$ rpki-client -vvf rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft File: aamToYghmKytXxzqNQZrr0nn1dA.mft (raw, json) Hash identifier: 1uf1rVC/ctKp4ESElJdgwTGGZ7BeqYKZkzGzrqYwV0E= Subject key identifier: 44:C7:F7:8C:70:55:C0:69:3B:BD:96:00:2E:7B:48:B6:E6:35:3F:DC Authority key identifier: 69:A9:93:A1:88:21:98:AC:AD:5F:1C:EA:35:06:6B:AF:49:E7:D5:D0 Certificate issuer: /CN=A912B23F/serialNumber=69A993A1882198ACAD5F1CEA35066BAF49E7D5D0 Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft Manifest number: 1F Signing time: Wed 15 May 2024 08:45:47 +0000 Manifest this update: Wed 15 May 2024 08:45:46 +0000 Manifest next update: Wed 22 May 2024 08:45:46 +0000 Files and hashes: 1: aamToYghmKytXxzqNQZrr0nn1dA.crl (hash: bKhdUGztHWrCljqmrJAvcq/V/S1zq4RqtAT4LYHuQng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.crl rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B23F/serialNumber=69A993A1882198ACAD5F1CEA35066BAF49E7D5D0 Validity Not Before: May 15 08:45:46 2024 GMT Not After : May 22 08:45:46 2024 GMT Subject: CN=6644763b-a2ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:90:4d:25:41:b1:47:11:98:d7:b0:ad:08:8b: 6f:a9:fc:2a:ac:0d:93:61:0a:bf:36:9e:8e:c9:3b: 25:73:ec:70:3e:b6:e3:30:9b:42:7d:ee:92:3b:74: 75:5f:96:45:0c:36:ea:0b:8c:91:40:fd:ba:02:b6: be:38:d2:ab:e6:52:9c:ac:5e:95:63:34:f5:5b:c3: c2:7d:1d:f7:51:f3:9a:aa:26:70:3e:15:4b:0d:9d: 26:27:99:14:47:3e:df:17:87:c6:6e:bc:60:85:42: 72:1b:cd:ce:4b:44:90:46:c6:8f:f1:61:cf:04:1e: 82:f2:03:37:98:a0:73:d4:86:49:d2:2d:e2:ad:01: f3:c3:c9:d4:c7:c6:3b:16:db:e5:7f:b7:b8:83:19: fa:da:6d:8e:d3:7f:bf:06:39:46:13:28:12:f6:22: a8:86:21:59:ba:34:a7:d4:f9:50:21:c3:3a:99:bb: a2:e2:89:37:73:e3:10:ca:40:a6:01:e5:13:40:44: 41:94:0a:07:f5:23:db:24:1b:1d:98:49:ef:a7:01: 9e:ff:b6:f2:99:f6:97:a8:35:e8:a6:a1:e8:55:47: 8d:9d:4e:af:d9:92:b9:c2:a0:4d:0a:04:9a:d8:21: ed:8d:d6:70:1b:bf:eb:b4:d3:62:f9:e8:b7:1a:0b: f3:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:C7:F7:8C:70:55:C0:69:3B:BD:96:00:2E:7B:48:B6:E6:35:3F:DC X509v3 Authority Key Identifier: keyid:69:A9:93:A1:88:21:98:AC:AD:5F:1C:EA:35:06:6B:AF:49:E7:D5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:dd:4d:93:7c:31:38:2f:29:70:45:2b:73:25:87:c2:a0:83: a0:ab:3c:4d:ef:5c:1f:8f:1f:4c:5a:5e:aa:a4:08:69:96:a1: