$ rpki-client -vvf rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft File: S3Z_4wTU8n9REYZLp0O5R5zhSns.mft (raw, json) Hash identifier: 7THFhL7LmfY9EhaADG8CNdM+2lyEmA8A9OzRK2c+uMY= Subject key identifier: 21:39:66:94:2F:DA:CF:2B:FD:DA:F9:24:33:72:37:B1:07:7A:73:82 Authority key identifier: 4B:76:7F:E3:04:D4:F2:7F:51:11:86:4B:A7:43:B9:47:9C:E1:4A:7B Certificate issuer: /CN=A91D53AC/serialNumber=4B767FE304D4F27F5111864BA743B9479CE14A7B Certificate serial: 33C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft Manifest number: 33C6 Signing time: Sat 18 May 2024 14:58:55 +0000 Manifest this update: Sat 18 May 2024 14:58:55 +0000 Manifest next update: Sat 25 May 2024 14:58:55 +0000 Files and hashes: 1: S3Z_4wTU8n9REYZLp0O5R5zhSns.crl (hash: 3YyDPk7WQ714YwZwKOb5nJJlXuLFeQkHLrxGn+2Cftk=) 2: 0C9FD154619611EEADD97F70C4F9AE02.roa (hash: 5RTwQK79dFx5zdcsgItHRlxaRrTF/t48B9CGcpBmd1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.crl rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13256 (0x33c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D53AC/serialNumber=4B767FE304D4F27F5111864BA743B9479CE14A7B Validity Not Before: May 18 14:58:55 2024 GMT Not After : May 25 14:58:55 2024 GMT Subject: CN=6648c22f-7e3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fd:0a:c3:ef:fa:be:12:3c:56:96:9d:61:3f: 70:ed:0a:d3:18:64:fe:6e:4e:b2:17:bd:b5:b2:7f: 03:5f:cb:3d:dc:21:0a:7f:62:ce:f4:54:7f:a5:e5: 59:fc:3e:a0:d0:e3:85:fa:c2:77:31:b0:28:26:56: a3:71:39:5f:0d:06:5e:40:34:d6:08:9b:38:d3:85: 27:d0:17:82:5a:4a:62:04:00:88:5f:a0:d6:85:85: e6:62:24:69:c8:ad:f8:1e:c2:c3:b0:51:d6:c4:8d: f6:b0:1e:86:1a:95:39:79:d8:14:e3:b0:b8:fe:79: e0:2b:1b:84:0f:17:cf:0f:6f:1e:0b:32:36:9b:d1: c2:75:eb:17:e3:93:82:3a:79:1f:ce:c2:ba:0c:2f: 23:2a:f3:ed:a9:7c:15:64:95:30:65:8b:99:48:a4: d2:e1:c1:6b:09:ef:f7:fb:cd:0c:c8:cb:6d:74:17: 39:98:65:34:8e:a5:61:be:77:0f:e1:48:a3:88:6a: 33:c4:c0:36:3a:d1:f1:90:1d:1e:a9:ff:f3:81:eb: 63:aa:62:9f:87:8d:0a:63:03:0b:53:52:c1:4d:22: 4c:f4:86:4e:0d:72:03:20:d2:71:bb:75:7e:5d:fe: fb:7b:93:1b:9b:59:4e:8e:e2:f6:cb:a2:3c:21:fc: f4:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:39:66:94:2F:DA:CF:2B:FD:DA:F9:24:33:72:37:B1:07:7A:73:82 X509v3 Authority Key Identifier: keyid:4B:76:7F:E3:04:D4:F2:7F:51:11:86:4B:A7:43:B9:47:9C:E1:4A:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:00:14:52:ad:f7:86:f0:ff:1d:05:9b:2b:59:33:6f:8f:15: 