$ rpki-client -vvf rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft File: tQk3XiWpXStZwZWBw8Y1topJES0.mft (raw, json) Hash identifier: Ibvy6/AtDcHKISiQzr4fVE0+6ynAN6s5GLon6JI7/AI= Subject key identifier: 36:25:62:B0:C1:EF:0B:62:25:AA:A6:8E:D2:0B:B0:66:57:E8:E5:A2 Authority key identifier: B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D Certificate issuer: /CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Certificate serial: 33CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft Manifest number: 33C9 Signing time: Sat 18 May 2024 15:34:15 +0000 Manifest this update: Sat 18 May 2024 15:34:14 +0000 Manifest next update: Sat 25 May 2024 15:34:14 +0000 Files and hashes: 1: tQk3XiWpXStZwZWBw8Y1topJES0.crl (hash: mxf58uK1zFKlzkr69/LRanj+esw/oz+OcWrTi2l7OuA=) 2: 2F79F386050511EA87CC7D42C4F9AE02.roa (hash: eC5ZCaV+uar8UhV81NoF6+j/mNJ5lnpowpcwQY80DEA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13263 (0x33cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Validity Not Before: May 18 15:34:14 2024 GMT Not After : May 25 15:34:14 2024 GMT Subject: CN=6648ca77-9760 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:c7:26:dc:f6:cf:28:76:84:7c:87:ca:98:05: 51:ab:93:1f:33:4d:c7:ce:92:e1:ce:d8:c8:07:4f: 8e:47:66:5d:51:13:63:47:63:d8:e7:77:20:04:c5: 63:f4:6d:9b:a7:77:b2:6d:05:9f:29:b3:e7:da:88: 50:ff:4f:d4:66:c8:8e:d9:63:35:e2:2b:be:05:a0: 16:eb:27:81:34:18:1f:90:ba:98:fc:15:6e:b4:50: 94:83:67:7b:ec:d6:57:d3:f9:07:80:3c:e7:76:04: 05:c3:c0:b9:24:a8:5f:e9:ad:7e:2f:23:d4:33:8e: aa:42:91:0e:19:b5:f1:c4:8d:7a:9c:55:cd:6d:54: 84:7e:cf:da:95:27:57:d4:79:30:ad:29:c7:66:84: c8:ab:cb:94:b0:3c:af:b7:36:6f:ba:8f:c8:7f:8a: 33:e2:05:c2:99:0c:b8:2b:0a:55:d1:65:1c:53:5d: 15:81:57:0c:ff:fc:99:5b:54:b3:00:dc:16:9d:16: db:57:1c:ec:aa:a3:73:94:3a:b1:63:5f:22:f5:ad: 06:02:ab:c1:b8:b6:7e:d5:4e:60:c8:f4:38:15:11: b8:77:b1:68:3a:a4:c5:ef:cb:24:39:40:d2:cd:08: b2:9f:ba:75:6c:ad:c3:40:e9:a1:ce:c9:02:46:18: 4d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:25:62:B0:C1:EF:0B:62:25:AA:A6:8E:D2:0B:B0:66:57:E8:E5:A2 X509v3 Authority Key Identifier: keyid:B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:af:f6:6b:c0:21:e0:5a:e5:73:52:ca:40:a0:fa:dd:96:87: 21:cd:f9:7e:b0:68:d0:8c:e2:cf:ba:d3:50:30:54:0b:ae:45: 0d:44:9e:e6:15:2f:96:d6:af:21:f9:e5:60:36:f8:e2:6e:ce: a4:ca:b2:d0:cf:86:e2:77:14:85:35:47:ed:f2:03:42:e4:03: c9:18:94:af:2c:b4:2e:5c:87:b0:11:ca:17:60:ab:40:52:e0: 66:30:ee:5c:33:8d:fd:cb:30:df:01:86:6d:1e:70:cb:32:1e: d5:9d:b6:c6:02:0c:87:61:87:7e:fc:35:6e:3d:71:d6:08:d9: 8e:2b:d9:23:60:dc:60:24:6c:30:9d:5d:53:f0:62:9b:ca:84: 58:e8:a7:9a:c0:5f:5e:c9:6e:26:8f:b8:9f:ce:18:7c:f1:df: 9b:13:e4:f0:b5:9a:68:ad:38:2d:3d:ad:b8:4b:d6:a8:5d:85: c5:81:c5:83:f4:67:2a:12:85:3e:19:c5:c7:36:cf:3a:42:ec: 71:f6:f6:23:a1:ec:66:c1:59:db:ce:bf:9f:16:fb:08:6f:28: 18:2b:84:5f:ad:6c:76:ab:c6:01:32:35:8d:a7:bb:bd:1d:22: 93:9e:3d:3b:68:3b:26:92:a8:ab:6a:64:c5:70:06:a9:47:b1: e1:92:25:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3NTQxMTAvBgNVBAUTKEI1MDkzNzVFMjVBOTVEMkI1OUMxOTU4MUMzQzYzNUI2 OEE0OTExMkQwHhcNMjQwNTE4MTUzNDE0WhcNMjQwNTI1MTUzNDE0WjAYMRYwFAYD VQQDEw02NjQ4Y2E3Ny05NzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ccm3PbPKHaEfIfKmAVRq5MfM03HzpLhztjIB0+OR2ZdURNjR2PY53cgBMVj 9G2bp3eybQWfKbPn2ohQ/0/UZsiO2WM14iu+BaAW6yeBNBgfkLqY/BVutFCUg2d7 7NZX0/kHgDzndgQFw8C5JKhf6a1+LyPUM46qQpEOGbXxxI16nFXNbVSEfs/alSdX 1HkwrSnHZoTIq8uUsDyvtzZvuo/If4oz4gXCmQy4KwpV0WUcU10VgVcM//yZW1Sz ANwWnRbbVxzsqqNzlDqxY18i9a0GAqvBuLZ+1U5gyPQ4FRG4d7FoOqTF78skOUDS zQiyn7p1bK3DQOmhzskCRhhN7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDYlYrDB 7wtiJaqmjtILsGZX6OWiMB8GA1UdIwQYMBaAFLUJN14lqV0rWcGVgcPGNbaKSREt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTc1NC9BQ0QxRDc3MDFE QUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhTdFp3WldCdzhZMXRvcEpF UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RRazNYaVdwWFN0WndaV0J3OFkxdG9wSkVTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTc1NC9BQ0QxRDc3MDFEQUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhT dFp3WldCdzhZMXRvcEpFUzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApr/ZrwCHgWuVzUspAoPrdlochzfl+sGjQjOLPutNQMFQLrkUNRJ7m FS+W1q8h+eVgNvjibs6kyrLQz4bidxSFNUft8gNC5APJGJSvLLQuXIewEcoXYKtA UuBmMO5cM439yzDfAYZtHnDLMh7VnbbGAgyHYYd+/DVuPXHWCNmOK9kjYNxgJGww nV1T8GKbyoRY6KeawF9eyW4mj7ifzhh88d+bE+TwtZporTgtPa24S9aoXYXFgcWD 9GcqEoU+GcXHNs86Quxx9vYjoexmwVnbzr+fFvsIbygYK4RfrWx2q8YBMjWNp7u9 HSKTnj07aDsmkqiramTFcAapR7HhkiUu -----END CERTIFICATE-----Generated at Sat May 18 16:19:53 2024 by rpki-client on console-fra.rpki-client.org