$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft File: 3SNdNwiQmzPViUtMzckQXGH9Fq4.mft (raw, json) Hash identifier: j2QQFVBYWWROE2kEKcwiCWHQNIEJmjdhbUYuF8KlyGc= Subject key identifier: 47:25:63:CB:1E:E0:77:44:5C:DC:F1:AA:FA:31:1A:19:E1:AC:04:16 Authority key identifier: DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE Certificate issuer: /CN=A91B8C13/serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft Manifest number: B3 Signing time: Thu 16 May 2024 15:32:46 +0000 Manifest this update: Thu 16 May 2024 15:32:46 +0000 Manifest next update: Thu 23 May 2024 15:32:46 +0000 Files and hashes: 1: 3SNdNwiQmzPViUtMzckQXGH9Fq4.crl (hash: 0HAneqWSE20BJY1esgkUnm2q9EzMLveS7bfCl22k520=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8C13/serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Validity Not Before: May 16 15:32:46 2024 GMT Not After : May 23 15:32:46 2024 GMT Subject: CN=6646271e-cd78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:69:fb:a8:1e:31:6c:04:ac:b4:12:31:b6:50: 05:89:6e:8e:00:77:2c:08:24:83:f5:51:ff:05:85: 31:7e:a5:23:64:89:c4:4d:0e:a9:24:cf:4d:52:57: 6c:4b:7f:8f:11:77:f7:b1:24:8a:70:8e:b2:51:94: 35:93:03:d3:9b:01:7e:7f:52:f1:0f:61:0f:6b:eb: 27:eb:16:89:a5:73:ac:2f:d5:42:11:39:f3:65:3a: 5e:10:45:27:b4:ca:ab:d6:a6:52:fb:74:c0:69:67: af:9e:31:92:60:8e:3b:97:7c:15:83:03:c1:55:8a: 40:77:ec:56:80:c9:5e:0b:56:5e:67:59:45:6b:f6: 3b:67:50:17:33:45:39:87:76:ef:47:c8:4d:e8:b7: 26:1b:8b:c4:70:07:e0:f7:49:3d:2a:0e:e6:af:14: de:c2:64:2c:a9:fe:31:00:89:b9:af:8b:96:5d:b0: 0d:50:0b:30:ba:62:99:db:9f:78:c4:4a:d8:e9:a3: cf:28:8d:16:f6:8f:86:57:1f:aa:e3:98:93:cc:ed: 83:5e:85:f9:43:bb:b5:a0:aa:03:87:ac:7a:d0:5f: 93:42:49:28:87:82:63:76:2c:68:3f:70:cc:37:4e: 97:e5:92:54:cd:e2:05:5b:04:8d:78:82:57:26:53: bf:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:25:63:CB:1E:E0:77:44:5C:DC:F1:AA:FA:31:1A:19:E1:AC:04:16 X509v3 Authority Key Identifier: keyid:DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:b2:6f:08:2b:ef:e5:5d:76:c9:c6:57:85:0d:e9:67:4e:f9: f3:bd:e9:11:a8:e3:e7:14:c3:37:68:b3:5c:d8:87:87:29:86: 91:d3:46:6d:c2:70:6d:2f:8e:66:53:e4:34:0f:0f:25:52:43: ff:9d:33:b8:51:b3:77:56:5d:e4:07:d7:16:72:a8:a0:63:e0: a4:8b:dd:37:cc:f7:88:14:50:f6:a3:fe:d2:07:e8:04:dc:6c: 71:ee:b1:80:bb:c8:95:35:c4:7b:c8:6b:c3:5f:fb:c1:11:ce: d0:21:f7:89:9a:d3:b6:23:43:ab:99:c8:74:c1:79:54:1f:13: d4:63:d8:ed:6b:94:c1:a7:62:5f:11:65:d5:85:7f:07:98:18: fb:48:46:f7:0c:39:eb:24:e1:f0:b2:75:e3:cb:cb:b6:4c:55: f0:f8:f6:16:28:7c:c0:7d:f0:2e:3e:93:b0:f7:eb:ef:43:b7: 21:89:ac:fb:6b:33:15:1d:e1:68:e1:cc:db:d1:67:ac:93:31: d3:fd:42:1f:e8:79:06:8e:02:ce:69:14:9c:9e:db:7f:9f:1d: 07:71:d3:6c:c4:5e:1e:39:0a:57:f3:70:ac:99:bd:cb:d8:b0: b2:4d:da:72:f9:0d:d8:35:93:69:02:28:6c:fe:bf:f3:69:b3: 0a:c4:58:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDMTMxMTAvBgNVBAUTKEREMjM1RDM3MDg5MDlCMzNENTg5NEI0Q0NEQzkxMDVD NjFGRDE2QUUwHhcNMjQwNTE2MTUzMjQ2WhcNMjQwNTIzMTUzMjQ2WjAYMRYwFAYD VQQDEw02NjQ2MjcxZS1jZDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2n7qB4xbASstBIxtlAFiW6OAHcsCCSD9VH/BYUxfqUjZInETQ6pJM9NUlds S3+PEXf3sSSKcI6yUZQ1kwPTmwF+f1LxD2EPa+sn6xaJpXOsL9VCETnzZTpeEEUn tMqr1qZS+3TAaWevnjGSYI47l3wVgwPBVYpAd+xWgMleC1ZeZ1lFa/Y7Z1AXM0U5 h3bvR8hN6LcmG4vEcAfg90k9Kg7mrxTewmQsqf4xAIm5r4uWXbANUAswumKZ2594 xErY6aPPKI0W9o+GVx+q45iTzO2DXoX5Q7u1oKoDh6x60F+TQkkoh4JjdixoP3DM N06X5ZJUzeIFWwSNeIJXJlO/1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEclY8se 4HdEXNzxqvoxGhnhrAQWMB8GA1UdIwQYMBaAFN0jXTcIkJsz1YlLTM3JEFxh/Rau MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEMxMy9EMDYxMTcxNjBC MkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16UFZpVXRNemNrUVhHSDlG cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNTTmROd2lRbXpQVmlVdE16Y2tRWEdIOUZxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEMxMy9EMDYxMTcxNjBCMkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16 UFZpVXRNemNrUVhHSDlGcTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXsm8IK+/lXXbJxleFDelnTvnzvekRqOPnFMM3aLNc2IeHKYaR00Zt wnBtL45mU+Q0Dw8lUkP/nTO4UbN3Vl3kB9cWcqigY+Cki903zPeIFFD2o/7SB+gE 3Gxx7rGAu8iVNcR7yGvDX/vBEc7QIfeJmtO2I0Ormch0wXlUHxPUY9jta5TBp2Jf EWXVhX8HmBj7SEb3DDnrJOHwsnXjy8u2TFXw+PYWKHzAffAuPpOw9+vvQ7chiaz7 azMVHeFo4czb0WeskzHT/UIf6HkGjgLOaRScntt/nx0HcdNsxF4eOQpX83Csmb3L 2LCyTdpy+Q3YNZNpAihs/r/zabMKxFgN -----END CERTIFICATE-----Generated at Thu May 16 16:14:59 2024 by rpki-client on console-fra.rpki-client.org