$ rpki-client -vvf rpki.apnic.net/member_repository/A91A20A3/AF4B8A621D9E11E28E53C08E08B02CD2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.mft File: 0Vpa-a-Nmd_l5E017lUBBf7ZRRE.mft (raw, json) Hash identifier: pxom3O/+GRL2A5hPR6Yo6gY8RPKMHRxmlp5+L+KnDqA= Subject key identifier: 95:29:92:27:5F:D8:40:12:84:36:F3:94:AD:BF:BF:40:69:7C:81:9F Authority key identifier: D1:5A:5A:F9:AF:8D:99:DF:E5:E4:4D:35:EE:55:01:05:FE:D9:45:11 Certificate issuer: /CN=A91A20A3/serialNumber=D15A5AF9AF8D99DFE5E44D35EE550105FED94511 Certificate serial: 33DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A20A3/AF4B8A621D9E11E28E53C08E08B02CD2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.mft Manifest number: 33CE Signing time: Sat 18 May 2024 15:11:55 +0000 Manifest this update: Sat 18 May 2024 15:11:54 +0000 Manifest next update: Sat 25 May 2024 15:11:54 +0000 Files and hashes: 1: 0Vpa-a-Nmd_l5E017lUBBf7ZRRE.crl (hash: E+a5GXlKB2PQLYVf8ZSDfTYEMQCzl6HBPkqqIZKnpSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A20A3/AF4B8A621D9E11E28E53C08E08B02CD2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.crl rsync://rpki.apnic.net/member_repository/A91A20A3/AF4B8A621D9E11E28E53C08E08B02CD2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13278 (0x33de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A20A3/serialNumber=D15A5AF9AF8D99DFE5E44D35EE550105FED94511 Validity Not Before: May 18 15:11:54 2024 GMT Not After : May 25 15:11:54 2024 GMT Subject: CN=6648c53b-db41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a5:39:d6:26:38:8d:a6:26:bb:aa:db:55:01: 19:9b:ce:10:e1:9c:cc:25:f9:12:44:ae:19:97:f4: e6:53:08:a4:a7:d7:16:5e:20:5d:ff:bf:b4:3d:2b: cb:2c:91:15:dc:39:b5:bd:8d:71:b4:23:7a:ec:c3: db:2f:00:3c:7b:79:a1:94:29:57:42:db:c3:25:cd: 06:c9:1e:4d:e7:69:a6:26:35:ca:da:c8:9e:22:ab: 98:3a:19:80:64:12:b8:50:d5:40:b1:8c:64:11:48: bc:a2:04:68:f4:eb:cc:05:98:55:a2:9f:39:bf:6d: d2:7b:6e:a1:4f:24:8c:07:9b:09:2f:9c:78:ab:a5: 5f:8b:40:eb:f4:9f:cd:9f:40:f4:77:b8:6b:94:8d: 50:3e:47:b8:1e:6c:43:8d:9c:57:c0:5b:66:81:45: 67:56:de:84:37:a6:aa:00:1b:9a:08:30:0a:c3:61: 45:50:6a:fe:7b:e9:d5:a8:65:32:ac:83:8c:2c:69: c5:d8:02:b8:22:51:5f:ba:2c:b9:22:cd:38:fa:38: de:fc:2f:6e:b7:42:1b:97:96:45:f4:e4:af:7a:e3: 66:f8:8f:cf:d4:4a:8a:32:3d:06:33:53:5f:0d:77: f4:6e:c2:3a:ec:87:31:80:39:5a:4c:01:89:42:24: 11:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:29:92:27:5F:D8:40:12:84:36:F3:94:AD:BF:BF:40:69:7C:81:9F X509v3 Authority Key Identifier: keyid:D1:5A:5A:F9:AF:8D:99:DF:E5:E4:4D:35:EE:55:01:05:FE:D9:45:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A20A3/AF4B8A621D9E11E28E53C08E08B02CD2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A20A3/AF4B8A621D9E11E28E53C08E08B02CD2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:4d:8c:a6:9c:3d:13:ad:18:7b:75:94:f3:e6:2f:47:48:d2: 9a:73:a4:23:74:39:80:43:15:54:be:5c:e6:79:a6:15:a4:21: 8d:64:9f:5e:0a:2d:20:9e:44:49:2e:f2:44:0a:e8:f3:de:d0: 23:b8:7c:8c:c1:41:a9:b6:34:18:3a:f9:1b:87:29:1c:ad:0b: 23:b9:16:97:ef:42:5f:9c:91:90:84:ff:d7:99:18:59:70:c7: 76:4e:83:69:cf:dc:29:01:10:3a:94:15:42:50:ff:3b:f2:fd: f3:02:de:a0:26:8a:96:de:95:b2:6f:88:75:f1:97:5e:b5:9c: 9d:f1:8e:f3:c0:cc:e7:35:e7:08:ba:15:52:c3:38:c2:00:95: 53:59:3e:f1:13:bd:19:60:48:47:80:e3:6f:3c:36:f6:ef:9a: 3f:96:35:33:72:35:0f:94:d9:90:7f:9b:8c:c7:bd:90:2b:43: a7:91:2c:e3:6c:ec:a5:f1:32:33:ad:8e:73:c0:6c:5e:4f:6d: 0a:d1:2c:68:2f:9f:b6:94:c1:c4:d5:69:1e:f5:36:cb:b3:8a: ca:45:3f:4b:61:73:4f:e2:11:7c:c8:e4:9b:cc:6f:fa:64:ad: dc:37:6a:f1:bf:16:d8:9b:f8:48:94:2e:d2:4f:32:df:5e:b3: 78:33:a4:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTIwQTMxMTAvBgNVBAUTKEQxNUE1QUY5QUY4RDk5REZFNUU0NEQzNUVFNTUwMTA1 RkVEOTQ1MTEwHhcNMjQwNTE4MTUxMTU0WhcNMjQwNTI1MTUxMTU0WjAYMRYwFAYD VQQDEw02NjQ4YzUzYi1kYjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2qU51iY4jaYmu6rbVQEZm84Q4ZzMJfkSRK4Zl/TmUwikp9cWXiBd/7+0PSvL LJEV3Dm1vY1xtCN67MPbLwA8e3mhlClXQtvDJc0GyR5N52mmJjXK2sieIquYOhmA ZBK4UNVAsYxkEUi8ogRo9OvMBZhVop85v23Se26hTySMB5sJL5x4q6Vfi0Dr9J/N n0D0d7hrlI1QPke4HmxDjZxXwFtmgUVnVt6EN6aqABuaCDAKw2FFUGr+e+nVqGUy rIOMLGnF2AK4IlFfuiy5Is04+jje/C9ut0Ibl5ZF9OSveuNm+I/P1EqKMj0GM1Nf DXf0bsI67IcxgDlaTAGJQiQRNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJUpkidf 2EAShDbzlK2/v0BpfIGfMB8GA1UdIwQYMBaAFNFaWvmvjZnf5eRNNe5VAQX+2UUR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjBBMy9BRjRCOEE2MjFE OUUxMUUyOEU1M0MwOEUwOEIwMkNEMi8wVnBhLWEtTm1kX2w1RTAxN2xVQkJmN1pS UkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBWcGEtYS1ObWRfbDVFMDE3bFVCQmY3WlJSRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjBBMy9BRjRCOEE2MjFEOUUxMUUyOEU1M0MwOEUwOEIwMkNEMi8wVnBhLWEtTm1k X2w1RTAxN2xVQkJmN1pSUkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArTYymnD0TrRh7dZTz5i9HSNKac6QjdDmAQxVUvlzmeaYVpCGNZJ9e Ci0gnkRJLvJECujz3tAjuHyMwUGptjQYOvkbhykcrQsjuRaX70JfnJGQhP/XmRhZ cMd2ToNpz9wpARA6lBVCUP878v3zAt6gJoqW3pWyb4h18ZdetZyd8Y7zwMznNecI uhVSwzjCAJVTWT7xE70ZYEhHgONvPDb275o/ljUzcjUPlNmQf5uMx72QK0OnkSzj bOyl8TIzrY5zwGxeT20K0SxoL5+2lMHE1Wke9TbLs4rKRT9LYXNP4hF8yOSbzG/6 ZK3cN2rxvxbYm/hIlC7STzLfXrN4M6Sc -----END CERTIFICATE-----Generated at Sat May 18 16:20:16 2024 by rpki-client on console-fra.rpki-client.org