$ rpki-client -vvf rpki.apnic.net/member_repository/A917F352/3D9D7F5EA1FB11EEA360925AC4F9AE02/Crfzan3eThH0sBWX3w3nopqAvEQ.mft File: Crfzan3eThH0sBWX3w3nopqAvEQ.mft (raw, json) Hash identifier: l4xgbWq2Ew//RUpJtyPXXNX/3QZ1aF+40r+PJ9JEUK4= Subject key identifier: 56:85:0B:E7:D8:36:1C:2A:63:53:B9:D9:98:06:5A:60:85:02:CD:9A Authority key identifier: 0A:B7:F3:6A:7D:DE:4E:11:F4:B0:15:97:DF:0D:E7:A2:9A:80:BC:44 Certificate issuer: /CN=A917F352/serialNumber=0AB7F36A7DDE4E11F4B01597DF0DE7A29A80BC44 Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Crfzan3eThH0sBWX3w3nopqAvEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F352/3D9D7F5EA1FB11EEA360925AC4F9AE02/Crfzan3eThH0sBWX3w3nopqAvEQ.mft Manifest number: 4C Signing time: Sun 19 May 2024 07:58:51 +0000 Manifest this update: Sun 19 May 2024 07:58:50 +0000 Manifest next update: Sun 26 May 2024 07:58:50 +0000 Files and hashes: 1: Crfzan3eThH0sBWX3w3nopqAvEQ.crl (hash: Ywbjw3p1s578MVFc4eEAk9VvUFYTkkAL+kKTe5j0JQ8=) 2: 8FE6CF86A1FB11EE9773325BC4F9AE02.roa (hash: 3TQM9ELa80hVtdt9LrT4vgc7x9okKSlCin85/6OAPc8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F352/3D9D7F5EA1FB11EEA360925AC4F9AE02/Crfzan3eThH0sBWX3w3nopqAvEQ.crl rsync://rpki.apnic.net/member_repository/A917F352/3D9D7F5EA1FB11EEA360925AC4F9AE02/Crfzan3eThH0sBWX3w3nopqAvEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Crfzan3eThH0sBWX3w3nopqAvEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F352/serialNumber=0AB7F36A7DDE4E11F4B01597DF0DE7A29A80BC44 Validity Not Before: May 19 07:58:50 2024 GMT Not After : May 26 07:58:50 2024 GMT Subject: CN=6649b13a-491e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:90:2c:93:b6:c2:38:c4:f5:e3:6d:8c:e0:90: 81:30:59:06:7d:1f:b8:38:87:6c:80:d8:ba:08:79: bc:69:5c:36:4d:4d:19:55:91:b3:01:35:cf:bb:12: dd:ce:c7:b1:55:b8:8c:23:00:a1:7f:af:b0:46:15: c7:57:b8:4c:e5:3f:ce:d5:8e:0b:a8:4a:c3:4b:23: 7d:57:2d:c7:9b:f6:1a:3b:36:c2:0c:f2:c9:b8:71: b9:e8:59:45:be:9b:61:67:14:c8:63:2e:e2:24:99: c9:a7:53:4a:cf:d4:da:98:e8:43:a9:83:78:11:48: 47:c4:bd:f8:c7:67:c9:eb:42:91:67:8f:8b:5d:d8: bc:7e:a8:b0:af:04:bc:4c:6f:ba:e2:ec:ab:e0:76: e8:3c:ba:28:36:f2:3b:cd:48:8d:4e:f3:9a:6a:4c: ab:0d:ea:11:46:24:30:37:00:50:01:7f:0e:9e:3e: f6:05:70:07:1e:59:e6:f4:e1:32:0f:f8:23:ec:72: 80:75:26:9e:db:b4:d6:9a:80:4c:68:88:d9:6d:97: 45:1a:2f:2a:3d:52:4c:54:96:57:2a:e1:15:ca:60: c9:37:9a:69:61:f7:d5:d9:99:72:94:d9:ca:42:50: c1:17:79:2e:83:87:22:77:3c:79:bb:e8:b5:c6:bf: 4f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:85:0B:E7:D8:36:1C:2A:63:53:B9:D9:98:06:5A:60:85:02:CD:9A X509v3 Authority Key Identifier: keyid:0A:B7:F3:6A:7D:DE:4E:11:F4:B0:15:97:DF:0D:E7:A2:9A:80:BC:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F352/3D9D7F5EA1FB11EEA360925AC4F9AE02/Crfzan3eThH0sBWX3w3nopqAvEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Crfzan3eThH0sBWX3w3nopqAvEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F352/3D9D7F5EA1FB11EEA360925AC4F9AE02/Crfzan3eThH0sBWX3w3nopqAvEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:5f:f1:80:ca:fe:50:d1:da:76:82:e6:89:ef:64:64:5d:18: b0:fe:76:66:a0:87:b0:06:1a:44:56:99:34:d2:cd:f5:61:2a: 3a:bf:8e:29:f1:3d:7d:52:41:b6:35:e4:a5:14:56:f2:b4:1b: 28:78:40:0a:5f:29:8f:ea:9b:a0:cb:ff:b5:b9:3f:43:24:a9: 1c:61:f4:9d:ae:30:98:c0:52:3b:09:1d:13:83:fc:52:a9:b0: 82:9b:35:39:77:a0:ff:34:2c:3e:63:03:5a:6c:9e:f2:77:09: ab:19:a3:a6:16:a4:ec:e0:25:5f:3f:74:8d:c2:21:26:fe:24: 93:21:98:03:16:2f:42:dc:8b:e9:5f:c9:5e:09:10:8c:1d:ec: 12:83:c3:0f:69:47:dd:e6:58:f5:7c:1b:46:02:d6:25:67:2b: fc:f4:78:45:da:93:28:4d:79:7f:b1:92:02:81:70:ab:2a:24: b8:84:2e:a8:53:ef:b0:86:55:83:d7:69:65:44:78:66:8e:ef: d6:c6:fe:f2:f9:dd:85:bf:20:70:f8:d8:ab:28:f4:e3:64:74: 4f:39:82:22:fa:00:c7:e6:f5:27:16:7e:88:f1:2d:ca:38:2f: f5:d7:18:64:97:d3:b6:8b:28:fe:d9:b0:90:be:1e:03:33:c9: 4c:32:76:5b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RjM1MjExMC8GA1UEBRMoMEFCN0YzNkE3RERFNEUxMUY0QjAxNTk3REYwREU3QTI5 QTgwQkM0NDAeFw0yNDA1MTkwNzU4NTBaFw0yNDA1MjYwNzU4NTBaMBgxFjAUBgNV BAMTDTY2NDliMTNhLTQ5MWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQkCyTtsI4xPXjbYzgkIEwWQZ9H7g4h2yA2LoIebxpXDZNTRlVkbMBNc+7Et3O x7FVuIwjAKF/r7BGFcdXuEzlP87VjguoSsNLI31XLceb9ho7NsIM8sm4cbnoWUW+ m2FnFMhjLuIkmcmnU0rP1NqY6EOpg3gRSEfEvfjHZ8nrQpFnj4td2Lx+qLCvBLxM b7ri7Kvgdug8uig28jvNSI1O85pqTKsN6hFGJDA3AFABfw6ePvYFcAceWeb04TIP +CPscoB1Jp7btNaagExoiNltl0UaLyo9UkxUllcq4RXKYMk3mmlh99XZmXKU2cpC UMEXeS6DhyJ3PHm76LXGv08/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVoUL59g2 HCpjU7nZmAZaYIUCzZowHwYDVR0jBBgwFoAUCrfzan3eThH0sBWX3w3nopqAvEQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGMzUyLzNEOUQ3RjVFQTFG QjExRUVBMzYwOTI1QUM0RjlBRTAyL0NyZnphbjNlVGhIMHNCV1gzdzNub3BxQXZF US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ3JmemFuM2VUaEgwc0JXWDN3M25vcHFBdkVRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdG MzUyLzNEOUQ3RjVFQTFGQjExRUVBMzYwOTI1QUM0RjlBRTAyL0NyZnphbjNlVGhI MHNCV1gzdzNub3BxQXZFUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALdf8YDK/lDR2naC5onvZGRdGLD+dmagh7AGGkRWmTTSzfVhKjq/jinx PX1SQbY15KUUVvK0Gyh4QApfKY/qm6DL/7W5P0MkqRxh9J2uMJjAUjsJHROD/FKp sIKbNTl3oP80LD5jA1psnvJ3CasZo6YWpOzgJV8/dI3CISb+JJMhmAMWL0Lci+lf yV4JEIwd7BKDww9pR93mWPV8G0YC1iVnK/z0eEXakyhNeX+xkgKBcKsqJLiELqhT 77CGVYPXaWVEeGaO79bG/vL53YW/IHD42Kso9ONkdE85giL6AMfm9ScWfojxLco4 L/XXGGSX07aLKP7ZsJC+HgMzyUwydls= -----END CERTIFICATE-----Generated at Sun May 19 09:32:17 2024 by rpki-client on console-ams.rpki-client.org