$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft File: 7LW7UwpypAlWiey7FY8q5e_pElU.mft (raw, json) Hash identifier: zzikgaYGcews4U8RRTqDiJORLdNdB6beVbwyOQ+SJuc= Subject key identifier: B7:FD:68:09:5A:EC:73:E4:EF:9A:88:D0:7C:E2:D5:8C:00:4E:CA:92 Authority key identifier: EC:B5:BB:53:0A:72:A4:09:56:89:EC:BB:15:8F:2A:E5:EF:E9:12:55 Certificate issuer: /CN=A91B9FB9/serialNumber=ECB5BB530A72A4095689ECBB158F2AE5EFE91255 Certificate serial: 33C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LW7UwpypAlWiey7FY8q5e_pElU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft Manifest number: 33BD Signing time: Sat 18 May 2024 15:21:10 +0000 Manifest this update: Sat 18 May 2024 15:21:09 +0000 Manifest next update: Sat 25 May 2024 15:21:09 +0000 Files and hashes: 1: 7LW7UwpypAlWiey7FY8q5e_pElU.crl (hash: 8pepGm99zxGYvdz3cgvYr4wpQZ8qe2Jj7sE2PBS9ULY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.crl rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LW7UwpypAlWiey7FY8q5e_pElU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13248 (0x33c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9FB9/serialNumber=ECB5BB530A72A4095689ECBB158F2AE5EFE91255 Validity Not Before: May 18 15:21:09 2024 GMT Not After : May 25 15:21:09 2024 GMT Subject: CN=6648c766-81ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b4:f6:71:35:35:7f:7e:4f:f8:41:23:06:46: f3:ff:16:c7:4c:59:5a:65:34:79:cd:55:c1:50:b9: ac:e1:9a:f1:7a:d9:00:67:f5:8c:bb:9f:a0:0e:a2: 5a:2a:ba:1b:b2:91:10:f7:01:95:9a:73:3e:5c:60: f7:66:c3:02:da:3a:22:ac:6f:96:97:4f:d0:a1:17: 42:0f:38:41:a3:4d:de:2c:24:ab:dd:98:ab:da:3d: 12:be:50:dd:ae:82:22:8b:21:77:ac:53:23:e6:5d: 7b:93:dd:33:8a:05:5e:e2:d7:69:4d:62:e6:2a:b1: a7:5d:d2:04:92:ad:16:0f:51:c9:fe:71:9b:23:e4: de:97:18:f4:76:ea:5c:db:30:c7:78:30:14:c4:e6: b6:be:86:74:2c:67:1d:0d:18:b6:b3:e6:24:e3:df: 35:b4:8e:0d:0d:1a:38:73:75:3d:32:aa:a6:d6:bd: c6:77:8b:b2:4f:e1:9e:76:19:a1:a4:bb:2d:38:b9: 85:73:7a:ba:8d:09:3b:60:fe:51:bc:ce:c9:88:0c: 8a:91:11:92:c2:aa:f0:23:62:86:1c:76:98:fc:94: 5f:8b:47:85:71:38:87:45:4c:77:34:24:be:2f:10: 5f:fe:d9:da:84:c4:5e:20:9c:5b:5d:32:27:f8:78: d9:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:FD:68:09:5A:EC:73:E4:EF:9A:88:D0:7C:E2:D5:8C:00:4E:CA:92 X509v3 Authority Key Identifier: keyid:EC:B5:BB:53:0A:72:A4:09:56:89:EC:BB:15:8F:2A:E5:EF:E9:12:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LW7UwpypAlWiey7FY8q5e_pElU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:13:40:35:5e:05:bd:df:ba:e2:09:79:3a:d1:bb:4e:5b:b0: 