$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft File: MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft (raw, json) Hash identifier: bVV+DpXr9DEMteCJMrxudCRTUdTILoFtgsojK4KOSrQ= Subject key identifier: A5:0F:7B:B1:0F:40:2E:3E:DF:C8:AD:D7:D5:32:6A:8B:C2:10:D6:EE Authority key identifier: 30:7A:D4:5E:01:B8:47:9F:A2:28:A1:23:DE:7A:FA:A5:D1:97:C1:7D Certificate issuer: /CN=A91B4F3C/serialNumber=307AD45E01B8479FA228A123DE7AFAA5D197C17D Certificate serial: 33C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft Manifest number: 33C5 Signing time: Sat 18 May 2024 15:25:14 +0000 Manifest this update: Sat 18 May 2024 15:25:14 +0000 Manifest next update: Sat 25 May 2024 15:25:14 +0000 Files and hashes: 1: MHrUXgG4R5-iKKEj3nr6pdGXwX0.crl (hash: 0TG3QnFpgb+hVoV/KGz5SF/qC+/JxyoAmumjSjPOrW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.crl rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13253 (0x33c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4F3C/serialNumber=307AD45E01B8479FA228A123DE7AFAA5D197C17D Validity Not Before: May 18 15:25:14 2024 GMT Not After : May 25 15:25:14 2024 GMT Subject: CN=6648c85a-d9b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ef:87:4f:6f:5e:52:b2:b4:cd:a0:26:4d:6c: e1:a5:aa:c7:ab:63:26:ab:24:71:38:06:0a:00:84: 3f:db:0d:23:e3:c5:5e:2c:e2:48:17:7b:9b:33:f9: 66:89:55:c0:00:33:ff:c6:be:18:1d:f1:76:4a:78: ed:6a:19:be:dc:a6:c2:61:62:17:8f:51:e4:42:8c: 0b:bb:1e:08:6a:fb:85:5b:dc:e8:6d:71:6d:a5:6d: 95:33:48:9f:90:22:42:e2:e4:77:98:38:11:6c:56: 41:a6:58:e1:4d:fc:6d:b0:54:5f:1c:d7:b5:f9:67: bc:70:56:ad:7c:85:01:bd:81:ab:07:98:1f:0e:4e: e1:7b:71:9a:13:67:a5:8b:25:64:b8:86:76:f1:08: 6a:7b:1e:a8:e8:a4:ad:48:24:e5:e6:71:41:b3:a3: 76:53:25:ce:26:ac:1f:97:ea:f0:fc:83:12:ca:db: 42:47:0a:ef:3b:73:1a:ae:4a:2b:40:62:8d:90:3b: 42:0c:bb:45:db:69:5e:61:5b:22:7a:1a:3a:fb:d5: 23:b9:a5:86:47:4b:72:29:53:aa:23:e1:88:9f:c1: f9:ed:3e:fb:aa:72:68:66:de:bc:f6:68:aa:52:47: fc:60:cb:e7:97:63:8d:c5:83:57:40:4a:2b:fe:6f: 67:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:0F:7B:B1:0F:40:2E:3E:DF:C8:AD:D7:D5:32:6A:8B:C2:10:D6:EE X509v3 Authority Key Identifier: keyid:30:7A:D4:5E:01:B8:47:9F:A2:28:A1:23:DE:7A:FA:A5:D1:97:C1:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:4b:48:bb:62:3a:09:38:60:54:d4:b6:fa:11:50:df:f2:81: a7:5e:93:3e:49:81:11:fb:d3:38:f9:87:a0:7a:7e:6f:15:9e: cc:a7:a6:48:26:42:69:8f:54:f6:75:11:f2:cf:10:c2:b5:b9: 0b:3e:6f:bc:82:cb:b3:b9:8d:a3:02:4c:f2:fa:cc:13:0d:2b: d6:3a:40:5c:dc:dd:79:4a:5c:51:37:ae:78:87:c8:dd:ae:1c: fb:70:89:a5:08:00:13:60:58:9b:ca:6b:b5:2a:f0:d0:5b:8d: e1:77:32:0c:d1:5c:07:8a:d1:87:0b:04:c3:6f:c6:7d:b9:9e: 6d:d7:e7:60:b0:6a:d3:9c:a5:c2:4b:7e:a5:0b:de:7d:fe:02: d4:88:31:d0:f4:01:69:2d:8f:25:59:3f:a5:2d:f2:b5:35:2e: 24:b1:8c:ea:c7:6e:61:03:c0:66:25:85:ef:03:6f:7c:c7:29: ee:69:22:22:ab:41:95:2f:db:67:55:16:7a:66:3d:07:00:72: db:eb:c6:a3:a2:5c:a9:bf:1d:14:8b:d2:5d:c8:09:dd:76:3a: 58:80:80:17:24:ab:87:69:61:28:cd:df:3f:a4:2a:de:f6:81: e7:93:53:31:3d:36:46:b4:7b:72:cb:bb:b7:4b:f5:09:fb:13: 8c:eb:33:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRGM0MxMTAvBgNVBAUTKDMwN0FENDVFMDFCODQ3OUZBMjI4QTEyM0RFN0FGQUE1 RDE5N0MxN0QwHhcNMjQwNTE4MTUyNTE0WhcNMjQwNTI1MTUyNTE0WjAYMRYwFAYD VQQDEw02NjQ4Yzg1YS1kOWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwO+HT29eUrK0zaAmTWzhparHq2MmqyRxOAYKAIQ/2w0j48VeLOJIF3ubM/lm iVXAADP/xr4YHfF2Snjtahm+3KbCYWIXj1HkQowLux4IavuFW9zobXFtpW2VM0if kCJC4uR3mDgRbFZBpljhTfxtsFRfHNe1+We8cFatfIUBvYGrB5gfDk7he3GaE2el iyVkuIZ28Qhqex6o6KStSCTl5nFBs6N2UyXOJqwfl+rw/IMSyttCRwrvO3Markor QGKNkDtCDLtF22leYVsieho6+9UjuaWGR0tyKVOqI+GIn8H57T77qnJoZt689miq Ukf8YMvnl2ONxYNXQEor/m9nJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKUPe7EP QC4+38it19UyaovCENbuMB8GA1UdIwQYMBaAFDB61F4BuEefoiihI956+qXRl8F9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEYzQy84QTU1QTZBNDFE QTYxMUUyQjkxQ0QyOUQwOEIwMkNEMi9NSHJVWGdHNFI1LWlLS0VqM25yNnBkR1h3 WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01IclVYZ0c0UjUtaUtLRWozbnI2cGRHWHdYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEYzQy84QTU1QTZBNDFEQTYxMUUyQjkxQ0QyOUQwOEIwMkNEMi9NSHJVWGdHNFI1 LWlLS0VqM25yNnBkR1h3WDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjS0i7YjoJOGBU1Lb6EVDf8oGnXpM+SYER+9M4+Yegen5vFZ7Mp6ZI JkJpj1T2dRHyzxDCtbkLPm+8gsuzuY2jAkzy+swTDSvWOkBc3N15SlxRN654h8jd rhz7cImlCAATYFibymu1KvDQW43hdzIM0VwHitGHCwTDb8Z9uZ5t1+dgsGrTnKXC S36lC959/gLUiDHQ9AFpLY8lWT+lLfK1NS4ksYzqx25hA8BmJYXvA298xynuaSIi q0GVL9tnVRZ6Zj0HAHLb68ajolypvx0Ui9JdyAnddjpYgIAXJKuHaWEozd8/pCre 9oHnk1MxPTZGtHtyy7u3S/UJ+xOM6zPe -----END CERTIFICATE-----Generated at Sat May 18 16:20:16 2024 by rpki-client on console-fra.rpki-client.org