$ rpki-client -vvf rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft File: jo3VssEBuYOnmck4qg5AplH8vgc.mft (raw, json) Hash identifier: vxURcLynv1CioBcTcWCp7XyiKULPDw7B+maX7uQ+vXc= Subject key identifier: C0:08:EC:B7:2E:66:DF:5B:36:AC:2C:21:81:B5:A2:41:20:BF:06:0F Authority key identifier: 8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 Certificate issuer: /CN=A9156334/serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Certificate serial: 36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft Manifest number: 33 Signing time: Wed 15 May 2024 08:31:26 +0000 Manifest this update: Wed 15 May 2024 08:31:26 +0000 Manifest next update: Wed 22 May 2024 08:31:26 +0000 Files and hashes: 1: jo3VssEBuYOnmck4qg5AplH8vgc.crl (hash: a7iPw06amarAxbmo0pXC2mRbLDhaCBbUH9dRpW2fmT0=) 2: BFF632BAC8DA11EE9D90830EC4F9AE02.roa (hash: MBwn72JmsCT7vih3AtTLJUpOi+wUy13VRx2xsOOKJ2U=) 3: B0C5F17CC8DA11EE9340650EC4F9AE02.roa (hash: 4QEzEGNUcnBGEV6lQ2Xa3sXFk3QrL6kzzt9ztlcBjuQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156334/serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Validity Not Before: May 15 08:31:26 2024 GMT Not After : May 22 08:31:26 2024 GMT Subject: CN=664472de-0928 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:36:a0:5a:4d:0d:17:0b:51:6a:75:be:a9:81: c0:17:76:f5:94:8d:26:a4:6d:a3:af:13:a2:ed:1d: 4c:a4:06:68:de:eb:22:62:5f:a0:13:13:9b:dd:17: 91:c7:95:6e:18:6c:c9:8e:de:b6:a7:a3:7b:3b:b3: 9f:8e:e2:e5:b5:e2:ea:fd:c9:1f:d8:3c:1c:ec:54: fe:db:b4:e1:fc:32:0f:80:ee:bf:0f:8d:35:20:6b: b0:7c:ff:db:e1:9a:bc:44:3d:29:2c:36:16:92:6d: 82:ec:59:e7:53:5f:5f:4b:a4:ed:fb:8c:eb:79:a0: a1:65:bc:4c:87:c5:8a:6f:3c:f2:d4:1c:fd:ef:df: bd:3f:23:49:be:c7:a9:cd:fd:38:d8:92:10:ec:e6: d2:3d:a0:71:e4:9d:6b:5d:63:71:2c:85:bf:a0:60: ff:87:3d:c3:32:68:c5:c6:92:54:2b:4c:c4:cc:53: ab:03:39:8c:a7:66:41:5d:63:4a:fe:50:58:7a:25: fc:d2:23:6f:59:94:e1:1e:62:7b:41:0c:5f:68:2d: fd:96:d1:f8:3d:79:f2:5b:07:e0:3e:4b:c2:36:35: 60:4c:15:68:29:5a:6a:ac:38:a5:7b:97:b7:11:ae: 5b:01:86:a2:ec:9f:74:a4:59:e1:e8:56:12:43:92: cf:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:08:EC:B7:2E:66:DF:5B:36:AC:2C:21:81:B5:A2:41:20:BF:06:0F X509v3 Authority Key Identifier: keyid:8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:2a:b0:2e:e2:bf:ee:b3:62:18:ef:d3:e1:5f:90:46:a5:31: 