$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft File: 3ETtNb69CygywHT8LEaqsM1oL94.mft (raw, json) Hash identifier: +eUSAft4ARyd/5p8RFhPeEVsyPmndH15wlq4e07wJUQ= Subject key identifier: 12:91:1B:F7:AB:39:81:DC:16:51:C0:90:F4:F1:01:02:C2:7A:88:DE Authority key identifier: DC:44:ED:35:BE:BD:0B:28:32:C0:74:FC:2C:46:AA:B0:CD:68:2F:DE Certificate issuer: /CN=A9143B09/serialNumber=DC44ED35BEBD0B2832C074FC2C46AAB0CD682FDE Certificate serial: 0FBE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft Manifest number: 177B Signing time: Thu 02 May 2024 18:08:43 +0000 Manifest this update: Thu 02 May 2024 18:08:42 +0000 Manifest next update: Thu 09 May 2024 18:08:42 +0000 Files and hashes: 1: 3ETtNb69CygywHT8LEaqsM1oL94.crl (hash: CeflvYzcfUTjAzVqLVlN/Og8OSkk/UtVJzZX56jLPNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.crl rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 18:08:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4030 (0xfbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B09/serialNumber=DC44ED35BEBD0B2832C074FC2C46AAB0CD682FDE Validity Not Before: May 2 18:08:42 2024 GMT Not After : May 9 18:08:42 2024 GMT Subject: CN=6633d6aa-f64b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:9a:85:97:cc:97:d4:f1:98:3d:71:a0:ee:09: 24:2e:f6:96:95:b8:f3:37:92:27:af:65:dd:40:bd: ed:c2:2a:6e:8e:48:2b:5a:3f:35:16:20:fc:66:86: f2:49:d4:a6:4b:92:23:e6:41:ae:56:b6:a4:e8:3d: bd:69:58:42:da:62:14:93:8c:9a:4e:a3:5c:a3:b4: 46:81:1e:da:3d:7d:cc:29:73:67:7d:a8:15:11:b0: 1f:7f:a9:eb:0f:80:f9:29:2a:f0:57:a5:bb:8f:fc: c4:ad:74:b7:50:df:db:78:0d:02:f6:39:69:fd:2f: ae:11:b4:0e:78:e8:f7:83:4f:38:9b:19:27:88:aa: f7:63:2f:fb:98:2a:96:d4:b7:7f:42:7d:4e:9d:64: 72:19:14:f8:ef:03:06:7d:ec:e4:48:c7:98:fd:c0: 8e:92:5d:3c:56:80:92:79:96:f9:2d:1c:98:a2:7b: 6c:01:7f:8a:5b:1d:50:5b:3f:73:eb:75:f1:7e:b8: 5f:fe:5f:84:f8:55:de:2d:2a:e1:bf:53:88:33:ee: 9f:bd:0f:25:d0:bc:50:f0:e9:f3:9b:9e:d5:2c:4b: 46:9a:aa:5a:a9:97:2e:29:61:5d:79:0c:3a:f6:b7: 49:1a:43:68:b0:02:dc:d8:38:c0:21:34:8f:a0:b4: ea:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:91:1B:F7:AB:39:81:DC:16:51:C0:90:F4:F1:01:02:C2:7A:88:DE X509v3 Authority Key Identifier: keyid:DC:44:ED:35:BE:BD:0B:28:32:C0:74:FC:2C:46:AA:B0:CD:68:2F:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:8a:99:04:92:75:cc:6c:d3:68:6f:cb:dd:a2:8f:df:0d:d1: