$ rpki-client -vvf rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft File: rU1lO4NcTh3pjsZjdoiamoN2SwI.mft (raw, json) Hash identifier: xf0CkOzzAF9+B21lobHeSYDbq9wwmnromOphFye6QDo= Subject key identifier: 51:68:72:3F:EE:0F:6D:B3:A7:03:C2:E0:67:7C:62:BB:62:B2:9E:68 Authority key identifier: AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 Certificate issuer: /CN=A914B669/serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Certificate serial: 33BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft Manifest number: 33BA Signing time: Sat 04 May 2024 14:52:25 +0000 Manifest this update: Sat 04 May 2024 14:52:25 +0000 Manifest next update: Sat 11 May 2024 14:52:25 +0000 Files and hashes: 1: rU1lO4NcTh3pjsZjdoiamoN2SwI.crl (hash: GoPcTGySk9IcTWOyZha/jNnB9s4DeGRDH9prvcSyN3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13242 (0x33ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B669/serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Validity Not Before: May 4 14:52:25 2024 GMT Not After : May 11 14:52:25 2024 GMT Subject: CN=66364ba9-6309 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c1:de:6a:39:f1:0f:d6:18:ec:23:d5:3c:9f: ff:2b:ff:c8:e9:a7:ac:35:bb:80:2d:d0:32:c1:21: f1:41:64:ba:b5:64:87:fe:da:36:ac:da:72:2f:aa: 83:99:13:e3:f6:23:60:98:3b:e2:8d:9e:f9:9d:fe: e2:2a:c2:af:b2:34:72:a2:39:0d:4b:f4:95:5f:00: 1b:85:17:ae:c7:1e:6d:74:85:0e:5c:ee:91:6f:3e: 23:8c:56:cb:0d:fb:12:2c:76:fc:f6:06:54:f3:bd: f3:fa:cd:0c:f4:c7:0d:1e:be:83:1f:8d:9d:c1:2a: 3f:7a:16:e1:f5:8b:64:38:aa:f2:4d:87:01:28:95: 13:64:32:4a:2d:c1:c2:ac:a8:f4:8b:bf:6b:19:bb: 3b:86:ab:e2:66:c1:f5:ec:61:73:96:b7:61:bf:22: e6:3e:05:86:83:fc:b8:9c:c1:13:97:e8:db:fa:f7: 09:59:de:18:df:ae:1d:9f:49:a1:fc:eb:d7:f8:e4: ab:dd:a7:d2:fb:bf:9a:5c:f1:46:58:01:26:ff:14: 15:e2:e0:91:53:ac:30:c9:c5:20:c9:99:59:82:00: fd:61:73:51:d4:d4:89:88:c9:53:97:c3:f6:7d:e8: aa:04:43:50:ea:9b:84:b5:36:ee:07:13:82:f0:9e: 48:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:68:72:3F:EE:0F:6D:B3:A7:03:C2:E0:67:7C:62:BB:62:B2:9E:68 X509v3 Authority Key Identifier: keyid:AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:bb:70:da:8d:b6:a2:c2:4b:e5:27:a6:86:67:61:ef:36:a5: 31:5a:b6:a6:ad:68:74:bf:dc:78:6c:a8:77:53:fc:ec:51:58: b8:b2:ec:6f:fe:d7:14:87:2b:5f:8f:45:0c:3c:6f:ce:14:4e: d2:21:64:d2:22:d4:13:67:48:35:63:83:ca:5b:bb:09:74:fb: 42:c4:09:67:39:f0:17:ff:0f:8f:bf:f4:78:52:64:9a:ce:59: 92:b9:c2:cb:a4:dd:de:e6:66:e9:ad:a7:c6:64:02:b1:54:b2: 3d:4f:9d:25:e8:25:a9:01:3b:f5:02:58:ef:4b:0d:00:4f:36: 26:9b:ea:f1:ab:7b:5d:ab:b6:cc:8d:28:c8:42:d3:1d:37:a2: b9:48:6e:66:8a:46:2c:dc:32:7c:48:41:b7:bb:62:6a:8a:e5: e8:9b:f4:ff:84:71:e9:45:77:62:ca:8e:3d:33:91:4f:21:1b: a5:2d:ad:b2:2e:96:72:50:19:2b:a6:eb:8b:48:8a:50:b0:bd: 14:91:7c:87:e1:34:ca:29:f4:f6:2a:b6:72:db:71:59:72:99: 9c:16:7f:b0:fc:fd:ba:e3:43:7a:fa:13:bb:6e:4e:96:28:a5: 2e:ec:09:59:d2:16:14:4b:8e:5e:b3:48:f8:63:41:5a:ee:32: ce:ce:9e:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI2NjkxMTAvBgNVBAUTKEFENEQ2NTNCODM1QzRFMURFOThFQzY2Mzc2ODg5QTlB ODM3NjRCMDIwHhcNMjQwNTA0MTQ1MjI1WhcNMjQwNTExMTQ1MjI1WjAYMRYwFAYD VQQDEw02NjM2NGJhOS02MzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0MHeajnxD9YY7CPVPJ//K//I6aesNbuALdAywSHxQWS6tWSH/to2rNpyL6qD mRPj9iNgmDvijZ75nf7iKsKvsjRyojkNS/SVXwAbhReuxx5tdIUOXO6Rbz4jjFbL DfsSLHb89gZU873z+s0M9McNHr6DH42dwSo/ehbh9YtkOKryTYcBKJUTZDJKLcHC rKj0i79rGbs7hqviZsH17GFzlrdhvyLmPgWGg/y4nMETl+jb+vcJWd4Y364dn0mh /OvX+OSr3afS+7+aXPFGWAEm/xQV4uCRU6wwycUgyZlZggD9YXNR1NSJiMlTl8P2 feiqBENQ6puEtTbuBxOC8J5IEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFFocj/u D22zpwPC4Gd8Yrtisp5oMB8GA1UdIwQYMBaAFK1NZTuDXE4d6Y7GY3aImpqDdksC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjY2OS85RDVCRjZGRTFE OTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1RoM3Bqc1pqZG9pYW1vTjJT d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVMWxPNE5jVGgzcGpzWmpkb2lhbW9OMlN3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjY2OS85RDVCRjZGRTFEOTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1Ro M3Bqc1pqZG9pYW1vTjJTd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALu3DajbaiwkvlJ6aGZ2HvNqUxWramrWh0v9x4bKh3U/zsUVi4suxv /tcUhytfj0UMPG/OFE7SIWTSItQTZ0g1Y4PKW7sJdPtCxAlnOfAX/w+Pv/R4UmSa zlmSucLLpN3e5mbprafGZAKxVLI9T50l6CWpATv1AljvSw0ATzYmm+rxq3tdq7bM jSjIQtMdN6K5SG5mikYs3DJ8SEG3u2JqiuXom/T/hHHpRXdiyo49M5FPIRulLa2y LpZyUBkrpuuLSIpQsL0UkXyH4TTKKfT2KrZy23FZcpmcFn+w/P2640N6+hO7bk6W KKUu7AlZ0hYUS45es0j4Y0Fa7jLOzp7W -----END CERTIFICATE-----Generated at Sat May 4 15:45:46 2024 by rpki-client on console-fra.rpki-client.org