$ rpki-client -vvf rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft File: 4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft (raw, json) Hash identifier: m+54r1c/e0pRDnRtGzftTMK+f0eV0vhPYXiFJRoLP+w= Subject key identifier: 9D:44:1C:15:18:BD:45:1D:10:96:4B:B9:0D:D8:D4:47:CC:E0:0C:6B Authority key identifier: E0:8D:6C:7F:E3:5F:E3:66:42:FE:6F:66:CC:DA:28:66:A6:62:42:F1 Certificate issuer: /CN=A918D96C/serialNumber=E08D6C7FE35FE36642FE6F66CCDA2866A66242F1 Certificate serial: 33BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft Manifest number: 33BE Signing time: Mon 06 May 2024 14:59:16 +0000 Manifest this update: Mon 06 May 2024 14:59:16 +0000 Manifest next update: Mon 13 May 2024 14:59:16 +0000 Files and hashes: 1: 4I1sf-Nf42ZC_m9mzNooZqZiQvE.crl (hash: 7Kuk6HDUO81pHNBxjiYzWmzOEjMN2NTAJcKH9p7PZBk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.crl rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 14:59:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13246 (0x33be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D96C/serialNumber=E08D6C7FE35FE36642FE6F66CCDA2866A66242F1 Validity Not Before: May 6 14:59:16 2024 GMT Not After : May 13 14:59:16 2024 GMT Subject: CN=6638f044-7e90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:89:f3:f4:23:a9:24:b2:be:25:1a:7c:91:c0: aa:f4:62:85:5a:c4:20:a3:65:ed:59:2a:2f:f0:3b: 03:1d:6c:f4:cb:80:4a:dc:59:5e:b1:27:e6:db:cb: df:cb:86:ce:a4:8e:d5:e4:ca:9c:72:ca:d9:86:ad: e0:fe:43:68:87:28:c4:be:e1:e1:bd:e0:ab:02:76: fc:6c:28:82:42:70:d2:d3:92:8b:db:7e:50:70:eb: 9c:e9:5c:44:db:76:02:af:14:3b:05:02:a2:66:3e: 3d:93:51:53:22:83:40:ed:92:05:22:77:b7:c8:d1: c9:c8:86:fd:af:0c:9e:64:6b:1a:77:88:22:c2:c3: 86:3c:7e:69:3d:f4:54:eb:13:c6:8c:4c:22:69:67: 7c:96:2e:a7:92:8e:cc:5f:2a:3a:9d:c4:4d:59:13: ab:01:c6:fd:31:f0:e2:c5:f7:5b:bf:02:b9:94:9b: 9f:c1:d8:f3:7d:74:b3:66:83:29:6b:d8:d3:5f:d7: a3:90:59:70:19:2c:0b:65:28:aa:35:d0:95:fc:f0: d3:3b:ff:91:97:25:f8:35:3c:63:b6:e9:03:2d:7a: 9a:fa:ec:fe:a3:de:54:0e:74:38:cd:c9:13:46:29: 8b:4e:c2:57:ac:bd:42:be:5b:47:16:ec:3f:00:fd: 0a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:44:1C:15:18:BD:45:1D:10:96:4B:B9:0D:D8:D4:47:CC:E0:0C:6B X509v3 Authority Key Identifier: keyid:E0:8D:6C:7F:E3:5F:E3:66:42:FE:6F:66:CC:DA:28:66:A6:62:42:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:66:fa:9a:40:e5:f0:20:72:61:cd:d4:99:9d:b6:9e:7a:68: 