$ rpki-client -vvf rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.mft File: 13OnYxe8qx7vA29fbkx7NMSra3s.mft (raw, json) Hash identifier: ncIFZQO1zE3uvWgND4al5QFEQUHpp+ltgdDXlNMndNo= Subject key identifier: 38:53:73:6A:4B:25:F6:1A:52:0C:AA:91:6E:19:F3:B9:76:28:56:F0 Authority key identifier: D7:73:A7:63:17:BC:AB:1E:EF:03:6F:5F:6E:4C:7B:34:C4:AB:6B:7B Certificate issuer: /CN=A917AE24/serialNumber=D773A76317BCAB1EEF036F5F6E4C7B34C4AB6B7B Certificate serial: 03DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/13OnYxe8qx7vA29fbkx7NMSra3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.mft Manifest number: 03DF Signing time: Sat 27 Apr 2024 02:13:50 +0000 Manifest this update: Sat 27 Apr 2024 02:13:50 +0000 Manifest next update: Sat 04 May 2024 02:13:50 +0000 Files and hashes: 1: 13OnYxe8qx7vA29fbkx7NMSra3s.crl (hash: LYNWrJHmGG4f0zspehE4NPCPc01ScefAKgrJBZYjfBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.crl rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/13OnYxe8qx7vA29fbkx7NMSra3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 02:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 991 (0x3df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AE24/serialNumber=D773A76317BCAB1EEF036F5F6E4C7B34C4AB6B7B Validity Not Before: Apr 27 02:13:50 2024 GMT Not After : May 4 02:13:50 2024 GMT Subject: CN=662c5f5e-07fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1a:76:46:2d:8e:91:cf:55:ca:d8:37:4d:80: eb:38:9e:5b:d8:d4:f5:a2:ea:7b:68:a2:1f:62:9e: a5:7d:a2:be:06:db:37:6d:b3:a7:fc:fa:a2:ee:b9: 31:07:dd:48:cc:a7:1f:0f:fc:fb:da:29:10:79:07: 27:f5:50:de:92:4d:56:98:cc:19:b3:a3:6f:bc:2e: 19:3b:47:8f:93:7d:22:92:a9:4a:d1:99:d8:40:11: 48:d9:8c:3e:4e:b9:10:3c:72:5d:d9:d1:cb:f2:5f: 2a:5a:4f:26:dd:b9:d7:97:ac:02:47:e5:6a:57:6f: eb:a2:1f:e5:c2:b0:4f:c8:89:ec:cc:5f:02:42:7c: 28:71:3d:48:f9:02:66:43:86:43:01:42:c0:71:2b: 7c:70:c8:14:16:16:f4:24:0b:aa:a0:35:ff:75:25: d2:d1:c9:cb:55:e6:80:0c:bf:bf:da:d2:6f:27:13: cd:1e:8d:82:4f:30:85:5e:a4:87:b6:77:7d:f0:33: 10:ed:0c:fd:18:8b:7d:9c:9b:91:99:e7:90:53:cf: eb:a0:54:f4:aa:46:ae:c3:9a:f6:49:78:b7:dc:f2: ba:e3:a2:cb:79:b8:01:ea:ff:33:cb:32:00:61:e0: 84:22:70:e2:1c:63:c9:43:98:20:46:3f:1f:5e:5b: f3:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:53:73:6A:4B:25:F6:1A:52:0C:AA:91:6E:19:F3:B9:76:28:56:F0 X509v3 Authority Key Identifier: