$ rpki-client -vvf rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft File: 2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft (raw, json) Hash identifier: 9ryqSfGU+2/IZUjadOlNsxhjv4OnPdaPCRKKnoP85y4= Subject key identifier: E9:0B:B0:20:6E:E5:40:47:AE:2C:30:5D:51:7D:E7:06:FB:7E:57:05 Authority key identifier: DB:03:27:14:43:E7:5D:6D:19:50:50:ED:C8:B6:13:ED:5F:FB:D8:38 Certificate issuer: /CN=A91889B6/serialNumber=DB03271443E75D6D195050EDC8B613ED5FFBD838 Certificate serial: 33C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft Manifest number: 33C1 Signing time: Mon 06 May 2024 14:58:33 +0000 Manifest this update: Mon 06 May 2024 14:58:32 +0000 Manifest next update: Mon 13 May 2024 14:58:32 +0000 Files and hashes: 1: 2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl (hash: C/zW6JWuzS3t8QfNq+VQ/HwB1DJtqLLCfb/4ZUn1d2U=) 2: 10E0F1884D0C11EE81002274C4F9AE02.roa (hash: fwR0Y9a/7VmS04Bn5+XlasPbpMnFyp4y7F5nLpKVEn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 14:58:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13251 (0x33c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91889B6/serialNumber=DB03271443E75D6D195050EDC8B613ED5FFBD838 Validity Not Before: May 6 14:58:32 2024 GMT Not After : May 13 14:58:32 2024 GMT Subject: CN=6638f019-6241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0c:d0:e6:ac:3a:52:5c:77:96:fb:df:05:1a: c5:35:0b:92:f4:b4:31:5c:9b:6c:18:f0:d7:27:fb: cc:3c:56:e9:6a:c3:e9:83:c3:19:24:a5:23:17:7e: 25:be:26:df:de:ef:6e:c0:af:67:6e:c5:f5:48:2e: 28:36:84:4c:5c:17:91:d5:07:53:49:43:fe:0e:3a: e9:bd:9b:d7:0b:90:4c:64:1d:53:0b:0e:45:bb:df: 7b:14:d4:e1:10:1b:5c:f5:b4:da:0f:71:18:da:98: 66:23:82:b3:55:95:80:c6:c7:62:57:e6:3c:b5:81: 45:e4:e2:cb:5d:a6:2d:37:27:c1:13:55:e6:b3:a5: 29:97:e8:04:41:6f:ea:30:19:98:b6:0c:27:6d:8a: 31:fd:cc:ce:f6:63:e8:03:23:78:52:0b:e6:88:d0: 87:c5:46:68:0f:f6:65:f2:ef:75:64:6e:8e:01:d4: 88:e1:3a:04:63:d9:9c:42:ad:da:2d:ff:79:38:f2: af:2e:29:85:ea:49:dc:2c:29:80:b1:f4:2b:8a:a3: 73:7c:9b:59:a9:05:6b:9e:21:45:0b:54:7c:13:bd: e8:8b:d1:df:80:23:2e:78:00:9d:9c:dc:04:9b:29: 5e:b6:2a:f2:41:8a:b7:e1:21:3d:1a:0b:7f:36:32: 47:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:0B:B0:20:6E:E5:40:47:AE:2C:30:5D:51:7D:E7:06:FB:7E:57:05 X509v3 Authority Key Identifier: keyid:DB:03:27:14:43:E7:5D:6D:19:50:50:ED:C8:B6:13:ED:5F:FB:D8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:91:45:66:65:67:ea:06:0d:a5:69:d7:fb:6c:88:4d:a8:76: