$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft File: 40tPgNnj9wC8rExSxasj61t-37s.mft (raw, json) Hash identifier: 7lJTPBR1gMfQZg9FN914mSa8pyPvqC0Dn8tr4cAkWIM= Subject key identifier: 8E:43:7C:4F:57:D6:0B:2F:00:9E:B6:BD:D5:CF:D4:EE:79:88:88:99 Authority key identifier: E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB Certificate issuer: /CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft Manifest number: 6A Signing time: Thu 23 May 2024 01:59:09 +0000 Manifest this update: Thu 23 May 2024 01:59:08 +0000 Manifest next update: Thu 30 May 2024 01:59:08 +0000 Files and hashes: 1: 40tPgNnj9wC8rExSxasj61t-37s.crl (hash: LpxYwG8d7fPCV11NH4rdG9YBB52XzepyTNnmglV61Mc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 21:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Validity Not Before: May 23 01:59:08 2024 GMT Not After : May 30 01:59:08 2024 GMT Subject: CN=664ea2ec-d224 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0d:85:f7:3d:07:30:65:90:05:af:a7:8c:00: 50:e3:6d:de:5a:13:fe:4e:5a:5b:f4:6e:60:23:b9: 54:3e:78:f1:09:7a:96:27:35:58:66:f3:f9:cc:40: 08:b9:39:5b:50:81:4d:46:f9:32:f8:8d:3b:8f:d8: fc:78:96:11:67:bb:35:a9:e5:c9:c9:7f:5a:f0:02: 1c:b7:13:a2:01:55:f7:e6:84:a7:d4:6d:11:e3:f7: 70:22:7f:73:cf:f5:46:cd:97:56:4b:0d:05:68:4e: ee:27:65:f6:e0:ba:ab:d3:e4:71:e4:2b:61:6f:63: 6d:1a:67:83:88:11:a9:f9:b9:23:27:00:4e:b2:5a: eb:21:c4:0e:ec:0a:8e:ac:15:f0:01:f6:69:83:e1: 8a:f7:18:c1:57:49:0d:60:20:16:41:c5:1f:56:53: a1:2b:db:17:dc:da:72:ce:30:3f:53:9a:64:85:71: 7c:d9:50:00:69:a6:ef:50:cd:58:45:48:1c:3e:d4: c9:81:1c:f8:b1:44:0c:cf:c7:24:25:19:4e:a1:49: 4a:0b:4e:31:55:92:a8:49:73:61:a7:61:18:a3:86: ab:51:13:61:e1:81:9e:31:71:65:4f:5a:e7:0a:19: 37:ea:6f:cc:3f:70:eb:03:13:44:83:a2:7c:7f:66: 0a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:43:7C:4F:57:D6:0B:2F:00:9E:B6:BD:D5:CF:D4:EE:79:88:88:99 X509v3 Authority Key Identifier: keyid:E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:d0:aa:8c:a8:df:0d:e6:cb:28:94:c9:91:2a:f2:18:e5:10: b0:23:39:af:95:38:02:59:96:8a:b5:e7:af:24:b5:66:e4:90: 9d:35:5e:46:9f:43:21:47:83:96:b7:a4:d7:9e:4f:3a:74:50: df:fb:5b:9b:a0:eb:50:3f:38:ad:e6:8a:78:20:13:cb:7d:10: db:50:2f:d3:16:e3:f6:c1:48:47:ba:a2:bf:5b:ca:27:d8:36: 31:f3:ef:ba:7b:cb:75:89:fe:e9:95:0e:ce:a4:1d:a4:17:da: 8d:7c:b1:1a:21:e0:6f:8f:08:34:30:66:c4:71:2d:33:6e:4a: 12:51:2b:73:01:d2:df:e7:34:ea:32:9e:b3:ce:79:b7:30:2c: 1f:6c:b1:50:66:f1:73:5b:39:f9:a5:84:80:11:a6:5d:54:91: a5:fc:5e:2f:5d:61:60:c7:b8:b8:98:6a:f3:bd:42:28:29:75: ed:10:8b:10:97:df:30:99:78:d4:6b:d2:d5:71:cf:f9:c7:8b: 4a:5a:41:52:28:7d:95:8d:4a:1f:44:3a:2c:fc:a1:0c:a4:8c: 08:b7:66:6a:f2:ce:ea:88:f1:b9:bf:e7:be:00:94:90:f3:47: 2b:3f:4d:b6:b7:4c:95:41:ad:55:c2:c5:02:d9:55:80:26:1a: ca:39:1e:98 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTRCNzExMC8GA1UEBRMoRTM0QjRGODBEOUUzRjcwMEJDQUM0QzUyQzVBQjIzRUI1 QjdFREZCQjAeFw0yNDA1MjMwMTU5MDhaFw0yNDA1MzAwMTU5MDhaMBgxFjAUBgNV BAMTDTY2NGVhMmVjLWQyMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZDYX3PQcwZZAFr6eMAFDjbd5aE/5OWlv0bmAjuVQ+ePEJepYnNVhm8/nMQAi5 OVtQgU1G+TL4jTuP2Px4lhFnuzWp5cnJf1rwAhy3E6IBVffmhKfUbRHj93Aif3PP 9UbNl1ZLDQVoTu4nZfbguqvT5HHkK2FvY20aZ4OIEan5uSMnAE6yWushxA7sCo6s FfAB9mmD4Yr3GMFXSQ1gIBZBxR9WU6Er2xfc2nLOMD9TmmSFcXzZUABppu9QzVhF SBw+1MmBHPixRAzPxyQlGU6hSUoLTjFVkqhJc2GnYRijhqtRE2HhgZ4xcWVPWucK GTfqb8w/cOsDE0SDonx/ZgqZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjkN8T1fW Cy8Anra91c/U7nmIiJkwHwYDVR0jBBgwFoAU40tPgNnj9wC8rExSxasj61t+37sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFNEI3Lzk2RTY2NzVBNzg0 RTExRUVCMTlBRDM0REM0RjlBRTAyLzQwdFBnTm5qOXdDOHJFeFN4YXNqNjF0LTM3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNDB0UGdObmo5d0M4ckV4U3hhc2o2MXQtMzdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF NEI3Lzk2RTY2NzVBNzg0RTExRUVCMTlBRDM0REM0RjlBRTAyLzQwdFBnTm5qOXdD OHJFeFN4YXNqNjF0LTM3cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHXQqoyo3w3myyiUyZEq8hjlELAjOa+VOAJZloq1568ktWbkkJ01Xkaf QyFHg5a3pNeeTzp0UN/7W5ug61A/OK3minggE8t9ENtQL9MW4/bBSEe6or9byifY NjHz77p7y3WJ/umVDs6kHaQX2o18sRoh4G+PCDQwZsRxLTNuShJRK3MB0t/nNOoy nrPOebcwLB9ssVBm8XNbOfmlhIARpl1UkaX8Xi9dYWDHuLiYavO9Qigpde0QixCX 3zCZeNRr0tVxz/nHi0paQVIofZWNSh9EOiz8oQykjAi3ZmryzuqI8bm/574AlJDz Rys/Tba3TJVBrVXCxQLZVYAmGso5Hpg= -----END CERTIFICATE-----Generated at Thu May 23 02:34:46 2024 by rpki-client on console-fra.rpki-client.org