$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft File: 7cH-eLyHvyWy4419cs2cozAibOk.mft (raw, json) Hash identifier: /KBU1HjfbUa72og3kDknI3b5rkqzzXlSAHcXxD7i8+Q= Subject key identifier: 7C:89:BC:87:28:38:1C:C8:F3:79:D8:B0:E9:1C:C8:C8:26:0C:AE:A5 Authority key identifier: ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 Certificate issuer: /CN=A91B5AAA/serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Certificate serial: 33BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft Manifest number: 3E2D Signing time: Sat 04 May 2024 14:57:59 +0000 Manifest this update: Sat 04 May 2024 14:57:59 +0000 Manifest next update: Sat 11 May 2024 14:57:59 +0000 Files and hashes: 1: 7cH-eLyHvyWy4419cs2cozAibOk.crl (hash: +9b44F+AwzBLJ2obfU3ax3zd5W3aaKnizy1PEPiqMsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13242 (0x33ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AAA/serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Validity Not Before: May 4 14:57:59 2024 GMT Not After : May 11 14:57:59 2024 GMT Subject: CN=66364cf7-ae54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:c4:e2:f5:dd:65:97:4c:48:4a:66:27:1c:9b: 94:25:26:08:1a:46:ae:f1:60:b8:14:63:08:e0:1a: 0d:a6:4f:38:f6:a2:7d:31:53:78:05:c5:ad:78:58: 51:b2:11:8f:32:04:25:34:ad:22:84:3b:31:11:7a: 28:73:0d:54:50:4d:d6:08:f5:49:aa:4e:33:9a:70: 92:1d:81:54:5b:33:13:12:9f:cf:ff:4a:8e:c2:83: 90:bf:74:93:e9:5f:b0:c5:f3:18:7d:98:20:02:40: 7c:6e:36:74:0c:33:03:18:0b:7c:e9:1c:bb:0f:93: a8:d1:ab:62:14:4c:4f:81:86:75:ea:14:91:12:9b: 45:6b:7c:25:fb:5d:62:1a:10:75:99:b8:7e:a3:1d: 66:b5:1d:3b:ca:5c:9b:a3:aa:f6:58:ee:f2:33:37: d3:00:1a:f0:da:81:0e:d7:02:e2:98:e1:d4:1e:53: d1:3a:71:b9:0f:7a:3d:d0:40:30:2d:51:8f:79:62: d9:dc:ce:c9:d1:56:eb:60:40:45:07:40:ec:71:d9: 52:56:aa:a4:d8:ab:46:37:42:de:fd:a6:e4:a5:e2: 1b:bb:25:45:02:05:d4:b1:40:2c:54:5c:ed:fb:13: 9e:45:14:15:f9:74:4c:3a:d7:6b:a6:d4:15:59:79: 70:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:89:BC:87:28:38:1C:C8:F3:79:D8:B0:E9:1C:C8:C8:26:0C:AE:A5 X509v3 Authority Key Identifier: keyid:ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:da:0a:29:12:95:bf:62:e2:e7:8f:ed:33:fe:7a:a4:77:f4: 0f:33:b6:a9:1f:23:22:bd:b6:29:56:c4:a1:d3:db:cb:0f:7a: 01:f2:53:ce:6e:4e:d7:45:fc:16:a4:73:cc:04:1a:e5:40:b2: be:7b:55:b1:64:54:16:cb:79:a5:a3:7a:50:62:62:07:67:73: 29:bc:3b:bf:54:2c:41:a4:8d:59:74:24:79:5c:ee:17:59:de: 3e:e1:d2:69:08:45:c0:7a:a1:03:4d:0f:8a:b8:04:f3:be:61: 59:fb:72:c5:b1:35:6d:eb:6a:41:47:9f:6d:1d:41:44:81:70: a6:8c:f3:73:1e:c2:f8:16:79:1c:0f:6f:af:af:7e:95:e0:20: 04:40:94:ca:2e:fe:63:01:dd:d0:30:fd:07:30:96:94:b6:eb: 46:de:cd:a2:5d:58:40:c0:7c:da:e4:96:05:67:e3:7d:9b:a0: c4:d7:76:ea:ad:86:4a:39:f4:03:51:68:c0:63:45:fe:64:ab: 21:dc:73:99:7a:0a:28:8f:1b:c5:57:55:b3:48:ff:96:25:6e: c2:48:81:f3:cd:60:e8:b7:fb:89:b3:4f:74:a2:ea:15:67:c3: 8e:55:66:47:c3:89:b7:d0:e1:04:a8:35:7a:9d:9b:b3:fb:f6: e2:6c:a4:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBQUExMTAvBgNVBAUTKEVEQzFGRTc4QkM4N0JGMjVCMkUzOEQ3RDcyQ0Q5Q0Ez MzAyMjZDRTkwHhcNMjQwNTA0MTQ1NzU5WhcNMjQwNTExMTQ1NzU5WjAYMRYwFAYD VQQDEw02NjM2NGNmNy1hZTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5sTi9d1ll0xISmYnHJuUJSYIGkau8WC4FGMI4BoNpk849qJ9MVN4BcWteFhR shGPMgQlNK0ihDsxEXoocw1UUE3WCPVJqk4zmnCSHYFUWzMTEp/P/0qOwoOQv3ST 6V+wxfMYfZggAkB8bjZ0DDMDGAt86Ry7D5Oo0atiFExPgYZ16hSREptFa3wl+11i GhB1mbh+ox1mtR07ylybo6r2WO7yMzfTABrw2oEO1wLimOHUHlPROnG5D3o90EAw LVGPeWLZ3M7J0VbrYEBFB0DscdlSVqqk2KtGN0Le/abkpeIbuyVFAgXUsUAsVFzt +xOeRRQV+XRMOtdrptQVWXlw+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHyJvIco OBzI83nYsOkcyMgmDK6lMB8GA1UdIwQYMBaAFO3B/ni8h78lsuONfXLNnKMwImzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFBQS84RjU4OTI5NDFE OTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5V3k0NDE5Y3MyY296QWli T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjSC1lTHlIdnlXeTQ0MTljczJjb3pBaWJPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFBQS84RjU4OTI5NDFEOTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5 V3k0NDE5Y3MyY296QWliT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBx2gopEpW/YuLnj+0z/nqkd/QPM7apHyMivbYpVsSh09vLD3oB8lPO bk7XRfwWpHPMBBrlQLK+e1WxZFQWy3mlo3pQYmIHZ3MpvDu/VCxBpI1ZdCR5XO4X Wd4+4dJpCEXAeqEDTQ+KuATzvmFZ+3LFsTVt62pBR59tHUFEgXCmjPNzHsL4Fnkc D2+vr36V4CAEQJTKLv5jAd3QMP0HMJaUtutG3s2iXVhAwHza5JYFZ+N9m6DE13bq rYZKOfQDUWjAY0X+ZKsh3HOZegoojxvFV1WzSP+WJW7CSIHzzWDot/uJs090ouoV Z8OOVWZHw4m30OEEqDV6nZuz+/bibKTk -----END CERTIFICATE-----Generated at Sat May 4 15:55:04 2024 by rpki-client on console-ams.rpki-client.org