$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft File: 34UAobIJAKu39Z62mwcBjfgEXF4.mft (raw, json) Hash identifier: e2ZFGaxZtYP6Pjimmt4S9QzSva1dE/VI8D4ej6alELo= Subject key identifier: FD:F5:20:E7:85:5C:89:27:D7:09:C5:69:E8:29:6C:64:C6:F5:DF:B0 Authority key identifier: DF:85:00:A1:B2:09:00:AB:B7:F5:9E:B6:9B:07:01:8D:F8:04:5C:5E Certificate issuer: /CN=A916EB73/serialNumber=DF8500A1B20900ABB7F59EB69B07018DF8045C5E Certificate serial: 33CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34UAobIJAKu39Z62mwcBjfgEXF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft Manifest number: 33C5 Signing time: Sat 18 May 2024 15:32:41 +0000 Manifest this update: Sat 18 May 2024 15:32:40 +0000 Manifest next update: Sat 25 May 2024 15:32:40 +0000 Files and hashes: 1: 34UAobIJAKu39Z62mwcBjfgEXF4.crl (hash: EzO0FKIliBM9XmeaBp+E8HMBtQKfHSAN1aG2FMksUBM=) 2: B92D2816064311EAAFD3B416C4F9AE02.roa (hash: WnBa3atP+Hz4YqtvIhOm/gu+rJQ9hTACBw1IeHJbZ3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.crl rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34UAobIJAKu39Z62mwcBjfgEXF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13260 (0x33cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EB73/serialNumber=DF8500A1B20900ABB7F59EB69B07018DF8045C5E Validity Not Before: May 18 15:32:40 2024 GMT Not After : May 25 15:32:40 2024 GMT Subject: CN=6648ca19-1f3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:18:fb:e6:4e:33:e9:fe:14:b8:6d:b7:f5:c2: 7e:35:88:be:67:7e:fe:b4:af:0d:1f:7f:18:2f:4f: 79:18:11:1e:20:56:e4:57:b2:2c:a6:04:7c:32:40: 7c:fa:38:d0:19:c2:f2:de:ba:ef:0b:02:fc:db:0a: 42:c3:7e:dc:4c:d3:a1:e6:04:63:2d:d1:d3:1f:8c: f1:37:81:15:5a:93:09:d1:fd:2c:c7:c7:66:67:04: c6:50:3a:f3:62:c9:63:8b:44:b3:c4:53:d7:06:96: f7:4b:84:09:48:d0:4e:e1:95:21:53:95:7b:51:3a: c7:12:06:7a:ec:87:00:7a:9d:ec:c2:ee:87:22:9d: a4:31:2d:00:51:0d:7f:5e:26:f5:65:de:86:e2:aa: aa:71:7b:e4:5a:a8:73:de:77:5d:23:7e:b7:de:e0: 42:6f:46:ea:03:60:21:1e:da:73:77:54:79:e9:bb: 39:5e:8e:ba:4b:e2:57:f0:69:6b:a9:32:8a:f2:34: a7:a1:1a:83:5b:4a:e3:e9:f4:7c:b7:db:e8:f6:d3: 79:5c:5b:b8:7a:6c:e8:4a:9d:8d:25:9a:bd:88:86: e3:b4:b5:d1:0c:f9:b4:c6:b9:9f:44:ea:76:4e:71: 0c:76:5e:df:80:de:0b:0d:4f:56:e1:cd:ef:87:29: ad:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:F5:20:E7:85:5C:89:27:D7:09:C5:69:E8:29:6C:64:C6:F5:DF:B0 X509v3 Authority Key Identifier: keyid:DF:85:00:A1:B2:09:00:AB:B7:F5:9E:B6:9B:07:01:8D:F8:04:5C:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34UAobIJAKu39Z62mwcBjfgEXF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:e5:69:e9:af:03:83:3c:63:63:94:b5:e2:e2:2b:eb:63:a4: 7a:9a:53:de:44:5f:8c:3c:3b:e3:2a:16:f9:2c:4e:ef:63:1a: e6:e1:1f:b7:b2:16:92:3b:88:a5:6d:a2:b0:97:9e:02:87:3c: 66:d4:83:e7:96:2b:5d:f1:58:bb:c4:af:76:26:bb:08:f3:01: a8:87:3d:6f:f4:d2:87:6b:cd:7b:2e:94:00:6f:72:c6:62:c1: 96:df:4f:57:1c:8a:2f:dd:91:86:f3:5d:3f:eb:06:9f:9d:e4: 4c:df:28:ef:da:a6:ef:05:4b:06:99:ce:86:06:d9:9e:e6:c7: 7c:e6:a6:4e:2a:53:d4:28:a6:1d:49:ef:cc:1b:05:02:f5:97: d5:ea:4f:8d:9c:04:dd:1a:5f:d8:38:43:e1:82:d0:24:b5:80: 52:14:51:66:66:65:7c:eb:7b:52:08:88:53:a1:a5:84:21:dc: ce:36:b1:1a:a6:96:cd:93:2b:f3:0f:7c:85:3d:6d:24:6a:23: dc:ab:db:4c:bd:ae:da:a8:fe:93:58:29:9b:5a:ba:e5:37:ff: b9:13:d9:cf:8b:9a:78:6d:2f:7c:a5:b9:c9:d9:81:e8:2f:7b: 8a:72:09:cb:65:d2:2a:18:b1:0f:2f:77:c3:5e:82:1d:1a:b7: f4:98:d3:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCNzMxMTAvBgNVBAUTKERGODUwMEExQjIwOTAwQUJCN0Y1OUVCNjlCMDcwMThE RjgwNDVDNUUwHhcNMjQwNTE4MTUzMjQwWhcNMjQwNTI1MTUzMjQwWjAYMRYwFAYD VQQDEw02NjQ4Y2ExOS0xZjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoBj75k4z6f4UuG239cJ+NYi+Z37+tK8NH38YL095GBEeIFbkV7IspgR8MkB8 +jjQGcLy3rrvCwL82wpCw37cTNOh5gRjLdHTH4zxN4EVWpMJ0f0sx8dmZwTGUDrz Yslji0SzxFPXBpb3S4QJSNBO4ZUhU5V7UTrHEgZ67IcAep3swu6HIp2kMS0AUQ1/ Xib1Zd6G4qqqcXvkWqhz3nddI3633uBCb0bqA2AhHtpzd1R56bs5Xo66S+JX8Glr qTKK8jSnoRqDW0rj6fR8t9vo9tN5XFu4emzoSp2NJZq9iIbjtLXRDPm0xrmfROp2 TnEMdl7fgN4LDU9W4c3vhymtUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP31IOeF XIkn1wnFaegpbGTG9d+wMB8GA1UdIwQYMBaAFN+FAKGyCQCrt/WetpsHAY34BFxe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUI3My9CODhGREU4QzFE QUExMUUyQTVDODkwQTYwOEIwMkNEMi8zNFVBb2JJSkFLdTM5WjYybXdjQmpmZ0VY RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM0VUFvYklKQUt1MzlaNjJtd2NCamZnRVhGNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUI3My9CODhGREU4QzFEQUExMUUyQTVDODkwQTYwOEIwMkNEMi8zNFVBb2JJSkFL dTM5WjYybXdjQmpmZ0VYRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCw5WnprwODPGNjlLXi4ivrY6R6mlPeRF+MPDvjKhb5LE7vYxrm4R+3 shaSO4ilbaKwl54Chzxm1IPnlitd8Vi7xK92JrsI8wGohz1v9NKHa817LpQAb3LG YsGW309XHIov3ZGG810/6wafneRM3yjv2qbvBUsGmc6GBtme5sd85qZOKlPUKKYd Se/MGwUC9ZfV6k+NnATdGl/YOEPhgtAktYBSFFFmZmV863tSCIhToaWEIdzONrEa ppbNkyvzD3yFPW0kaiPcq9tMva7aqP6TWCmbWrrlN/+5E9nPi5p4bS98pbnJ2YHo L3uKcgnLZdIqGLEPL3fDXoIdGrf0mNNj -----END CERTIFICATE-----Generated at Sat May 18 16:19:53 2024 by rpki-client on console-fra.rpki-client.org