$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft File: 72i9vAcsq0VbbaMWDt-PtsSI3RU.mft (raw, json) Hash identifier: xXi+9bHoi8nAxoWD/2uK4i5eOnIo/RkGbCME5fHoCEg= Subject key identifier: 62:E3:AF:A3:8C:2E:E5:F0:30:36:BF:4A:84:82:0D:CC:40:43:5A:F4 Authority key identifier: EF:68:BD:BC:07:2C:AB:45:5B:6D:A3:16:0E:DF:8F:B6:C4:88:DD:15 Certificate issuer: /CN=A91A4B9D/serialNumber=EF68BDBC072CAB455B6DA3160EDF8FB6C488DD15 Certificate serial: 33E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft Manifest number: 33DD Signing time: Sat 18 May 2024 15:11:46 +0000 Manifest this update: Sat 18 May 2024 15:11:45 +0000 Manifest next update: Sat 25 May 2024 15:11:45 +0000 Files and hashes: 1: 72i9vAcsq0VbbaMWDt-PtsSI3RU.crl (hash: A8EURUXritVuNHT3KcXcm69fpDy0syijz43zZGL6+VE=) 2: 43BD42D8C6FA11EEB1BFF11FC4F9AE02.roa (hash: 0a3GL0idAd/Vd/8utkLzz0DPOmg7fwIV+oY0ckaEHqo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.crl rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13286 (0x33e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B9D/serialNumber=EF68BDBC072CAB455B6DA3160EDF8FB6C488DD15 Validity Not Before: May 18 15:11:45 2024 GMT Not After : May 25 15:11:45 2024 GMT Subject: CN=6648c532-863d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:63:3c:da:b6:0e:cc:d3:1d:78:5b:83:06:45: 17:5f:d3:bd:90:b8:e8:44:8c:08:ff:73:54:ee:0f: a6:d7:fe:c3:f0:4b:8c:02:65:43:8d:07:f2:0d:a4: 63:d8:f6:af:c4:2e:e7:e4:08:23:aa:4b:a6:05:48: 05:bf:f7:30:4b:99:6c:64:9c:27:cd:38:90:9c:fc: f2:1b:2e:43:9d:70:93:aa:30:5c:e5:b6:f0:f5:71: 72:98:8e:52:e1:be:e6:df:b4:9d:d3:72:47:7b:f1: c9:fd:1e:ea:a5:7a:19:8a:69:59:c8:3e:95:b7:6b: 95:81:cb:ec:f2:7a:02:fb:44:17:f2:65:62:f4:a3: 02:2b:f5:9f:fe:1d:2a:04:a4:92:00:ff:c1:d4:08: bf:0c:24:6e:dc:00:a0:40:c3:05:b1:f0:48:32:4b: 58:ed:28:29:9e:52:06:75:d3:e7:e0:08:7b:5f:f3: 9f:fd:02:48:27:3f:ed:a9:b0:5b:94:f5:6f:fb:f9: e5:c6:bb:9d:6e:be:88:e8:d5:c2:d2:8c:07:c0:ec: 36:f6:2c:23:98:b4:29:27:c6:e9:58:14:9d:16:7d: 65:77:e7:02:4b:c5:22:16:05:e1:5e:96:b4:d1:33: 16:7e:55:68:ac:c5:5c:ef:c8:be:be:40:59:0d:89: 6f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:E3:AF:A3:8C:2E:E5:F0:30:36:BF:4A:84:82:0D:CC:40:43:5A:F4 X509v3 Authority Key Identifier: keyid:EF:68:BD:BC:07:2C:AB:45:5B:6D:A3:16:0E:DF:8F:B6:C4:88:DD:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:d1:19:0e:94:7f:14:c7:8e:21:df:25:e1:73:b6:de:b2:96: 