$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/AI8syGQkHehjXpOldED5wusli7M.mft File: AI8syGQkHehjXpOldED5wusli7M.mft (raw, json) Hash identifier: O84ZiqpHUS+DJOqpmymEVXHmlCOjqDqhpdQR35YLhw4= Subject key identifier: 0D:B5:2C:30:2D:F8:DB:A9:4A:58:35:FD:C8:E3:F1:39:20:F4:B3:05 Authority key identifier: 00:8F:2C:C8:64:24:1D:E8:63:5E:93:A5:74:40:F9:C2:EB:25:8B:B3 Certificate issuer: /CN=A917AC3B/serialNumber=008F2CC864241DE8635E93A57440F9C2EB258BB3 Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI8syGQkHehjXpOldED5wusli7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/AI8syGQkHehjXpOldED5wusli7M.mft Manifest number: 33 Signing time: Wed 29 May 2024 09:02:30 +0000 Manifest this update: Wed 29 May 2024 09:02:30 +0000 Manifest next update: Wed 05 Jun 2024 09:02:29 +0000 Files and hashes: 1: AI8syGQkHehjXpOldED5wusli7M.crl (hash: 8CJ3a6fFgZGMldJ0DvAEN2FluG5IaE5JNfelcUm+ztY=) 2: 2C24CB26CECC11EEAFCD520AC4F9AE02.roa (hash: wIfhQ+g9F9NVqk8nq5n90WhcuB/KJzwzyp/RW8x0Uho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/AI8syGQkHehjXpOldED5wusli7M.crl rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/AI8syGQkHehjXpOldED5wusli7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI8syGQkHehjXpOldED5wusli7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 09:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC3B/serialNumber=008F2CC864241DE8635E93A57440F9C2EB258BB3 Validity Not Before: May 29 09:02:30 2024 GMT Not After : Jun 5 09:02:29 2024 GMT Subject: CN=6656ef26-6061 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:da:58:ed:ec:af:21:c8:42:20:a7:f2:b8:83: c0:0d:eb:c6:b5:31:c6:ca:20:c2:8d:b8:69:eb:31: 8b:5e:df:d9:94:28:58:e4:a1:ae:ac:ff:54:bc:0f: 14:74:ac:fe:97:0a:a9:54:91:96:47:1e:2d:61:ab: b7:2c:28:e8:02:e5:1b:c2:03:f6:49:f0:f5:ba:b2: 31:e6:76:de:0e:d3:d8:46:a3:4e:85:11:86:90:0c: 9f:99:d0:22:b0:9c:c1:19:54:f9:f8:fb:99:78:1e: 4a:ec:e2:83:96:f7:49:26:d9:43:9e:5f:c4:c3:e7: de:fc:2e:39:04:fc:42:5b:92:d8:97:eb:2c:39:f1: 8d:15:e2:58:9b:ca:30:5d:e0:04:97:25:9b:b8:1e: 45:64:20:3e:71:6f:91:c0:be:84:75:e3:51:55:dc: 12:39:fd:36:44:2b:8e:47:93:e0:35:88:a0:55:5b: 46:07:f9:65:92:86:2c:4f:6d:43:bc:0d:3d:ed:e4: 6c:1c:4a:30:90:21:03:66:45:39:86:4e:c3:b3:4b: c2:4f:66:e4:7c:cc:8c:1c:4b:2b:6c:d1:1a:f2:32: 0b:c1:25:b2:47:c7:3c:59:92:88:0e:57:43:b7:21: 69:7d:5a:6c:4a:66:36:63:a2:30:37:f5:58:2f:8b: 56:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:B5:2C:30:2D:F8:DB:A9:4A:58:35:FD:C8:E3:F1:39:20:F4:B3:05 X509v3 Authority Key Identifier: