$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft File: 5vEsD995brDfK2AuWsQsy4OyLhg.mft (raw, json) Hash identifier: PWDCYIq9vYcNK4LnCffkSn+1Ibe4CIQFhRZq3SZQO2c= Subject key identifier: FA:88:0E:28:E7:BD:9A:D8:24:E8:44:7C:72:31:B4:D0:86:E2:4A:6F Authority key identifier: E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 Certificate issuer: /CN=A914E3B7/serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Certificate serial: 33B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft Manifest number: 33B6 Signing time: Tue 30 Apr 2024 15:22:10 +0000 Manifest this update: Tue 30 Apr 2024 15:22:09 +0000 Manifest next update: Tue 07 May 2024 15:22:09 +0000 Files and hashes: 1: 5vEsD995brDfK2AuWsQsy4OyLhg.crl (hash: PJDzXndLEs/lx5vwJ970D966uOni+rJtjicZYCfQdMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 15:11:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13241 (0x33b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3B7/serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Validity Not Before: Apr 30 15:22:09 2024 GMT Not After : May 7 15:22:09 2024 GMT Subject: CN=66310ca1-8742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d0:90:33:b5:ed:a0:9d:3c:19:8e:d2:00:8f: d5:e0:da:ed:45:15:5d:fc:2d:52:d6:c2:26:8c:91: a1:bc:0e:e3:e5:a9:18:3e:47:86:43:20:f0:62:f1: 3c:f3:4a:18:80:46:ca:52:c4:87:b5:28:89:ae:37: 54:5b:a4:d9:c5:6a:26:63:af:e8:75:24:c7:2f:6c: 0d:28:fd:a8:60:7f:06:43:0c:66:cc:94:48:d2:b6: 09:a2:a0:13:36:5a:ad:04:f9:1b:21:68:b5:d3:f6: cb:c5:db:0b:c1:c9:25:8d:f5:af:43:56:3f:2d:fc: 62:79:8f:3e:a3:97:1c:7d:3f:88:95:86:f0:a7:23: 0b:45:8e:b9:ff:a4:cc:72:1b:81:da:d7:29:36:45: 99:86:cb:6b:5c:a7:fe:4c:68:69:86:0b:69:b4:ce: 7b:af:fb:b8:e9:8d:de:79:75:5a:f7:17:ad:68:6e: 24:59:29:27:d1:b4:2c:ab:2e:15:b5:8c:a7:5a:b1: a2:93:9a:0c:80:e9:e8:58:19:19:53:cd:a9:28:45: e1:6a:f0:f1:a6:30:87:1f:01:1b:55:4e:f8:bc:34: b2:8b:8a:ec:46:c1:fb:df:14:87:32:fd:3c:d0:7c: a2:da:76:09:bb:99:11:c0:0d:09:34:70:86:45:3e: 27:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:88:0E:28:E7:BD:9A:D8:24:E8:44:7C:72:31:B4:D0:86:E2:4A:6F X509v3 Authority Key Identifier: keyid:E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:41:d3:26:9b:36:c6:68:86:50:c6:8a:0f:56:0c:b7:6b:74: 70:50:48:6a:cd:4b:cc:2b:cf:47:61:bd:c1:86:e6:2e:bc:0c: c1:dc:12:28:b0:cd:b4:30:7c:6c:23:e2:1d:9a:e4:ac:64:3d: 9c:85:d3:05:b2:63:60:51:cc:8b:dc:33:ae:17:81:86:f7:a7: 90:e0:28:38:dc:23:f7:68:33:8e:f2:24:f5:62:dd:90:62:84: 12:77:18:4c:41:b5:6d:05:13:65:5b:73:db:80:e9:53:98:5c: 35:b8:c2:bb:14:17:78:03:db:7c:bb:2f:58:cd:96:45:28:38: c7:0f:49:9b:d5:b9:96:1b:3b:f4:1a:ef:b8:bd:7f:9d:83:65: ff:b5:8e:ba:03:6e:b3:b4:97:a3:8f:39:95:04:d8:6a:12:2f: 1f:07:06:75:51:08:34:40:a6:01:86:8a:f0:5f:a8:92:9a:fc: 17:83:02:67:ba:f2:9a:d6:72:6f:54:ae:bc:d4:88:a5:08:85: 03:17:f6:83:16:bc:2a:e5:19:7d:a7:9d:0c:c7:ef:2f:3a:f6: e4:16:3b:dc:e4:06:06:b3:2d:8d:92:fd:f4:9b:6d:22:2f:60: 8f:03:bb:48:25:ae:e7:7c:5d:9a:64:32:dd:23:16:8b:d3:2d: d1:1c:dd:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzQjcxMTAvBgNVBAUTKEU2RjEyQzBGREY3OTZFQjBERjJCNjAyRTVBQzQyQ0NC ODNCMjJFMTgwHhcNMjQwNDMwMTUyMjA5WhcNMjQwNTA3MTUyMjA5WjAYMRYwFAYD VQQDEw02NjMxMGNhMS04NzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9CQM7XtoJ08GY7SAI/V4NrtRRVd/C1S1sImjJGhvA7j5akYPkeGQyDwYvE8 80oYgEbKUsSHtSiJrjdUW6TZxWomY6/odSTHL2wNKP2oYH8GQwxmzJRI0rYJoqAT NlqtBPkbIWi10/bLxdsLwckljfWvQ1Y/LfxieY8+o5ccfT+IlYbwpyMLRY65/6TM chuB2tcpNkWZhstrXKf+TGhphgtptM57r/u46Y3eeXVa9xetaG4kWSkn0bQsqy4V tYynWrGik5oMgOnoWBkZU82pKEXhavDxpjCHHwEbVU74vDSyi4rsRsH73xSHMv08 0Hyi2nYJu5kRwA0JNHCGRT4nvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPqIDijn vZrYJOhEfHIxtNCG4kpvMB8GA1UdIwQYMBaAFObxLA/feW6w3ytgLlrELMuDsi4Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNCNy85RkFFODRGQTFE QTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJyRGZLMkF1V3NRc3k0T3lM aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2RXNEOTk1YnJEZksyQXVXc1FzeTRPeUxoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNCNy85RkFFODRGQTFEQTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJy RGZLMkF1V3NRc3k0T3lMaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgQdMmmzbGaIZQxooPVgy3a3RwUEhqzUvMK89HYb3BhuYuvAzB3BIo sM20MHxsI+IdmuSsZD2chdMFsmNgUcyL3DOuF4GG96eQ4Cg43CP3aDOO8iT1Yt2Q YoQSdxhMQbVtBRNlW3PbgOlTmFw1uMK7FBd4A9t8uy9YzZZFKDjHD0mb1bmWGzv0 Gu+4vX+dg2X/tY66A26ztJejjzmVBNhqEi8fBwZ1UQg0QKYBhorwX6iSmvwXgwJn uvKa1nJvVK681IilCIUDF/aDFrwq5Rl9p50Mx+8vOvbkFjvc5AYGsy2Nkv30m20i L2CPA7tIJa7nfF2aZDLdIxaL0y3RHN1m -----END CERTIFICATE-----Generated at Tue Apr 30 15:52:30 2024 by rpki-client on console-fra.rpki-client.org