$ rpki-client -vvf rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.mft File: VRTBgTfeq40U8RHJD39rfjDQH2Q.mft (raw, json) Hash identifier: 6OEskuCAAf9P2VbAVY0kEQOkUjwfPgjSgg9Cvm5k1WU= Subject key identifier: 91:04:C9:D0:D9:93:46:85:04:9F:24:64:24:2E:A9:FB:0A:EE:4F:A8 Authority key identifier: 55:14:C1:81:37:DE:AB:8D:14:F1:11:C9:0F:7F:6B:7E:30:D0:1F:64 Certificate issuer: /CN=A916D1DA/serialNumber=5514C18137DEAB8D14F111C90F7F6B7E30D01F64 Certificate serial: 33C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VRTBgTfeq40U8RHJD39rfjDQH2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.mft Manifest number: 33C4 Signing time: Sat 18 May 2024 15:10:52 +0000 Manifest this update: Sat 18 May 2024 15:10:51 +0000 Manifest next update: Sat 25 May 2024 15:10:51 +0000 Files and hashes: 1: VRTBgTfeq40U8RHJD39rfjDQH2Q.crl (hash: NO5p7myWIhollo7JJSJPqU09eJ/xjd19ovNpjalwjic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.crl rsync://rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VRTBgTfeq40U8RHJD39rfjDQH2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13252 (0x33c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D1DA/serialNumber=5514C18137DEAB8D14F111C90F7F6B7E30D01F64 Validity Not Before: May 18 15:10:51 2024 GMT Not After : May 25 15:10:51 2024 GMT Subject: CN=6648c4fb-0e1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a6:2e:38:83:3a:a8:0a:12:07:e3:65:a3:55: 1a:64:b2:12:db:02:65:bb:37:8d:24:a6:ad:62:f9: 0f:f0:0f:81:3e:db:82:5c:cd:de:6d:40:33:86:d0: 6c:c9:9c:6e:42:d1:d6:fb:6d:3f:6c:99:38:5d:06: 8e:2e:a6:e1:67:a8:11:6d:1e:ae:1f:45:f9:40:4a: 44:bb:cf:fb:bf:ca:83:40:4b:31:fd:64:c4:ce:13: fa:17:18:0a:e5:36:dd:11:fe:25:6d:fb:de:23:a4: 2e:07:88:da:28:15:99:f4:dc:0b:8d:35:57:6d:3f: a8:42:e5:29:21:de:83:f7:35:29:d0:6a:1c:16:bb: a8:9a:14:0e:71:f5:67:f9:5b:66:6e:96:8f:51:9a: 98:44:ae:33:9b:63:27:fb:24:48:17:91:72:5d:bf: 31:9f:18:08:20:6d:32:c8:be:3d:f6:c7:d4:ae:ed: 2e:43:aa:5a:37:a1:7b:85:82:f4:40:71:d4:c6:f2: c5:bf:27:74:06:e9:36:76:16:48:75:dd:5a:bf:99: 90:a6:67:14:a2:c1:7e:6c:42:3a:f7:83:50:ab:d9: f0:73:67:ce:db:d2:7b:dc:55:d1:a6:03:a3:33:46: 1d:f6:52:24:ee:19:1a:4c:4b:f0:a9:01:34:72:bb: 6e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:04:C9:D0:D9:93:46:85:04:9F:24:64:24:2E:A9:FB:0A:EE:4F:A8 X509v3 Authority Key Identifier: keyid:55:14:C1:81:37:DE:AB:8D:14:F1:11:C9:0F:7F:6B:7E:30:D0:1F:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VRTBgTfeq40U8RHJD39rfjDQH2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:96:9f:fa:50:39:fe:be:0b:33:08:f5:77:d7:d2:61:cd:ad: 