$ rpki-client -vvf rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft File: 1AI0WEr2BZHzfdP7on68uFzHZWo.mft (raw, json) Hash identifier: 6tB3tBjyMO3XUWwCHYVXuzU4vk6K1279A1Vsg1GBgv0= Subject key identifier: CA:7F:D8:22:A3:46:B1:31:37:CD:EA:26:A2:46:02:4D:5E:C8:C4:7E Authority key identifier: D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A Certificate issuer: /CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Certificate serial: 33D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft Manifest number: 33CD Signing time: Sat 18 May 2024 15:17:12 +0000 Manifest this update: Sat 18 May 2024 15:17:11 +0000 Manifest next update: Sat 25 May 2024 15:17:11 +0000 Files and hashes: 1: 1AI0WEr2BZHzfdP7on68uFzHZWo.crl (hash: /YweQALrIDSpukKCaTMU0+tEHSDQOVb6KcLzWco4fsU=) 2: 1B4B4FC2152F11ECB72E546FC4F9AE02.roa (hash: KMKPVG+0jCHpXnp5D7nAahNeplncEYJavbYVPX+nDp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13265 (0x33d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Validity Not Before: May 18 15:17:11 2024 GMT Not After : May 25 15:17:11 2024 GMT Subject: CN=6648c678-1bbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fa:49:3a:c5:a6:62:cc:40:ed:f4:15:7e:f6: 24:5c:ee:0f:4a:65:75:01:9a:83:4b:40:be:31:08: 75:0b:81:4f:9d:5c:94:9f:ed:34:22:f1:96:a1:cf: 86:ca:23:90:0a:c0:2e:22:28:e5:aa:c0:24:48:bc: 25:e1:70:41:6b:52:2e:05:48:8c:28:f9:b9:77:bb: 49:e5:94:e5:0e:61:ec:62:94:18:4c:ae:69:23:e9: 81:d9:e1:5e:7e:7f:9c:93:08:d0:4b:16:e8:e1:89: be:fc:6e:6e:d8:a1:b2:eb:05:86:2d:59:90:25:67: 2f:c6:d9:c4:04:14:ee:2a:0d:fa:ac:8b:78:28:14: a4:ce:43:0c:9e:be:f0:ce:8d:0b:55:1a:66:3e:ae: 9c:2f:b4:16:fd:e9:98:f0:be:8c:21:8f:34:92:21: 91:18:5c:05:54:df:b7:37:c0:ee:a3:0f:93:24:20: f6:95:46:34:0a:8a:ef:7f:15:89:08:00:13:34:26: d8:1b:99:ac:a0:c4:f3:36:02:c8:35:f0:b3:7e:28: 3a:75:5d:39:a5:07:ab:ee:e7:7e:34:1f:20:59:e6: b0:2c:a0:0d:ea:5b:2a:23:bb:79:86:65:40:b0:47: e3:57:f0:24:53:dd:01:da:44:ff:c0:7d:bc:0a:89: 90:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:7F:D8:22:A3:46:B1:31:37:CD:EA:26:A2:46:02:4D:5E:C8:C4:7E X509v3 Authority Key Identifier: keyid:D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:0a:05:ca:fe:bd:a7:06:e8:78:91:42:09:1a:89:eb:97:b9: e1:81:78:8c:98:4f:90:bf:d0:6e:ed:06:81:a0:f6:c1:14:86: 35:84:c0:5a:80:08:e6:a5:ea:6e:a4:f8:0b:c6:0a:74:24:15: e4:ea:4a:59:9e:5e:8b:5f:48:dc:7d:b3:14:e4:85:fb:81:43: 8e:d0:b7:d2:f4:9f:8e:c0:20:69:fa:2d:c3:40:bf:36:93:f6: 29:7a:1b:17:16:0c:22:2c:2e:2e:44:52:7e:d1:d9:bf:2c:27: 0a:4d:4c:3b:2a:f4:97:9e:9c:32:46:ea:32:de:31:8d:f7:a4: ba:6c:44:01:02:b9:bf:41:c7:ad:d2:f9:bb:65:20:ee:f2:92: b4:8c:60:00:94:e3:67:75:5c:53:94:51:12:1e:77:59:99:f8: ab:fb:c2:25:51:1a:25:30:ed:9a:1d:d3:89:31:1c:b8:7f:65: 91:bb:3f:0a:77:1d:93:5d:c8:88:f7:e8:d2:c0:a5:5f:bd:32: da:f6:91:04:54:c5:b8:9b:e7:36:30:50:7a:df:e5:15:23:a8: 59:3f:03:66:a1:b0:bc:a0:23:64:41:c1:c0:04:56:80:34:b1: 68:06:fe:db:1f:d4:e5:20:0a:21:d8:0f:1a:8e:5d:88:a3:3b: ce:d1:7f:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3RjMxMTAvBgNVBAUTKEQ0MDIzNDU4NEFGNjA1OTFGMzdERDNGQkEyN0VCQ0I4 NUNDNzY1NkEwHhcNMjQwNTE4MTUxNzExWhcNMjQwNTI1MTUxNzExWjAYMRYwFAYD VQQDEw02NjQ4YzY3OC0xYmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfpJOsWmYsxA7fQVfvYkXO4PSmV1AZqDS0C+MQh1C4FPnVyUn+00IvGWoc+G yiOQCsAuIijlqsAkSLwl4XBBa1IuBUiMKPm5d7tJ5ZTlDmHsYpQYTK5pI+mB2eFe fn+ckwjQSxbo4Ym+/G5u2KGy6wWGLVmQJWcvxtnEBBTuKg36rIt4KBSkzkMMnr7w zo0LVRpmPq6cL7QW/emY8L6MIY80kiGRGFwFVN+3N8Duow+TJCD2lUY0CorvfxWJ CAATNCbYG5msoMTzNgLINfCzfig6dV05pQer7ud+NB8gWeawLKAN6lsqI7t5hmVA sEfjV/AkU90B2kT/wH28ComQfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMp/2CKj RrExN83qJqJGAk1eyMR+MB8GA1UdIwQYMBaAFNQCNFhK9gWR833T+6J+vLhcx2Vq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjdGMy9BNkRFMUNFODFE QTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJaSHpmZFA3b242OHVGekha V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBSTBXRXIyQlpIemZkUDdvbjY4dUZ6SFpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjdGMy9BNkRFMUNFODFEQTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJa SHpmZFA3b242OHVGekhaV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARCgXK/r2nBuh4kUIJGonrl7nhgXiMmE+Qv9Bu7QaBoPbBFIY1hMBa gAjmpepupPgLxgp0JBXk6kpZnl6LX0jcfbMU5IX7gUOO0LfS9J+OwCBp+i3DQL82 k/YpehsXFgwiLC4uRFJ+0dm/LCcKTUw7KvSXnpwyRuoy3jGN96S6bEQBArm/Qcet 0vm7ZSDu8pK0jGAAlONndVxTlFESHndZmfir+8IlURolMO2aHdOJMRy4f2WRuz8K dx2TXciI9+jSwKVfvTLa9pEEVMW4m+c2MFB63+UVI6hZPwNmobC8oCNkQcHABFaA NLFoBv7bH9TlIAoh2A8ajl2IozvO0X+q -----END CERTIFICATE-----Generated at Sat May 18 16:20:16 2024 by rpki-client on console-fra.rpki-client.org