$ rpki-client -vvf rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft File: 0Iw24m8k-51RTztAqON6mgS1gCU.mft (raw, json) Hash identifier: sCIudALEK1dOcLoHll6LmUb+LUMGAqm6AuXzx71HKOU= Subject key identifier: 13:44:91:54:84:0C:32:79:6E:5F:2B:F9:23:6C:40:64:7B:22:30:2D Authority key identifier: D0:8C:36:E2:6F:24:FB:9D:51:4F:3B:40:A8:E3:7A:9A:04:B5:80:25 Certificate issuer: /CN=A913E03C/serialNumber=D08C36E26F24FB9D514F3B40A8E37A9A04B58025 Certificate serial: 33B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Iw24m8k-51RTztAqON6mgS1gCU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft Manifest number: 33B9 Signing time: Thu 02 May 2024 15:04:50 +0000 Manifest this update: Thu 02 May 2024 15:04:50 +0000 Manifest next update: Thu 09 May 2024 15:04:50 +0000 Files and hashes: 1: 0Iw24m8k-51RTztAqON6mgS1gCU.crl (hash: O/h5q29gYWlzkYlffmrRdoB506vHtAeJEAMWp55GvXI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.crl rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Iw24m8k-51RTztAqON6mgS1gCU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 15:04:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13241 (0x33b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E03C/serialNumber=D08C36E26F24FB9D514F3B40A8E37A9A04B58025 Validity Not Before: May 2 15:04:50 2024 GMT Not After : May 9 15:04:50 2024 GMT Subject: CN=6633ab92-5aee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ba:bf:94:dd:70:6f:cf:8f:d9:dc:02:0f:74: 2c:33:ea:c2:2c:85:c6:01:2b:f9:02:aa:ff:03:cf: 67:b4:63:01:a1:ea:93:f8:8f:98:b4:d7:93:99:aa: fc:81:31:3a:6e:a0:02:74:bc:10:aa:1d:4f:e8:5e: ff:30:83:88:50:62:17:5e:37:b6:08:d1:0e:e6:16: 65:2a:55:3e:50:a2:af:ba:70:e5:9f:69:2f:0a:ef: 24:24:e5:f3:73:e2:db:45:42:1a:c5:8e:c8:b8:63: d8:61:8a:d2:59:75:8b:39:c8:e3:9c:0a:25:93:4a: 90:42:4e:0a:4b:68:04:4f:15:f5:e6:f3:93:4c:50: 43:a7:23:92:75:ba:eb:6c:1d:57:39:0e:78:40:07: a0:bd:fc:1a:c6:b2:ea:77:9c:93:27:9d:ee:bc:fc: d0:05:9f:bf:73:98:a5:32:d8:00:9e:44:c2:8f:03: 3b:18:c6:1e:ef:18:85:79:ce:c4:37:c2:d1:b9:ae: e3:2e:1b:57:9a:27:ef:42:5f:64:16:3a:ac:8b:fa: 9e:ea:30:bc:bd:c9:97:52:77:d2:f1:15:06:ed:04: 56:c4:da:17:6a:36:f5:97:76:75:3d:f5:1b:d0:62: 8b:6e:5f:b3:32:32:b0:73:60:59:25:5b:47:41:c8: fe:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:44:91:54:84:0C:32:79:6E:5F:2B:F9:23:6C:40:64:7B:22:30:2D X509v3 Authority Key Identifier: