$ rpki-client -vvf rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft File: 4bzIEhAO1GAiFweJMk8cw6-_aq0.mft (raw, json) Hash identifier: Sxjj5nBkW5ett8dwJZhNb7o+4eiMDRh4W8518UKvbT4= Subject key identifier: 44:86:EC:DC:0A:CF:C7:E0:31:90:17:4A:CA:35:88:4B:15:C3:17:6B Authority key identifier: E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD Certificate issuer: /CN=A916AAFF/serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft Manifest number: 3C Signing time: Sun 19 May 2024 08:12:48 +0000 Manifest this update: Sun 19 May 2024 08:12:48 +0000 Manifest next update: Sun 26 May 2024 08:12:48 +0000 Files and hashes: 1: 4bzIEhAO1GAiFweJMk8cw6-_aq0.crl (hash: A9bfjfYJSlRIRwya+eZqfilIC5oBsZnIlwxXGe0XoLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AAFF/serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Validity Not Before: May 19 08:12:48 2024 GMT Not After : May 26 08:12:48 2024 GMT Subject: CN=6649b480-1ed5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:95:74:44:54:90:9c:81:a1:b2:d0:b8:79:1c: d1:f1:ff:55:31:5a:72:16:8a:40:84:8a:f8:9d:a5: 45:9a:f0:0a:3c:85:95:fa:08:8d:af:dd:30:e9:72: d2:5d:74:53:d8:e0:b6:67:be:d5:bf:9c:8b:b1:77: 81:16:ae:71:ef:6c:97:b3:1f:f0:13:a9:2d:29:cd: 6c:41:bf:55:73:ba:20:14:41:e2:5e:4b:d7:3c:6a: 37:86:dd:63:cb:6b:54:7b:c9:a4:4c:52:6a:5d:7f: e3:ba:5f:04:fd:71:3d:7f:be:69:7d:dc:09:a1:9d: ed:7c:d7:aa:cb:f3:f4:8f:91:5f:6c:9b:94:9b:12: f1:59:b4:a4:53:63:c1:a0:b8:61:e3:1b:78:1f:7d: 35:c8:c5:ac:24:c2:06:5d:39:30:a7:e5:4c:32:e0: 2e:51:01:b1:1a:ec:9c:fa:6e:91:9e:e8:14:a9:93: e8:7f:53:2d:bc:f6:ba:5a:d7:90:d9:22:4c:05:f6: aa:01:f3:44:0e:c4:f1:6c:ea:7e:6d:87:65:f1:e9: 32:6b:33:be:dc:db:6f:ac:bd:ac:76:1e:88:3a:85: 58:0d:a3:37:88:97:d3:cd:3e:b9:f0:3b:7c:8a:72: ee:00:dd:46:04:a1:26:c5:e6:f5:cb:1e:6a:38:d9: ac:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:86:EC:DC:0A:CF:C7:E0:31:90:17:4A:CA:35:88:4B:15:C3:17:6B X509v3 Authority Key Identifier: keyid:E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:e6:a3:fd:23:01:c9:8d:1e:a6:a9:5e:cb:8a:87:0b:aa:7b: 07:ed:68:3c:c8:7b:c1:2b:92:48:ff:5b:8b:63:ce:4b:3d:ef: 6e:40:34:37:16:7d:93:1e:e0:de:07:59:5b:56:60:57:3f:e1: 3a:83:20:ea:cd:bb:d9:78:5d:1a:fb:e3:5d:10:c5:e8:c3:b8: 8a:fb:9f:98:5b:62:97:bd:24:4f:52:5b:3c:aa:88:12:c8:07: 6e:11:cb:27:7a:d5:57:a7:42:4d:49:52:11:d5:be:3b:16:22: 3e:66:ca:a5:49:7a:2a:f6:b8:d6:b2:75:88:7b:7c:47:d7:18: cf:9c:af:df:b8:03:7c:75:45:d1:85:87:e2:91:33:ce:d5:46: e8:82:0a:a8:97:12:5d:a1:5a:ba:0f:a3:b8:15:a3:4e:99:6e: fd:50:7c:90:20:34:45:6a:ff:65:ea:4c:20:c6:ff:95:35:63: 5f:50:4c:62:61:73:c9:26:c9:1d:cb:9e:cb:92:d3:02:db:59: 6e:30:d1:1e:03:4f:db:47:f6:02:9c:91:ee:a6:4f:35:c3:c5: 72:78:e5:14:c6:a3:1b:b6:5f:55:9c:9b:68:2f:3d:4a:ee:f3: 02:5e:f5:47:30:31:c0:b1:a1:0b:ca:b0:e3:1b:de:4d:ba:45: bd:77:f8:66 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QUFGRjExMC8GA1UEBRMoRTFCQ0M4MTIxMDBFRDQ2MDIyMTcwNzg5MzI0RjFDQzNB RkJGNkFBRDAeFw0yNDA1MTkwODEyNDhaFw0yNDA1MjYwODEyNDhaMBgxFjAUBgNV BAMTDTY2NDliNDgwLTFlZDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtlXREVJCcgaGy0Lh5HNHx/1UxWnIWikCEividpUWa8Ao8hZX6CI2v3TDpctJd dFPY4LZnvtW/nIuxd4EWrnHvbJezH/ATqS0pzWxBv1VzuiAUQeJeS9c8ajeG3WPL a1R7yaRMUmpdf+O6XwT9cT1/vml93Amhne1816rL8/SPkV9sm5SbEvFZtKRTY8Gg uGHjG3gffTXIxawkwgZdOTCn5Uwy4C5RAbEa7Jz6bpGe6BSpk+h/Uy289rpa15DZ IkwF9qoB80QOxPFs6n5th2Xx6TJrM77c22+svax2Hog6hVgNozeIl9PNPrnwO3yK cu4A3UYEoSbF5vXLHmo42azpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURIbs3ArP x+AxkBdKyjWISxXDF2swHwYDVR0jBBgwFoAU4bzIEhAO1GAiFweJMk8cw6+/aq0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBQUZGLzdCQjhCQTZDQkIz QTExRUU4N0M2NkIwRkM0RjlBRTAyLzRieklFaEFPMUdBaUZ3ZUpNazhjdzYtX2Fx MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNGJ6SUVoQU8xR0FpRndlSk1rOGN3Ni1fYXEwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZB QUZGLzdCQjhCQTZDQkIzQTExRUU4N0M2NkIwRkM0RjlBRTAyLzRieklFaEFPMUdB aUZ3ZUpNazhjdzYtX2FxMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGbmo/0jAcmNHqapXsuKhwuqewftaDzIe8Erkkj/W4tjzks9725ANDcW fZMe4N4HWVtWYFc/4TqDIOrNu9l4XRr7410QxejDuIr7n5hbYpe9JE9SWzyqiBLI B24Ryyd61VenQk1JUhHVvjsWIj5myqVJeir2uNaydYh7fEfXGM+cr9+4A3x1RdGF h+KRM87VRuiCCqiXEl2hWroPo7gVo06Zbv1QfJAgNEVq/2XqTCDG/5U1Y19QTGJh c8kmyR3LnsuS0wLbWW4w0R4DT9tH9gKcke6mTzXDxXJ45RTGoxu2X1Wcm2gvPUru 8wJe9UcwMcCxoQvKsOMb3k26Rb13+GY= -----END CERTIFICATE-----Generated at Sun May 19 09:04:13 2024 by rpki-client on console-fra.rpki-client.org