$ rpki-client -vvf rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft File: _-KgNynzLTIiepnJJRWMgspUuVc.mft (raw, json) Hash identifier: 3EErIOEIH0OxAxgErGWPvb7F105ANGWAKDPVqciFGQQ= Subject key identifier: FD:BC:9E:C1:B4:1F:00:DC:02:C9:F7:AB:15:1F:FC:D0:3B:02:39:AE Authority key identifier: FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 Certificate issuer: /CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Certificate serial: 33EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft Manifest number: 33DC Signing time: Sat 18 May 2024 14:25:27 +0000 Manifest this update: Sat 18 May 2024 14:25:27 +0000 Manifest next update: Sat 25 May 2024 14:25:27 +0000 Files and hashes: 1: _-KgNynzLTIiepnJJRWMgspUuVc.crl (hash: zPyGv3GfqOccD3T54b/rhb87AbN/DGpjnP97J91gg2A=) 2: A0121BD4871711EA924C6626C4F9AE02.roa (hash: 0+s+PL2T/t5/liZYenC9VRNOA7AWjKpWCtVdFdUbyQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:25:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13292 (0x33ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Validity Not Before: May 18 14:25:27 2024 GMT Not After : May 25 14:25:27 2024 GMT Subject: CN=6648ba57-00ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:12:d2:b6:43:65:a7:b3:ca:ff:3f:aa:a2:0e: 2c:64:3f:ba:a1:51:db:bb:d4:b7:04:97:d3:5e:fa: cd:fe:02:04:2a:73:39:7e:05:62:7b:63:02:a1:f1: 30:41:24:92:59:1d:48:72:be:bf:12:11:66:ea:42: c5:21:be:2b:80:92:5b:97:f8:8f:d3:3f:14:34:c5: 1c:d9:4b:81:a3:79:f1:ab:50:95:73:66:cd:1c:8d: 2c:73:3d:c6:36:62:d4:53:d3:23:1e:48:4e:22:49: d2:9b:f7:d1:dc:35:50:c9:d0:14:98:e4:1d:32:db: 1f:9d:09:c6:e8:e7:90:6b:46:ab:ec:9f:59:29:2e: 26:a4:ea:69:16:02:ec:83:21:fe:cc:a1:cb:d3:22: 6c:4b:b4:7f:34:2a:8e:a0:77:5d:aa:82:77:d4:cc: a8:71:cc:64:9f:cd:b3:12:20:36:e5:3f:35:97:12: 8a:18:6a:4a:4c:35:aa:b0:a9:b1:80:6a:72:4a:9e: ab:b6:61:f8:5a:a6:45:6e:e8:79:a7:16:b2:9a:04: a0:f0:55:66:10:e6:a7:ba:44:5a:55:07:3d:69:81: b3:33:95:c0:68:45:cb:68:ef:43:d3:33:3d:5d:51: 4d:c7:e6:4b:f5:e9:df:f2:5b:47:7c:3b:12:38:56: a7:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:BC:9E:C1:B4:1F:00:DC:02:C9:F7:AB:15:1F:FC:D0:3B:02:39:AE X509v3 Authority Key Identifier: keyid:FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:a1:80:9d:e1:7a:90:b3:6e:1e:77:66:67:12:f2:48:2d:bf: 6d:06:cc:ad:ef:19:c6:d4:6e:aa:27:53:71:91:6c:7d:14:8a: 12:64:15:75:af:c6:71:85:51:0f:77:16:f7:b1:1d:7b:23:a5: 39:ca:c9:17:f1:84:45:9d:fe:0e:0b:18:d1:d3:42:50:63:9c: 25:8f:cb:f1:f9:9b:20:20:06:35:36:6d:b8:63:0a:32:b0:25: fc:93:d1:10:97:cc:32:31:97:13:4b:d8:a8:92:2b:04:72:aa: bc:85:9f:78:49:b1:75:48:e6:06:b8:5f:f4:6b:81:10:20:d9: 4a:c6:1c:10:2c:0c:d6:65:db:78:04:f4:01:91:a6:07:00:3f: 03:7c:19:ce:38:2b:5f:a9:a5:c4:1e:9c:ce:54:81:55:6a:a1: 8e:46:8c:ce:33:fb:b1:91:53:55:c0:b9:84:7e:34:36:fd:cb: 1d:b1:0f:d5:1c:5c:30:84:4e:5d:47:10:a3:68:89:85:f4:63: 7d:d5:e6:3d:fc:37:3b:1b:9a:5c:0d:d8:a7:72:c0:06:65:da: 18:f8:8e:ef:b8:28:e9:b2:7d:9d:3e:c6:54:cd:c8:57:1b:96: e9:bd:de:21:14:84:c2:fa:bf:03:83:f2:84:e4:5a:1d:3e:2b: e6:0e:a8:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyNUQxMTAvBgNVBAUTKEZGRTJBMDM3MjlGMzJEMzIyMjdBOTlDOTI1MTU4Qzgy Q0E1NEI5NTcwHhcNMjQwNTE4MTQyNTI3WhcNMjQwNTI1MTQyNTI3WjAYMRYwFAYD VQQDEw02NjQ4YmE1Ny0wMGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRLStkNlp7PK/z+qog4sZD+6oVHbu9S3BJfTXvrN/gIEKnM5fgVie2MCofEw QSSSWR1Icr6/EhFm6kLFIb4rgJJbl/iP0z8UNMUc2UuBo3nxq1CVc2bNHI0scz3G NmLUU9MjHkhOIknSm/fR3DVQydAUmOQdMtsfnQnG6OeQa0ar7J9ZKS4mpOppFgLs gyH+zKHL0yJsS7R/NCqOoHddqoJ31Myoccxkn82zEiA25T81lxKKGGpKTDWqsKmx gGpySp6rtmH4WqZFbuh5pxaymgSg8FVmEOanukRaVQc9aYGzM5XAaEXLaO9D0zM9 XVFNx+ZL9enf8ltHfDsSOFan+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP28nsG0 HwDcAsn3qxUf/NA7AjmuMB8GA1UdIwQYMBaAFP/ioDcp8y0yInqZySUVjILKVLlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjI1RC8xRjU1MDgzMDFE ODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxUSWllcG5KSlJXTWdzcFV1 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18tS2dOeW56TFRJaWVwbkpKUldNZ3NwVXVWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjI1RC8xRjU1MDgzMDFEODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxU SWllcG5KSlJXTWdzcFV1VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuoYCd4XqQs24ed2ZnEvJILb9tBsyt7xnG1G6qJ1NxkWx9FIoSZBV1 r8ZxhVEPdxb3sR17I6U5yskX8YRFnf4OCxjR00JQY5wlj8vx+ZsgIAY1Nm24Ywoy sCX8k9EQl8wyMZcTS9iokisEcqq8hZ94SbF1SOYGuF/0a4EQINlKxhwQLAzWZdt4 BPQBkaYHAD8DfBnOOCtfqaXEHpzOVIFVaqGORozOM/uxkVNVwLmEfjQ2/csdsQ/V HFwwhE5dRxCjaImF9GN91eY9/Dc7G5pcDdincsAGZdoY+I7vuCjpsn2dPsZUzchX G5bpvd4hFITC+r8Dg/KE5FodPivmDqil -----END CERTIFICATE-----Generated at Sat May 18 15:26:05 2024 by rpki-client on console-fra.rpki-client.org