$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft File: MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft (raw, json) Hash identifier: pJLdEGUUDsrcubnRCty6Jj9vTHBODnE+2vTk8ryQKog= Subject key identifier: 66:9E:41:83:8B:9A:77:5E:0A:F7:AD:1E:F5:91:79:BA:E6:9E:3D:CF Authority key identifier: 32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 Certificate issuer: /CN=A91DA023/serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Certificate serial: 33BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft Manifest number: 33BF Signing time: Sat 18 May 2024 15:15:06 +0000 Manifest this update: Sat 18 May 2024 15:15:05 +0000 Manifest next update: Sat 25 May 2024 15:15:05 +0000 Files and hashes: 1: MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl (hash: 4lO0bEHB/vv5XTXyg0aR8NH53nWTzpkwni65qw19j4k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13247 (0x33bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA023/serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Validity Not Before: May 18 15:15:05 2024 GMT Not After : May 25 15:15:05 2024 GMT Subject: CN=6648c5fa-878f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:09:a8:5e:09:66:ef:d1:99:e1:1d:2a:58:51: 50:e4:1d:95:a0:bf:3a:46:8c:0b:ff:6e:c1:ec:6f: ec:fd:76:79:9d:b2:03:12:7d:7d:fb:72:65:b9:ca: 1c:74:c1:b3:71:68:8d:7b:fd:35:60:0b:c9:21:1e: b1:47:44:0d:2e:d4:4b:ab:26:64:6f:b6:46:31:33: 52:0e:17:cc:0f:6a:74:3f:0a:e2:7f:93:7b:8c:49: a5:88:69:a6:e8:aa:dc:73:3e:66:7f:74:a4:06:91: f6:0d:de:58:56:3a:33:80:ec:b3:f1:63:66:04:41: 55:84:89:69:a9:e5:46:06:4a:5c:5f:cf:61:64:91: 20:38:21:d0:84:07:ae:81:87:ee:55:db:52:fc:9d: 9f:ea:d4:a4:78:26:22:99:59:25:33:52:01:eb:cc: 06:21:e0:15:9d:7f:a0:c2:86:3e:6a:79:10:f6:c4: 25:ba:63:47:7d:34:46:73:a3:c8:81:33:1d:68:fd: 38:90:f0:14:94:a3:6d:97:43:31:52:5a:d0:df:d7: eb:73:26:dc:14:ed:20:25:c4:2a:c2:3a:c2:4c:a5: 66:02:7e:b9:e0:e7:6b:0b:4e:5c:59:b6:40:0f:3e: f0:9d:40:43:a4:80:3f:b8:6e:c9:6c:65:3d:43:8c: ef:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:9E:41:83:8B:9A:77:5E:0A:F7:AD:1E:F5:91:79:BA:E6:9E:3D:CF X509v3 Authority Key Identifier: keyid:32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:50:72:97:a9:12:c2:68:46:74:75:18:19:a3:13:04:0d:7d: a9:9e:d1:ad:8f:73:71:cb:60:c6:c9:16:a6:af:a6:c9:1d:fc: e0:c4:d4:1e:98:cd:34:94:a9:3b:ce:de:66:89:5a:b6:a2:3b: 2a:35:93:f3:de:8e:5a:21:35:6d:88:74:4c:6d:62:0c:95:84: d8:81:d9:94:dd:57:5c:fe:6d:19:5c:a8:8b:e0:fb:bd:93:8a: de:cf:5e:f5:33:82:6c:d6:96:7c:cd:21:6e:c4:87:94:be:0c: 92:1f:9b:eb:c6:ab:1b:20:97:c8:15:c1:20:76:dc:af:eb:d3: fe:48:2d:1e:4c:1b:20:bc:82:9f:c8:0a:f9:64:2c:cb:ac:3d: 58:f5:ea:c3:ad:17:e1:b9:22:01:72:b6:31:aa:a8:29:03:5c: 7c:2e:04:89:ab:91:9a:e6:ea:e5:43:1a:80:30:67:c0:f0:fd: 4e:68:41:04:48:d5:1b:ff:93:16:ef:5f:ee:74:86:6c:b4:c7: 04:80:ed:33:7e:44:e6:09:95:84:72:d1:ff:7d:5c:47:c4:be: c5:e0:48:ce:a9:35:a7:e6:5b:b9:39:09:89:c0:55:01:06:7d: 21:d5:0c:71:a0:30:bc:b6:d0:8a:6f:db:32:ef:c2:b5:c5:b8: 9e:f4:19:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjMxMTAvBgNVBAUTKDMyNzBGM0FDRDk3MUVFREY4NDYxNzU0OEY3MkU1MUUy MkE1MDNDRjgwHhcNMjQwNTE4MTUxNTA1WhcNMjQwNTI1MTUxNTA1WjAYMRYwFAYD VQQDEw02NjQ4YzVmYS04NzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2AmoXglm79GZ4R0qWFFQ5B2VoL86RowL/27B7G/s/XZ5nbIDEn19+3Jlucoc dMGzcWiNe/01YAvJIR6xR0QNLtRLqyZkb7ZGMTNSDhfMD2p0Pwrif5N7jEmliGmm 6Krccz5mf3SkBpH2Dd5YVjozgOyz8WNmBEFVhIlpqeVGBkpcX89hZJEgOCHQhAeu gYfuVdtS/J2f6tSkeCYimVklM1IB68wGIeAVnX+gwoY+ankQ9sQlumNHfTRGc6PI gTMdaP04kPAUlKNtl0MxUlrQ39frcybcFO0gJcQqwjrCTKVmAn654OdrC05cWbZA Dz7wnUBDpIA/uG7JbGU9Q4zvrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGaeQYOL mndeCvetHvWRebrmnj3PMB8GA1UdIwQYMBaAFDJw86zZce7fhGF1SPcuUeIqUDz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMy82RjE3MkRGMDFE QTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0LUVZWFZJOXk1UjRpcFFQ UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01uRHpyTmx4N3QtRVlYVkk5eTVSNGlwUVBQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTAyMy82RjE3MkRGMDFEQTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0 LUVZWFZJOXk1UjRpcFFQUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgUHKXqRLCaEZ0dRgZoxMEDX2pntGtj3Nxy2DGyRamr6bJHfzgxNQe mM00lKk7zt5miVq2ojsqNZPz3o5aITVtiHRMbWIMlYTYgdmU3Vdc/m0ZXKiL4Pu9 k4rez171M4Js1pZ8zSFuxIeUvgySH5vrxqsbIJfIFcEgdtyv69P+SC0eTBsgvIKf yAr5ZCzLrD1Y9erDrRfhuSIBcrYxqqgpA1x8LgSJq5Ga5urlQxqAMGfA8P1OaEEE SNUb/5MW71/udIZstMcEgO0zfkTmCZWEctH/fVxHxL7F4EjOqTWn5lu5OQmJwFUB Bn0h1QxxoDC8ttCKb9sy78K1xbie9BmW -----END CERTIFICATE-----Generated at Sat May 18 16:20:16 2024 by rpki-client on console-fra.rpki-client.org