$ rpki-client -vvf rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft File: 4klmeNb9TiLorA6f9s1YENb7eU0.mft (raw, json) Hash identifier: pvegyPrjW4wc9K+bcfHqKMBzSSv8d2pZxzP/V+J4NK0= Subject key identifier: A6:DE:3C:57:0B:B7:09:EE:60:15:0A:07:AF:F7:B9:5D:67:7E:DE:70 Authority key identifier: E2:49:66:78:D6:FD:4E:22:E8:AC:0E:9F:F6:CD:58:10:D6:FB:79:4D Certificate issuer: /CN=A9177E33/serialNumber=E2496678D6FD4E22E8AC0E9FF6CD5810D6FB794D Certificate serial: 33C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft Manifest number: 33C3 Signing time: Sat 18 May 2024 14:29:53 +0000 Manifest this update: Sat 18 May 2024 14:29:53 +0000 Manifest next update: Sat 25 May 2024 14:29:53 +0000 Files and hashes: 1: 4klmeNb9TiLorA6f9s1YENb7eU0.crl (hash: frgHDdCrHjpDfdqvT/imtMVF6n4SCBOgsNdOQjc09m0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.crl rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13252 (0x33c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177E33/serialNumber=E2496678D6FD4E22E8AC0E9FF6CD5810D6FB794D Validity Not Before: May 18 14:29:53 2024 GMT Not After : May 25 14:29:53 2024 GMT Subject: CN=6648bb61-1941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d0:1d:3d:c3:3e:37:49:77:9e:bf:00:18:d5: 33:2f:1a:20:f7:15:7c:b8:03:80:60:7b:4f:eb:8f: e6:0b:e0:6b:2f:59:7a:48:fb:9c:98:40:34:45:0e: 2d:0f:16:54:74:ce:aa:18:5d:c8:fb:da:75:5b:24: 42:70:34:cd:fd:7f:0e:37:03:79:38:62:1a:e6:d5: 32:de:55:15:36:1c:d9:0c:d8:38:f3:c7:c0:4f:b8: 35:d0:26:2e:03:9b:4b:ac:db:c5:5a:58:17:62:fa: 85:1a:ff:62:79:d7:25:18:f0:c4:32:c8:9c:6f:dc: 16:49:dd:16:46:43:fb:ec:8b:0c:e0:d8:9d:cf:c4: 31:7a:cb:47:7b:8d:bc:93:bd:b9:0f:9b:51:61:e3: c0:51:8c:3d:e6:3f:82:62:30:e6:db:e7:b7:41:15: c0:a4:d3:4e:00:b9:1d:ec:30:c9:f0:be:df:a4:58: f1:af:0f:89:67:33:cf:a4:c0:9e:7a:15:cd:6c:78: 9d:93:70:08:37:eb:ef:69:d9:8c:cc:dc:e6:8d:cd: 3b:25:16:46:48:1b:7d:3c:a3:12:16:50:0c:c6:cf: 78:0e:e4:df:0b:42:12:e0:51:3a:ee:28:95:21:a3: bd:ca:aa:f4:e0:6b:b4:5e:a6:f5:48:e4:df:5d:27: 51:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:DE:3C:57:0B:B7:09:EE:60:15:0A:07:AF:F7:B9:5D:67:7E:DE:70 X509v3 Authority Key Identifier: keyid:E2:49:66:78:D6:FD:4E:22:E8:AC:0E:9F:F6:CD:58:10:D6:FB:79:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:7d:17:88:b1:78:38:a4:aa:c7:ac:26:9e:79:9b:2f:6f:60: e2:88:be:ce:92:14:66:19:44:fb:25:d2:18:50:f5:ca:34:c3: 8d:2a:9b:83:41:50:ca:fb:b4:41:7a:78:e5:cf:9d:b6:e7:48: f5:fb:d4:15:6d:74:c4:72:87:68:b2:bd:5f:5e:97:f9:b7:ed: 10:43:dd:38:6b:fc:0a:b0:3c:a5:c3:0d:35:d5:82:39:01:46: 36:f4:54:5d:37:db:07:d7:80:67:4b:9a:5d:d6:07:58:64:1d: ca:a8:e6:92:f7:74:0c:ab:6a:93:9e:e8:0c:de:b0:31:e0:98: 09:18:1f:e6:8c:10:24:da:5b:56:80:06:40:dc:7b:43:dc:a6: e9:9f:f0:4c:5f:72:3b:01:12:8c:10:fe:9b:25:db:54:2c:41: 81:36:e9:c8:4d:6c:2b:45:48:66:22:60:f1:e3:c4:e9:81:86: 9c:8f:66:67:82:ba:1c:be:f8:80:7e:e6:56:b6:77:5c:96:a8: 22:e9:96:49:b6:9a:d8:06:63:99:35:df:c6:40:17:ee:a3:4c: be:bc:bd:3b:b4:5a:31:6b:bc:50:95:15:52:08:61:e0:25:ad: bc:8d:b4:38:a8:f0:42:af:bc:9e:9e:c8:10:8e:94:92:4d:8d: cf:e6:9b:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzdFMzMxMTAvBgNVBAUTKEUyNDk2Njc4RDZGRDRFMjJFOEFDMEU5RkY2Q0Q1ODEw RDZGQjc5NEQwHhcNMjQwNTE4MTQyOTUzWhcNMjQwNTI1MTQyOTUzWjAYMRYwFAYD VQQDEw02NjQ4YmI2MS0xOTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtAdPcM+N0l3nr8AGNUzLxog9xV8uAOAYHtP64/mC+BrL1l6SPucmEA0RQ4t DxZUdM6qGF3I+9p1WyRCcDTN/X8ONwN5OGIa5tUy3lUVNhzZDNg488fAT7g10CYu A5tLrNvFWlgXYvqFGv9iedclGPDEMsicb9wWSd0WRkP77IsM4Nidz8QxestHe428 k725D5tRYePAUYw95j+CYjDm2+e3QRXApNNOALkd7DDJ8L7fpFjxrw+JZzPPpMCe ehXNbHidk3AIN+vvadmMzNzmjc07JRZGSBt9PKMSFlAMxs94DuTfC0IS4FE67iiV IaO9yqr04Gu0Xqb1SOTfXSdR4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKbePFcL twnuYBUKB6/3uV1nft5wMB8GA1UdIwQYMBaAFOJJZnjW/U4i6KwOn/bNWBDW+3lN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3N0UzMy9BODBFQ0U0ODFE ODYxMUUyQkU5MzBBREUwOEIwMkNEMi80a2xtZU5iOVRpTG9yQTZmOXMxWUVOYjdl VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrbG1lTmI5VGlMb3JBNmY5czFZRU5iN2VVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 N0UzMy9BODBFQ0U0ODFEODYxMUUyQkU5MzBBREUwOEIwMkNEMi80a2xtZU5iOVRp TG9yQTZmOXMxWUVOYjdlVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8fReIsXg4pKrHrCaeeZsvb2DiiL7OkhRmGUT7JdIYUPXKNMONKpuD QVDK+7RBenjlz52250j1+9QVbXTEcodosr1fXpf5t+0QQ904a/wKsDylww011YI5 AUY29FRdN9sH14BnS5pd1gdYZB3KqOaS93QMq2qTnugM3rAx4JgJGB/mjBAk2ltW gAZA3HtD3Kbpn/BMX3I7ARKMEP6bJdtULEGBNunITWwrRUhmImDx48TpgYacj2Zn grocvviAfuZWtndclqgi6ZZJtprYBmOZNd/GQBfuo0y+vL07tFoxa7xQlRVSCGHg Ja28jbQ4qPBCr7yensgQjpSSTY3P5pvg -----END CERTIFICATE-----Generated at Sat May 18 15:26:05 2024 by rpki-client on console-fra.rpki-client.org