$ rpki-client -vvf rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.mft File: at5OHE4cCb8U36pMPWAPQY4X5y4.mft (raw, json) Hash identifier: X7pjf2whd3nBMWOHIIRP4sZAbrnxdI/rBrTNz98p5RU= Subject key identifier: D8:B9:97:C9:A4:AF:7F:B3:76:0B:A8:4F:E3:91:FA:7D:48:C4:14:3F Authority key identifier: 6A:DE:4E:1C:4E:1C:09:BF:14:DF:AA:4C:3D:60:0F:41:8E:17:E7:2E Certificate issuer: /CN=A918429B/serialNumber=6ADE4E1C4E1C09BF14DFAA4C3D600F418E17E72E Certificate serial: 33B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at5OHE4cCb8U36pMPWAPQY4X5y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.mft Manifest number: 33B9 Signing time: Sun 28 Apr 2024 15:00:07 +0000 Manifest this update: Sun 28 Apr 2024 15:00:07 +0000 Manifest next update: Sun 05 May 2024 15:00:07 +0000 Files and hashes: 1: at5OHE4cCb8U36pMPWAPQY4X5y4.crl (hash: y+PDKZUVG4yYS6ve444Rbm94U/z8iFYyCtP//9mOY6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.crl rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at5OHE4cCb8U36pMPWAPQY4X5y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 14:42:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13241 (0x33b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918429B/serialNumber=6ADE4E1C4E1C09BF14DFAA4C3D600F418E17E72E Validity Not Before: Apr 28 15:00:07 2024 GMT Not After : May 5 15:00:07 2024 GMT Subject: CN=662e6477-a06d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:65:52:e6:65:93:92:9d:76:a7:0d:82:cc:99: 1c:bc:57:7f:59:27:36:bd:94:1d:8d:54:c1:82:04: 89:99:90:13:0c:5c:96:85:00:15:25:24:82:d6:8e: 1f:5e:43:de:06:c7:3a:09:98:86:8c:b3:00:41:1f: 48:2c:9a:fd:7f:26:fd:38:8b:5d:a7:7d:65:2d:aa: d0:c4:4a:18:89:74:b4:08:2c:63:e9:be:82:fa:ab: 2f:b1:37:6f:da:99:73:23:04:ad:80:d2:82:1a:09: f5:5d:3b:cd:8e:76:e4:69:0d:91:8e:09:83:74:82: 6c:09:04:bc:30:c8:df:07:7b:3d:92:77:49:32:b6: 09:29:4a:e0:d9:9d:aa:03:c0:84:35:28:23:76:0b: 5c:73:07:17:ff:0d:e2:07:2e:72:21:8f:29:4c:7e: 61:1e:cd:c2:1e:54:4d:5a:96:d5:49:c9:d2:b5:7b: c7:58:15:d7:a8:44:1f:4c:1b:e2:ef:f3:92:90:f7: a2:ee:f8:cf:f4:2e:c1:01:c9:89:8d:28:43:cc:c2: 13:51:e4:09:7e:ab:59:4d:f1:a0:b3:ea:1f:f7:c4: 09:0b:4f:ae:8e:e1:5f:70:1e:c9:11:fe:36:af:de: 55:d0:63:b6:40:f4:4e:e5:97:b8:2c:fb:1f:7b:c3: 25:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:B9:97:C9:A4:AF:7F:B3:76:0B:A8:4F:E3:91:FA:7D:48:C4:14:3F X509v3 Authority Key Identifier: