$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft File: REhMnzpz9xlXK4vIoaH9nln6hPY.mft (raw, json) Hash identifier: 42sbJ76/iTzHWGFQzfjkCdrleXKrXOyNDa3NsMo2DKY= Subject key identifier: B3:A3:E8:01:B1:E3:D5:52:E6:93:DF:89:AD:A0:8D:35:48:6F:05:2A Authority key identifier: 44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 Certificate issuer: /CN=A91BD73B/serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Certificate serial: 33C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft Manifest number: 33C1 Signing time: Sat 18 May 2024 15:31:38 +0000 Manifest this update: Sat 18 May 2024 15:31:37 +0000 Manifest next update: Sat 25 May 2024 15:31:37 +0000 Files and hashes: 1: REhMnzpz9xlXK4vIoaH9nln6hPY.crl (hash: EBb8IOHPk52A9PNm57oERe3WzhbmFjDpBoQievPaMBk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13249 (0x33c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD73B/serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Validity Not Before: May 18 15:31:37 2024 GMT Not After : May 25 15:31:37 2024 GMT Subject: CN=6648c9d9-7b58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:70:a3:73:a7:cf:b4:a2:8f:9b:b0:8f:33:e5: 11:f2:71:65:e8:75:3e:63:a2:80:ef:fd:b4:f0:46: fb:2a:12:06:db:83:9a:a0:ab:7a:9e:51:1b:c1:ea: bb:eb:63:e4:2b:2a:5b:a7:95:16:3e:6b:1d:e2:93: 58:b0:be:26:48:1f:56:7a:02:dd:1f:ca:4e:be:f7: 91:6c:70:db:9e:0c:37:96:d6:c0:79:f1:4a:98:29: 13:d3:5d:22:53:9a:d5:3c:14:d5:ce:d6:b0:5a:63: 96:31:a8:ec:d8:22:07:26:d0:8d:3f:5c:c3:44:74: 45:a9:8f:2d:cc:08:01:34:3e:52:bf:c0:57:e1:86: 4c:ec:44:83:ce:27:2c:d6:2c:cf:11:e8:a1:f1:e3: 60:31:b6:4b:75:07:d6:d4:05:95:c1:3c:c6:d1:6d: 54:cd:b1:39:2f:39:53:9d:ed:a8:02:54:8c:03:35: 4e:aa:cc:c9:1b:07:0a:b5:ed:2d:08:42:83:80:70: 0e:62:26:d9:a1:6d:95:50:1d:38:3e:50:14:c4:af: 4d:01:7a:f6:6f:b0:da:43:bb:d7:84:96:1b:a5:49: 2d:04:96:d3:19:cd:00:ca:7a:b8:d8:b4:12:99:6f: 25:4a:87:e5:ec:3e:03:ae:c2:31:5d:98:b9:a5:fd: 1c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:A3:E8:01:B1:E3:D5:52:E6:93:DF:89:AD:A0:8D:35:48:6F:05:2A X509v3 Authority Key Identifier: keyid:44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:98:fe:49:da:15:37:ee:e6:1f:7b:a3:70:31:35:d8:94:3e: 9e:07:4e:81:63:e3:df:9d:ef:83:3e:96:78:b7:70:4c:5a:2c: 3e:03:e4:f6:86:07:fe:85:24:d5:f6:fc:4f:80:d8:f4:05:e3: 6d:16:b9:21:01:bd:d1:8a:77:9b:49:e9:b8:0d:9c:1d:b2:d4: e1:52:ae:98:6f:5e:b2:0a:75:e9:d8:65:ba:7d:f3:3a:87:ae: 7d:51:21:5b:e8:6b:18:93:38:61:c2:50:6d:a4:7c:0d:42:2d: 5f:31:46:3a:41:51:c0:0c:31:c6:39:0f:19:fa:8a:42:d1:ec: 9b:da:f5:ce:cf:28:d5:fc:40:90:5e:43:6d:f2:38:2a:81:bf: c6:12:5c:d3:e3:cb:d7:8e:9a:72:15:fa:21:95:4f:15:37:99: 87:ce:f8:f4:1f:02:95:b5:b1:f9:df:2d:9c:79:77:88:5d:b3: b2:83:4d:28:25:7a:46:1d:86:c8:d2:d9:8a:c3:ab:34:e3:53: 3f:ad:93:0e:18:40:20:d4:70:24:60:24:f1:a2:70:3c:cd:90: bd:e3:b9:74:2a:19:e4:6a:08:74:73:e5:49:6f:67:ef:13:35: d6:09:b2:01:7c:4c:3e:ee:78:ca:c0:46:9a:a7:19:05:18:95: 2b:14:f1:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ3M0IxMTAvBgNVBAUTKDQ0NDg0QzlGM0E3M0Y3MTk1NzJCOEJDOEExQTFGRDlF NTlGQTg0RjYwHhcNMjQwNTE4MTUzMTM3WhcNMjQwNTI1MTUzMTM3WjAYMRYwFAYD VQQDEw02NjQ4YzlkOS03YjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7XCjc6fPtKKPm7CPM+UR8nFl6HU+Y6KA7/208Eb7KhIG24OaoKt6nlEbweq7 62PkKypbp5UWPmsd4pNYsL4mSB9WegLdH8pOvveRbHDbngw3ltbAefFKmCkT010i U5rVPBTVztawWmOWMajs2CIHJtCNP1zDRHRFqY8tzAgBND5Sv8BX4YZM7ESDzics 1izPEeih8eNgMbZLdQfW1AWVwTzG0W1UzbE5LzlTne2oAlSMAzVOqszJGwcKte0t CEKDgHAOYibZoW2VUB04PlAUxK9NAXr2b7DaQ7vXhJYbpUktBJbTGc0Aynq42LQS mW8lSofl7D4DrsIxXZi5pf0c5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLOj6AGx 49VS5pPfia2gjTVIbwUqMB8GA1UdIwQYMBaAFERITJ86c/cZVyuLyKGh/Z5Z+oT2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDczQi8yNkJERjMyQzFE QUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4bFhLNHZJb2FIOW5sbjZo UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFaE1uenB6OXhsWEs0dklvYUg5bmxuNmhQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDczQi8yNkJERjMyQzFEQUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4 bFhLNHZJb2FIOW5sbjZoUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQComP5J2hU37uYfe6NwMTXYlD6eB06BY+Pfne+DPpZ4t3BMWiw+A+T2 hgf+hSTV9vxPgNj0BeNtFrkhAb3RinebSem4DZwdstThUq6Yb16yCnXp2GW6ffM6 h659USFb6GsYkzhhwlBtpHwNQi1fMUY6QVHADDHGOQ8Z+opC0eyb2vXOzyjV/ECQ XkNt8jgqgb/GElzT48vXjppyFfohlU8VN5mHzvj0HwKVtbH53y2ceXeIXbOyg00o JXpGHYbI0tmKw6s041M/rZMOGEAg1HAkYCTxonA8zZC947l0Khnkagh0c+VJb2fv EzXWCbIBfEw+7njKwEaapxkFGJUrFPFr -----END CERTIFICATE-----Generated at Sat May 18 17:20:34 2024 by rpki-client on console-ams.rpki-client.org