keyid:D7:73:A7:63:17:BC:AB:1E:EF:03:6F:5F:6E:4C:7B:34:C4:AB:6B:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/13OnYxe8qx7vA29fbkx7NMSra3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:6a:37:f4:f9:4a:48:38:cb:fc:5d:c6:a3:63:4a:8a:ea:19: 91:60:8f:6f:29:af:fc:28:49:c3:33:cf:ab:21:17:c5:48:5b: f8:b7:c4:a7:06:71:c2:06:aa:d4:28:95:e7:9b:a2:e8:fe:8b: ba:9a:12:45:0c:97:0e:4f:36:16:b7:f1:3e:68:3c:64:01:91: 4a:69:09:86:dc:03:c2:52:3f:23:f0:8b:0d:4a:cc:57:13:32: 7b:4f:6a:1d:4e:b5:8c:a3:05:80:3d:c5:6e:da:a5:11:e9:08: 43:74:ac:7e:d7:96:9d:7e:15:ea:93:94:d5:22:84:cd:bd:cf: b1:58:a1:ba:ff:7b:d4:83:16:70:40:d1:e8:f8:09:18:6b:be: 29:9b:81:bb:e7:82:51:09:93:14:2f:b1:1f:31:d9:47:d9:64: cf:8d:b1:88:80:4e:73:df:3c:37:69:ab:5a:ab:14:19:e8:ee: 89:12:79:c7:83:c6:58:23:3f:d0:8a:7c:18:db:13:73:c8:1e: 9b:f9:a5:3a:10:51:03:48:dd:64:09:26:8e:09:dc:73:28:a2: ef:f3:13:44:a4:05:e5:7b:ae:19:6e:31:63:13:dc:81:5e:2b: 27:f6:ba:19:78:76:9f:d8:2e:8a:f2:9e:aa:cf:8a:7f:4d:9e: f0:06:d1:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FFMjQxMTAvBgNVBAUTKEQ3NzNBNzYzMTdCQ0FCMUVFRjAzNkY1RjZFNEM3QjM0 QzRBQjZCN0IwHhcNMjQwNDI3MDIxMzUwWhcNMjQwNTA0MDIxMzUwWjAYMRYwFAYD VQQDEw02NjJjNWY1ZS0wN2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxp2Ri2Okc9Vytg3TYDrOJ5b2NT1oup7aKIfYp6lfaK+Bts3bbOn/Pqi7rkx B91IzKcfD/z72ikQeQcn9VDekk1WmMwZs6NvvC4ZO0ePk30ikqlK0ZnYQBFI2Yw+ TrkQPHJd2dHL8l8qWk8m3bnXl6wCR+VqV2/roh/lwrBPyInszF8CQnwocT1I+QJm Q4ZDAULAcSt8cMgUFhb0JAuqoDX/dSXS0cnLVeaADL+/2tJvJxPNHo2CTzCFXqSH tnd98DMQ7Qz9GIt9nJuRmeeQU8/roFT0qkauw5r2SXi33PK646LLebgB6v8zyzIA YeCEInDiHGPJQ5ggRj8fXlvzYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhTc2pL JfYaUgyqkW4Z87l2KFbwMB8GA1UdIwQYMBaAFNdzp2MXvKse7wNvX25MezTEq2t7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUUyNC84RUM0MDA5NDMw QTQxMUVDOEJFREI4MkRDNEY5QUUwMi8xM09uWXhlOHF4N3ZBMjlmYmt4N05NU3Jh M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEzT25ZeGU4cXg3dkEyOWZia3g3Tk1TcmEzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUUyNC84RUM0MDA5NDMwQTQxMUVDOEJFREI4MkRDNEY5QUUwMi8xM09uWXhlOHF4 N3ZBMjlmYmt4N05NU3JhM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7ajf0+UpIOMv8XcajY0qK6hmRYI9vKa/8KEnDM8+rIRfFSFv4t8Sn BnHCBqrUKJXnm6Lo/ou6mhJFDJcOTzYWt/E+aDxkAZFKaQmG3APCUj8j8IsNSsxX EzJ7T2odTrWMowWAPcVu2qUR6QhDdKx+15adfhXqk5TVIoTNvc+xWKG6/3vUgxZw QNHo+AkYa74pm4G754JRCZMUL7EfMdlH2WTPjbGIgE5z3zw3aataqxQZ6O6JEnnH g8ZYIz/QinwY2xNzyB6b+aU6EFEDSN1kCSaOCdxzKKLv8xNEpAXle64ZbjFjE9yB Xisn9roZeHaf2C6K8p6qz4p/TZ7wBtHh -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:13 2024 by rpki-client on console-ams.rpki-client.org