keyid:00:8F:2C:C8:64:24:1D:E8:63:5E:93:A5:74:40:F9:C2:EB:25:8B:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/AI8syGQkHehjXpOldED5wusli7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI8syGQkHehjXpOldED5wusli7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/AI8syGQkHehjXpOldED5wusli7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:c5:0c:a0:a4:59:c6:eb:0d:85:10:a9:1b:10:c7:28:8a:e1: 90:38:26:ce:ec:d5:6e:66:aa:2e:73:b7:69:93:ab:79:64:53: 72:3d:0a:68:f3:4a:fe:e0:5b:d8:07:97:51:65:72:77:84:6f: c3:1d:95:16:ce:59:4a:38:e1:ec:e5:ff:fa:9a:1a:96:26:c7: c2:3f:93:fc:7f:f0:c5:cb:5d:80:59:7c:7d:f2:d8:b6:53:d3: 66:19:14:f1:80:61:cd:75:ac:97:75:e9:da:b1:b7:50:89:87: 92:58:c7:cf:2c:35:14:86:1d:99:c7:fb:55:0d:01:69:69:de: c7:d4:9b:2f:6d:70:80:b2:b0:a2:d1:86:4a:66:6c:19:c6:83: c9:24:23:6b:3d:7c:01:05:9c:16:d8:ff:6b:30:14:30:b7:f8: 08:b3:97:d6:03:00:5e:75:9a:60:63:a6:06:a1:70:44:e2:bd: 0a:d2:c7:ce:c8:ad:05:a0:93:1f:42:a9:1e:01:50:3f:6d:4c: 86:cc:4a:aa:15:c9:f4:2f:e6:a5:36:6a:ee:59:3e:c3:27:e9: 5b:99:44:09:b8:53:46:4e:cb:4e:92:62:ab:f7:73:4c:d5:93: 30:96:36:12:ee:b7:e5:db:0f:92:ca:a3:79:bf:b5:a5:bb:e5: ce:e9:22:81 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QUMzQjExMC8GA1UEBRMoMDA4RjJDQzg2NDI0MURFODYzNUU5M0E1NzQ0MEY5QzJF QjI1OEJCMzAeFw0yNDA1MjkwOTAyMzBaFw0yNDA2MDUwOTAyMjlaMBgxFjAUBgNV BAMTDTY2NTZlZjI2LTYwNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG2ljt7K8hyEIgp/K4g8AN68a1McbKIMKNuGnrMYte39mUKFjkoa6s/1S8DxR0 rP6XCqlUkZZHHi1hq7csKOgC5RvCA/ZJ8PW6sjHmdt4O09hGo06FEYaQDJ+Z0CKw nMEZVPn4+5l4Hkrs4oOW90km2UOeX8TD5978LjkE/EJbktiX6yw58Y0V4libyjBd 4ASXJZu4HkVkID5xb5HAvoR141FV3BI5/TZEK45Hk+A1iKBVW0YH+WWShixPbUO8 DT3t5GwcSjCQIQNmRTmGTsOzS8JPZuR8zIwcSyts0RryMgvBJbJHxzxZkogOV0O3 IWl9WmxKZjZjojA39Vgvi1Y7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDbUsMC34 26lKWDX9yOPxOSD0swUwHwYDVR0jBBgwFoAUAI8syGQkHehjXpOldED5wusli7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdBQzNCLzk1N0IyNDQwQ0VD QjExRUVCMDMwNTU4N0M0RjlBRTAyL0FJOHN5R1FrSGVoalhwT2xkRUQ1d3VzbGk3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQUk4c3lHUWtIZWhqWHBPbGRFRDV3dXNsaTdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdB QzNCLzk1N0IyNDQwQ0VDQjExRUVCMDMwNTU4N0M0RjlBRTAyL0FJOHN5R1FrSGVo alhwT2xkRUQ1d3VzbGk3TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHvFDKCkWcbrDYUQqRsQxyiK4ZA4Js7s1W5mqi5zt2mTq3lkU3I9Cmjz Sv7gW9gHl1FlcneEb8MdlRbOWUo44ezl//qaGpYmx8I/k/x/8MXLXYBZfH3y2LZT 02YZFPGAYc11rJd16dqxt1CJh5JYx88sNRSGHZnH+1UNAWlp3sfUmy9tcICysKLR hkpmbBnGg8kkI2s9fAEFnBbY/2swFDC3+Aizl9YDAF51mmBjpgahcETivQrSx87I rQWgkx9CqR4BUD9tTIbMSqoVyfQv5qU2au5ZPsMn6VuZRAm4U0ZOy06SYqv3c0zV kzCWNhLut+XbD5LKo3m/taW75c7pIoE= -----END CERTIFICATE-----Generated at Wed May 29 11:18:11 2024 by rpki-client on console-fra.rpki-client.org