$ rpki-client -vvf rpki.apnic.net/member_repository/A912F17E/FCFF84661DA311E281EAAF9908B02CD2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.mft File: Hz6LAdhBy-YiDQLSzRETVPGcR7I.mft (raw, json) Hash identifier: IsszEi9DGguEdgLo7j75muzr511Ov2AsP9vjJxRvXJI= Subject key identifier: 34:09:57:4F:06:5A:2C:81:65:9A:3F:6C:B4:F4:EE:B3:1E:3E:A1:DF Authority key identifier: 1F:3E:8B:01:D8:41:CB:E6:22:0D:02:D2:CD:11:13:54:F1:9C:47:B2 Certificate issuer: /CN=A912F17E/serialNumber=1F3E8B01D841CBE6220D02D2CD111354F19C47B2 Certificate serial: 33B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F17E/FCFF84661DA311E281EAAF9908B02CD2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.mft Manifest number: 33B4 Signing time: Fri 26 Apr 2024 15:20:18 +0000 Manifest this update: Fri 26 Apr 2024 15:20:17 +0000 Manifest next update: Fri 03 May 2024 15:20:17 +0000 Files and hashes: 1: Hz6LAdhBy-YiDQLSzRETVPGcR7I.crl (hash: yuN7K3GRq/gFJDOEMOTrIB3VdxlWBwCUGnpmXHBMyT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F17E/FCFF84661DA311E281EAAF9908B02CD2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.crl rsync://rpki.apnic.net/member_repository/A912F17E/FCFF84661DA311E281EAAF9908B02CD2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:20:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13238 (0x33b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F17E/serialNumber=1F3E8B01D841CBE6220D02D2CD111354F19C47B2 Validity Not Before: Apr 26 15:20:17 2024 GMT Not After : May 3 15:20:17 2024 GMT Subject: CN=662bc631-53ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c3:02:ea:9d:50:9f:36:a5:79:fc:dc:05:9e: 02:7f:9d:eb:f5:3c:67:4c:27:0b:5a:4b:2e:73:40: 1d:8a:11:85:49:32:fb:22:97:b5:6c:10:c7:9e:2b: 46:4c:5c:5b:e4:30:3d:ea:75:5c:6d:ec:1a:8b:54: 67:7e:61:04:13:65:75:70:36:2a:c7:46:ee:0f:31: 0c:21:3d:49:ef:b0:47:ad:0e:a2:88:0e:46:5e:dc: 32:36:e1:7e:65:17:bd:39:72:3e:bc:a2:c5:c7:c1: 86:38:0a:be:58:b9:e2:05:05:d6:f5:63:92:f5:be: 7c:fb:89:ae:5b:06:f0:dc:d3:dc:96:b4:6f:8b:7e: 7f:a8:b3:cb:ff:c9:a4:f0:2f:6e:64:50:d1:ab:1d: 43:e5:a0:d4:4f:9a:d4:f2:53:c2:fb:b5:a7:f4:59: a8:16:4d:98:7c:56:9e:e0:ce:f4:a9:2e:42:80:4b: ec:0e:c3:b9:85:91:cb:3d:a2:61:fa:c0:d0:b1:15: d5:ef:26:38:b3:4f:18:c4:a7:d5:57:01:9c:c5:9b: 4c:6b:ee:48:8f:84:e3:f6:c1:b8:6f:c6:ba:97:17: 51:1f:21:4e:d8:93:bb:2d:b3:b9:04:1e:ea:60:bc: 94:ae:9c:6b:62:97:f8:b6:ab:f6:56:bb:ea:23:1d: 9a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:09:57:4F:06:5A:2C:81:65:9A:3F:6C:B4:F4:EE:B3:1E:3E:A1:DF X509v3 Authority Key Identifier: keyid:1F:3E:8B:01:D8:41:CB:E6:22:0D:02:D2:CD:11:13:54:F1:9C:47:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F17E/FCFF84661DA311E281EAAF9908B02CD2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F17E/FCFF84661DA311E281EAAF9908B02CD2/Hz6LAdhBy-YiDQLSzRETVPGcR7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:47:9a:64:ce:50:6c:8c:6f:b5:30:98:86:f0:fc:f6:1b:4e: 92:e7:3c:41:d6:f4:fd:6e:67:77:d5:0a:72:11:11:3f:a5:1a: 43:13:e6:38:1b:7a:e6:56:bb:a5:05:09:f9:dc:61:e1:bb:4f: 0f:2c:1a:95:c9:22:d8:81:5c:a2:90:aa:f8:b3:f2:c3:74:a2: e0:e8:f2:d1:fa:43:a9:cd:06:3d:82:e7:e0:11:d0:a6:b9:08: c2:3b:72:5e:89:cf:82:f7:6a:29:05:7a:5a:24:c4:48:d4:14: 74:e4:58:3a:aa:93:60:14:12:36:be:3d:1d:74:90:4a:2c:a7: 11:40:79:67:3e:de:b5:07:34:25:f0:63:00:d4:8e:d1:72:a8: 0c:0d:4e:de:2e:0a:d9:90:80:fa:46:30:7b:ef:59:5d:5e:9f: 97:42:16:9b:c1:f2:83:eb:53:2c:78:11:8a:87:60:e3:6c:7a: 8c:92:a1:fe:1d:d5:0e:c3:a9:17:9e:cd:f2:f2:5c:00:f7:85: af:b1:14:2d:ce:ca:46:b4:80:39:21:fd:b0:96:f0:f2:61:b9: 1a:11:0c:eb:b6:9e:02:2a:56:16:f9:70:55:72:27:71:f3:3e: 8d:72:d8:ab:9c:cd:78:ce:db:67:19:9d:7b:1e:80:d6:5a:88: 59:26:9a:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYxN0UxMTAvBgNVBAUTKDFGM0U4QjAxRDg0MUNCRTYyMjBEMDJEMkNEMTExMzU0 RjE5QzQ3QjIwHhcNMjQwNDI2MTUyMDE3WhcNMjQwNTAzMTUyMDE3WjAYMRYwFAYD VQQDEw02NjJiYzYzMS01M2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8MC6p1QnzalefzcBZ4Cf53r9TxnTCcLWksuc0AdihGFSTL7Ipe1bBDHnitG TFxb5DA96nVcbewai1RnfmEEE2V1cDYqx0buDzEMIT1J77BHrQ6iiA5GXtwyNuF+ ZRe9OXI+vKLFx8GGOAq+WLniBQXW9WOS9b58+4muWwbw3NPclrRvi35/qLPL/8mk 8C9uZFDRqx1D5aDUT5rU8lPC+7Wn9FmoFk2YfFae4M70qS5CgEvsDsO5hZHLPaJh +sDQsRXV7yY4s08YxKfVVwGcxZtMa+5Ij4Tj9sG4b8a6lxdRHyFO2JO7LbO5BB7q YLyUrpxrYpf4tqv2VrvqIx2aKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQJV08G WiyBZZo/bLT07rMePqHfMB8GA1UdIwQYMBaAFB8+iwHYQcvmIg0C0s0RE1TxnEey MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjE3RS9GQ0ZGODQ2NjFE QTMxMUUyODFFQUFGOTkwOEIwMkNEMi9IejZMQWRoQnktWWlEUUxTelJFVFZQR2NS N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h6NkxBZGhCeS1ZaURRTFN6UkVUVlBHY1I3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjE3RS9GQ0ZGODQ2NjFEQTMxMUUyODFFQUFGOTkwOEIwMkNEMi9IejZMQWRoQnkt WWlEUUxTelJFVFZQR2NSN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWR5pkzlBsjG+1MJiG8Pz2G06S5zxB1vT9bmd31QpyERE/pRpDE+Y4 G3rmVrulBQn53GHhu08PLBqVySLYgVyikKr4s/LDdKLg6PLR+kOpzQY9gufgEdCm uQjCO3Jeic+C92opBXpaJMRI1BR05Fg6qpNgFBI2vj0ddJBKLKcRQHlnPt61BzQl 8GMA1I7RcqgMDU7eLgrZkID6RjB771ldXp+XQhabwfKD61MseBGKh2DjbHqMkqH+ HdUOw6kXns3y8lwA94WvsRQtzspGtIA5If2wlvDyYbkaEQzrtp4CKlYW+XBVcidx 8z6NctirnM14zttnGZ17HoDWWohZJpq0 -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:37 2024 by rpki-client on console-ams.rpki-client.org