65:c3:77:d9:13:45:92:12:43:c0:1b:9a:91:03:64:83:d7:d7: 1c:0d:48:22:2b:1a:0a:6d:2d:7f:39:c4:25:c9:a7:5e:84:b9: 86:ea:3d:62:0b:a2:9a:69:79:8c:36:fb:43:d7:f8:43:fc:c9: cc:59:f3:5b:16:65:24:2f:69:14:e2:f7:05:19:38:f7:69:f6: 40:ee:1b:69:b0:52:1b:a1:82:70:eb:fb:34:cd:9b:c0:dc:64: 32:89:dd:db:75:d2:05:98:92:75:94:ba:10:13:8d:6a:ea:35: 68:a1:cb:35:41:d0:b6:8a:68:ac:c8:10:2a:0c:6d:69:ba:d1: 53:1f:05:57:f3:ae:5f:a8:a3:7a:c8:e7:28:da:2e:f5:63:7a: f4:de:58:7c:98:ba:d2:b6:a4:65:59:9d:24:9e:1c:c0:8e:90: ea:ec:f3:a8:f9:1c:a8:67:67:d5:18:df:6a:86:83:ef:a5:40: 31:85:cd:a7:81:f6:32:84:41:24:cb:90:a4:25:3a:26:cf:86: fe:48:b1:c8:cc:6a:58:0e:a7:ba:b0:e1:ed:b5:6f:b5:4b:ef: 93:35:97:45:b2:5b:2b:af:06:45:31:01:65:cd:81:51:63:a3: db:01:c8:1c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NjMzNDExMC8GA1UEBRMoOEU4REQ1QjJDMTAxQjk4M0E3OTlDOTM4QUEwRTQwQTY1 MUZDQkUwNzAeFw0yNDA1MTUwODMxMjZaFw0yNDA1MjIwODMxMjZaMBgxFjAUBgNV BAMTDTY2NDQ3MmRlLTA5MjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/NqBaTQ0XC1Fqdb6pgcAXdvWUjSakbaOvE6LtHUykBmje6yJiX6ATE5vdF5HH lW4YbMmO3rano3s7s5+O4uW14ur9yR/YPBzsVP7btOH8Mg+A7r8PjTUga7B8/9vh mrxEPSksNhaSbYLsWedTX19LpO37jOt5oKFlvEyHxYpvPPLUHP3v370/I0m+x6nN /TjYkhDs5tI9oHHknWtdY3Eshb+gYP+HPcMyaMXGklQrTMTMU6sDOYynZkFdY0r+ UFh6JfzSI29ZlOEeYntBDF9oLf2W0fg9efJbB+A+S8I2NWBMFWgpWmqsOKV7l7cR rlsBhqLsn3SkWeHoVhJDks/pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwAjsty5m 31s2rCwhgbWiQSC/Bg8wHwYDVR0jBBgwFoAUjo3VssEBuYOnmck4qg5AplH8vgcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2MzM0L0U3Q0RERkNFQzhE ODExRUU5RjRBQjk2REM0RjlBRTAyL2pvM1Zzc0VCdVlPbm1jazRxZzVBcGxIOHZn Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvam8zVnNzRUJ1WU9ubWNrNHFnNUFwbEg4dmdjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2 MzM0L0U3Q0RERkNFQzhEODExRUU5RjRBQjk2REM0RjlBRTAyL2pvM1Zzc0VCdVlP bm1jazRxZzVBcGxIOHZnYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADcqsC7iv+6zYhjv0+FfkEalMWXDd9kTRZISQ8AbmpEDZIPX1xwNSCIr GgptLX85xCXJp16EuYbqPWILopppeYw2+0PX+EP8ycxZ81sWZSQvaRTi9wUZOPdp 9kDuG2mwUhuhgnDr+zTNm8DcZDKJ3dt10gWYknWUuhATjWrqNWihyzVB0LaKaKzI ECoMbWm60VMfBVfzrl+oo3rI5yjaLvVjevTeWHyYutK2pGVZnSSeHMCOkOrs86j5 HKhnZ9UY32qGg++lQDGFzaeB9jKEQSTLkKQlOibPhv5IscjMalgOp7qw4e21b7VL 75M1l0WyWyuvBkUxAWXNgVFjo9sByBw= -----END CERTIFICATE-----Generated at Wed May 15 09:27:32 2024 by rpki-client on console-fra.rpki-client.org