$ rpki-client -vvf rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft File: 5k3PxJR4oTweMa6HKi-sEL-4lTE.mft (raw, json) Hash identifier: 2pti8/iI9Has7GiZKRtmKn6YNf8bem7g9QYYrNOqKhU= Subject key identifier: B9:17:FD:85:2F:A0:C4:2F:A0:F0:80:B7:F7:86:1F:04:A6:C8:A6:CA Authority key identifier: E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31 Certificate issuer: /CN=A915F67F/serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531 Certificate serial: 33BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft Manifest number: 33BC Signing time: Tue 30 Apr 2024 14:36:40 +0000 Manifest this update: Tue 30 Apr 2024 14:36:40 +0000 Manifest next update: Tue 07 May 2024 14:36:40 +0000 Files and hashes: 1: 5k3PxJR4oTweMa6HKi-sEL-4lTE.crl (hash: 7LWedVsJvQg80K9L3xOhttI42KmJf5/wiZYze4ExigE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 14:36:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13244 (0x33bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F67F/serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531 Validity Not Before: Apr 30 14:36:40 2024 GMT Not After : May 7 14:36:40 2024 GMT Subject: CN=663101f8-5f02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6e:7c:93:bb:05:1e:96:19:cd:79:b1:fb:2f: 06:8d:c1:dd:95:35:45:4f:6c:60:5f:70:d7:4a:e8: 2c:40:48:a0:7f:3a:3a:d4:82:b2:84:39:55:d0:ba: f2:50:49:ca:a1:3a:69:dc:70:0f:5f:d8:2b:c5:6d: 48:c1:99:da:fd:bf:52:9e:ab:18:c8:90:40:82:45: 2c:ae:75:62:58:f6:61:81:3a:31:7e:4c:c3:c2:1a: 83:0b:cb:ab:27:22:38:8a:91:f7:f6:7d:0a:83:04: cc:df:3f:98:d6:6b:2a:bd:fa:f4:9d:8a:7f:56:c5: 79:f7:a8:d1:19:3d:69:4a:ae:bf:0d:40:a5:3a:44: ea:08:42:3e:af:9d:1f:50:d7:aa:d6:80:c3:27:ff: 1b:d2:fa:76:d6:d8:5b:c5:18:e1:2d:69:fd:9d:79: bc:c0:5a:2d:2c:f3:ef:9c:e2:3a:6a:e6:6c:b7:68: e7:ea:fd:5d:e7:14:7f:54:88:17:58:a1:00:1c:a4: bc:e9:40:3c:ac:02:9d:8a:d8:e4:80:60:dc:53:24: d8:8f:7d:30:74:c1:f0:a6:a4:03:6a:8a:4d:90:ff: 08:36:c1:08:e8:1b:e2:8f:e9:c6:5f:d5:50:3f:31: 62:09:e0:10:8f:7c:62:ed:dd:5f:f6:bd:0b:87:76: b4:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:17:FD:85:2F:A0:C4:2F:A0:F0:80:B7:F7:86:1F:04:A6:C8:A6:CA X509v3 Authority Key Identifier: keyid:E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:4f:05:b2:8f:27:c1:2f:cc:41:60:c8:a1:49:4e:48:ab:43: 9a:b8:1a:e2:25:e3:d2:a1:2e:50:67:10:3a:a8:a7:35:0c:4e: 15:a4:4b:67:99:a0:80:97:41:29:b8:93:10:d1:aa:53:c6:de: 82:06:11:37:1e:3e:0b:c8:e9:98:8f:88:e1:6c:6f:9b:61:ac: 8f:eb:9a:5c:5d:3d:d6:c5:75:02:8f:52:7e:07:5c:5e:aa:e7: 59:3e:21:e6:8f:0b:78:66:ba:07:41:ca:77:2d:6a:72:1c:ed: 7e:11:41:23:e2:07:cd:d2:5c:d3:72:4e:a7:d5:87:bc:2f:75: 99:51:db:19:9e:69:0d:d8:50:42:c7:79:fa:76:6a:a2:b8:ef: 39:d2:aa:fa:a3:3d:ca:b7:7e:ae:0e:0d:24:98:d3:af:bc:2b: fa:18:f8:09:e6:f1:5b:e6:11:e1:f4:0f:5c:2d:00:e9:bb:74: f3:6d:3b:44:45:11:84:75:60:ea:77:b4:0e:25:7b:a6:c4:cc: bb:09:86:9a:5c:92:36:78:30:cd:8d:7f:b0:67:e6:6c:f9:37: bc:6a:06:0f:95:20:f3:ae:ae:1d:c9:3e:68:15:7a:1d:8b:91: b2:05:49:fd:4e:ed:80:f2:cb:d6:b6:de:e3:85:ee:3b:5e:d4: d7:ce:a8:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY2N0YxMTAvBgNVBAUTKEU2NERDRkM0OTQ3OEExM0MxRTMxQUU4NzJBMkZBQzEw QkZCODk1MzEwHhcNMjQwNDMwMTQzNjQwWhcNMjQwNTA3MTQzNjQwWjAYMRYwFAYD VQQDEw02NjMxMDFmOC01ZjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuW58k7sFHpYZzXmx+y8GjcHdlTVFT2xgX3DXSugsQEigfzo61IKyhDlV0Lry UEnKoTpp3HAPX9grxW1IwZna/b9SnqsYyJBAgkUsrnViWPZhgToxfkzDwhqDC8ur JyI4ipH39n0KgwTM3z+Y1msqvfr0nYp/VsV596jRGT1pSq6/DUClOkTqCEI+r50f UNeq1oDDJ/8b0vp21thbxRjhLWn9nXm8wFotLPPvnOI6auZst2jn6v1d5xR/VIgX WKEAHKS86UA8rAKditjkgGDcUyTYj30wdMHwpqQDaopNkP8INsEI6Bvij+nGX9VQ PzFiCeAQj3xi7d1f9r0Lh3a0bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLkX/YUv oMQvoPCAt/eGHwSmyKbKMB8GA1UdIwQYMBaAFOZNz8SUeKE8HjGuhyovrBC/uJUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjY3Ri85MUI5ODNDODFE OEExMUUyQjBFNDk0RTQwOEIwMkNEMi81azNQeEpSNG9Ud2VNYTZIS2ktc0VMLTRs VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVrM1B4SlI0b1R3ZU1hNkhLaS1zRUwtNGxURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjY3Ri85MUI5ODNDODFEOEExMUUyQjBFNDk0RTQwOEIwMkNEMi81azNQeEpSNG9U d2VNYTZIS2ktc0VMLTRsVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeTwWyjyfBL8xBYMihSU5Iq0OauBriJePSoS5QZxA6qKc1DE4VpEtn maCAl0EpuJMQ0apTxt6CBhE3Hj4LyOmYj4jhbG+bYayP65pcXT3WxXUCj1J+B1xe qudZPiHmjwt4ZroHQcp3LWpyHO1+EUEj4gfN0lzTck6n1Ye8L3WZUdsZnmkN2FBC x3n6dmqiuO850qr6oz3Kt36uDg0kmNOvvCv6GPgJ5vFb5hHh9A9cLQDpu3TzbTtE RRGEdWDqd7QOJXumxMy7CYaaXJI2eDDNjX+wZ+Zs+Te8agYPlSDzrq4dyT5oFXod i5GyBUn9Tu2A8svWtt7jhe47XtTXzqi3 -----END CERTIFICATE-----Generated at Tue Apr 30 19:21:19 2024 by rpki-client on console-ams.rpki-client.org