$ rpki-client -vvf rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft File: 1ppgVl8zchSc5uL8nnI9SQZ2doo.mft (raw, json) Hash identifier: kDmMsd03phqNRm+BOtMV5KEEKPVVMQwP1zyw5SWO0a4= Subject key identifier: 23:95:A0:34:B1:EE:45:60:31:DB:6B:F2:EE:2E:32:90:B4:AE:3A:48 Authority key identifier: D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A Certificate issuer: /CN=A9185F7D/serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Certificate serial: 33C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft Manifest number: 33C3 Signing time: Sat 18 May 2024 15:08:08 +0000 Manifest this update: Sat 18 May 2024 15:08:08 +0000 Manifest next update: Sat 25 May 2024 15:08:08 +0000 Files and hashes: 1: 1ppgVl8zchSc5uL8nnI9SQZ2doo.crl (hash: /DkvR4bP3N2OkGRAeIthsmWmrNW8mzyOAwcmDs0fQ20=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13251 (0x33c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185F7D/serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Validity Not Before: May 18 15:08:08 2024 GMT Not After : May 25 15:08:08 2024 GMT Subject: CN=6648c458-db64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:81:a8:ba:34:1e:be:16:8a:b7:16:26:65:dc: 00:1a:5c:18:98:17:9a:ca:39:4a:ea:52:3a:da:6c: 80:01:1e:24:7f:49:84:5e:fb:4d:51:26:6a:78:5b: d0:a8:03:76:eb:7a:87:a2:b8:bb:1f:97:04:e9:47: 9d:0c:8a:23:bd:65:59:60:3a:92:2d:ad:a8:ad:4e: 99:04:4f:2d:db:32:cd:1e:96:77:9b:0c:c5:89:df: a1:8a:ac:ff:6f:64:cb:db:eb:04:7e:a7:9e:87:58: 26:a2:f6:ac:26:dc:ee:d1:e7:99:5d:6e:b3:e2:a2: 3b:d7:8c:15:13:fb:5f:ce:19:6b:f4:58:e7:89:2b: 11:ac:62:38:75:ef:17:b4:10:ac:bc:a3:e5:1a:43: 05:2d:5f:e7:46:f2:8a:94:2d:79:c2:08:70:1c:79: 44:ab:52:1b:0b:3e:d3:4a:dd:50:1e:f2:24:29:bb: c1:b2:09:0a:37:14:35:90:cb:d4:ca:ef:7f:62:bc: ac:aa:1a:2e:d5:0e:2b:b5:81:19:b1:b7:c7:34:08: 9a:10:61:25:45:6d:3d:fe:df:67:bb:c0:57:7e:85: d7:9f:43:95:65:5e:a3:e6:af:73:91:4e:65:60:85: b2:18:70:19:4d:f8:85:83:e7:d0:5a:fc:d9:89:1d: 9d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:95:A0:34:B1:EE:45:60:31:DB:6B:F2:EE:2E:32:90:B4:AE:3A:48 X509v3 Authority Key Identifier: keyid:D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:0b:03:51:72:58:08:f2:fa:9f:3c:d3:c0:97:f2:b1:92:34: 02:c7:50:b3:ad:5c:91:4e:9e:db:de:82:ab:79:13:3c:71:9d: 44:02:58:63:a0:b8:b4:ba:ed:c4:28:04:80:2a:6f:50:a0:4f: 74:29:9c:eb:c8:59:65:bf:4b:8d:56:70:9f:30:0a:e4:3c:76: ac:2b:ae:2a:15:17:1e:0f:96:c5:58:3d:82:89:a0:0b:10:a3: ac:06:23:d6:8a:ca:d9:8d:25:91:03:a2:65:d7:8b:17:a2:95: d1:09:37:13:68:b3:e6:f8:cb:00:8b:a9:4a:32:d6:a5:77:25: 1c:8a:f7:7c:6e:40:d7:50:f0:15:61:11:ed:99:3b:31:6f:c1: d1:b4:01:6a:03:b8:e8:d1:37:87:6e:e6:d7:31:3b:87:56:5a: 58:3a:46:00:e9:a8:c1:7b:fa:91:99:9d:76:73:8c:32:9d:2a: 50:e0:cf:d8:69:cb:9e:de:c2:a3:5d:56:d2:1b:9f:11:49:c1: 97:68:6a:a2:93:84:d0:a4:28:f5:32:24:55:bf:70:79:ce:0f: ec:85:d1:5f:15:6a:4d:b5:87:a0:8f:f4:74:06:de:0d:d3:8a: 34:11:96:d5:99:99:9a:34:ff:57:b1:28:5e:b2:5e:49:ca:1f: ac:e0:6b:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVGN0QxMTAvBgNVBAUTKEQ2OUE2MDU2NUYzMzcyMTQ5Q0U2RTJGQzlFNzIzRDQ5 MDY3Njc2OEEwHhcNMjQwNTE4MTUwODA4WhcNMjQwNTI1MTUwODA4WjAYMRYwFAYD VQQDEw02NjQ4YzQ1OC1kYjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA64GoujQevhaKtxYmZdwAGlwYmBeayjlK6lI62myAAR4kf0mEXvtNUSZqeFvQ qAN263qHori7H5cE6UedDIojvWVZYDqSLa2orU6ZBE8t2zLNHpZ3mwzFid+hiqz/ b2TL2+sEfqeeh1gmovasJtzu0eeZXW6z4qI714wVE/tfzhlr9FjniSsRrGI4de8X tBCsvKPlGkMFLV/nRvKKlC15wghwHHlEq1IbCz7TSt1QHvIkKbvBsgkKNxQ1kMvU yu9/Yrysqhou1Q4rtYEZsbfHNAiaEGElRW09/t9nu8BXfoXXn0OVZV6j5q9zkU5l YIWyGHAZTfiFg+fQWvzZiR2dLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCOVoDSx 7kVgMdtr8u4uMpC0rjpIMB8GA1UdIwQYMBaAFNaaYFZfM3IUnObi/J5yPUkGdnaK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUY3RC82OTc1M0Y1ODFE OUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNoU2M1dUw4bm5JOVNRWjJk b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwcGdWbDh6Y2hTYzV1TDhubkk5U1FaMmRvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUY3RC82OTc1M0Y1ODFEOUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNo U2M1dUw4bm5JOVNRWjJkb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGCwNRclgI8vqfPNPAl/KxkjQCx1CzrVyRTp7b3oKreRM8cZ1EAlhj oLi0uu3EKASAKm9QoE90KZzryFllv0uNVnCfMArkPHasK64qFRceD5bFWD2CiaAL EKOsBiPWisrZjSWRA6Jl14sXopXRCTcTaLPm+MsAi6lKMtaldyUcivd8bkDXUPAV YRHtmTsxb8HRtAFqA7jo0TeHbubXMTuHVlpYOkYA6ajBe/qRmZ12c4wynSpQ4M/Y acue3sKjXVbSG58RScGXaGqik4TQpCj1MiRVv3B5zg/shdFfFWpNtYegj/R0Bt4N 04o0EZbVmZmaNP9XsShesl5Jyh+s4GvT -----END CERTIFICATE-----Generated at Sat May 18 15:58:22 2024 by rpki-client on console-ams.rpki-client.org