$ rpki-client -vvf rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.mft File: 33nDugFSYeOshDI5zkcDWQHWapQ.mft (raw, json) Hash identifier: pqnjdSr/Pb4QQtktt0i9PveKnUHLcRSlDYZ+k7N9U1E= Subject key identifier: 46:D4:F5:63:4C:57:D5:E1:23:F8:AF:32:DC:33:E2:43:66:C6:71:C5 Authority key identifier: DF:79:C3:BA:01:52:61:E3:AC:84:32:39:CE:47:03:59:01:D6:6A:94 Certificate issuer: /CN=A91C572B/serialNumber=DF79C3BA015261E3AC843239CE47035901D66A94 Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33nDugFSYeOshDI5zkcDWQHWapQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.mft Manifest number: B2 Signing time: Fri 31 May 2024 07:21:50 +0000 Manifest this update: Fri 31 May 2024 07:21:50 +0000 Manifest next update: Fri 07 Jun 2024 07:21:50 +0000 Files and hashes: 1: 33nDugFSYeOshDI5zkcDWQHWapQ.crl (hash: KAzEe5k2q3Zq6rVrZKBIF9XKs+Dn+QsyqoCWiN/lG4c=) 2: 18DC0A381C0311EE9B0F2938C4F9AE02.roa (hash: 0BcdM9lm2dAvyx19nxI7WV2RhXBC6HkEFA/hF6vPu9w=) 3: 17C68D301C0311EE9B0F2938C4F9AE02.roa (hash: fPM8alKORYOjjQhG6pmvkAq1pvJRWpLBYLgvtxvlZeM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.crl rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33nDugFSYeOshDI5zkcDWQHWapQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:21:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C572B/serialNumber=DF79C3BA015261E3AC843239CE47035901D66A94 Validity Not Before: May 31 07:21:50 2024 GMT Not After : Jun 7 07:21:50 2024 GMT Subject: CN=66597a8e-60e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:28:40:65:95:ba:85:be:0c:62:3d:78:de:9a: d3:e7:d5:da:5c:5c:ee:6e:94:b8:c8:7b:f3:20:0f: 6e:fb:c6:94:54:17:cd:59:37:d7:fa:0a:b8:91:5e: e2:4b:0e:b4:dd:dc:ea:2d:4e:b3:6b:51:09:31:72: 62:07:70:e3:dc:99:b0:cb:5a:e9:f2:39:fd:be:5c: d9:58:8a:76:f4:f5:8e:73:3e:93:e2:20:f4:2f:37: fa:2e:ed:ce:5c:03:fe:68:69:13:c5:b4:ed:ae:4f: 21:40:53:4a:aa:74:9e:34:08:56:ce:02:1a:54:d2: 71:6b:01:4c:ad:c7:a1:03:fa:15:a9:f6:49:d1:9c: b8:08:c2:fb:80:78:28:4e:e0:cd:d7:88:9e:9b:71: bb:02:df:de:2a:bf:12:17:07:1a:36:b2:60:50:c2: 40:bb:f8:03:3b:58:48:ce:a7:20:2d:34:2f:c0:8d: 12:8f:e6:06:a2:be:75:46:45:d0:66:16:40:41:89: 21:d8:da:ab:66:9c:2b:e9:38:30:f8:ba:fb:7b:a4: d4:be:b0:bf:2d:54:d4:5d:aa:43:01:47:c0:ed:89: bf:f1:3a:50:42:65:1e:51:d4:c9:23:f7:15:3a:18: b5:d0:87:3d:46:8a:c2:c3:d1:46:85:b7:c3:96:e8: f1:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:D4:F5:63:4C:57:D5:E1:23:F8:AF:32:DC:33:E2:43:66:C6:71:C5 X509v3 Authority Key Identifier: