$ rpki-client -vvf rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft File: 40IvTt5eaM7JqqfjxuMnjHMOHnw.mft (raw, json) Hash identifier: RCYksBRsPOcggGC2jTZItI5sUt/bsONS0t4K33k5SRA= Subject key identifier: EE:21:12:CF:62:7E:80:C2:6D:08:0D:28:DC:F5:CB:86:BC:31:42:E0 Authority key identifier: E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C Certificate issuer: /CN=A9180DA4/serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Certificate serial: 33BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft Manifest number: 33BC Signing time: Wed 08 May 2024 14:45:08 +0000 Manifest this update: Wed 08 May 2024 14:45:08 +0000 Manifest next update: Wed 15 May 2024 14:45:08 +0000 Files and hashes: 1: 40IvTt5eaM7JqqfjxuMnjHMOHnw.crl (hash: /CVVxsezUytsiU8NVrPsnDPzKZXJrWB6QK4F9R8WkUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13244 (0x33bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180DA4/serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Validity Not Before: May 8 14:45:08 2024 GMT Not After : May 15 14:45:08 2024 GMT Subject: CN=663b8ff4-3135 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:7b:f8:3a:63:bd:ea:b5:b0:ff:e1:3a:2c:cb: bc:8b:17:76:22:39:91:cd:da:43:61:91:33:f2:b3: a2:60:61:7d:35:ee:19:10:44:b2:4d:69:2c:3d:fd: b7:64:9d:6f:04:cd:5b:e8:5b:d7:d6:08:75:c0:48: a5:b5:d3:d9:70:c7:5d:4d:3c:be:c7:3b:6a:74:a6: ad:39:c4:ae:2b:13:8c:6a:9c:1e:f2:02:6c:22:b9: d3:12:ff:f9:3b:31:61:8c:9a:1f:ca:f3:e4:bb:d4: 55:ea:f0:4a:ad:6b:71:e4:dc:fa:b9:09:7c:d7:d5: 8d:20:a9:4b:c0:3a:99:59:26:5d:f7:13:5d:b7:e5: fd:8f:df:9c:94:a7:17:85:72:5c:ad:0c:92:c7:09: 94:07:bb:c5:40:6e:76:8a:6c:82:54:d2:9b:4c:c6: 47:29:53:07:27:2c:ac:e4:4b:5a:cb:ce:37:d1:44: 17:fe:ad:00:0e:1f:bf:4e:fc:57:a3:48:de:1d:f5: 78:6e:b2:ca:f1:c4:cd:d6:92:e7:82:cd:ac:2e:7f: 2c:ab:05:85:4b:fb:84:23:31:f3:76:a1:ed:28:eb: 2c:d0:c6:34:eb:3c:72:e8:4a:18:55:b6:2c:ef:d1: a8:46:1f:eb:e7:2c:92:84:ce:df:6d:3b:84:6b:61: 8c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:21:12:CF:62:7E:80:C2:6D:08:0D:28:DC:F5:CB:86:BC:31:42:E0 X509v3 Authority Key Identifier: keyid:E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:30:b2:0b:a8:c9:ec:c5:4a:d9:8b:89:f2:0c:90:d8:92:c7: 69:dd:3d:04:c3:f6:71:a4:9e:d7:54:34:bb:ba:b9:c0:95:36: 73:32:ad:99:55:ce:1e:37:c6:47:a0:e9:1e:03:dd:5e:b5:f8: 09:fb:f6:54:59:b6:f4:4c:02:d9:6e:d4:ff:8c:b9:0e:30:92: 21:9f:28:77:50:f1:ed:ad:b2:dd:b9:4e:5a:25:23:3b:e2:08: fa:e7:1b:7e:c4:8a:d5:56:c6:a9:89:e8:f0:93:9f:2f:9d:48: 49:a8:31:8f:d9:cb:23:c4:0f:94:75:7f:2d:9a:88:b4:3e:3f: 02:be:08:89:83:24:e5:37:f7:38:04:bc:e4:da:8b:52:c6:6f: 8b:96:bc:47:fa:cd:c3:ea:0d:b6:7b:25:f9:5d:ac:19:9d:04: 8b:a8:97:ce:45:92:26:ad:a5:b1:1b:b4:ed:61:b2:96:27:2e: 87:46:eb:fe:c4:14:f2:b8:35:da:5e:ef:f9:28:2b:b3:81:4c: 29:4e:a5:33:8a:8c:49:27:8c:fa:b0:94:52:b5:ff:3b:55:1b: be:ac:b0:f3:ba:72:f2:f8:45:e8:99:a6:50:71:df:48:c5:7b: 00:2e:2b:d9:48:b1:9d:66:69:47:23:55:0d:0a:d9:b3:41:2e: ea:e1:af:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODBEQTQxMTAvBgNVBAUTKEUzNDIyRjRFREU1RTY4Q0VDOUFBQTdFM0M2RTMyNzhD NzMwRTFFN0MwHhcNMjQwNTA4MTQ0NTA4WhcNMjQwNTE1MTQ0NTA4WjAYMRYwFAYD VQQDEw02NjNiOGZmNC0zMTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA63v4OmO96rWw/+E6LMu8ixd2IjmRzdpDYZEz8rOiYGF9Ne4ZEESyTWksPf23 ZJ1vBM1b6FvX1gh1wEiltdPZcMddTTy+xztqdKatOcSuKxOMapwe8gJsIrnTEv/5 OzFhjJofyvPku9RV6vBKrWtx5Nz6uQl819WNIKlLwDqZWSZd9xNdt+X9j9+clKcX hXJcrQySxwmUB7vFQG52imyCVNKbTMZHKVMHJyys5Etay8430UQX/q0ADh+/TvxX o0jeHfV4brLK8cTN1pLngs2sLn8sqwWFS/uEIzHzdqHtKOss0MY06zxy6EoYVbYs 79GoRh/r5yyShM7fbTuEa2GM7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO4hEs9i foDCbQgNKNz1y4a8MULgMB8GA1UdIwQYMBaAFONCL07eXmjOyaqn48bjJ4xzDh58 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MERBNC80NzNDNjQ1MDFE OEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFNN0pxcWZqeHVNbmpITU9I bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwSXZUdDVlYU03SnFxZmp4dU1uakhNT0hudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MERBNC80NzNDNjQ1MDFEOEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFN N0pxcWZqeHVNbmpITU9IbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlMLILqMnsxUrZi4nyDJDYksdp3T0Ew/ZxpJ7XVDS7urnAlTZzMq2Z Vc4eN8ZHoOkeA91etfgJ+/ZUWbb0TALZbtT/jLkOMJIhnyh3UPHtrbLduU5aJSM7 4gj65xt+xIrVVsapiejwk58vnUhJqDGP2csjxA+UdX8tmoi0Pj8CvgiJgyTlN/c4 BLzk2otSxm+LlrxH+s3D6g22eyX5XawZnQSLqJfORZImraWxG7TtYbKWJy6HRuv+ xBTyuDXaXu/5KCuzgUwpTqUzioxJJ4z6sJRStf87VRu+rLDzunLy+EXomaZQcd9I xXsALivZSLGdZmlHI1UNCtmzQS7q4a8o -----END CERTIFICATE-----Generated at Wed May 8 17:47:03 2024 by rpki-client on console-ams.rpki-client.org