$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: EHUVNIFh+itbZdL35bhL25J0UO+tjWW5QXb/P8EozJ8= Subject key identifier: 07:EA:8A:AE:47:25:16:A4:AC:FC:30:D5:D3:3A:BE:2F:0D:E0:CE:6B Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 33FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 33DC Signing time: Wed 24 Apr 2024 14:51:00 +0000 Manifest this update: Wed 24 Apr 2024 14:50:59 +0000 Manifest next update: Wed 01 May 2024 14:50:59 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: 0fw+eCrNNFtIBElYZseiKmuZN06nSUlDk4Rz31SHVOQ=) 2: 888B171A960D11ED942B5D62C4F9AE02.roa (hash: 7hwDXnY/VSA9GeUJEFRZsOQeVulT134imAqDjjhy4Sw=) 3: DCB6CBAC7F6111EE871E1458C4F9AE02.roa (hash: QskQcbNe8+dEHW1kWpOC4qbtbsKjRaWI8+eIj9XFZHs=) 4: 89707206960D11ED942B5D62C4F9AE02.roa (hash: DJMGS4AtkqxIjOOjN++owRLxGBjnQ2dIqmuDZtGgVYU=) 5: 5B5ECC52474711ECA7B2426CC4F9AE02.roa (hash: Ns5Bt8M5YhH2CBq1ERBQLmCCxvJ/lw0Msh9Q/x176uo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 14:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13311 (0x33ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Apr 24 14:50:59 2024 GMT Not After : May 1 14:50:59 2024 GMT Subject: CN=66291c54-0e03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:de:ed:87:7c:1d:55:45:2e:ff:2a:95:32:d3: 42:d9:ef:20:f4:3e:a7:a5:de:ac:bf:ef:03:3b:78: 54:a0:9c:34:a8:e1:82:87:d5:73:69:f5:d0:80:77: bd:1a:ac:37:d5:5e:af:d4:ac:cb:35:58:f5:65:d1: a2:93:c7:fe:4c:e1:c5:86:43:db:fe:ce:f5:19:c8: 2b:d7:4b:8e:f7:c4:63:2f:9b:f1:3c:65:a5:53:7c: e1:31:94:c0:78:87:92:79:a3:27:1f:dd:87:60:ce: 91:41:22:4c:67:9a:84:5a:64:19:6d:08:16:83:2b: 58:82:31:b3:50:be:fa:d5:a2:22:cc:f6:99:66:eb: e1:1a:1e:0f:3a:d8:3d:e2:5e:21:ac:b8:a9:23:89: 32:57:5d:da:35:5a:df:d7:1f:c5:2c:ec:66:e1:cb: 7a:d9:82:f1:56:96:ba:71:cb:c4:4f:77:0b:29:c1: 75:f3:88:25:27:12:43:6c:54:fa:2d:dc:84:7f:8e: b8:25:f4:9c:af:66:78:d3:7c:1e:c3:a6:17:c0:9d: 15:5f:88:d8:02:75:1d:e9:8b:6f:fd:46:20:38:23: bd:73:c5:84:ad:9c:b1:6e:31:8a:0a:89:4d:8f:a9: 9d:3d:85:9a:99:e2:50:60:1d:cd:f5:ec:1b:f3:56: fb:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:EA:8A:AE:47:25:16:A4:AC:FC:30:D5:D3:3A:BE:2F:0D:E0:CE:6B X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:cd:f2:95:eb:81:6c:ab:85:ff:a2:69:58:30:ed:c0:ce:36: c1:b0:41:c7:f2:e4:65:77:72:74:4e:e3:81:92:d1:00:c7:a5: 0d:51:09:5c:0c:4b:f6:09:76:dd:a7:20:fe:91:f7:0a:a7:3a: 09:11:ef:97:14:6e:5e:58:45:ca:ab:ad:a4:42:95:20:63:72: 89:c5:ca:5f:4d:35:c6:de:24:bd:a8:49:fd:53:e8:29:66:a7: 04:d0:bf:d8:84:54:47:49:62:ba:84:7b:2b:c0:0e:ef:9b:3d: ee:29:39:72:e1:90:fa:9a:cd:60:9d:3a:10:14:ed:20:4b:c3: 6a:1c:fc:0b:d5:ed:81:cc:20:77:63:75:a1:f8:00:53:b2:19: 9a:dc:40:79:01:0b:d2:e4:5c:19:65:8d:c3:80:1c:50:30:84: e0:32:7e:8c:c0:ae:e3:c9:bb:1b:bb:27:51:4a:5d:b4:11:38: b2:95:be:ea:55:96:52:aa:73:3d:3a:3f:7c:e3:2d:b8:59:ee: 4e:39:83:00:95:4c:3c:9e:aa:10:60:0b:2a:84:3b:97:9f:6e: f1:57:86:22:b5:90:40:3d:63:70:bd:15:a7:82:10:11:7e:b1: 59:d7:5c:34:1f:76:33:0a:f4:18:df:55:7d:68:92:9e:6b:60: 3c:06:26:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjQwNDI0MTQ1MDU5WhcNMjQwNTAxMTQ1MDU5WjAYMRYwFAYD VQQDEw02NjI5MWM1NC0wZTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsN7th3wdVUUu/yqVMtNC2e8g9D6npd6sv+8DO3hUoJw0qOGCh9VzafXQgHe9 Gqw31V6v1KzLNVj1ZdGik8f+TOHFhkPb/s71Gcgr10uO98RjL5vxPGWlU3zhMZTA eIeSeaMnH92HYM6RQSJMZ5qEWmQZbQgWgytYgjGzUL761aIizPaZZuvhGh4POtg9 4l4hrLipI4kyV13aNVrf1x/FLOxm4ct62YLxVpa6ccvET3cLKcF184glJxJDbFT6 LdyEf464JfScr2Z403wew6YXwJ0VX4jYAnUd6Ytv/UYgOCO9c8WErZyxbjGKColN j6mdPYWameJQYB3N9ewb81b7wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAfqiq5H JRakrPww1dM6vi8N4M5rMB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMzfKV64Fsq4X/omlYMO3AzjbBsEHH8uRld3J0TuOBktEAx6UNUQlc DEv2CXbdpyD+kfcKpzoJEe+XFG5eWEXKq62kQpUgY3KJxcpfTTXG3iS9qEn9U+gp ZqcE0L/YhFRHSWK6hHsrwA7vmz3uKTly4ZD6ms1gnToQFO0gS8NqHPwL1e2BzCB3 Y3Wh+ABTshma3EB5AQvS5FwZZY3DgBxQMITgMn6MwK7jybsbuydRSl20ETiylb7q VZZSqnM9Oj984y24We5OOYMAlUw8nqoQYAsqhDuXn27xV4YitZBAPWNwvRWnghAR frFZ11w0H3YzCvQY31V9aJKea2A8BiZG -----END CERTIFICATE-----Generated at Wed Apr 24 16:36:13 2024 by rpki-client on console-fra.rpki-client.org