c6:30:be:a6:c8:29:69:35:a8:c4:ba:2c:b6:e8:51:72:62:f3: 6c:b1:e7:52:c9:3c:8e:c0:8d:46:fe:65:7b:ef:4d:37:50:59: 27:d9:48:19:8f:37:4f:cd:43:ca:25:cf:77:2c:8b:a9:cc:d4: 77:c4:9d:89:bf:a5:29:04:43:7e:1d:36:00:4f:a1:8f:c7:9d: 65:81:2d:c3:eb:4c:b1:5d:63:b8:ac:dc:7c:f0:43:3b:b9:65: d9:f5:8a:8b:bc:17:2d:ac:93:e4:76:ba:a0:c9:65:8f:27:db: fe:9b:e9:71:f4:d4:55:cd:99:ac:02:13:42:90:99:d9:b9:6c: 6c:90:9c:8e:c7:62:58:4f:29:82:3b:0a:1d:bb:30:cf:80:ba: 17:5c:2e:d8:0e:d2:84:9a:24:8a:7c:bc:78:01:e8:94:c9:c3: e8:9e:c3:47:28:16:9f:5a:11:0e:02:3c:90:d0:c0:53:1d:5f: 6d:12:e0:23:0d:de:ad:1c:fa:40:f5:9e:72:0e:e8:e4:8d:b8: a4:da:15:75:6c:97:b9:85:d1:cd:b8:a7:1b:02:59:03:b8:53: 13:0f:90:00 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QjIzRjExMC8GA1UEBRMoNjlBOTkzQTE4ODIxOThBQ0FENUYxQ0VBMzUwNjZCQUY0 OUU3RDVEMDAeFw0yNDA1MTUwODQ1NDZaFw0yNDA1MjIwODQ1NDZaMBgxFjAUBgNV BAMTDTY2NDQ3NjNiLWEyYmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwkE0lQbFHEZjXsK0Ii2+p/CqsDZNhCr82no7JOyVz7HA+tuMwm0J97pI7dHVf lkUMNuoLjJFA/boCtr440qvmUpysXpVjNPVbw8J9HfdR85qqJnA+FUsNnSYnmRRH Pt8Xh8ZuvGCFQnIbzc5LRJBGxo/xYc8EHoLyAzeYoHPUhknSLeKtAfPDydTHxjsW 2+V/t7iDGfrabY7Tf78GOUYTKBL2IqiGIVm6NKfU+VAhwzqZu6LiiTdz4xDKQKYB 5RNAREGUCgf1I9skGx2YSe+nAZ7/tvKZ9peoNeimoehVR42dTq/ZkrnCoE0KBJrY Ie2N1nAbv+u002L56LcaC/O5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURMf3jHBV wGk7vZYALntItuY1P9wwHwYDVR0jBBgwFoAUaamToYghmKytXxzqNQZrr0nn1dAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCMjNGLzY3MEMyRjJDRTI5 RjExRUVCNjgyQzYxMUM0RjlBRTAyL2FhbVRvWWdobUt5dFh4enFOUVpycjBubjFk QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYWFtVG9ZZ2htS3l0WHh6cU5RWnJyMG5uMWRBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJC MjNGLzY3MEMyRjJDRTI5RjExRUVCNjgyQzYxMUM0RjlBRTAyL2FhbVRvWWdobUt5 dFh4enFOUVpycjBubjFkQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALPdTZN8MTgvKXBFK3Mlh8Kgg6CrPE3vXB+PH0xaXqqkCGmWocYwvqbI KWk1qMS6LLboUXJi82yx51LJPI7AjUb+ZXvvTTdQWSfZSBmPN0/NQ8olz3csi6nM 1HfEnYm/pSkEQ34dNgBPoY/HnWWBLcPrTLFdY7is3HzwQzu5Zdn1iou8Fy2sk+R2 uqDJZY8n2/6b6XH01FXNmawCE0KQmdm5bGyQnI7HYlhPKYI7Ch27MM+AuhdcLtgO 0oSaJIp8vHgB6JTJw+iew0coFp9aEQ4CPJDQwFMdX20S4CMN3q0c+kD1nnIO6OSN uKTaFXVsl7mF0c24pxsCWQO4UxMPkAA= -----END CERTIFICATE-----Generated at Wed May 15 09:27:29 2024 by rpki-client on console-fra.rpki-client.org