$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft File: s-lBocVdFIOrV5HZSYdQ492t7cw.mft (raw, json) Hash identifier: qtQaYyi8pZNcfarW+aj77NaMBrsc49ZIMoKpPvGeezk= Subject key identifier: 02:38:B7:F3:7D:E5:3C:AE:BF:9A:B1:6C:A4:99:FA:2E:F5:D3:6A:03 Authority key identifier: B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC Certificate issuer: /CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft Manifest number: 33 Signing time: Fri 17 May 2024 08:27:46 +0000 Manifest this update: Fri 17 May 2024 08:27:46 +0000 Manifest next update: Fri 24 May 2024 08:27:46 +0000 Files and hashes: 1: s-lBocVdFIOrV5HZSYdQ492t7cw.crl (hash: DzlCRT8Rvepy0iBYYxNenEvCjm+X9w7pzqkxMDV+M7Q=) 2: 8B097276C5F911EE8D0FDF82C4F9AE02.roa (hash: /BUQB8qGUnnEaeFS+7LTUsKBi8s51tzJ6SaFjKd8eFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Validity Not Before: May 17 08:27:46 2024 GMT Not After : May 24 08:27:46 2024 GMT Subject: CN=66471502-9cf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1b:d7:78:d7:12:33:2f:42:69:a1:0e:24:98: 3b:f4:77:23:df:75:a8:d7:ba:c6:95:f4:a9:18:2a: 3e:c9:cf:ff:6e:c0:9b:7c:b6:5c:43:9a:42:b5:67: 0b:d3:a2:13:5b:3e:15:17:b2:42:27:e9:a9:e2:30: ad:49:e1:2a:d4:b8:d6:cd:f7:45:05:a2:ed:2d:2e: d0:2c:f6:2a:4e:b7:d0:17:44:b0:77:e4:4e:3b:c6: b2:41:36:c2:e0:29:0e:d6:8f:fb:9d:32:7a:64:d8: 96:8f:c8:89:15:7a:24:a1:ef:c3:07:38:96:04:2b: 28:43:be:4e:bb:bc:09:e0:3f:49:8f:df:af:bc:ee: 50:63:8b:7d:d8:2c:ce:0a:49:13:37:62:d2:51:29: 91:cc:c7:4b:6b:94:ca:a6:6e:c2:40:67:e4:61:03: 08:67:12:0c:06:0b:69:d7:47:30:6a:3e:fb:7b:24: 45:a9:86:e7:ed:7f:6c:95:8f:0b:85:3a:05:01:3b: eb:05:59:7d:2f:c0:d4:f6:86:3f:f8:02:60:10:9e: 3f:6e:83:60:f0:27:ed:8d:28:90:2a:5f:94:83:ac: 97:b7:17:2b:5f:df:44:d1:9d:23:61:fe:04:69:c7: 8f:d9:87:84:19:ac:82:47:f5:0c:ee:4e:03:22:21: cc:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:38:B7:F3:7D:E5:3C:AE:BF:9A:B1:6C:A4:99:FA:2E:F5:D3:6A:03 X509v3 Authority Key Identifier: keyid:B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:92:b9:df:55:13:97:71:a1:41:e1:56:e1:44:1b:c3:90:fd: a7:85:7c:f7:2f:0a:53:99:16:c9:e7:41:62:71:db:24:be:72: 5f:1b:75:79:47:6c:89:68:53:6b:80:22:17:03:0e:c3:1d:c3: 30:59:1f:13:60:94:3a:a6:89:2c:f4:1f:07:56:9b:5c:63:17: f8:38:c0:6e:ce:ae:d1:6a:2f:55:bc:4d:4b:2e:3c:13:e5:3e: f0:6a:4b:7f:60:cf:95:45:73:3e:1b:b9:30:55:26:e3:91:d6: 90:57:2f:a1:4e:c3:5c:59:b2:6e:c5:b3:3e:1a:9c:e2:aa:50: fe:c9:44:83:14:98:a1:58:f2:8b:84:57:85:84:f9:54:d4:9f: 29:d4:97:a7:39:7b:48:ef:23:f8:30:e2:5b:8c:0f:04:8e:70: 6d:48:1b:88:90:d8:53:47:79:0d:4d:d0:cd:eb:4b:bc:63:5f: fc:9f:24:e8:3f:9a:f0:ea:54:dc:55:43:12:a4:0e:e7:0b:c5: df:fd:f9:ee:a9:89:39:cc:07:c8:7b:a0:21:1f:de:88:cb:f8: 0d:4c:12:32:25:03:6d:44:e2:c2:29:cd:11:e4:51:6c:49:06: b2:bb:26:79:e6:b1:73:6a:51:43:7f:b6:81:a8:8d:78:d9:1d: 93:d1:88:1d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QjAxODExMC8GA1UEBRMoQjNFOTQxQTFDNTVEMTQ4M0FCNTc5MUQ5NDk4NzUwRTNE REFERURDQzAeFw0yNDA1MTcwODI3NDZaFw0yNDA1MjQwODI3NDZaMBgxFjAUBgNV BAMTDTY2NDcxNTAyLTljZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/G9d41xIzL0JpoQ4kmDv0dyPfdajXusaV9KkYKj7Jz/9uwJt8tlxDmkK1ZwvT ohNbPhUXskIn6aniMK1J4SrUuNbN90UFou0tLtAs9ipOt9AXRLB35E47xrJBNsLg KQ7Wj/udMnpk2JaPyIkVeiSh78MHOJYEKyhDvk67vAngP0mP36+87lBji33YLM4K SRM3YtJRKZHMx0trlMqmbsJAZ+RhAwhnEgwGC2nXRzBqPvt7JEWphuftf2yVjwuF OgUBO+sFWX0vwNT2hj/4AmAQnj9ug2DwJ+2NKJAqX5SDrJe3Fytf30TRnSNh/gRp x4/Zh4QZrIJH9QzuTgMiIcw5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAji3833l PK6/mrFspJn6LvXTagMwHwYDVR0jBBgwFoAUs+lBocVdFIOrV5HZSYdQ492t7cww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCMDE4LzMwNzlEODEyQzVG NjExRUVCRTBCNzk2MEM0RjlBRTAyL3MtbEJvY1ZkRklPclY1SFpTWWRRNDkydDdj dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcy1sQm9jVmRGSU9yVjVIWlNZZFE0OTJ0N2N3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNC MDE4LzMwNzlEODEyQzVGNjExRUVCRTBCNzk2MEM0RjlBRTAyL3MtbEJvY1ZkRklP clY1SFpTWWRRNDkydDdjdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC2Sud9VE5dxoUHhVuFEG8OQ/aeFfPcvClOZFsnnQWJx2yS+cl8bdXlH bIloU2uAIhcDDsMdwzBZHxNglDqmiSz0HwdWm1xjF/g4wG7OrtFqL1W8TUsuPBPl PvBqS39gz5VFcz4buTBVJuOR1pBXL6FOw1xZsm7Fsz4anOKqUP7JRIMUmKFY8ouE V4WE+VTUnynUl6c5e0jvI/gw4luMDwSOcG1IG4iQ2FNHeQ1N0M3rS7xjX/yfJOg/ mvDqVNxVQxKkDucLxd/9+e6piTnMB8h7oCEf3ojL+A1MEjIlA21E4sIpzRHkUWxJ BrK7JnnmsXNqUUN/toGojXjZHZPRiB0= -----END CERTIFICATE-----Generated at Fri May 17 10:10:49 2024 by rpki-client on console-fra.rpki-client.org