$ rpki-client -vvf rpki.apnic.net/member_repository/A919C203/CEC122CAC58611EE91166B83C4F9AE02/CeLHWBQcAUT0Yrnw-PvnSKoFyyE.mft File: CeLHWBQcAUT0Yrnw-PvnSKoFyyE.mft (raw, json) Hash identifier: 2ulA7ri5nmsFVBPysajdDo2IJL70MNZyYkAofg4BbSc= Subject key identifier: F3:65:1F:76:70:3C:9E:43:BB:A0:97:AB:D4:66:A9:C8:CC:77:3C:28 Authority key identifier: 09:E2:C7:58:14:1C:01:44:F4:62:B9:F0:F8:FB:E7:48:AA:05:CB:21 Certificate issuer: /CN=A919C203/serialNumber=09E2C758141C0144F462B9F0F8FBE748AA05CB21 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeLHWBQcAUT0Yrnw-PvnSKoFyyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C203/CEC122CAC58611EE91166B83C4F9AE02/CeLHWBQcAUT0Yrnw-PvnSKoFyyE.mft Manifest number: 35 Signing time: Sun 19 May 2024 08:18:38 +0000 Manifest this update: Sun 19 May 2024 08:18:37 +0000 Manifest next update: Sun 26 May 2024 08:18:37 +0000 Files and hashes: 1: CeLHWBQcAUT0Yrnw-PvnSKoFyyE.crl (hash: HO5ywyhWzup1Gzwj/IJ69zG7BeAL2amCmvdTMOGeH5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C203/CEC122CAC58611EE91166B83C4F9AE02/CeLHWBQcAUT0Yrnw-PvnSKoFyyE.crl rsync://rpki.apnic.net/member_repository/A919C203/CEC122CAC58611EE91166B83C4F9AE02/CeLHWBQcAUT0Yrnw-PvnSKoFyyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeLHWBQcAUT0Yrnw-PvnSKoFyyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C203/serialNumber=09E2C758141C0144F462B9F0F8FBE748AA05CB21 Validity Not Before: May 19 08:18:37 2024 GMT Not After : May 26 08:18:37 2024 GMT Subject: CN=6649b5dd-5409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e2:ee:2d:d6:91:40:be:26:f7:d3:fb:88:01: 8c:c6:6c:72:d6:50:27:9d:17:02:a0:f9:51:8b:b9: d1:f0:42:fd:30:c2:32:bf:ef:5d:ef:76:87:1f:64: ec:4b:a8:ce:d3:4f:22:e2:a5:27:46:6f:84:56:b9: b7:5a:c3:71:19:7a:f3:d0:9d:bb:25:65:c5:3e:53: 72:6f:f7:13:be:7c:4a:e8:fe:0b:f3:38:0c:61:c9: 94:d0:e1:95:32:7d:0c:47:a5:fe:9d:f7:28:ea:58: 40:2d:72:dc:81:76:bd:3d:b7:71:b4:57:0f:cd:32: 3e:45:09:24:b3:74:7e:a1:81:cc:56:ea:ec:ae:93: 81:f0:30:f6:6d:02:91:78:07:a2:42:3c:77:9d:69: 03:2f:bb:22:8b:95:c9:8e:1c:1b:01:13:8d:8d:9f: e5:22:a3:4d:8c:8b:9f:04:7f:a8:7c:29:e6:b4:5d: 2d:1c:b9:b6:49:e8:98:94:e3:aa:86:92:1b:67:e7: 13:ff:30:fe:3b:3a:10:21:f4:21:9d:33:0b:8f:14: e9:45:88:01:14:b1:62:36:ad:08:24:d0:0e:2e:5a: 9a:e3:5b:8d:5b:d9:c1:d5:72:52:73:1f:66:dd:8d: d3:75:07:7a:f4:cc:de:2d:60:11:fc:21:ea:f4:6b: 37:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:65:1F:76:70:3C:9E:43:BB:A0:97:AB:D4:66:A9:C8:CC:77:3C:28 X509v3 Authority Key Identifier: keyid:09:E2:C7:58:14:1C:01:44:F4:62:B9:F0:F8:FB:E7:48:AA:05:CB:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C203/CEC122CAC58611EE91166B83C4F9AE02/CeLHWBQcAUT0Yrnw-PvnSKoFyyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CeLHWBQcAUT0Yrnw-PvnSKoFyyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C203/CEC122CAC58611EE91166B83C4F9AE02/CeLHWBQcAUT0Yrnw-PvnSKoFyyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:e4:10:9f:8e:7a:2a:6a:b6:14:87:81:4f:d5:ae:67:01:db: 6e:9d:2a:73:83:47:10:d4:d7:d8:23:09:ac:2c:f4:ff:1c:d1: 67:57:51:58:e6:68:f0:c0:be:c5:ae:f3:8c:fd:3a:88:b7:3e: 37:d2:c1:84:f0:ce:f8:49:c4:3f:1b:6f:7c:49:9c:f4:ba:cf: ce:d1:72:67:81:cb:db:90:03:12:bc:81:47:96:bf:f3:05:eb: 0b:f2:ba:9a:81:ee:92:fa:a8:e3:f7:c3:7c:1a:7c:58:30:de: f9:2e:f4:1a:2a:a4:ab:60:ad:e7:20:14:f6:52:9f:1b:bc:3c: 85:f0:7a:43:da:76:01:ce:20:02:18:d1:f5:cb:c7:df:ce:a7: ba:dc:8c:fb:85:81:7a:fd:8b:48:73:fa:10:3a:ac:95:84:7e: 64:cb:6b:01:47:3b:71:d7:7b:37:b6:da:af:35:2d:9f:3f:95: c7:c8:10:3f:34:54:4e:56:7f:79:3b:81:1a:6b:a5:5a:64:77: bc:a5:48:17:43:a7:92:d0:57:ac:a3:e0:a9:ca:7e:59:ad:88: d7:96:3f:7d:78:a5:43:09:7d:58:af:48:95:31:05:e5:d2:8c: 23:10:cc:cc:3f:58:e9:a1:7e:e2:e5:f7:8f:b0:5d:9a:2d:c9: 03:be:7e:de -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QzIwMzExMC8GA1UEBRMoMDlFMkM3NTgxNDFDMDE0NEY0NjJCOUYwRjhGQkU3NDhB QTA1Q0IyMTAeFw0yNDA1MTkwODE4MzdaFw0yNDA1MjYwODE4MzdaMBgxFjAUBgNV BAMTDTY2NDliNWRkLTU0MDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC04u4t1pFAvib30/uIAYzGbHLWUCedFwKg+VGLudHwQv0wwjK/713vdocfZOxL qM7TTyLipSdGb4RWubdaw3EZevPQnbslZcU+U3Jv9xO+fEro/gvzOAxhyZTQ4ZUy fQxHpf6d9yjqWEAtctyBdr09t3G0Vw/NMj5FCSSzdH6hgcxW6uyuk4HwMPZtApF4 B6JCPHedaQMvuyKLlcmOHBsBE42Nn+Uio02Mi58Ef6h8Kea0XS0cubZJ6JiU46qG khtn5xP/MP47OhAh9CGdMwuPFOlFiAEUsWI2rQgk0A4uWprjW41b2cHVclJzH2bd jdN1B3r0zN4tYBH8Ier0azczAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU82UfdnA8 nkO7oJer1GapyMx3PCgwHwYDVR0jBBgwFoAUCeLHWBQcAUT0Yrnw+PvnSKoFyyEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlDMjAzL0NFQzEyMkNBQzU4 NjExRUU5MTE2NkI4M0M0RjlBRTAyL0NlTEhXQlFjQVVUMFlybnctUHZuU0tvRnl5 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ2VMSFdCUWNBVVQwWXJudy1Qdm5TS29GeXlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlD MjAzL0NFQzEyMkNBQzU4NjExRUU5MTE2NkI4M0M0RjlBRTAyL0NlTEhXQlFjQVVU MFlybnctUHZuU0tvRnl5RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIfkEJ+OeipqthSHgU/VrmcB226dKnODRxDU19gjCaws9P8c0WdXUVjm aPDAvsWu84z9Ooi3PjfSwYTwzvhJxD8bb3xJnPS6z87RcmeBy9uQAxK8gUeWv/MF 6wvyupqB7pL6qOP3w3wafFgw3vku9BoqpKtgrecgFPZSnxu8PIXwekPadgHOIAIY 0fXLx9/Op7rcjPuFgXr9i0hz+hA6rJWEfmTLawFHO3HXeze22q81LZ8/lcfIED80 VE5Wf3k7gRprpVpkd7ylSBdDp5LQV6yj4KnKflmtiNeWP314pUMJfVivSJUxBeXS jCMQzMw/WOmhfuLl94+wXZotyQO+ft4= -----END CERTIFICATE-----Generated at Sun May 19 09:32:17 2024 by rpki-client on console-ams.rpki-client.org