$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft File: tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft (raw, json) Hash identifier: w1WeyXPVqTBkRr8YaXut9+kVKWN6FJnq87TdugsZApo= Subject key identifier: 46:B9:B2:75:35:64:7E:D0:CE:D0:5B:06:93:53:FB:08:7B:9C:48:DC Authority key identifier: B5:3B:CE:16:1A:CF:63:05:EC:05:5C:59:A8:91:E8:22:A1:1E:F8:04 Certificate issuer: /CN=A918E85E/serialNumber=B53BCE161ACF6305EC055C59A891E822A11EF804 Certificate serial: 16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft Manifest number: 16 Signing time: Wed 15 May 2024 08:53:20 +0000 Manifest this update: Wed 15 May 2024 08:53:20 +0000 Manifest next update: Wed 22 May 2024 08:53:20 +0000 Files and hashes: 1: tTvOFhrPYwXsBVxZqJHoIqEe-AQ.crl (hash: eKb7D88ea3APZKpKb5oju0UpYRtPhOJmpAvdEmZ0vaU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.crl rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E/serialNumber=B53BCE161ACF6305EC055C59A891E822A11EF804 Validity Not Before: May 15 08:53:20 2024 GMT Not After : May 22 08:53:20 2024 GMT Subject: CN=66447800-759b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:09:71:37:88:02:33:22:74:7e:05:69:d3:ed: 0d:b8:59:05:00:9f:b3:60:1e:6d:3e:7a:45:ab:7c: 9d:e2:d3:98:fd:25:ba:69:4a:61:58:2b:10:bd:03: eb:44:3c:30:45:73:4a:54:24:04:ac:a3:35:4a:9b: 8a:b9:90:b9:99:21:30:e3:7d:06:c9:4d:34:38:62: c6:e8:2a:e5:9d:2b:e6:a5:6b:8c:d9:d1:d9:40:9f: 0f:a9:10:cc:d8:90:9d:a0:88:79:ca:39:db:7a:fd: 9e:ed:02:88:5e:31:a3:29:40:8a:e0:d1:88:0a:39: ec:30:da:16:b5:03:98:45:19:3e:76:32:4a:f7:92: 50:91:9b:99:ed:3a:f2:68:2f:10:25:80:43:84:c2: 8b:a4:c2:0b:42:3a:3c:94:39:b5:1a:32:eb:30:3a: 8f:8c:10:25:b8:06:0a:26:4d:ff:21:49:ca:64:b3: 57:ce:e2:45:e8:0f:eb:39:ed:ee:cb:fa:ce:48:1e: 19:88:dd:21:ce:c0:03:df:cb:c1:1c:e0:fd:64:5d: 2e:08:bc:cb:c9:37:93:33:9f:9a:d1:c4:a0:af:5c: 80:20:77:57:0d:b6:f1:e2:52:82:68:5e:f8:e7:97: 7e:08:56:71:03:65:29:04:42:c4:32:00:11:6c:4f: 98:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:B9:B2:75:35:64:7E:D0:CE:D0:5B:06:93:53:FB:08:7B:9C:48:DC X509v3 Authority Key Identifier: keyid:B5:3B:CE:16:1A:CF:63:05:EC:05:5C:59:A8:91:E8:22:A1:1E:F8:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:2d:13:c1:8d:eb:bd:79:2c:63:5b:54:e3:29:50:a3:90:b0: 30:b3:63:d4:24:0b:72:6d:c6:c1:7d:64:c2:fd:89:6f:5b:00: 