$ rpki-client -vvf rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft File: 2xinykRiG1ZTwgBDlHaz8qOAhT4.mft (raw, json) Hash identifier: 6S7Prq+y+pNnBbcUlBxxnqpzzVSivLVr8o8l4W814gE= Subject key identifier: E9:41:FD:DA:B3:8B:51:AB:86:41:57:41:1C:3D:81:64:00:5D:2A:A4 Authority key identifier: DB:18:A7:CA:44:62:1B:56:53:C2:00:43:94:76:B3:F2:A3:80:85:3E Certificate issuer: /CN=A918C774/serialNumber=DB18A7CA44621B5653C200439476B3F2A380853E Certificate serial: 33C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xinykRiG1ZTwgBDlHaz8qOAhT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft Manifest number: 33C1 Signing time: Sat 04 May 2024 15:04:48 +0000 Manifest this update: Sat 04 May 2024 15:04:48 +0000 Manifest next update: Sat 11 May 2024 15:04:48 +0000 Files and hashes: 1: 2xinykRiG1ZTwgBDlHaz8qOAhT4.crl (hash: DKbt067+D90D8DL1utZmd5LnA+Tp6GO+Sd+InqTBgWM=) 2: 0458A9A409FB11EA8742F60AC4F9AE02.roa (hash: kV4EAHSMy4Jq3/mPBsoOUs+MxUH26QTvmEtj0SznvHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.crl rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xinykRiG1ZTwgBDlHaz8qOAhT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13254 (0x33c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C774/serialNumber=DB18A7CA44621B5653C200439476B3F2A380853E Validity Not Before: May 4 15:04:48 2024 GMT Not After : May 11 15:04:48 2024 GMT Subject: CN=66364e90-11de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b7:e0:af:72:ba:39:e7:8a:5e:b3:df:15:65: 9d:8c:73:c0:b0:49:38:3e:72:98:c2:7f:56:7d:a8: 9f:1f:cc:2c:4f:28:e6:de:9d:ab:28:61:35:ac:e4: 4e:41:1d:82:2e:76:63:c2:ff:a5:e6:99:31:69:ab: cc:bf:79:74:4e:1e:1f:25:0c:1a:fd:15:3c:ef:f8: d4:b6:0f:67:d9:54:1c:c9:4e:75:ff:d8:3b:c5:1c: 9b:57:c6:37:14:7e:52:fe:95:d9:e4:07:92:50:fe: c0:a3:d4:f6:57:9b:e7:74:02:e7:de:b8:39:7b:50: 90:b5:81:ca:72:d4:f5:70:d6:22:43:00:d9:9a:00: 73:ec:10:43:6d:c4:8e:a8:11:5c:94:49:73:af:24: f2:bb:99:55:a8:78:ca:c5:51:fb:1f:ff:0f:be:02: cc:fe:ff:69:d4:30:df:d9:05:a5:24:c3:29:c8:33: af:97:f5:19:ff:fd:bd:fb:3a:3f:ff:51:9e:62:80: dc:4b:94:02:c5:11:5d:80:4c:31:0a:c6:65:de:ae: 5a:b9:c3:b2:55:44:36:d9:25:f7:6a:c7:45:03:19: 97:a9:a4:11:90:6e:49:2d:a2:e7:79:63:7c:e3:b1: 48:45:22:16:d0:a0:3a:d4:e7:54:c8:05:ef:4d:a3: 6b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:41:FD:DA:B3:8B:51:AB:86:41:57:41:1C:3D:81:64:00:5D:2A:A4 X509v3 Authority Key Identifier: keyid:DB:18:A7:CA:44:62:1B:56:53:C2:00:43:94:76:B3:F2:A3:80:85:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xinykRiG1ZTwgBDlHaz8qOAhT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:05:52:4d:9b:12:76:34:ea:f3:44:9b:54:d0:74:ea:bd:1d: c0:ff:43:7d:99:28:ef:95:94:a4:c2:4e:01:e3:17:a3:b7:d5: 12:14:f8:e0:50:c6:14:7b:5b:cd:13:35:cc:53:48:1b:16:e0: 68:27:a7:c9:17:c1:f0:1e:19:49:11:b3:a7:7b:d9:f7:57:f0: 15:b0:2b:9e:66:bd:46:1e:91:9a:e8:e8:b2:8c:e6:57:9e:c9: f0:6a:cb:ac:f7:11:61:86:f2:57:4e:53:3a:9b:ac:a0:94:53: e3:55:c1:ff:42:e3:0c:d7:1f:61:f4:f8:d6:fa:92:ae:22:a2: 8a:40:fa:e2:9c:9c:cb:57:3e:54:f5:b5:75:b4:f5:f8:1f:88: fe:e1:57:13:05:fc:b1:63:60:a7:4c:30:44:83:8f:a1:20:f7: ba:ed:d3:a8:1e:16:62:5d:bd:86:81:ad:ae:9a:d1:67:7a:1d: 8f:73:03:28:91:97:b8:65:49:4b:69:58:ae:35:71:a8:27:9e: b3:42:a7:cf:35:be:c8:bb:dd:72:e5:1f:b9:29:cc:c6:ce:f6: ed:70:53:b1:05:fc:4b:1d:b0:eb:7f:aa:ab:8c:45:eb:08:62: 7b:5e:65:0b:3c:b3:1b:fd:05:c6:1b:94:97:10:e0:2e:e4:33: 68:7b:c9:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM3NzQxMTAvBgNVBAUTKERCMThBN0NBNDQ2MjFCNTY1M0MyMDA0Mzk0NzZCM0Yy QTM4MDg1M0UwHhcNMjQwNTA0MTUwNDQ4WhcNMjQwNTExMTUwNDQ4WjAYMRYwFAYD VQQDEw02NjM2NGU5MC0xMWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbfgr3K6OeeKXrPfFWWdjHPAsEk4PnKYwn9WfaifH8wsTyjm3p2rKGE1rORO QR2CLnZjwv+l5pkxaavMv3l0Th4fJQwa/RU87/jUtg9n2VQcyU51/9g7xRybV8Y3 FH5S/pXZ5AeSUP7Ao9T2V5vndALn3rg5e1CQtYHKctT1cNYiQwDZmgBz7BBDbcSO qBFclElzryTyu5lVqHjKxVH7H/8PvgLM/v9p1DDf2QWlJMMpyDOvl/UZ//29+zo/ /1GeYoDcS5QCxRFdgEwxCsZl3q5aucOyVUQ22SX3asdFAxmXqaQRkG5JLaLneWN8 47FIRSIW0KA61OdUyAXvTaNrzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlB/dqz i1GrhkFXQRw9gWQAXSqkMB8GA1UdIwQYMBaAFNsYp8pEYhtWU8IAQ5R2s/KjgIU+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Qzc3NC81Nzk4ODdCNjFE OTkxMUUyOUUyRjA5ODQwOEIwMkNEMi8yeGlueWtSaUcxWlR3Z0JEbEhhejhxT0Fo VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ4aW55a1JpRzFaVHdnQkRsSGF6OHFPQWhUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Qzc3NC81Nzk4ODdCNjFEOTkxMUUyOUUyRjA5ODQwOEIwMkNEMi8yeGlueWtSaUcx WlR3Z0JEbEhhejhxT0FoVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhBVJNmxJ2NOrzRJtU0HTqvR3A/0N9mSjvlZSkwk4B4xejt9USFPjg UMYUe1vNEzXMU0gbFuBoJ6fJF8HwHhlJEbOne9n3V/AVsCueZr1GHpGa6OiyjOZX nsnwasus9xFhhvJXTlM6m6yglFPjVcH/QuMM1x9h9PjW+pKuIqKKQPrinJzLVz5U 9bV1tPX4H4j+4VcTBfyxY2CnTDBEg4+hIPe67dOoHhZiXb2Gga2umtFneh2PcwMo kZe4ZUlLaViuNXGoJ56zQqfPNb7Iu91y5R+5KczGzvbtcFOxBfxLHbDrf6qrjEXr CGJ7XmULPLMb/QXGG5SXEOAu5DNoe8kn -----END CERTIFICATE-----Generated at Sat May 4 15:55:02 2024 by rpki-client on console-ams.rpki-client.org