$ rpki-client -vvf rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft File: tQk3XiWpXStZwZWBw8Y1topJES0.mft (raw, json) Hash identifier: vzGIUQX3xGRPEWckibH13WhIZeCJG/fycvkAnJy00YM= Subject key identifier: 74:E4:42:39:98:01:58:EF:91:E4:77:BA:E6:F1:F9:80:B9:FA:18:D6 Authority key identifier: B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D Certificate issuer: /CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Certificate serial: 33C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft Manifest number: 33C1 Signing time: Thu 02 May 2024 15:34:06 +0000 Manifest this update: Thu 02 May 2024 15:34:06 +0000 Manifest next update: Thu 09 May 2024 15:34:06 +0000 Files and hashes: 1: tQk3XiWpXStZwZWBw8Y1topJES0.crl (hash: Kk+zR9FJax6xtHhfkg6lqqigAHLoRtcumgNw6Nr0Yaw=) 2: 2F79F386050511EA87CC7D42C4F9AE02.roa (hash: eC5ZCaV+uar8UhV81NoF6+j/mNJ5lnpowpcwQY80DEA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 15:34:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13255 (0x33c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Validity Not Before: May 2 15:34:06 2024 GMT Not After : May 9 15:34:06 2024 GMT Subject: CN=6633b26e-d1af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:80:7d:a6:c5:9c:50:68:4e:e7:15:61:04:ab: 9a:8a:82:8f:f1:94:74:60:39:cd:38:2f:9c:6b:49: 91:5d:24:23:d2:29:10:56:54:82:19:b6:f5:8a:1e: 06:ae:68:86:89:fd:01:c9:38:db:99:94:42:11:77: 03:1b:a1:73:4d:73:a5:c9:93:16:a3:ef:ef:aa:1c: 8d:4b:c4:77:9b:c3:fa:55:25:24:c0:1e:3d:49:a9: 16:01:94:9a:cc:e9:fa:ba:18:c9:7e:f1:d5:ba:ce: 90:2f:cf:0f:8e:02:a6:98:c6:68:c7:52:5e:5d:ab: a0:f9:71:85:b3:ee:b0:d1:70:d9:05:25:50:53:a0: cd:93:8d:75:f6:50:70:2f:58:95:33:33:ef:5c:c2: 7b:40:c1:c6:c0:96:b8:39:72:7b:5a:e7:80:1b:c8: 6c:60:c1:d7:6d:85:ca:85:88:9b:e7:24:f2:40:6b: 7a:f0:0a:2e:08:19:a9:88:a3:09:dd:21:37:0f:a6: 30:f4:0e:c8:30:ee:ec:1f:9e:a2:b0:18:89:f2:7a: c4:06:55:cd:6c:69:57:ce:70:30:81:14:3f:59:3d: 49:9f:5d:7b:cc:e5:60:61:18:cf:15:1b:d2:10:66: 5a:bd:92:3e:b0:ad:f4:50:ab:28:3b:67:f2:88:bb: 4e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:E4:42:39:98:01:58:EF:91:E4:77:BA:E6:F1:F9:80:B9:FA:18:D6 X509v3 Authority Key Identifier: keyid:B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:f8:6d:ce:49:3f:db:24:36:29:18:4f:7e:6f:93:cf:1c:46: c4:01:0b:da:a8:84:60:2a:24:76:dd:7d:c0:ef:ea:e3:b0:f5: a0:73:88:21:e7:dd:29:e4:a9:44:de:8d:5c:6f:05:41:13:ac: 40:12:63:8b:4c:95:7b:4b:5f:40:70:ba:e8:27:f8:ab:ab:d5: 63:ad:e8:99:3d:a2:55:1a:12:40:1b:ef:03:8e:5f:6b:0a:ed: 9d:47:58:bc:07:f3:2b:78:76:f7:84:64:fc:a2:43:fd:41:14: 0f:24:1c:ca:9f:64:f0:2a:22:0b:ed:d4:ad:5f:fe:51:92:25: 15:2e:cf:95:0c:e0:db:82:ee:7b:86:69:20:70:64:57:4b:32: 94:b0:86:8d:d9:21:8c:8f:e5:27:a1:03:28:fe:5f:d7:88:0c: 41:56:57:dc:0a:b9:53:4e:42:1f:92:ab:e6:2d:d1:8c:28:e4: 19:d7:f5:ff:13:ab:eb:23:b2:b7:03:1c:2c:bf:25:b2:2d:50: e2:3b:0e:a4:a4:dc:71:68:dc:c4:e2:af:e3:cf:9c:3c:75:84: fd:1f:51:f6:af:a1:16:bf:2a:dd:8e:f2:7b:33:cc:6f:07:be: 6e:ef:9c:d5:df:0e:23:48:41:66:ee:8f:ed:c8:ec:2e:48:b6: 4f:7d:b4:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3NTQxMTAvBgNVBAUTKEI1MDkzNzVFMjVBOTVEMkI1OUMxOTU4MUMzQzYzNUI2 OEE0OTExMkQwHhcNMjQwNTAyMTUzNDA2WhcNMjQwNTA5MTUzNDA2WjAYMRYwFAYD VQQDEw02NjMzYjI2ZS1kMWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4B9psWcUGhO5xVhBKuaioKP8ZR0YDnNOC+ca0mRXSQj0ikQVlSCGbb1ih4G rmiGif0ByTjbmZRCEXcDG6FzTXOlyZMWo+/vqhyNS8R3m8P6VSUkwB49SakWAZSa zOn6uhjJfvHVus6QL88PjgKmmMZox1JeXaug+XGFs+6w0XDZBSVQU6DNk4119lBw L1iVMzPvXMJ7QMHGwJa4OXJ7WueAG8hsYMHXbYXKhYib5yTyQGt68AouCBmpiKMJ 3SE3D6Yw9A7IMO7sH56isBiJ8nrEBlXNbGlXznAwgRQ/WT1Jn117zOVgYRjPFRvS EGZavZI+sK30UKsoO2fyiLtOqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTkQjmY AVjvkeR3uubx+YC5+hjWMB8GA1UdIwQYMBaAFLUJN14lqV0rWcGVgcPGNbaKSREt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTc1NC9BQ0QxRDc3MDFE QUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhTdFp3WldCdzhZMXRvcEpF UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RRazNYaVdwWFN0WndaV0J3OFkxdG9wSkVTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTc1NC9BQ0QxRDc3MDFEQUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhT dFp3WldCdzhZMXRvcEpFUzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL+G3OST/bJDYpGE9+b5PPHEbEAQvaqIRgKiR23X3A7+rjsPWgc4gh 590p5KlE3o1cbwVBE6xAEmOLTJV7S19AcLroJ/irq9VjreiZPaJVGhJAG+8Djl9r Cu2dR1i8B/MreHb3hGT8okP9QRQPJBzKn2TwKiIL7dStX/5RkiUVLs+VDODbgu57 hmkgcGRXSzKUsIaN2SGMj+UnoQMo/l/XiAxBVlfcCrlTTkIfkqvmLdGMKOQZ1/X/ E6vrI7K3AxwsvyWyLVDiOw6kpNxxaNzE4q/jz5w8dYT9H1H2r6EWvyrdjvJ7M8xv B75u75zV3w4jSEFm7o/tyOwuSLZPfbSg -----END CERTIFICATE-----Generated at Thu May 2 17:43:10 2024 by rpki-client on console-fra.rpki-client.org