$ rpki-client -vvf rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft File: f3UA8ZRiBwd03Is7S5avThubtUU.mft (raw, json) Hash identifier: vv2cHIBdb62pNaxRBJMiEClMj3K7GOU+RGwav4Dubbo= Subject key identifier: A4:41:9D:F2:37:5F:92:26:6D:80:45:6D:7E:40:B7:B5:CB:2C:03:3D Authority key identifier: 7F:75:00:F1:94:62:07:07:74:DC:8B:3B:4B:96:AF:4E:1B:9B:B5:45 Certificate issuer: /CN=A91A840E/serialNumber=7F7500F19462070774DC8B3B4B96AF4E1B9BB545 Certificate serial: 2D43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f3UA8ZRiBwd03Is7S5avThubtUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft Manifest number: 2D43 Signing time: Thu 02 May 2024 15:46:57 +0000 Manifest this update: Thu 02 May 2024 15:46:56 +0000 Manifest next update: Thu 09 May 2024 15:46:56 +0000 Files and hashes: 1: f3UA8ZRiBwd03Is7S5avThubtUU.crl (hash: imDLlEt7+aqfBT53CqIyi7WArfWaQFSE7dS9daKo3ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.crl rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f3UA8ZRiBwd03Is7S5avThubtUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 15:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11587 (0x2d43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A840E/serialNumber=7F7500F19462070774DC8B3B4B96AF4E1B9BB545 Validity Not Before: May 2 15:46:56 2024 GMT Not After : May 9 15:46:56 2024 GMT Subject: CN=6633b571-cefc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6d:6e:e9:8a:76:aa:ee:66:6e:07:84:a8:a2: d4:df:63:b8:67:19:8d:65:a0:17:6c:ac:48:be:7b: f3:45:52:86:69:c3:20:bf:88:66:92:65:6e:ef:19: ee:06:10:07:b6:ba:a3:8b:e8:d5:d4:a2:70:e8:bb: 7e:fe:4b:35:f8:1f:90:f3:83:4e:ad:6c:f0:b2:a8: be:14:e5:1b:40:a2:d8:20:7d:0c:18:87:42:9a:1e: d9:26:12:3c:bd:a9:07:47:eb:44:8e:07:0c:9a:03: 6b:8f:b8:da:4c:25:90:54:cf:84:b9:73:b7:32:62: f4:ed:a3:0e:20:6d:44:a5:65:1e:4b:38:af:06:07: 2e:34:7e:5c:bc:55:9d:0e:d9:bf:13:bc:6d:54:0a: 15:0a:8d:b8:c5:75:8e:34:dd:31:06:7f:4c:6a:9d: 20:51:96:86:33:11:97:69:a5:0c:06:33:da:e3:9c: 36:1b:b6:20:fb:6e:31:53:6b:7b:75:7f:70:e4:bb: 02:46:a8:50:b1:cd:cb:d5:60:b3:d9:da:90:95:4a: 2e:d2:04:7e:64:7a:60:c0:a3:9c:e3:ab:c7:84:fd: 33:f2:56:a5:73:26:f8:5f:7f:40:a4:af:87:a8:0b: 05:98:55:1c:91:ea:f2:ef:8b:fd:f8:04:b0:8b:68: fa:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:41:9D:F2:37:5F:92:26:6D:80:45:6D:7E:40:B7:B5:CB:2C:03:3D X509v3 Authority Key Identifier: