$ rpki-client -vvf rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft File: 2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft (raw, json) Hash identifier: ySRB3DbcOML+xAZz0boilc3B4COFR5VgMHv4gVkaEvo= Subject key identifier: 4E:CE:5F:91:BF:61:B5:49:18:27:E8:32:58:81:A3:94:E9:14:86:44 Authority key identifier: DB:03:27:14:43:E7:5D:6D:19:50:50:ED:C8:B6:13:ED:5F:FB:D8:38 Certificate issuer: /CN=A91889B6/serialNumber=DB03271443E75D6D195050EDC8B613ED5FFBD838 Certificate serial: 33C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft Manifest number: 33C7 Signing time: Sat 18 May 2024 14:57:34 +0000 Manifest this update: Sat 18 May 2024 14:57:33 +0000 Manifest next update: Sat 25 May 2024 14:57:33 +0000 Files and hashes: 1: 2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl (hash: Kp27f/ialsW6rxlnjZhUJz03g4F+CBxn/TAthfdDh/U=) 2: 10E0F1884D0C11EE81002274C4F9AE02.roa (hash: fwR0Y9a/7VmS04Bn5+XlasPbpMnFyp4y7F5nLpKVEn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13257 (0x33c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91889B6/serialNumber=DB03271443E75D6D195050EDC8B613ED5FFBD838 Validity Not Before: May 18 14:57:33 2024 GMT Not After : May 25 14:57:33 2024 GMT Subject: CN=6648c1de-a1ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:96:6e:f5:d6:77:48:5f:03:92:02:ea:64:c3: be:90:3d:00:46:4e:82:4c:ae:0a:c7:8c:e5:f6:9d: 69:f0:7a:b6:c5:4d:2f:13:04:35:56:64:f0:19:d9: 9a:b8:d2:5b:1f:dd:31:1e:68:55:1c:b8:24:9c:0d: 0d:d8:3e:77:75:8f:29:d5:a4:b2:d5:62:5e:6d:85: 24:87:80:91:25:5c:26:a0:0a:50:a2:36:c9:2d:83: 89:87:2b:cf:18:bd:51:51:64:06:8b:df:fb:16:6b: 98:27:e5:29:b5:02:e5:5a:77:60:44:85:20:10:07: 31:5c:61:2c:62:67:90:5e:90:ef:4d:cc:00:c2:15: 50:5e:61:4f:7b:a7:69:91:a8:19:c7:32:70:56:97: cd:90:97:a5:91:e3:80:63:1b:5a:2d:ef:a3:9f:26: e8:34:40:37:b6:dc:3c:84:4f:3b:bf:4d:c6:8a:07: 41:a3:35:5a:fe:94:14:d7:ca:4b:24:9c:ef:16:4a: 16:e1:6c:59:2d:4a:8d:89:1d:ad:2c:a0:ea:64:ca: 65:f7:14:5a:a5:54:3a:0b:40:d3:34:45:ac:6f:0a: 2c:77:d3:4f:08:3c:e5:f1:5b:0a:f2:15:65:f6:6b: 57:8c:7f:f1:35:af:fa:26:aa:98:f9:e3:9e:b6:bd: 43:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:CE:5F:91:BF:61:B5:49:18:27:E8:32:58:81:A3:94:E9:14:86:44 X509v3 Authority Key Identifier: keyid:DB:03:27:14:43:E7:5D:6D:19:50:50:ED:C8:B6:13:ED:5F:FB:D8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:d5:36:dd:3f:37:52:75:01:19:3f:d7:ab:e2:c8:d9:db:12: b2:29:a2:3c:4a:77:d9:24:81:e2:20:d0:22:e7:0f:42:38:c4: 69:6e:52:93:bf:1e:fa:01:e8:c1:b8:42:93:ac:20:40:47:9d: 3e:9b:f1:47:9c:14:22:fe:4a:a4:34:7b:30:b9:cd:ad:b2:d7: 69:64:fe:0a:75:e2:d1:0c:79:e8:7f:a6:ec:c5:ce:fd:91:ee: 7f:5f:9e:5c:9f:31:33:e7:5e:ed:c9:e8:e1:67:2d:bc:db:1a: 79:b0:82:d0:85:32:fc:98:3b:77:e5:05:5c:50:aa:0f:f8:03: 94:aa:27:33:74:1a:2f:62:27:52:8f:81:e5:55:8c:3a:5c:a3: 87:3c:df:1c:33:9a:f5:d3:11:a4:29:4f:66:af:4d:6d:e1:66: 66:05:21:4c:be:32:ae:2b:d0:1d:6e:e6:6d:12:58:19:e1:fd: 92:9c:c0:5c:11:34:b7:b3:99:36:b3:45:75:3b:fc:0f:d4:f2: 34:98:46:db:63:8f:77:7b:19:de:c0:92:24:ce:53:f9:63:6c: 9e:47:dc:d4:cd:51:7a:a1:55:54:37:57:59:78:45:c9:5c:ee: c2:45:3d:84:30:14:ca:5b:5b:e2:18:48:ad:5c:59:08:0a:d8: 9b:d2:44:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg5QjYxMTAvBgNVBAUTKERCMDMyNzE0NDNFNzVENkQxOTUwNTBFREM4QjYxM0VE NUZGQkQ4MzgwHhcNMjQwNTE4MTQ1NzMzWhcNMjQwNTI1MTQ1NzMzWjAYMRYwFAYD VQQDEw02NjQ4YzFkZS1hMWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnpZu9dZ3SF8DkgLqZMO+kD0ARk6CTK4Kx4zl9p1p8Hq2xU0vEwQ1VmTwGdma uNJbH90xHmhVHLgknA0N2D53dY8p1aSy1WJebYUkh4CRJVwmoApQojbJLYOJhyvP GL1RUWQGi9/7FmuYJ+UptQLlWndgRIUgEAcxXGEsYmeQXpDvTcwAwhVQXmFPe6dp kagZxzJwVpfNkJelkeOAYxtaLe+jnyboNEA3ttw8hE87v03GigdBozVa/pQU18pL JJzvFkoW4WxZLUqNiR2tLKDqZMpl9xRapVQ6C0DTNEWsbwosd9NPCDzl8VsK8hVl 9mtXjH/xNa/6JqqY+eOetr1D5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE7OX5G/ YbVJGCfoMliBo5TpFIZEMB8GA1UdIwQYMBaAFNsDJxRD511tGVBQ7ci2E+1f+9g4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlCNi8zOUFBMEEwMjFE OTYxMUUyQTY1NDhFN0UwOEIwMkNEMi8yd01uRkVQblhXMFpVRkR0eUxZVDdWXzcy RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ3TW5GRVBuWFcwWlVGRHR5TFlUN1ZfNzJEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODlCNi8zOUFBMEEwMjFEOTYxMUUyQTY1NDhFN0UwOEIwMkNEMi8yd01uRkVQblhX MFpVRkR0eUxZVDdWXzcyRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq1TbdPzdSdQEZP9er4sjZ2xKyKaI8SnfZJIHiINAi5w9COMRpblKT vx76AejBuEKTrCBAR50+m/FHnBQi/kqkNHswuc2tstdpZP4KdeLRDHnof6bsxc79 ke5/X55cnzEz517tyejhZy282xp5sILQhTL8mDt35QVcUKoP+AOUqiczdBovYidS j4HlVYw6XKOHPN8cM5r10xGkKU9mr01t4WZmBSFMvjKuK9AdbuZtElgZ4f2SnMBc ETS3s5k2s0V1O/wP1PI0mEbbY493exnewJIkzlP5Y2yeR9zUzVF6oVVUN1dZeEXJ XO7CRT2EMBTKW1viGEitXFkICtib0kRW -----END CERTIFICATE-----Generated at Sat May 18 15:26:05 2024 by rpki-client on console-fra.rpki-client.org