95:0d:1e:b6:5b:da:7d:99:47:b1:1a:d2:e9:cd:ff:86:7d:83: 86:c0:8c:75:3b:52:a7:c1:ba:bd:0f:b3:b5:cb:7e:46:70:c0: 4a:1c:a2:e0:0f:d7:8b:85:f3:23:2e:ce:b2:63:4d:5e:cb:b7: 2a:a6:9e:75:99:30:0e:d9:60:0a:10:88:d5:6a:e1:86:1c:2d: 3c:05:49:fd:1f:e0:c0:c3:3e:51:40:4d:bc:53:e1:87:d0:b2: c7:47:41:fa:5c:01:43:d0:9a:74:95:8c:25:4e:9a:98:6d:94: c5:96:27:dc:0d:7a:87:9e:1e:be:a7:aa:bb:ac:3c:3c:b9:05: be:e0:34:45:2b:f5:d9:d1:d4:ae:8a:a3:e6:32:99:b1:c4:d5: 4b:4d:79:91:43:01:e8:9e:80:59:b4:80:25:24:a1:f2:9e:29: d8:66:71:ba:8d:11:af:22:88:41:5e:d9:c3:ed:78:67:f0:63: 71:d8:b7:10:b1:96:10:98:ef:0c:4a:0a:b6:49:de:dd:70:4d: 65:ea:02:78:62:bf:fe:d8:fa:a6:3f:53:0c:ce:7d:3d:44:22: ea:94:35:08 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTg1RTExMC8GA1UEBRMoQjUzQkNFMTYxQUNGNjMwNUVDMDU1QzU5QTg5MUU4MjJB MTFFRjgwNDAeFw0yNDA1MTUwODUzMjBaFw0yNDA1MjIwODUzMjBaMBgxFjAUBgNV BAMTDTY2NDQ3ODAwLTc1OWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+CXE3iAIzInR+BWnT7Q24WQUAn7NgHm0+ekWrfJ3i05j9JbppSmFYKxC9A+tE PDBFc0pUJASsozVKm4q5kLmZITDjfQbJTTQ4YsboKuWdK+ala4zZ0dlAnw+pEMzY kJ2giHnKOdt6/Z7tAoheMaMpQIrg0YgKOeww2ha1A5hFGT52Mkr3klCRm5ntOvJo LxAlgEOEwoukwgtCOjyUObUaMuswOo+MECW4BgomTf8hScpks1fO4kXoD+s57e7L +s5IHhmI3SHOwAPfy8Ec4P1kXS4IvMvJN5Mzn5rRxKCvXIAgd1cNtvHiUoJoXvjn l34IVnEDZSkEQsQyABFsT5hBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURrmydTVk ftDO0FsGk1P7CHucSNwwHwYDVR0jBBgwFoAUtTvOFhrPYwXsBVxZqJHoIqEe+AQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFODVFLzY1OUU5MDEwRUZG MzExRUU5NzdDQUMzMUM0RjlBRTAyL3RUdk9GaHJQWXdYc0JWeFpxSkhvSXFFZS1B US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdFR2T0ZoclBZd1hzQlZ4WnFKSG9JcUVlLUFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF ODVFLzY1OUU5MDEwRUZGMzExRUU5NzdDQUMzMUM0RjlBRTAyL3RUdk9GaHJQWXdY c0JWeFpxSkhvSXFFZS1BUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHUtE8GN6715LGNbVOMpUKOQsDCzY9QkC3JtxsF9ZML9iW9bAJUNHrZb 2n2ZR7Ea0unN/4Z9g4bAjHU7UqfBur0Ps7XLfkZwwEocouAP14uF8yMuzrJjTV7L tyqmnnWZMA7ZYAoQiNVq4YYcLTwFSf0f4MDDPlFATbxT4YfQssdHQfpcAUPQmnSV jCVOmphtlMWWJ9wNeoeeHr6nqrusPDy5Bb7gNEUr9dnR1K6Ko+YymbHE1UtNeZFD AeiegFm0gCUkofKeKdhmcbqNEa8iiEFe2cPteGfwY3HYtxCxlhCY7wxKCrZJ3t1w TWXqAnhiv/7Y+qY/UwzOfT1EIuqUNQg= -----END CERTIFICATE-----Generated at Wed May 15 09:27:36 2024 by rpki-client on console-fra.rpki-client.org