$ rpki-client -vvf rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft File: 4bzIEhAO1GAiFweJMk8cw6-_aq0.mft (raw, json) Hash identifier: 059MnlBu4+eD8pqTIwAn9M3Wa8ZQuuJ/9EhfAjVTfpk= Subject key identifier: A0:C3:0E:B1:23:7D:56:66:7C:D3:C6:15:EF:25:CA:CE:69:80:EB:8A Authority key identifier: E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD Certificate issuer: /CN=A916AAFF/serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft Manifest number: 3A Signing time: Wed 15 May 2024 08:23:48 +0000 Manifest this update: Wed 15 May 2024 08:23:48 +0000 Manifest next update: Wed 22 May 2024 08:23:48 +0000 Files and hashes: 1: 4bzIEhAO1GAiFweJMk8cw6-_aq0.crl (hash: qFbj3WIUNHZOXjOsMvMfmceLoCA7zEv58PJetUMFeXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AAFF/serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Validity Not Before: May 15 08:23:48 2024 GMT Not After : May 22 08:23:48 2024 GMT Subject: CN=66447114-0291 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f8:3b:94:a4:8c:22:b4:9f:98:7c:1d:76:2f: b0:9b:b5:a3:30:d6:91:79:b6:a6:53:36:6c:85:10: fb:30:e4:b7:59:80:e1:d9:e4:cb:e2:fa:57:d7:11: c6:6e:79:77:50:c9:aa:9a:41:b1:31:14:57:92:b4: 8c:5a:69:ba:a0:e1:80:0d:2d:1d:51:b6:96:84:a0: b8:d8:43:4c:af:9c:18:2f:2d:dc:e1:82:28:83:0d: a6:f2:44:85:58:e7:e3:eb:fe:bc:71:8b:21:4b:0a: c2:ff:d2:5a:1d:1f:35:8c:e5:50:7f:9d:4e:95:9a: 70:a0:57:1c:07:2a:ab:38:85:99:c1:e4:de:86:b6: 5e:d7:48:4d:58:20:73:6f:fb:03:15:3c:8f:97:98: d1:15:13:12:18:c5:cc:1e:98:7f:f8:53:5c:c7:99: 33:ea:c8:eb:48:cd:f4:e5:22:f1:31:f2:69:53:33: 42:34:99:2b:f4:28:1d:5b:aa:54:5e:c1:bc:7b:04: 2f:78:18:36:06:a0:a5:60:5a:34:bd:1e:c6:77:c6: 0a:71:b1:87:ae:d7:50:a1:c6:e0:11:05:f3:25:a2: 41:89:47:5f:ac:b3:81:40:8e:2b:64:05:3d:bb:ec: ef:59:83:1f:0d:06:59:0d:78:97:86:29:48:8f:d8: ff:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:C3:0E:B1:23:7D:56:66:7C:D3:C6:15:EF:25:CA:CE:69:80:EB:8A X509v3 Authority Key Identifier: keyid:E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:b1:21:d2:9e:21:85:3c:a2:f8:a0:49:75:05:b5:6d:48:51: ca:29:80:65:09:36:9f:a3:62:04:ed:47:02:ae:08:bb:72:bc: 3a:34:cb:ba:1d:33:69:e9:40:27:86:74:e3:c4:77:6e:37:47: 17:0d:6b:08:fa:54:78:cb:cc:f5:b1:23:3d:99:a3:4d:b0:8e: 7e:4f:4f:85:df:36:a2:55:f9:70:d2:73:5c:f4:eb:1e:6d:b2: bb:3c:2d:1b:aa:22:c2:0c:ea:51:48:16:1d:4f:1b:69:e3:5a: e3:32:fc:69:7a:8b:57:c3:62:9a:a7:16:5d:66:f1:de:3a:62: 11:8a:e2:d8:51:f3:97:92:ca:6a:4d:91:89:68:14:b6:ba:5d: 41:ed:f5:4e:f6:c7:be:06:3d:2d:5f:38:4e:6b:80:80:43:32: 74:31:bf:fc:20:21:13:8c:55:4d:de:55:cd:c5:34:8f:f2:69: 5a:2e:96:d1:ce:66:62:92:ce:f5:16:f3:31:cd:9f:89:a6:9e: 7b:ec:c9:58:22:7a:96:51:80:32:94:92:de:56:2e:2d:ea:f1: 23:66:88:6a:c3:93:44:a0:e3:7d:cd:10:62:19:ee:37:50:1b: a8:f0:28:91:87:43:d1:68:da:f6:cb:6f:d6:f2:eb:c2:aa:7c: 67:5a:b0:f2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QUFGRjExMC8GA1UEBRMoRTFCQ0M4MTIxMDBFRDQ2MDIyMTcwNzg5MzI0RjFDQzNB RkJGNkFBRDAeFw0yNDA1MTUwODIzNDhaFw0yNDA1MjIwODIzNDhaMBgxFjAUBgNV BAMTDTY2NDQ3MTE0LTAyOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC++DuUpIwitJ+YfB12L7CbtaMw1pF5tqZTNmyFEPsw5LdZgOHZ5Mvi+lfXEcZu eXdQyaqaQbExFFeStIxaabqg4YANLR1RtpaEoLjYQ0yvnBgvLdzhgiiDDabyRIVY 5+Pr/rxxiyFLCsL/0lodHzWM5VB/nU6VmnCgVxwHKqs4hZnB5N6Gtl7XSE1YIHNv +wMVPI+XmNEVExIYxcwemH/4U1zHmTPqyOtIzfTlIvEx8mlTM0I0mSv0KB1bqlRe wbx7BC94GDYGoKVgWjS9HsZ3xgpxsYeu11ChxuARBfMlokGJR1+ss4FAjitkBT27 7O9Zgx8NBlkNeJeGKUiP2P+NAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoMMOsSN9 VmZ808YV7yXKzmmA64owHwYDVR0jBBgwFoAU4bzIEhAO1GAiFweJMk8cw6+/aq0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBQUZGLzdCQjhCQTZDQkIz QTExRUU4N0M2NkIwRkM0RjlBRTAyLzRieklFaEFPMUdBaUZ3ZUpNazhjdzYtX2Fx MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNGJ6SUVoQU8xR0FpRndlSk1rOGN3Ni1fYXEwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZB QUZGLzdCQjhCQTZDQkIzQTExRUU4N0M2NkIwRkM0RjlBRTAyLzRieklFaEFPMUdB aUZ3ZUpNazhjdzYtX2FxMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALuxIdKeIYU8ovigSXUFtW1IUcopgGUJNp+jYgTtRwKuCLtyvDo0y7od M2npQCeGdOPEd243RxcNawj6VHjLzPWxIz2Zo02wjn5PT4XfNqJV+XDSc1z06x5t srs8LRuqIsIM6lFIFh1PG2njWuMy/Gl6i1fDYpqnFl1m8d46YhGK4thR85eSympN kYloFLa6XUHt9U72x74GPS1fOE5rgIBDMnQxv/wgIROMVU3eVc3FNI/yaVoultHO ZmKSzvUW8zHNn4mmnnvsyVgiepZRgDKUkt5WLi3q8SNmiGrDk0Sg433NEGIZ7jdQ G6jwKJGHQ9Fo2vbLb9by68KqfGdasPI= -----END CERTIFICATE-----Generated at Wed May 15 09:27:33 2024 by rpki-client on console-fra.rpki-client.org