keyid:D0:8C:36:E2:6F:24:FB:9D:51:4F:3B:40:A8:E3:7A:9A:04:B5:80:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Iw24m8k-51RTztAqON6mgS1gCU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:c8:7b:6b:53:c9:2b:79:b3:49:54:aa:f5:b0:8c:7c:d2:c6: a4:25:7d:33:08:dc:dc:45:3b:e2:f8:3e:84:79:44:b2:98:74: ef:b9:da:e9:bf:eb:e1:78:25:21:4e:a1:71:c0:14:68:70:96: b0:04:10:6a:d0:cd:f3:91:5f:2b:26:0b:21:fc:47:b6:3d:fe: e8:7c:bf:ac:46:2f:23:99:f8:b9:4b:91:38:d4:c4:14:79:87: b6:e3:c7:8a:2a:ba:18:67:7e:f7:35:f9:f4:b8:b1:15:db:f4: 94:2b:5f:a0:d7:c9:f4:22:7f:f0:3c:c3:e2:3a:6f:53:2f:6f: 41:45:03:20:5f:fd:fa:b2:d6:ef:5e:74:32:82:cb:9e:20:ad: 04:d6:b0:d9:aa:6e:d0:f2:6f:84:56:4c:fd:23:5a:7e:03:8e: 4e:50:a1:a1:c5:54:ff:7a:7e:71:03:4d:9e:1a:8d:5d:89:b4: 94:1f:a5:7f:53:51:10:ca:2c:6a:76:92:f4:bd:8a:5d:93:eb: 29:ab:d1:37:74:23:36:2c:c5:66:91:9d:7c:58:46:68:1f:c2: 09:8e:1a:86:f8:20:cb:53:cc:12:27:2d:6f:a2:eb:83:f9:e9: 8d:c6:4d:b4:f5:93:64:8f:4e:45:dd:5d:86:de:f0:81:8f:f8: cc:ad:da:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UwM0MxMTAvBgNVBAUTKEQwOEMzNkUyNkYyNEZCOUQ1MTRGM0I0MEE4RTM3QTlB MDRCNTgwMjUwHhcNMjQwNTAyMTUwNDUwWhcNMjQwNTA5MTUwNDUwWjAYMRYwFAYD VQQDEw02NjMzYWI5Mi01YWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLq/lN1wb8+P2dwCD3QsM+rCLIXGASv5Aqr/A89ntGMBoeqT+I+YtNeTmar8 gTE6bqACdLwQqh1P6F7/MIOIUGIXXje2CNEO5hZlKlU+UKKvunDln2kvCu8kJOXz c+LbRUIaxY7IuGPYYYrSWXWLOcjjnAolk0qQQk4KS2gETxX15vOTTFBDpyOSdbrr bB1XOQ54QAegvfwaxrLqd5yTJ53uvPzQBZ+/c5ilMtgAnkTCjwM7GMYe7xiFec7E N8LRua7jLhtXmifvQl9kFjqsi/qe6jC8vcmXUnfS8RUG7QRWxNoXajb1l3Z1PfUb 0GKLbl+zMjKwc2BZJVtHQcj+6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBNEkVSE DDJ5bl8r+SNsQGR7IjAtMB8GA1UdIwQYMBaAFNCMNuJvJPudUU87QKjjepoEtYAl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTAzQy9CNkUwRjRBQTFE OUExMUUyODkyMTI5ODgwOEIwMkNEMi8wSXcyNG04ay01MVJUenRBcU9ONm1nUzFn Q1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBJdzI0bThrLTUxUlR6dEFxT042bWdTMWdDVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTAzQy9CNkUwRjRBQTFEOUExMUUyODkyMTI5ODgwOEIwMkNEMi8wSXcyNG04ay01 MVJUenRBcU9ONm1nUzFnQ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTyHtrU8krebNJVKr1sIx80sakJX0zCNzcRTvi+D6EeUSymHTvudrp v+vheCUhTqFxwBRocJawBBBq0M3zkV8rJgsh/Ee2Pf7ofL+sRi8jmfi5S5E41MQU eYe248eKKroYZ373Nfn0uLEV2/SUK1+g18n0In/wPMPiOm9TL29BRQMgX/36stbv XnQygsueIK0E1rDZqm7Q8m+EVkz9I1p+A45OUKGhxVT/en5xA02eGo1dibSUH6V/ U1EQyixqdpL0vYpdk+spq9E3dCM2LMVmkZ18WEZoH8IJjhqG+CDLU8wSJy1vouuD +emNxk209ZNkj05F3V2G3vCBj/jMrdp3 -----END CERTIFICATE-----Generated at Thu May 2 17:43:05 2024 by rpki-client on console-fra.rpki-client.org