$ rpki-client -vvf rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft File: 57DhU8QU0ThUitp16M0FzWk2cgY.mft (raw, json) Hash identifier: U011xegm+ayJgCSqTjUDtDtmLYDCV8qZ84iN2FDUUe8= Subject key identifier: 74:56:F2:0D:D4:9D:AF:E9:D8:2E:A6:E4:CE:B1:3E:7A:12:8B:AE:D8 Authority key identifier: E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 Certificate issuer: /CN=A91B42CA/serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Certificate serial: 33BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft Manifest number: 501D Signing time: Sun 28 Apr 2024 15:15:46 +0000 Manifest this update: Sun 28 Apr 2024 15:15:45 +0000 Manifest next update: Sun 05 May 2024 15:15:45 +0000 Files and hashes: 1: 57DhU8QU0ThUitp16M0FzWk2cgY.crl (hash: WTpPEvYwf3GlwBp8XuW7iLkB5HFU5wrm3YOuw1DRC8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 15:15:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13242 (0x33ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B42CA/serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Validity Not Before: Apr 28 15:15:45 2024 GMT Not After : May 5 15:15:45 2024 GMT Subject: CN=662e6822-0bb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:78:6d:71:f4:b7:77:c9:be:bc:26:07:cb:93: 8f:37:c8:78:61:10:1f:74:eb:d7:bc:3c:f8:a7:70: e2:48:7c:34:2a:28:b1:43:ba:54:bd:8d:35:71:63: 80:36:21:9d:b4:d6:8f:57:c3:f9:7c:d3:e2:9a:b3: 9c:a5:47:31:fa:f9:14:60:80:13:1e:e6:87:cf:61: ff:1f:e5:21:0e:fe:03:73:94:d9:b1:24:30:8e:f9: ed:13:02:fd:7b:f1:77:af:be:c6:57:5f:db:27:c9: c2:63:16:a7:ef:52:30:b4:c7:2c:66:c3:ea:65:96: 90:0f:2d:f3:df:9d:f8:3b:30:5c:aa:a1:09:fd:07: 45:1a:1a:d9:ee:76:a8:5c:d4:2b:bc:25:40:21:e9: c3:68:08:f4:e6:57:63:76:34:d7:aa:6d:14:56:e7: 72:5e:85:1f:26:ff:4c:77:d1:7a:0d:3d:7b:3d:00: 69:10:9d:a5:11:29:17:95:d0:71:07:a0:75:be:6f: 25:3d:06:96:11:3a:fe:36:45:0f:e2:32:9e:75:e1: fd:d2:1a:09:6e:e1:52:9d:36:0e:57:e5:16:3a:f1: 0a:a2:de:07:2b:09:9f:c2:4b:5c:2e:55:c1:d6:6c: 5e:39:72:73:96:ce:7d:c8:70:2b:23:f5:e9:84:2d: f6:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:56:F2:0D:D4:9D:AF:E9:D8:2E:A6:E4:CE:B1:3E:7A:12:8B:AE:D8 X509v3 Authority Key Identifier: keyid:E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:5e:c1:11:69:73:d3:3d:b3:07:fb:e0:e8:98:11:c2:8b:a6: 82:16:6d:01:e6:c5:f6:04:be:26:b0:7c:ff:0a:31:a1:c6:e9: 0f:2a:7f:11:0c:c2:cb:96:1d:4d:82:a6:ee:17:00:31:34:48: 3a:4d:93:1a:77:d9:01:13:25:23:3f:31:11:24:91:18:e4:59: 7f:77:4d:41:10:7b:9e:88:e9:24:81:ce:ac:ac:fd:11:04:3f: 6a:a0:d3:23:ce:6d:c8:c0:e3:d9:aa:f5:ac:68:05:00:93:8a: 05:5e:08:fd:fa:ab:dd:27:6c:f5:c5:f1:fa:22:b7:eb:8e:d4: 82:51:fc:88:f7:33:64:f7:69:cc:17:74:7c:ba:7c:4d:54:81: c4:3c:4a:1d:98:a0:d0:d6:2c:35:a7:9f:d6:4f:d8:31:5b:cf: 6e:3e:42:f1:6f:cd:d2:da:87:36:75:bf:e2:c0:d7:27:ec:4b: 00:59:9f:2b:1c:60:b2:19:ef:e6:4a:0a:47:17:03:97:b7:56: 30:af:66:53:a5:97:21:4d:dd:36:d8:4b:9c:d6:93:ba:77:2b: 77:d2:bc:6b:8d:ec:3d:81:b2:07:82:fd:23:c7:26:d2:eb:a7: e1:0e:4e:9f:c4:fb:5a:35:55:a9:e2:ba:c3:47:85:27:95:b4: 9d:e3:dd:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyQ0ExMTAvBgNVBAUTKEU3QjBFMTUzQzQxNEQxMzg1NDhBREE3NUU4Q0QwNUNE NjkzNjcyMDYwHhcNMjQwNDI4MTUxNTQ1WhcNMjQwNTA1MTUxNTQ1WjAYMRYwFAYD VQQDEw02NjJlNjgyMi0wYmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3htcfS3d8m+vCYHy5OPN8h4YRAfdOvXvDz4p3DiSHw0KiixQ7pUvY01cWOA NiGdtNaPV8P5fNPimrOcpUcx+vkUYIATHuaHz2H/H+UhDv4Dc5TZsSQwjvntEwL9 e/F3r77GV1/bJ8nCYxan71IwtMcsZsPqZZaQDy3z3534OzBcqqEJ/QdFGhrZ7nao XNQrvCVAIenDaAj05ldjdjTXqm0UVudyXoUfJv9Md9F6DT17PQBpEJ2lESkXldBx B6B1vm8lPQaWETr+NkUP4jKedeH90hoJbuFSnTYOV+UWOvEKot4HKwmfwktcLlXB 1mxeOXJzls59yHArI/XphC32zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRW8g3U na/p2C6m5M6xPnoSi67YMB8GA1UdIwQYMBaAFOew4VPEFNE4VIradejNBc1pNnIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDJDQS9EMzREQjk3RTFE QTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBUaFVpdHAxNk0wRnpXazJj Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3RGhVOFFVMFRoVWl0cDE2TTBGeldrMmNnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDJDQS9EMzREQjk3RTFEQTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBU aFVpdHAxNk0wRnpXazJjZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5XsERaXPTPbMH++DomBHCi6aCFm0B5sX2BL4msHz/CjGhxukPKn8R DMLLlh1NgqbuFwAxNEg6TZMad9kBEyUjPzERJJEY5Fl/d01BEHueiOkkgc6srP0R BD9qoNMjzm3IwOPZqvWsaAUAk4oFXgj9+qvdJ2z1xfH6IrfrjtSCUfyI9zNk92nM F3R8unxNVIHEPEodmKDQ1iw1p5/WT9gxW89uPkLxb83S2oc2db/iwNcn7EsAWZ8r HGCyGe/mSgpHFwOXt1Ywr2ZTpZchTd022Euc1pO6dyt30rxrjew9gbIHgv0jxybS 66fhDk6fxPtaNVWp4rrDR4UnlbSd490p -----END CERTIFICATE-----Generated at Sun Apr 28 16:49:43 2024 by rpki-client on console-ams.rpki-client.org