keyid:6A:DE:4E:1C:4E:1C:09:BF:14:DF:AA:4C:3D:60:0F:41:8E:17:E7:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at5OHE4cCb8U36pMPWAPQY4X5y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:26:db:f6:44:f0:b0:a9:b5:c4:dc:a2:7d:6d:54:f8:17:ad: cb:41:9e:e3:cf:51:57:7b:a3:07:97:1e:36:34:5c:ee:7b:44: f8:19:6c:4a:c3:ae:de:37:44:98:ca:86:1f:1a:a9:f0:e7:c6: 5a:f2:57:ad:64:a2:8c:ac:7f:9a:00:6f:fc:07:94:dd:bc:31: 5a:3f:0f:49:ed:47:e8:76:40:9a:aa:1a:77:eb:f9:31:1d:23: 94:1b:2d:6e:d8:62:51:23:b7:11:7c:20:88:d6:d0:73:92:85: b1:68:f4:42:37:43:3a:ed:6d:74:68:c5:82:84:1c:35:e6:37: aa:39:cf:5c:4a:62:50:d0:ad:5f:53:53:7a:4b:a2:13:59:2f: e3:2e:fe:ea:75:aa:01:54:e0:f1:93:9a:ab:54:ac:61:39:31: b1:66:61:2f:1b:e4:a4:18:5f:0a:68:0f:d9:1e:d1:fc:97:c7: ff:7b:18:cf:97:36:6b:bb:3c:7d:3d:96:21:dc:91:4c:d5:62: 31:22:bf:9d:dd:a6:b5:a2:1b:82:45:76:f2:d2:83:f8:db:ca: b1:82:5b:86:05:d8:26:b2:b7:58:7f:7b:b9:1a:71:74:c2:0b: f8:42:f6:1f:6b:57:a4:e6:be:2e:5a:c0:86:dc:92:d1:59:34: 7d:4c:26:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQyOUIxMTAvBgNVBAUTKDZBREU0RTFDNEUxQzA5QkYxNERGQUE0QzNENjAwRjQx OEUxN0U3MkUwHhcNMjQwNDI4MTUwMDA3WhcNMjQwNTA1MTUwMDA3WjAYMRYwFAYD VQQDEw02NjJlNjQ3Ny1hMDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA22VS5mWTkp12pw2CzJkcvFd/WSc2vZQdjVTBggSJmZATDFyWhQAVJSSC1o4f XkPeBsc6CZiGjLMAQR9ILJr9fyb9OItdp31lLarQxEoYiXS0CCxj6b6C+qsvsTdv 2plzIwStgNKCGgn1XTvNjnbkaQ2RjgmDdIJsCQS8MMjfB3s9kndJMrYJKUrg2Z2q A8CENSgjdgtccwcX/w3iBy5yIY8pTH5hHs3CHlRNWpbVScnStXvHWBXXqEQfTBvi 7/OSkPei7vjP9C7BAcmJjShDzMITUeQJfqtZTfGgs+of98QJC0+ujuFfcB7JEf42 r95V0GO2QPRO5Ze4LPsfe8MlMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNi5l8mk r3+zdguoT+OR+n1IxBQ/MB8GA1UdIwQYMBaAFGreThxOHAm/FN+qTD1gD0GOF+cu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDI5Qi9CNjAwNjNBQzFE OTcxMUUyQkEyRTQ1ODEwOEIwMkNEMi9hdDVPSEU0Y0NiOFUzNnBNUFdBUFFZNFg1 eTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F0NU9IRTRjQ2I4VTM2cE1QV0FQUVk0WDV5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDI5Qi9CNjAwNjNBQzFEOTcxMUUyQkEyRTQ1ODEwOEIwMkNEMi9hdDVPSEU0Y0Ni OFUzNnBNUFdBUFFZNFg1eTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWJtv2RPCwqbXE3KJ9bVT4F63LQZ7jz1FXe6MHlx42NFzue0T4GWxK w67eN0SYyoYfGqnw58Za8letZKKMrH+aAG/8B5TdvDFaPw9J7UfodkCaqhp36/kx HSOUGy1u2GJRI7cRfCCI1tBzkoWxaPRCN0M67W10aMWChBw15jeqOc9cSmJQ0K1f U1N6S6ITWS/jLv7qdaoBVODxk5qrVKxhOTGxZmEvG+SkGF8KaA/ZHtH8l8f/exjP lzZruzx9PZYh3JFM1WIxIr+d3aa1ohuCRXby0oP428qxgluGBdgmsrdYf3u5GnF0 wgv4QvYfa1ek5r4uWsCG3JLRWTR9TCY7 -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:05 2024 by rpki-client on console-fra.rpki-client.org