17:66:ca:26:83:77:31:9d:d1:18:16:bc:92:52:01:7b:4d:0e: 5e:37:33:52:5f:26:a3:d1:33:e4:0f:2d:7f:c3:d7:8a:36:78: 21:66:ca:15:38:63:69:55:8b:f8:7a:ce:dc:87:26:eb:d4:bb: 26:7b:2d:d4:45:25:ba:86:fd:1b:ac:93:db:a0:26:4a:7f:a6: ca:41:fe:66:09:35:25:6d:6a:42:c4:68:70:96:93:0e:82:6d: 4e:40:29:16:67:fd:66:0c:5e:4b:21:b3:b1:5e:6c:83:55:87: 33:3d:85:7b:0e:b5:c7:15:54:25:02:8d:38:65:75:cf:7a:75: 09:80:0c:ff:2f:af:0a:a0:1d:46:18:10:d8:39:e1:2c:44:06: 0e:b0:bb:38:26:62:21:b1:dc:05:13:12:42:d8:7d:2d:ca:20: 60:14:30:90:d9:e3:12:b4:c0:7d:a6:76:f1:59:2b:88:6e:62: 20:18:d7:9e:f2:69:2c:77:5c:7e:3c:a9:86:00:57:24:89:a4: 15:e3:d6:38:8f:21:7a:7e:67:a2:7d:2b:68:2a:27:8c:cf:a9: 0d:90:a3:9f:60:6c:0d:4f:5d:8b:67:3f:31:7a:51:0a:36:a1: 82:23:66:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUzQUMxMTAvBgNVBAUTKDRCNzY3RkUzMDRENEYyN0Y1MTExODY0QkE3NDNCOTQ3 OUNFMTRBN0IwHhcNMjQwNTE4MTQ1ODU1WhcNMjQwNTI1MTQ1ODU1WjAYMRYwFAYD VQQDEw02NjQ4YzIyZi03ZTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqP0Kw+/6vhI8VpadYT9w7QrTGGT+bk6yF721sn8DX8s93CEKf2LO9FR/peVZ /D6g0OOF+sJ3MbAoJlajcTlfDQZeQDTWCJs404Un0BeCWkpiBACIX6DWhYXmYiRp yK34HsLDsFHWxI32sB6GGpU5edgU47C4/nngKxuEDxfPD28eCzI2m9HCdesX45OC OnkfzsK6DC8jKvPtqXwVZJUwZYuZSKTS4cFrCe/3+80MyMttdBc5mGU0jqVhvncP 4UijiGozxMA2OtHxkB0eqf/zgetjqmKfh40KYwMLU1LBTSJM9IZODXIDINJxu3V+ Xf77e5Mbm1lOjuL2y6I8Ifz0ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCE5ZpQv 2s8r/dr5JDNyN7EHenOCMB8GA1UdIwQYMBaAFEt2f+ME1PJ/URGGS6dDuUec4Up7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTNBQy8wMzE2OEM0RTFE OTcxMUUyOEI2QzAwODAwOEIwMkNEMi9TM1pfNHdUVThuOVJFWVpMcDBPNVI1emhT bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzWl80d1RVOG45UkVZWkxwME81UjV6aFNucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTNBQy8wMzE2OEM0RTFEOTcxMUUyOEI2QzAwODAwOEIwMkNEMi9TM1pfNHdUVThu OVJFWVpMcDBPNVI1emhTbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2ABRSrfeG8P8dBZsrWTNvjxUXZsomg3cxndEYFrySUgF7TQ5eNzNS Xyaj0TPkDy1/w9eKNnghZsoVOGNpVYv4es7chybr1Lsmey3URSW6hv0brJPboCZK f6bKQf5mCTUlbWpCxGhwlpMOgm1OQCkWZ/1mDF5LIbOxXmyDVYczPYV7DrXHFVQl Ao04ZXXPenUJgAz/L68KoB1GGBDYOeEsRAYOsLs4JmIhsdwFExJC2H0tyiBgFDCQ 2eMStMB9pnbxWSuIbmIgGNee8mksd1x+PKmGAFckiaQV49Y4jyF6fmeifStoKieM z6kNkKOfYGwNT12LZz8xelEKNqGCI2bl -----END CERTIFICATE-----Generated at Sat May 18 15:26:07 2024 by rpki-client on console-fra.rpki-client.org