWpSU1HRQpb9JOGzrqISU 6jjVInTOCObr7/R1vW7Lk58OEPBF6TGg8TPzoaFTqTFXF/TNTf0DjKY8+x4k1WYG 1UTwgnGJ7FUIgSr3JXIxuEFqYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNoKAN8U 1elLrir5AJanNKsq9Q4RMB8GA1UdIwQYMBaAFDTrdo48GFDvEUmLMyDKzRsmHVkp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0VFQi82REU0Mjc2ODFE QTQxMUUyODA4MTcxOUEwOEIwMkNEMi9OT3Qyamp3WVVPOFJTWXN6SU1yTkd5WWRX U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05PdDJqandZVU84UlNZc3pJTXJOR3lZZFdTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0VFQi82REU0Mjc2ODFEQTQxMUUyODA4MTcxOUEwOEIwMkNEMi9OT3Qyamp3WVVP OFJTWXN6SU1yTkd5WWRXU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3oxUWNlTtRLtaGEuPrycKuA+4zG92eJ7w0EryJkd1IASDgru+6gXb 2E3XPiD9KwYfbDc9jlpw4AtUjyot+M10pkvCV/NvjS1G1nLGIWQlWKeDKAYiIY42 zeNzi9+pri9Q/ldPJ3xCX1FMPZH/fyMAPaNQ+MhQA23Ki7uWEGnW9DY/T4XjdhrT dpXlnsE1ZUpUxXnIe8XzH7DGELBPGEn0FxO2FO6R3+8/odfN0uqB5Qnac58EvFU1 jCAtqDL+lR6j3moZuZ0GXMh463/q0eIw+cdxG5ZfSxdEW6jHCXfVwp7i7tKodZQj 8JoaGfOOTNJuukMfARETJ+eH0pomIWd1 -----END CERTIFICATE-----Generated at Fri May 31 16:40:56 2024 by rpki-client on console-ams.rpki-client.org