$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft File: maB2Nu64AHCDMDGWpYxBvsxoj4A.mft (raw, json) Hash identifier: BvZjuAnzN0LT8GWXY+zGWARtCYFmOJzqBSZ4gFWYYfA= Subject key identifier: E7:E9:AB:36:E0:21:F7:99:6F:0E:2D:66:42:9F:47:D1:BA:C4:67:B2 Authority key identifier: 99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 Certificate issuer: /CN=A91EEC3B/serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Certificate serial: 0B15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft Manifest number: 29F7 Signing time: Sat 18 May 2024 16:56:12 +0000 Manifest this update: Sat 18 May 2024 16:56:11 +0000 Manifest next update: Sat 25 May 2024 16:56:11 +0000 Files and hashes: 1: maB2Nu64AHCDMDGWpYxBvsxoj4A.crl (hash: y7qghS6v/zqDUfuDLPPmco8uKwgncYfPrSTytOlGvTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2837 (0xb15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEC3B/serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Validity Not Before: May 18 16:56:11 2024 GMT Not After : May 25 16:56:11 2024 GMT Subject: CN=6648ddab-81bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:ff:b1:ab:66:43:53:f1:22:6a:bc:7c:97:91: a6:cc:c2:01:0b:e4:cc:8e:79:7c:1c:75:c1:2e:7e: 51:d4:cf:7c:14:9f:0b:cf:2a:d2:f5:38:da:fe:a9: bc:32:7f:ee:65:53:38:37:1a:7e:74:1d:98:50:f1: d1:63:fe:d4:80:83:cc:8f:4d:7b:a0:87:00:ad:72: 8d:d5:8d:98:ad:b4:74:7f:37:e3:c7:4a:e6:49:03: 67:bf:0e:2b:ac:d9:82:ba:64:09:66:b0:a1:63:f7: 74:b5:ee:61:96:74:e8:a6:9d:7b:cb:9b:b9:34:6e: 82:7f:da:ad:5a:2c:ed:9a:fc:68:27:46:fe:58:af: 96:12:64:e4:ff:42:d8:a7:96:0e:d6:4b:aa:04:d0: 3b:99:4b:bc:0f:b0:e5:48:7a:9e:cf:87:60:22:76: 45:c4:a8:13:3f:92:b9:19:3f:cd:11:fd:b3:b1:1a: e1:ec:53:54:ac:04:b0:71:68:5c:3d:83:9c:70:93: 6e:0c:0f:d5:57:89:15:4f:87:0f:23:b6:28:cd:38: b1:c0:b7:74:dc:0f:1a:fb:fb:10:c9:53:2c:7a:14: fb:ae:2a:9b:46:54:8f:99:47:19:a4:cf:f5:25:27: 14:67:19:08:df:4e:f9:4e:28:15:ae:23:20:88:45: 6c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E9:AB:36:E0:21:F7:99:6F:0E:2D:66:42:9F:47:D1:BA:C4:67:B2 X509v3 Authority Key Identifier: keyid:99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:19:f0:52:eb:b4:7f:b7:39:39:6d:7b:5b:ca:b5:45:8a:25: 84:15:9a:38:dc:1c:0d:77:28:85:06:85:17:03:fe:36:75:3d: f0:35:7e:c9:37:99:3a:22:c6:28:e8:35:fb:0b:2c:92:19:dc: a7:2c:cf:70:b5:54:aa:e2:f0:cb:00:8e:d8:0b:00:0c:a8:9d: 3f:bc:a6:f2:e6:ad:cd:a9:57:6c:c6:7d:17:c3:0b:f5:ba:4b: 6c:2b:ca:d8:34:bd:8b:db:55:61:6c:2e:df:fe:d9:ac:22:29: 89:2d:b2:13:bc:d3:48:2d:3c:92:52:9a:72:bc:28:a8:ed:bb: 15:3b:e8:7e:12:ee:51:be:b6:35:24:e9:0b:1e:9b:41:a0:57: e3:07:7e:c3:9c:33:24:43:e1:2d:91:01:46:a0:ca:ee:97:e7: ee:14:c6:c1:1b:09:44:58:29:6d:aa:9c:54:1b:88:0d:15:ce: 11:db:d0:91:08:8c:60:6c:fa:86:19:cf:41:98:f6:e7:eb:27: 91:8d:c5:c5:60:ea:6f:e8:de:72:40:c0:94:2e:ac:e3:52:f4: 72:ef:55:8d:4d:66:02:e0:27:ca:aa:22:12:3a:f7:68:f2:7f: 2a:3a:2c:ab:8b:bb:59:78:6f:78:d0:43:d1:89:4f:8a:72:6e: c5:c3:18:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDM0IxMTAvBgNVBAUTKDk5QTA3NjM2RUVCODAwNzA4MzMwMzE5NkE1OEM0MUJF Q0M2ODhGODAwHhcNMjQwNTE4MTY1NjExWhcNMjQwNTI1MTY1NjExWjAYMRYwFAYD VQQDEw02NjQ4ZGRhYi04MWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8v+xq2ZDU/Eiarx8l5GmzMIBC+TMjnl8HHXBLn5R1M98FJ8LzyrS9Tja/qm8 Mn/uZVM4Nxp+dB2YUPHRY/7UgIPMj017oIcArXKN1Y2YrbR0fzfjx0rmSQNnvw4r rNmCumQJZrChY/d0te5hlnTopp17y5u5NG6Cf9qtWiztmvxoJ0b+WK+WEmTk/0LY p5YO1kuqBNA7mUu8D7DlSHqez4dgInZFxKgTP5K5GT/NEf2zsRrh7FNUrASwcWhc PYOccJNuDA/VV4kVT4cPI7YozTixwLd03A8a+/sQyVMsehT7riqbRlSPmUcZpM/1 JScUZxkI3075TigVriMgiEVs+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfpqzbg IfeZbw4tZkKfR9G6xGeyMB8GA1UdIwQYMBaAFJmgdjbuuABwgzAxlqWMQb7MaI+A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUMzQi82QjM3RTE5Qzg0 MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFIQ0RNREdXcFl4QnZzeG9q NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21hQjJOdTY0QUhDRE1ER1dwWXhCdnN4b2o0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RUMzQi82QjM3RTE5Qzg0MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFI Q0RNREdXcFl4QnZzeG9qNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8GfBS67R/tzk5bXtbyrVFiiWEFZo43BwNdyiFBoUXA/42dT3wNX7J N5k6IsYo6DX7CyySGdynLM9wtVSq4vDLAI7YCwAMqJ0/vKby5q3NqVdsxn0Xwwv1 uktsK8rYNL2L21VhbC7f/tmsIimJLbITvNNILTySUppyvCio7bsVO+h+Eu5RvrY1 JOkLHptBoFfjB37DnDMkQ+EtkQFGoMrul+fuFMbBGwlEWCltqpxUG4gNFc4R29CR CIxgbPqGGc9BmPbn6yeRjcXFYOpv6N5yQMCULqzjUvRy71WNTWYC4CfKqiISOvdo 8n8qOiyri7tZeG940EPRiU+Kcm7Fwxhy -----END CERTIFICATE-----Generated at Sat May 18 18:21:40 2024 by rpki-client on console-ams.rpki-client.org