b7:9e:92:7c:95:8b:29:97:8b:11:22:b3:d8:cd:fc:7a:cd:e5: d4:09:74:4e:63:36:6d:07:c0:f4:42:a8:e8:ad:cb:cd:99:d6: 11:41:03:76:fb:57:d4:d6:b3:41:26:60:af:8a:e5:79:a2:36: 60:3d:90:90:2d:8c:fb:a6:2a:8e:da:c1:a8:b7:8c:24:8a:3e: a7:0f:35:af:86:cc:26:b0:d5:81:d5:10:09:7e:45:b0:a8:f1: 5c:71:70:7c:bc:82:88:0d:d1:06:7e:d5:97:8c:e2:55:02:9e: da:97:09:9b:61:ce:69:9f:c2:28:cd:12:1b:51:15:d6:49:bd: 9c:be:28:b1:76:00:12:43:2e:1f:19:6d:16:e0:34:94:7e:c8: c6:16:bc:3f:0a:f5:87:ef:92:58:68:88:2a:91:20:16:77:5a: 2d:71:d1:b8:fa:75:ae:c2:3a:f5:e3:82:ef:26:6f:a5:e4:8a: 6d:c5:41:cd:fc:e1:87:fa:f0:87:47:c6:66:bd:6d:8a:36:94: f8:cb:d4:94:cb:03:60:83:a0:b5:80:90:2f:47:4c:c1:dd:cd: 15:8e:b4:3f:50:e6:68:6e:e2:7f:09:80:06:02:8b:f5:a2:ed: c5:48:eb:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg5QjYxMTAvBgNVBAUTKERCMDMyNzE0NDNFNzVENkQxOTUwNTBFREM4QjYxM0VE NUZGQkQ4MzgwHhcNMjQwNTA2MTQ1ODMyWhcNMjQwNTEzMTQ1ODMyWjAYMRYwFAYD VQQDEw02NjM4ZjAxOS02MjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAzQ5qw6Ulx3lvvfBRrFNQuS9LQxXJtsGPDXJ/vMPFbpasPpg8MZJKUjF34l vibf3u9uwK9nbsX1SC4oNoRMXBeR1QdTSUP+DjrpvZvXC5BMZB1TCw5Fu997FNTh EBtc9bTaD3EY2phmI4KzVZWAxsdiV+Y8tYFF5OLLXaYtNyfBE1Xms6Upl+gEQW/q MBmYtgwnbYox/czO9mPoAyN4UgvmiNCHxUZoD/Zl8u91ZG6OAdSI4ToEY9mcQq3a Lf95OPKvLimF6kncLCmAsfQriqNzfJtZqQVrniFFC1R8E73oi9HfgCMueACdnNwE myletiryQYq34SE9Ggt/NjJHdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOkLsCBu 5UBHriwwXVF95wb7flcFMB8GA1UdIwQYMBaAFNsDJxRD511tGVBQ7ci2E+1f+9g4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlCNi8zOUFBMEEwMjFE OTYxMUUyQTY1NDhFN0UwOEIwMkNEMi8yd01uRkVQblhXMFpVRkR0eUxZVDdWXzcy RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ3TW5GRVBuWFcwWlVGRHR5TFlUN1ZfNzJEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODlCNi8zOUFBMEEwMjFEOTYxMUUyQTY1NDhFN0UwOEIwMkNEMi8yd01uRkVQblhX MFpVRkR0eUxZVDdWXzcyRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALkUVmZWfqBg2ladf7bIhNqHa3npJ8lYspl4sRIrPYzfx6zeXUCXRO YzZtB8D0QqjorcvNmdYRQQN2+1fU1rNBJmCviuV5ojZgPZCQLYz7piqO2sGot4wk ij6nDzWvhswmsNWB1RAJfkWwqPFccXB8vIKIDdEGftWXjOJVAp7alwmbYc5pn8Io zRIbURXWSb2cviixdgASQy4fGW0W4DSUfsjGFrw/CvWH75JYaIgqkSAWd1otcdG4 +nWuwjr144LvJm+l5IptxUHN/OGH+vCHR8ZmvW2KNpT4y9SUywNgg6C1gJAvR0zB 3c0VjrQ/UOZobuJ/CYAGAov1ou3FSOsb -----END CERTIFICATE-----Generated at Mon May 6 17:42:48 2024 by rpki-client on console-ams.rpki-client.org