6e:2a:65:36:aa:69:98:c8:f7:22:37:d3:62:2c:76:8d:cf:6f: 59:6d:e2:7f:49:90:27:36:3e:ee:3f:ea:6e:96:a2:b7:7f:e9: 0a:89:31:8b:ed:9e:61:e6:34:58:a4:b5:d9:c5:28:65:b6:1c: e4:c3:2b:f2:bd:8e:b9:85:79:de:10:02:64:0a:ac:05:0d:ea: 39:51:03:2c:d7:dc:dd:33:6d:39:8c:57:fa:2f:05:b1:06:ff: ec:aa:25:4a:96:1f:d4:43:36:63:eb:8f:58:c5:dd:85:c6:a2: e4:69:9e:6b:a8:bd:f8:8c:fb:00:c6:3d:6e:7a:8a:11:d3:0a: 62:0a:b5:0f:3c:78:06:2c:40:cd:49:46:4d:01:e7:13:55:b8: 3d:c9:c7:66:f8:75:c5:c5:12:92:ba:93:92:f4:1f:a5:4b:74: 12:59:28:bc:8d:69:75:df:76:36:64:b1:6b:9a:a6:b2:4e:6a: 10:9b:bb:71:b1:6f:a6:1a:34:1d:95:d8:40:a0:94:12:44:5a: 42:4c:66:0b:a3:9a:b2:8f:2b:2a:91:e6:e8:cf:cb:c4:6d:7c: 90:ab:96:74:62:59:c8:76:6f:2a:6a:b1:35:f1:06:6c:8c:ac: 92:c3:ec:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCOUQxMTAvBgNVBAUTKEVGNjhCREJDMDcyQ0FCNDU1QjZEQTMxNjBFREY4RkI2 QzQ4OEREMTUwHhcNMjQwNTE4MTUxMTQ1WhcNMjQwNTI1MTUxMTQ1WjAYMRYwFAYD VQQDEw02NjQ4YzUzMi04NjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2M82rYOzNMdeFuDBkUXX9O9kLjoRIwI/3NU7g+m1/7D8EuMAmVDjQfyDaRj 2PavxC7n5AgjqkumBUgFv/cwS5lsZJwnzTiQnPzyGy5DnXCTqjBc5bbw9XFymI5S 4b7m37Sd03JHe/HJ/R7qpXoZimlZyD6Vt2uVgcvs8noC+0QX8mVi9KMCK/Wf/h0q BKSSAP/B1Ai/DCRu3ACgQMMFsfBIMktY7SgpnlIGddPn4Ah7X/Of/QJIJz/tqbBb lPVv+/nlxrudbr6I6NXC0owHwOw29iwjmLQpJ8bpWBSdFn1ld+cCS8UiFgXhXpa0 0TMWflVorMVc78i+vkBZDYlvDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGLjr6OM LuXwMDa/SoSCDcxAQ1r0MB8GA1UdIwQYMBaAFO9ovbwHLKtFW22jFg7fj7bEiN0V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEI5RC85NUFEMDM4ODFE OUUxMUUyODgwRTg2OEUwOEIwMkNEMi83Mmk5dkFjc3EwVmJiYU1XRHQtUHRzU0kz UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyaTl2QWNzcTBWYmJhTVdEdC1QdHNTSTNSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEI5RC85NUFEMDM4ODFEOUUxMUUyODgwRTg2OEUwOEIwMkNEMi83Mmk5dkFjc3Ew VmJiYU1XRHQtUHRzU0kzUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn0RkOlH8Ux44h3yXhc7bespZuKmU2qmmYyPciN9NiLHaNz29ZbeJ/ SZAnNj7uP+pulqK3f+kKiTGL7Z5h5jRYpLXZxShlthzkwyvyvY65hXneEAJkCqwF Deo5UQMs19zdM205jFf6LwWxBv/sqiVKlh/UQzZj649Yxd2FxqLkaZ5rqL34jPsA xj1ueooR0wpiCrUPPHgGLEDNSUZNAecTVbg9ycdm+HXFxRKSupOS9B+lS3QSWSi8 jWl133Y2ZLFrmqayTmoQm7txsW+mGjQdldhAoJQSRFpCTGYLo5qyjysqkeboz8vE bXyQq5Z0YlnIdm8qarE18QZsjKySw+x+ -----END CERTIFICATE-----Generated at Sat May 18 15:58:23 2024 by rpki-client on console-ams.rpki-client.org