keyid:DF:79:C3:BA:01:52:61:E3:AC:84:32:39:CE:47:03:59:01:D6:6A:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33nDugFSYeOshDI5zkcDWQHWapQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:92:e8:9d:f5:f2:ed:f8:e4:b1:f4:58:1d:b4:a2:a0:ac:14: 83:76:3d:72:c1:59:a7:2b:1a:9a:57:62:f1:68:8e:fe:18:81: 83:cf:a9:3d:78:9f:81:d8:18:f7:4a:e8:55:ff:24:da:50:be: 15:7f:f4:e1:5f:5a:64:8e:c3:d8:05:1d:82:a1:b1:6b:3c:7b: f4:f5:15:ad:06:3a:75:72:96:60:a2:6e:04:55:5d:5b:e4:9c: bc:e8:7e:f1:a2:64:9a:35:c6:09:a6:df:cb:51:8d:90:e7:6b: 2f:6e:4c:fe:27:df:7b:9f:5f:3e:69:26:be:6a:72:0d:12:a2: ae:24:bf:cb:be:87:e2:b6:fb:d8:58:be:43:88:ac:9b:8a:8f: e9:99:c8:a2:94:3c:bc:2e:4e:e1:97:79:c2:47:1a:87:a7:02: 59:c7:66:47:1e:d5:64:7c:a8:48:f9:42:ad:6d:82:a0:52:35: 26:06:65:49:0b:d5:46:7d:22:00:78:9f:c8:54:a6:2a:16:9e: c1:f1:99:69:ee:80:e7:cc:18:02:b6:c2:00:c5:ff:b2:30:0f: a7:02:3b:d1:66:61:80:7c:95:4a:cd:03:4d:26:99:78:84:ff: 99:27:d5:50:31:00:da:f6:cd:9b:f7:0d:c5:d4:3a:9c:ad:37: b8:00:68:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU3MkIxMTAvBgNVBAUTKERGNzlDM0JBMDE1MjYxRTNBQzg0MzIzOUNFNDcwMzU5 MDFENjZBOTQwHhcNMjQwNTMxMDcyMTUwWhcNMjQwNjA3MDcyMTUwWjAYMRYwFAYD VQQDEw02NjU5N2E4ZS02MGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuShAZZW6hb4MYj143prT59XaXFzubpS4yHvzIA9u+8aUVBfNWTfX+gq4kV7i Sw603dzqLU6za1EJMXJiB3Dj3Jmwy1rp8jn9vlzZWIp29PWOcz6T4iD0Lzf6Lu3O XAP+aGkTxbTtrk8hQFNKqnSeNAhWzgIaVNJxawFMrcehA/oVqfZJ0Zy4CML7gHgo TuDN14iem3G7At/eKr8SFwcaNrJgUMJAu/gDO1hIzqcgLTQvwI0Sj+YGor51RkXQ ZhZAQYkh2NqrZpwr6Tgw+Lr7e6TUvrC/LVTUXapDAUfA7Ym/8TpQQmUeUdTJI/cV Ohi10Ic9RorCw9FGhbfDlujxGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEbU9WNM V9XhI/ivMtwz4kNmxnHFMB8GA1UdIwQYMBaAFN95w7oBUmHjrIQyOc5HA1kB1mqU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTcyQi9GN0U1QzE2ODBF OUExMUVFQTY0NDlFNzFDNEY5QUUwMi8zM25EdWdGU1llT3NoREk1emtjRFdRSFdh cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzbkR1Z0ZTWWVPc2hESTV6a2NEV1FIV2FwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTcyQi9GN0U1QzE2ODBFOUExMUVFQTY0NDlFNzFDNEY5QUUwMi8zM25EdWdGU1ll T3NoREk1emtjRFdRSFdhcFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUkuid9fLt+OSx9FgdtKKgrBSDdj1ywVmnKxqaV2LxaI7+GIGDz6k9 eJ+B2Bj3SuhV/yTaUL4Vf/ThX1pkjsPYBR2CobFrPHv09RWtBjp1cpZgom4EVV1b 5Jy86H7xomSaNcYJpt/LUY2Q52svbkz+J997n18+aSa+anINEqKuJL/LvofitvvY WL5DiKybio/pmciilDy8Lk7hl3nCRxqHpwJZx2ZHHtVkfKhI+UKtbYKgUjUmBmVJ C9VGfSIAeJ/IVKYqFp7B8Zlp7oDnzBgCtsIAxf+yMA+nAjvRZmGAfJVKzQNNJpl4 hP+ZJ9VQMQDa9s2b9w3F1DqcrTe4AGgp -----END CERTIFICATE-----Generated at Fri May 31 08:39:00 2024 by rpki-client on console-fra.rpki-client.org