a6:1d:73:55:66:42:bc:f9:59:7d:e2:9f:74:58:92:2c:67:eb: 86:17:9d:e5:d6:b3:bf:da:a8:3e:c6:ef:82:43:0f:d3:d1:2c: 48:41:74:c9:ef:e5:7f:3d:9a:ea:81:77:54:d4:3b:bd:6a:63: eb:1d:a5:4c:b2:fa:6c:d0:47:ef:cd:12:65:bc:aa:06:db:f5: 0a:09:3b:47:ea:ff:cd:55:8a:a2:06:2e:49:4a:31:ff:8a:58: 6e:0a:11:49:b2:3b:02:cd:f8:1f:54:63:e5:93:02:21:a4:f7: 86:21:78:86:f8:ae:ea:fc:4d:ee:c5:2a:9d:82:bf:02:eb:f9: dc:12:3c:78:bc:71:57:30:c9:36:99:e3:25:0d:03:4f:4c:93: ed:bc:ac:d9:a3:70:e1:0d:c3:73:26:02:51:98:d3:42:7c:11: 87:ae:77:b2:a1:f5:b6:1e:e0:8e:df:14:18:63:b0:0d:44:5f: 68:cf:45:ec:b0:e6:97:f9:b1:d8:07:e6:8a:54:ca:43:46:c4: 98:8c:95:eb:1d:3d:4d:19:92:ee:4c:58:8f:0b:90:26:31:ef: 04:6e:23:4d:f0:07:58:2d:d8:11:9e:02:cd:d5:16:a6:fd:05: c7:ea:d7:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMDkxMTAvBgNVBAUTKERDNDRFRDM1QkVCRDBCMjgzMkMwNzRGQzJDNDZBQUIw Q0Q2ODJGREUwHhcNMjQwNTAyMTgwODQyWhcNMjQwNTA5MTgwODQyWjAYMRYwFAYD VQQDEw02NjMzZDZhYS1mNjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ZqFl8yX1PGYPXGg7gkkLvaWlbjzN5Inr2XdQL3twipujkgrWj81FiD8Zoby SdSmS5Ij5kGuVrak6D29aVhC2mIUk4yaTqNco7RGgR7aPX3MKXNnfagVEbAff6nr D4D5KSrwV6W7j/zErXS3UN/beA0C9jlp/S+uEbQOeOj3g084mxkniKr3Yy/7mCqW 1Ld/Qn1OnWRyGRT47wMGfezkSMeY/cCOkl08VoCSeZb5LRyYontsAX+KWx1QWz9z 63Xxfrhf/l+E+FXeLSrhv1OIM+6fvQ8l0LxQ8Onzm57VLEtGmqpaqZcuKWFdeQw6 9rdJGkNosALc2DjAITSPoLTqYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBKRG/er OYHcFlHAkPTxAQLCeojeMB8GA1UdIwQYMBaAFNxE7TW+vQsoMsB0/CxGqrDNaC/e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwOS8zQjM2N0JDRTMz QjcxMUU5QUQwRjU4N0FDNEY5QUUwMi8zRVR0TmI2OUN5Z3l3SFQ4TEVhcXNNMW9M OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNFVHROYjY5Q3lneXdIVDhMRWFxc00xb0w5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwOS8zQjM2N0JDRTMzQjcxMUU5QUQwRjU4N0FDNEY5QUUwMi8zRVR0TmI2OUN5 Z3l3SFQ4TEVhcXNNMW9MOTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnipkEknXMbNNob8vdoo/fDdGmHXNVZkK8+Vl94p90WJIsZ+uGF53l 1rO/2qg+xu+CQw/T0SxIQXTJ7+V/PZrqgXdU1Du9amPrHaVMsvps0EfvzRJlvKoG 2/UKCTtH6v/NVYqiBi5JSjH/ilhuChFJsjsCzfgfVGPlkwIhpPeGIXiG+K7q/E3u xSqdgr8C6/ncEjx4vHFXMMk2meMlDQNPTJPtvKzZo3DhDcNzJgJRmNNCfBGHrney ofW2HuCO3xQYY7ANRF9oz0XssOaX+bHYB+aKVMpDRsSYjJXrHT1NGZLuTFiPC5Am Me8EbiNN8AdYLdgRngLN1Ram/QXH6tcF -----END CERTIFICATE-----Generated at Thu May 2 20:04:27 2024 by rpki-client on console-ams.rpki-client.org