$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft File: 33HZn0zTs4Mms-1HyOSl35ieQvI.mft (raw, json) Hash identifier: jyxGVeSTSUAOloZIaZT9oqHOM1XeK9e3eQmyJeCRJ8w= Subject key identifier: 4B:6C:6A:9A:61:A1:56:EB:94:29:DD:DB:DF:71:F1:6C:95:85:DC:6A Authority key identifier: DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 Certificate issuer: /CN=A915A0EE/serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft Manifest number: B5 Signing time: Fri 17 May 2024 06:40:51 +0000 Manifest this update: Fri 17 May 2024 06:40:51 +0000 Manifest next update: Fri 24 May 2024 06:40:51 +0000 Files and hashes: 1: 33HZn0zTs4Mms-1HyOSl35ieQvI.crl (hash: bH8QD6gwmNMP2lBp4ToG+e2MWfRTsBwcEhHqnzztIcE=) 2: 1BDBCE5013A011EE91039C41C4F9AE02.roa (hash: INeGiGvtWUNvN/8qvcL38WjDdtA6rWDDaUJdGibX87s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:40:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0EE/serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Validity Not Before: May 17 06:40:51 2024 GMT Not After : May 24 06:40:51 2024 GMT Subject: CN=6646fbf3-147e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4b:e4:d1:a1:2a:fd:9b:6c:3c:1f:ea:2a:72: e7:82:eb:ff:ae:12:51:ae:41:7e:bd:cf:9a:32:da: cd:f9:b8:95:07:4e:f6:a5:9f:d2:da:a1:1b:51:ec: 89:93:63:4f:f3:82:0f:58:e6:78:b1:41:2e:69:34: 04:78:92:7f:47:55:2d:bd:8a:6f:4e:9e:1e:0b:3f: 08:9a:2b:be:a0:23:73:8a:a6:4e:c3:3e:1e:79:34: 05:1a:fe:d1:be:9b:22:ae:d9:03:e1:75:c0:a7:47: a6:09:6e:86:ff:a4:f5:0c:15:82:3f:45:d7:c0:18: 5b:e0:ca:e3:13:38:32:79:19:cc:24:59:3b:7f:5d: 43:85:d1:2a:88:60:7b:a4:55:10:fa:73:74:c2:30: dc:9d:9f:12:b9:70:e3:57:83:3b:fc:3a:d7:b7:5d: c8:31:e3:0d:f2:98:de:41:3e:bb:d8:cd:af:99:a8: b7:3e:c6:54:49:7f:ec:13:9a:bf:7d:80:d0:59:c0: 08:4a:45:42:39:31:9f:b4:fd:aa:b8:42:5f:46:65: 7b:65:12:ee:2e:73:92:c2:8a:ad:15:46:38:bd:3e: 71:f7:13:39:7b:e1:e6:c2:19:c6:3d:6b:26:d8:f9: 34:1a:11:51:ee:df:37:7c:f5:5a:29:52:fc:64:36: 42:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:6C:6A:9A:61:A1:56:EB:94:29:DD:DB:DF:71:F1:6C:95:85:DC:6A X509v3 Authority Key Identifier: keyid:DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:48:0f:e2:fd:9c:c5:b0:a2:78:4c:41:c4:d5:8f:f7:e3:f4: ed:a5:19:b6:c6:a2:b4:21:36:ce:ae:82:6c:9a:d5:9d:bd:a8: 09:8b:2e:15:41:9e:84:e3:e2:17:26:c0:4f:1a:69:54:cc:49: d8:26:ff:27:fd:3c:5d:6e:19:df:ba:20:2b:f0:8a:aa:58:1c: 6a:dd:c1:7b:52:8d:61:70:f3:5a:60:29:b6:f7:07:07:d0:6d: 9e:c3:e7:a0:7d:e2:1e:c6:ce:18:41:2d:97:e3:0d:9a:df:74: a8:4d:11:21:34:84:24:24:ab:9c:41:3c:b8:49:90:b6:10:98: 95:a0:90:d9:d0:b7:82:b9:bb:c3:05:89:b5:03:e4:ae:6c:be: 4c:25:67:3a:91:72:45:20:5d:a6:df:87:c9:99:db:5b:c3:76: 52:75:ad:2f:b7:30:10:62:7c:7a:3a:0f:8b:a1:9b:32:14:dd: 56:30:3c:77:04:bf:f0:2f:d1:55:92:d9:3c:57:98:cf:71:9b: 98:78:ee:da:20:65:c6:e1:6a:a4:60:6e:8e:74:31:6f:67:b0: f3:54:3a:0d:26:2f:2a:6b:dd:8f:e5:81:da:89:9a:28:6f:e6: 87:14:a7:ce:a8:bd:b4:00:40:78:31:32:3b:e8:4c:48:24:10: 70:af:f0:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRUUxMTAvBgNVBAUTKERGNzFEOTlGNENEM0IzODMyNkIzRUQ0N0M4RTRBNURG OTg5RTQyRjIwHhcNMjQwNTE3MDY0MDUxWhcNMjQwNTI0MDY0MDUxWjAYMRYwFAYD VQQDEw02NjQ2ZmJmMy0xNDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0vk0aEq/ZtsPB/qKnLnguv/rhJRrkF+vc+aMtrN+biVB072pZ/S2qEbUeyJ k2NP84IPWOZ4sUEuaTQEeJJ/R1UtvYpvTp4eCz8Imiu+oCNziqZOwz4eeTQFGv7R vpsirtkD4XXAp0emCW6G/6T1DBWCP0XXwBhb4MrjEzgyeRnMJFk7f11DhdEqiGB7 pFUQ+nN0wjDcnZ8SuXDjV4M7/DrXt13IMeMN8pjeQT672M2vmai3PsZUSX/sE5q/ fYDQWcAISkVCOTGftP2quEJfRmV7ZRLuLnOSwoqtFUY4vT5x9xM5e+HmwhnGPWsm 2Pk0GhFR7t83fPVaKVL8ZDZCFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtsapph oVbrlCnd299x8WyVhdxqMB8GA1UdIwQYMBaAFN9x2Z9M07ODJrPtR8jkpd+YnkLy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBFRS81NUM4MDNDQTA5 QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0TW1zLTFIeU9TbDM1aWVR dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzSFpuMHpUczRNbXMtMUh5T1NsMzVpZVF2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBFRS81NUM4MDNDQTA5QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0 TW1zLTFIeU9TbDM1aWVRdkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmSA/i/ZzFsKJ4TEHE1Y/34/TtpRm2xqK0ITbOroJsmtWdvagJiy4V QZ6E4+IXJsBPGmlUzEnYJv8n/TxdbhnfuiAr8IqqWBxq3cF7Uo1hcPNaYCm29wcH 0G2ew+egfeIexs4YQS2X4w2a33SoTREhNIQkJKucQTy4SZC2EJiVoJDZ0LeCubvD BYm1A+SubL5MJWc6kXJFIF2m34fJmdtbw3ZSda0vtzAQYnx6Og+LoZsyFN1WMDx3 BL/wL9FVktk8V5jPcZuYeO7aIGXG4WqkYG6OdDFvZ7DzVDoNJi8qa92P5YHaiZoo b+aHFKfOqL20AEB4MTI76ExIJBBwr/Cs -----END CERTIFICATE-----Generated at Fri May 17 08:13:50 2024 by rpki-client on console-fra.rpki-client.org