keyid:7F:75:00:F1:94:62:07:07:74:DC:8B:3B:4B:96:AF:4E:1B:9B:B5:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f3UA8ZRiBwd03Is7S5avThubtUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:ec:a7:0b:a5:a5:53:59:94:ea:40:7a:13:2a:08:ff:c9:cf: cf:4d:af:f6:1b:1f:17:d3:64:43:88:51:89:fd:3d:68:9e:87: 39:f5:9d:80:d7:df:f4:b4:5c:79:18:36:39:75:50:4b:3b:27: 4a:3e:ce:76:7d:75:ff:18:d5:3d:1c:40:0d:e9:7d:45:97:7f: 47:b1:c6:42:85:22:c0:0d:4c:08:29:e7:c0:a9:f9:99:23:91: de:13:43:37:d2:c6:d8:2e:45:76:c7:42:1a:a0:f2:13:d5:80: a9:24:3b:5a:9f:56:cd:4f:71:e2:e1:b6:0c:d2:3c:da:9d:25: 56:a6:09:81:b0:ab:bf:f8:99:02:52:b1:50:06:71:16:8e:c6: 8a:ab:ac:32:b3:0b:86:d9:4f:dd:78:c4:53:78:ca:f8:9d:ee: 0f:1c:77:45:7f:bd:41:47:a6:00:c6:b9:c0:af:0b:a1:94:68: 8d:b2:8d:b6:6b:e2:9f:65:2f:3f:06:c9:22:21:fa:97:23:b3: 4f:f6:0b:34:40:d2:57:70:c5:e7:8a:fe:36:10:1a:53:b6:68: 1a:aa:a2:f3:02:43:f9:20:c6:b7:fe:2d:e1:2c:02:f6:4e:f1: 4d:3c:77:36:e2:a0:36:0a:9c:18:58:1c:77:2c:6b:66:c2:d2: 0d:9f:a4:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg0MEUxMTAvBgNVBAUTKDdGNzUwMEYxOTQ2MjA3MDc3NERDOEIzQjRCOTZBRjRF MUI5QkI1NDUwHhcNMjQwNTAyMTU0NjU2WhcNMjQwNTA5MTU0NjU2WjAYMRYwFAYD VQQDEw02NjMzYjU3MS1jZWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2G1u6Yp2qu5mbgeEqKLU32O4ZxmNZaAXbKxIvnvzRVKGacMgv4hmkmVu7xnu BhAHtrqji+jV1KJw6Lt+/ks1+B+Q84NOrWzwsqi+FOUbQKLYIH0MGIdCmh7ZJhI8 vakHR+tEjgcMmgNrj7jaTCWQVM+EuXO3MmL07aMOIG1EpWUeSzivBgcuNH5cvFWd Dtm/E7xtVAoVCo24xXWONN0xBn9Map0gUZaGMxGXaaUMBjPa45w2G7Yg+24xU2t7 dX9w5LsCRqhQsc3L1WCz2dqQlUou0gR+ZHpgwKOc46vHhP0z8lalcyb4X39ApK+H qAsFmFUckery74v9+ASwi2j6qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKRBnfI3 X5ImbYBFbX5At7XLLAM9MB8GA1UdIwQYMBaAFH91APGUYgcHdNyLO0uWr04bm7VF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODQwRS9EQTEwRkY2NjYy RUUxMUUzQUFEOTlGODM1OTExRUEzMi9mM1VBOFpSaUJ3ZDAzSXM3UzVhdlRodWJ0 VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YzVUE4WlJpQndkMDNJczdTNWF2VGh1YnRVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODQwRS9EQTEwRkY2NjYyRUUxMUUzQUFEOTlGODM1OTExRUEzMi9mM1VBOFpSaUJ3 ZDAzSXM3UzVhdlRodWJ0VVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB37KcLpaVTWZTqQHoTKgj/yc/PTa/2Gx8X02RDiFGJ/T1onoc59Z2A 19/0tFx5GDY5dVBLOydKPs52fXX/GNU9HEAN6X1Fl39HscZChSLADUwIKefAqfmZ I5HeE0M30sbYLkV2x0IaoPIT1YCpJDtan1bNT3Hi4bYM0jzanSVWpgmBsKu/+JkC UrFQBnEWjsaKq6wyswuG2U/deMRTeMr4ne4PHHdFf71BR6YAxrnArwuhlGiNso22 a+KfZS8/BskiIfqXI7NP9gs0QNJXcMXniv42EBpTtmgaqqLzAkP5IMa3/i3hLAL2 TvFNPHc24qA2CpwYWBx3LGtmwtINn6Qp -----END CERTIFICATE-----Generated at Thu May 2 17:18:56 2024 by rpki-client on console-ams.rpki-client.org