77:c2:41:7a:5e:18:ed:84:97:cf:6a:eb:fe:ed:15:c2:3d:e8: 5d:57:bb:44:55:0c:e9:df:2b:4b:5c:7e:c7:58:4d:4c:68:d8: b5:26:b0:8e:02:f2:d4:c4:6b:80:b5:37:16:53:88:fb:0d:3c: 2d:44:ca:74:9b:8a:60:85:36:31:b6:4b:80:6d:6c:fb:2e:91: 22:e1:9f:6b:d2:2d:c1:9b:55:b2:1e:ac:78:57:51:db:4b:86: 74:a5:68:c0:21:f8:3d:ec:1a:9c:06:f4:c8:7e:31:5b:68:a6: d1:9f:a2:3c:29:06:2f:46:e6:51:03:91:df:f5:15:9e:5d:be: 7c:f7:4b:86:a9:ca:54:1c:8a:9c:7a:ff:5a:31:48:63:f9:c3: 16:68:4e:2a:aa:f9:09:8b:d7:5a:ef:e1:c8:24:38:3c:87:de: 6d:af:ed:d2:7d:d9:76:ad:a8:44:69:74:52:6b:f5:3b:9b:e8: 39:ae:e3:5b:47:ad:df:59:61:ac:3f:4e:25:bc:ca:dd:c6:c8: bc:42:3d:f7:81:f7:a2:16:04:7a:3f:57:5a:43:5e:92:cd:34: 09:f0:c3:a3:6a:de:ae:33:12:7b:11:74:ee:62:03:3d:c0:a6: 8d:82:15:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ5NkMxMTAvBgNVBAUTKEUwOEQ2QzdGRTM1RkUzNjY0MkZFNkY2NkNDREEyODY2 QTY2MjQyRjEwHhcNMjQwNTA2MTQ1OTE2WhcNMjQwNTEzMTQ1OTE2WjAYMRYwFAYD VQQDEw02NjM4ZjA0NC03ZTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1onz9COpJLK+JRp8kcCq9GKFWsQgo2XtWSov8DsDHWz0y4BK3FlesSfm28vf y4bOpI7V5MqccsrZhq3g/kNohyjEvuHhveCrAnb8bCiCQnDS05KL235QcOuc6VxE 23YCrxQ7BQKiZj49k1FTIoNA7ZIFIne3yNHJyIb9rwyeZGsad4giwsOGPH5pPfRU 6xPGjEwiaWd8li6nko7MXyo6ncRNWROrAcb9MfDixfdbvwK5lJufwdjzfXSzZoMp a9jTX9ejkFlwGSwLZSiqNdCV/PDTO/+RlyX4NTxjtukDLXqa+uz+o95UDnQ4zckT RimLTsJXrL1CvltHFuw/AP0K0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1EHBUY vUUdEJZLuQ3Y1EfM4AxrMB8GA1UdIwQYMBaAFOCNbH/jX+NmQv5vZszaKGamYkLx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDk2Qy9BNDJFMzdGRTFE OTYxMUUyOUM1RjRBN0YwOEIwMkNEMi80STFzZi1OZjQyWkNfbTltek5vb1pxWmlR dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRJMXNmLU5mNDJaQ19tOW16Tm9vWnFaaVF2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDk2Qy9BNDJFMzdGRTFEOTYxMUUyOUM1RjRBN0YwOEIwMkNEMi80STFzZi1OZjQy WkNfbTltek5vb1pxWmlRdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApZvqaQOXwIHJhzdSZnbaeemh3wkF6XhjthJfPauv+7RXCPehdV7tE VQzp3ytLXH7HWE1MaNi1JrCOAvLUxGuAtTcWU4j7DTwtRMp0m4pghTYxtkuAbWz7 LpEi4Z9r0i3Bm1WyHqx4V1HbS4Z0pWjAIfg97BqcBvTIfjFbaKbRn6I8KQYvRuZR A5Hf9RWeXb5890uGqcpUHIqcev9aMUhj+cMWaE4qqvkJi9da7+HIJDg8h95tr+3S fdl2rahEaXRSa/U7m+g5ruNbR63fWWGsP04lvMrdxsi8Qj33gfeiFgR6P1daQ16S zTQJ8MOjat6uMxJ7EXTuYgM9wKaNghXp -----END CERTIFICATE-----Generated at Mon May 6 17:35:43 2024 by rpki-client on console-fra.rpki-client.org