$ rpki-client -vvf rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft File: 1ppgVl8zchSc5uL8nnI9SQZ2doo.mft (raw, json) Hash identifier: k4AtayesbfjgHK8fbjap5usU8Yr14L+bn10PbY4l1hg= Subject key identifier: 61:60:21:FD:02:9C:46:C8:A1:DF:17:2F:EF:50:A6:A2:51:E0:80:F3 Authority key identifier: D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A Certificate issuer: /CN=A9185F7D/serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Certificate serial: 33BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft Manifest number: 33BA Signing time: Tue 30 Apr 2024 15:08:14 +0000 Manifest this update: Tue 30 Apr 2024 15:08:14 +0000 Manifest next update: Tue 07 May 2024 15:08:14 +0000 Files and hashes: 1: 1ppgVl8zchSc5uL8nnI9SQZ2doo.crl (hash: RUq9aMOXEf0vr6jP8BlAa29a+Uumx2xcxcJCHOo8mg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 15:08:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13242 (0x33ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185F7D/serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Validity Not Before: Apr 30 15:08:14 2024 GMT Not After : May 7 15:08:14 2024 GMT Subject: CN=6631095e-f033 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b4:6d:6d:6d:d6:8f:eb:18:03:96:04:8f:03: e8:93:07:0c:2b:37:c9:da:b0:c8:81:81:fc:02:c3: 5d:5c:27:e8:d7:14:9c:c0:cf:11:5a:a4:d6:98:eb: 11:01:cb:5c:6d:f8:65:22:76:7b:e8:34:d5:85:a2: 63:bb:eb:ef:d6:3e:af:ea:62:11:72:3e:a2:59:65: ce:db:81:fd:24:de:80:78:65:a7:3f:44:cb:9b:50: 27:2b:55:7a:31:90:a2:a2:b4:c1:28:bb:c7:3f:e7: d1:f6:3f:46:3d:ee:7c:23:f6:81:c8:af:7b:d5:9a: 39:46:3e:33:75:cc:34:b8:d8:6e:5f:d9:64:0e:04: 70:b9:34:ab:71:82:b6:75:0a:66:88:33:aa:3c:c2: 22:4f:ff:e8:3c:4c:00:8d:93:ae:9a:3a:de:9b:a7: f4:7c:71:48:fe:2b:ff:d1:e5:44:c9:10:10:82:37: 04:8b:6d:b7:bd:9a:38:60:2f:f5:81:a4:01:3a:4d: eb:78:75:e9:79:58:d8:cf:7d:92:08:d7:e2:4e:83: f8:59:e0:59:ce:ed:9f:9f:09:6f:32:55:07:d6:9c: 30:de:2c:8c:35:e5:d8:c3:cc:20:cb:e0:a1:27:b6: ad:c8:fb:0e:8d:45:0a:65:77:c4:ce:3e:9c:d9:a4: 24:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:60:21:FD:02:9C:46:C8:A1:DF:17:2F:EF:50:A6:A2:51:E0:80:F3 X509v3 Authority Key Identifier: keyid:D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:25:c4:e3:09:ab:08:f9:8b:6c:42:46:48:bd:9d:37:49:52: 96:f4:8e:92:9a:69:35:56:e0:b6:b3:a0:db:c1:88:37:64:71: 02:4b:08:78:7b:b5:89:82:8f:9e:6e:50:65:88:a8:be:e6:33: 1a:a2:96:4c:e6:36:d7:96:77:d3:05:72:f0:9e:f9:f8:ec:3c: c6:61:71:e6:a6:55:69:27:c4:1a:a4:d2:6f:2c:70:b9:09:3c: 4c:e5:63:93:59:b4:61:c3:e7:8e:cb:ed:98:b7:0f:17:eb:21: 8d:68:c2:8c:46:e8:0f:f4:42:35:82:cd:d8:ae:bd:1f:58:b5: ef:dd:66:ac:7e:09:2b:7a:13:e2:b5:0a:33:b3:25:6d:67:9d: d5:71:d8:86:7e:93:1f:b1:ab:f7:75:20:93:e1:cc:c2:58:0a: 56:4a:54:13:a5:78:24:d4:46:1d:56:e1:3d:14:4a:28:76:20: 08:94:77:ff:04:7e:bb:a0:12:ff:5e:e2:1b:02:fb:41:fe:28: 46:f3:05:10:25:4b:53:40:54:a0:42:ea:f5:2e:a9:10:84:74: 6b:91:38:c2:3a:74:66:80:99:9e:3f:47:dc:7c:05:0c:ce:0f: 07:1e:a2:88:eb:34:e2:42:a7:13:32:87:b7:dc:65:42:c2:48: 1c:ef:a9:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVGN0QxMTAvBgNVBAUTKEQ2OUE2MDU2NUYzMzcyMTQ5Q0U2RTJGQzlFNzIzRDQ5 MDY3Njc2OEEwHhcNMjQwNDMwMTUwODE0WhcNMjQwNTA3MTUwODE0WjAYMRYwFAYD VQQDEw02NjMxMDk1ZS1mMDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybRtbW3Wj+sYA5YEjwPokwcMKzfJ2rDIgYH8AsNdXCfo1xScwM8RWqTWmOsR ActcbfhlInZ76DTVhaJju+vv1j6v6mIRcj6iWWXO24H9JN6AeGWnP0TLm1AnK1V6 MZCiorTBKLvHP+fR9j9GPe58I/aByK971Zo5Rj4zdcw0uNhuX9lkDgRwuTSrcYK2 dQpmiDOqPMIiT//oPEwAjZOumjrem6f0fHFI/iv/0eVEyRAQgjcEi223vZo4YC/1 gaQBOk3reHXpeVjYz32SCNfiToP4WeBZzu2fnwlvMlUH1pww3iyMNeXYw8wgy+Ch J7atyPsOjUUKZXfEzj6c2aQkwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFgIf0C nEbIod8XL+9QpqJR4IDzMB8GA1UdIwQYMBaAFNaaYFZfM3IUnObi/J5yPUkGdnaK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUY3RC82OTc1M0Y1ODFE OUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNoU2M1dUw4bm5JOVNRWjJk b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwcGdWbDh6Y2hTYzV1TDhubkk5U1FaMmRvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUY3RC82OTc1M0Y1ODFEOUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNo U2M1dUw4bm5JOVNRWjJkb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUJcTjCasI+YtsQkZIvZ03SVKW9I6Smmk1VuC2s6DbwYg3ZHECSwh4 e7WJgo+eblBliKi+5jMaopZM5jbXlnfTBXLwnvn47DzGYXHmplVpJ8QapNJvLHC5 CTxM5WOTWbRhw+eOy+2Ytw8X6yGNaMKMRugP9EI1gs3Yrr0fWLXv3WasfgkrehPi tQozsyVtZ53VcdiGfpMfsav3dSCT4czCWApWSlQTpXgk1EYdVuE9FEoodiAIlHf/ BH67oBL/XuIbAvtB/ihG8wUQJUtTQFSgQur1LqkQhHRrkTjCOnRmgJmeP0fcfAUM zg8HHqKI6zTiQqcTMoe33GVCwkgc76m4 -----END CERTIFICATE-----Generated at Tue Apr 30 15:52:31 2024 by rpki-client on console-fra.rpki-client.org