$ rpki-client -vvf rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft File: lC8l1zULID6onvLRzBULBbF7K4c.mft (raw, json) Hash identifier: czLVjidfXqaZYp3qQKHRo7fj5rD7a4+JuUdz6WRfJrQ= Subject key identifier: 71:0E:ED:EF:58:8E:8D:34:9C:9F:9D:62:D2:0C:87:87:43:24:22:72 Authority key identifier: 94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 Certificate issuer: /CN=A912FB1D/serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Certificate serial: 33EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft Manifest number: 33D7 Signing time: Fri 24 May 2024 15:34:25 +0000 Manifest this update: Fri 24 May 2024 15:34:25 +0000 Manifest next update: Fri 31 May 2024 15:34:25 +0000 Files and hashes: 1: lC8l1zULID6onvLRzBULBbF7K4c.crl (hash: 2iKFwBVb9o5xLYPpLx/N9aDxSh/M1+Nc80U+fJAHw94=) 2: C098D762675111E9A0C4BB36C4F9AE02.roa (hash: Qkw8G566t7lS5tPEhifJ2WDoPHsgJSUH+pX7qb6EhGM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 15:34:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13291 (0x33eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FB1D/serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Validity Not Before: May 24 15:34:25 2024 GMT Not After : May 31 15:34:25 2024 GMT Subject: CN=6650b381-d1c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3b:30:6f:75:6a:84:d4:ef:f9:1b:1d:3c:17: 77:e1:33:68:86:3a:02:aa:96:99:a8:09:45:0b:dd: 8f:62:c4:e2:1f:7b:ed:16:e9:f4:74:5c:fd:68:73: 09:7b:93:64:e8:b8:c5:0e:15:15:13:c6:26:7e:44: 56:13:5a:25:ba:65:30:1f:28:fa:3b:62:fa:ff:50: 7f:00:d5:b3:ed:09:ba:3b:6a:79:49:f5:b1:ee:3d: c0:95:01:8f:a7:37:a8:7b:dc:dd:8f:09:b7:91:87: 89:db:7d:65:b3:0d:cd:4a:62:70:c9:94:cc:b8:8b: 0b:cc:e1:df:23:20:28:4b:67:ce:50:8f:87:78:31: d5:b5:a0:99:56:b8:3d:f3:bc:47:cc:25:e0:65:7c: eb:b5:ba:bb:2d:42:6d:0b:e8:6d:61:d1:de:18:b6: a6:1e:b2:65:da:0a:eb:dc:a6:a3:b3:cc:74:dc:b2: f2:82:a4:9a:a7:8a:df:6e:2a:c8:eb:fb:97:28:d1: 48:73:76:9e:4e:de:de:17:5b:b5:21:37:6b:19:0f: 88:8b:07:f3:46:c2:91:f7:a8:bd:04:57:cc:c0:33: 24:3b:12:bc:89:e4:a7:b0:e0:dd:1a:cb:5d:4a:df: 70:85:d9:72:40:62:bb:0c:67:de:5f:c0:c8:7f:e0: 17:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:0E:ED:EF:58:8E:8D:34:9C:9F:9D:62:D2:0C:87:87:43:24:22:72 X509v3 Authority Key Identifier: keyid:94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:58:15:ff:dd:72:74:58:49:a0:13:48:b2:88:c5:6a:cf:54: c9:f9:3a:46:7f:be:4c:5f:46:30:ff:3f:34:d7:2f:b9:1f:aa: 2a:7c:e4:79:13:65:3a:a3:26:79:1e:5a:68:86:39:97:73:30: 07:d1:78:f2:b5:d2:52:1b:39:9f:68:29:1a:07:0e:3f:8a:77: 46:91:07:ad:b0:5c:fa:68:29:e5:2f:df:84:65:2a:c5:7e:f2: 02:3e:4d:71:47:d6:9d:14:41:03:8d:7d:75:19:0d:3d:f6:1b: 6b:bb:bb:cf:80:7c:eb:c3:cf:9e:9d:23:6c:a9:36:15:5e:b7: 49:95:38:85:b4:e8:5f:12:dd:4c:69:17:d0:00:06:a2:fc:c8: 15:33:62:a0:f3:31:82:fd:6e:8a:52:03:42:c7:22:23:dd:43: e8:a0:e1:30:9e:9b:b7:b2:1a:80:67:e7:0d:53:69:b2:36:2b: 19:39:73:2c:6f:ae:3a:69:d2:69:bb:e6:f2:55:f0:c1:d1:78: d2:a1:e5:42:a9:73:38:32:17:ae:5f:f7:ca:e2:8a:c9:72:c2: fa:5d:87:a6:8a:14:3b:16:3d:4e:9d:d2:7a:5b:26:36:59:77: 80:a1:ea:9b:0a:a1:82:6f:8b:75:7e:88:64:d5:d8:fc:df:28: cb:84:75:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCMUQxMTAvBgNVBAUTKDk0MkYyNUQ3MzUwQjIwM0VBODlFRjJEMUNDMTUwQjA1 QjE3QjJCODcwHhcNMjQwNTI0MTUzNDI1WhcNMjQwNTMxMTUzNDI1WjAYMRYwFAYD VQQDEw02NjUwYjM4MS1kMWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDswb3VqhNTv+RsdPBd34TNohjoCqpaZqAlFC92PYsTiH3vtFun0dFz9aHMJ e5Nk6LjFDhUVE8YmfkRWE1olumUwHyj6O2L6/1B/ANWz7Qm6O2p5SfWx7j3AlQGP pzeoe9zdjwm3kYeJ231lsw3NSmJwyZTMuIsLzOHfIyAoS2fOUI+HeDHVtaCZVrg9 87xHzCXgZXzrtbq7LUJtC+htYdHeGLamHrJl2grr3Kajs8x03LLygqSap4rfbirI 6/uXKNFIc3aeTt7eF1u1ITdrGQ+IiwfzRsKR96i9BFfMwDMkOxK8ieSnsODdGstd St9whdlyQGK7DGfeX8DIf+AXHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHEO7e9Y jo00nJ+dYtIMh4dDJCJyMB8GA1UdIwQYMBaAFJQvJdc1CyA+qJ7y0cwVCwWxeyuH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkIxRC9DNjg0Q0E5QzFE QUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElENm9udkxSekJVTEJiRjdL NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDOGwxelVMSUQ2b252TFJ6QlVMQmJGN0s0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkIxRC9DNjg0Q0E5QzFEQUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElE Nm9udkxSekJVTEJiRjdLNGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZWBX/3XJ0WEmgE0iyiMVqz1TJ+TpGf75MX0Yw/z801y+5H6oqfOR5 E2U6oyZ5HlpohjmXczAH0XjytdJSGzmfaCkaBw4/indGkQetsFz6aCnlL9+EZSrF fvICPk1xR9adFEEDjX11GQ099htru7vPgHzrw8+enSNsqTYVXrdJlTiFtOhfEt1M aRfQAAai/MgVM2Kg8zGC/W6KUgNCxyIj3UPooOEwnpu3shqAZ+cNU2myNisZOXMs b646adJpu+byVfDB0XjSoeVCqXM4MheuX/fK4orJcsL6XYemihQ7Fj1OndJ6WyY2 WXeAoeqbCqGCb4t1fohk1dj83yjLhHWu -----END CERTIFICATE-----Generated at Fri May 24 17:56:31 2024 by rpki-client on console-fra.rpki-client.org