77:72:ab:49:80:17:b6:95:af:91:00:20:e8:63:8a:07:7d:00: b5:1f:97:fb:74:9d:3f:ed:9d:83:22:85:fb:f3:ca:3c:c6:98: d2:c8:e4:f2:e3:fb:ae:cc:2e:b7:b7:0b:3a:ff:ab:dd:e5:da: 14:49:80:bc:f8:51:c3:97:b0:8d:37:e1:5a:b1:51:3f:b0:75: 18:e7:57:46:59:78:0e:e4:6f:00:7f:71:82:75:e1:ad:18:23: 7e:36:f6:99:f2:44:a8:23:11:64:80:20:62:b0:ab:44:d4:00: 6f:ee:7f:d6:c3:0c:6f:64:4b:4f:31:e3:bb:b7:2b:ca:56:a5: 03:4d:51:e5:26:0e:d1:e2:a4:f2:a2:f1:ee:2b:0b:8d:ea:9c: e9:af:2c:18:3f:70:70:b0:f8:b2:62:17:61:7d:98:3c:92:1a: 72:da:79:fa:78:2e:50:e3:54:d3:73:68:bd:9e:c3:ef:d8:94: 6c:71:3f:0a:84:f0:fb:00:44:2d:ff:3d:dd:c2:70:66:32:3a: c5:60:fd:0f:3e:03:96:0b:80:64:e7:a8:bf:36:ba:a1:8b:52: 6c:23:da:ca:dc:00:22:b6:1b:22:7b:ad:2a:81:a2:4c:ca:b6: 13:19:36:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlGQjkxMTAvBgNVBAUTKEVDQjVCQjUzMEE3MkE0MDk1Njg5RUNCQjE1OEYyQUU1 RUZFOTEyNTUwHhcNMjQwNTE4MTUyMTA5WhcNMjQwNTI1MTUyMTA5WjAYMRYwFAYD VQQDEw02NjQ4Yzc2Ni04MWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbT2cTU1f35P+EEjBkbz/xbHTFlaZTR5zVXBULms4ZrxetkAZ/WMu5+gDqJa KrobspEQ9wGVmnM+XGD3ZsMC2joirG+Wl0/QoRdCDzhBo03eLCSr3Zir2j0SvlDd roIiiyF3rFMj5l17k90zigVe4tdpTWLmKrGnXdIEkq0WD1HJ/nGbI+Telxj0dupc 2zDHeDAUxOa2voZ0LGcdDRi2s+Yk4981tI4NDRo4c3U9Mqqm1r3Gd4uyT+Gedhmh pLstOLmFc3q6jQk7YP5RvM7JiAyKkRGSwqrwI2KGHHaY/JRfi0eFcTiHRUx3NCS+ LxBf/tnahMReIJxbXTIn+HjZ2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLf9aAla 7HPk75qI0Hzi1YwATsqSMB8GA1UdIwQYMBaAFOy1u1MKcqQJVonsuxWPKuXv6RJV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUZCOS8yMTE0RDU2ODFE QTQxMUUyODQxQUYyOTkwOEIwMkNEMi83TFc3VXdweXBBbFdpZXk3Rlk4cTVlX3BF bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdMVzdVd3B5cEFsV2lleTdGWThxNWVfcEVsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUZCOS8yMTE0RDU2ODFEQTQxMUUyODQxQUYyOTkwOEIwMkNEMi83TFc3VXdweXBB bFdpZXk3Rlk4cTVlX3BFbFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5E0A1XgW937riCXk60btOW7B3cqtJgBe2la+RACDoY4oHfQC1H5f7 dJ0/7Z2DIoX788o8xpjSyOTy4/uuzC63tws6/6vd5doUSYC8+FHDl7CNN+FasVE/ sHUY51dGWXgO5G8Af3GCdeGtGCN+NvaZ8kSoIxFkgCBisKtE1ABv7n/WwwxvZEtP MeO7tyvKVqUDTVHlJg7R4qTyovHuKwuN6pzprywYP3BwsPiyYhdhfZg8khpy2nn6 eC5Q41TTc2i9nsPv2JRscT8KhPD7AEQt/z3dwnBmMjrFYP0PPgOWC4Bk56i/Nrqh i1JsI9rK3AAithsie60qgaJMyrYTGTYW -----END CERTIFICATE-----Generated at Sat May 18 16:20:16 2024 by rpki-client on console-fra.rpki-client.org