51:01:47:e3:e8:e2:ca:91:eb:8b:cd:16:08:f1:2b:3f:e7:3d: da:b1:78:6d:59:36:db:6d:fc:cd:cd:6f:c0:b2:15:30:35:50: 4c:15:b4:27:d0:34:d9:91:45:2c:09:bc:36:9b:42:0d:3b:c6: 07:9d:51:56:da:30:e1:41:7b:c6:43:6b:c1:4e:c8:bc:b4:bf: b6:4d:45:50:42:e0:84:bc:4a:2f:3c:a1:7c:b1:f8:5c:f8:32: 9c:0d:f6:8c:ca:39:df:37:b9:7c:7f:7d:f6:5a:00:e8:5d:f7: d2:a1:20:f8:fe:35:74:73:26:2b:ee:b4:d7:87:a3:e6:26:ac: 9c:c9:db:5a:92:63:15:59:82:91:66:02:f7:19:27:27:07:b1: d6:fd:91:7b:3f:3a:b5:85:5c:3f:9f:86:4b:2a:2a:5d:2c:c2: 48:8d:a8:c4:e9:c2:f8:e3:be:a2:03:17:2d:27:4e:56:f4:d8: 69:07:e3:42:29:e6:52:39:86:81:9e:21:8d:24:61:d1:e2:34: ce:74:a5:93:45:9f:e1:a5:4f:21:0e:fe:a1:34:12:e8:6f:d1: ed:58:15:5b:cd:95:ea:3d:29:b1:3e:41:e9:d8:f2:04:13:d8: cd:47:2b:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQxREExMTAvBgNVBAUTKDU1MTRDMTgxMzdERUFCOEQxNEYxMTFDOTBGN0Y2QjdF MzBEMDFGNjQwHhcNMjQwNTE4MTUxMDUxWhcNMjQwNTI1MTUxMDUxWjAYMRYwFAYD VQQDEw02NjQ4YzRmYi0wZTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqYuOIM6qAoSB+Nlo1UaZLIS2wJluzeNJKatYvkP8A+BPtuCXM3ebUAzhtBs yZxuQtHW+20/bJk4XQaOLqbhZ6gRbR6uH0X5QEpEu8/7v8qDQEsx/WTEzhP6FxgK 5TbdEf4lbfveI6QuB4jaKBWZ9NwLjTVXbT+oQuUpId6D9zUp0GocFruomhQOcfVn +VtmbpaPUZqYRK4zm2Mn+yRIF5FyXb8xnxgIIG0yyL499sfUru0uQ6paN6F7hYL0 QHHUxvLFvyd0Buk2dhZIdd1av5mQpmcUosF+bEI694NQq9nwc2fO29J73FXRpgOj M0Yd9lIk7hkaTEvwqQE0crtumQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJEEydDZ k0aFBJ8kZCQuqfsK7k+oMB8GA1UdIwQYMBaAFFUUwYE33quNFPERyQ9/a34w0B9k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDFEQS8wMDhDRTUyQTFE OUUxMUUyOTY0Qjk1OEQwOEIwMkNEMi9WUlRCZ1RmZXE0MFU4UkhKRDM5cmZqRFFI MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZSVEJnVGZlcTQwVThSSEpEMzlyZmpEUUgyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDFEQS8wMDhDRTUyQTFEOUUxMUUyOTY0Qjk1OEQwOEIwMkNEMi9WUlRCZ1RmZXE0 MFU4UkhKRDM5cmZqRFFIMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3lp/6UDn+vgszCPV319Jhza1RAUfj6OLKkeuLzRYI8Ss/5z3asXht WTbbbfzNzW/AshUwNVBMFbQn0DTZkUUsCbw2m0INO8YHnVFW2jDhQXvGQ2vBTsi8 tL+2TUVQQuCEvEovPKF8sfhc+DKcDfaMyjnfN7l8f332WgDoXffSoSD4/jV0cyYr 7rTXh6PmJqycydtakmMVWYKRZgL3GScnB7HW/ZF7Pzq1hVw/n4ZLKipdLMJIjajE 6cL4476iAxctJ05W9NhpB+NCKeZSOYaBniGNJGHR4jTOdKWTRZ/hpU8hDv6hNBLo b9HtWBVbzZXqPSmxPkHp2PIEE9jNRysq -----END CERTIFICATE-----Generated at Sat May 18 15:58:22 2024 by rpki-client on console-ams.rpki-client.org