$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft File: C33smHxhdR0-2h2_PnwipzoV3u0.mft (raw, json) Hash identifier: sWqPP1OHArWJt19ZkmUaPFEnvbpKEau6odL18cTTcME= Subject key identifier: BF:CF:56:34:2E:48:45:91:99:66:04:64:C2:9D:7B:9F:72:45:4F:57 Authority key identifier: 0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED Certificate issuer: /CN=A91C0E57/serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Certificate serial: 0413 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft Manifest number: 040E Signing time: Tue 07 May 2024 02:05:12 +0000 Manifest this update: Tue 07 May 2024 02:05:11 +0000 Manifest next update: Tue 14 May 2024 02:05:11 +0000 Files and hashes: 1: C33smHxhdR0-2h2_PnwipzoV3u0.crl (hash: g2GtgBjlabGhyWGgTj1HSCvmCXzWOKMgbUB5HQiQ2yc=) 2: 60A8F48A25D211ECB2CCF633C4F9AE02.roa (hash: Lc2dupe+wARi1Yp6AZUB8N6bLX8BIh3e0MGDTtp7+eU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 02:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1043 (0x413) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E57/serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Validity Not Before: May 7 02:05:11 2024 GMT Not After : May 14 02:05:11 2024 GMT Subject: CN=66398c58-02a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bc:33:a9:23:a6:b1:45:32:e5:16:2d:b8:88: bc:dd:d8:d2:d5:6e:2c:ab:01:ea:90:e2:26:15:1b: 4b:a2:57:a6:7f:1d:27:19:7f:e3:2c:5c:f6:8e:f5: 0b:35:6a:61:8c:85:80:ea:95:9a:da:f4:0c:47:47: d5:aa:e0:7b:8a:c9:02:2b:fd:9a:ae:6f:70:a2:77: a5:87:e4:cd:fc:3b:f7:c0:99:ed:29:a3:9e:ec:25: 97:02:b1:9b:1e:30:13:9b:bb:60:39:18:5d:d1:f9: 90:2a:b9:78:13:a3:0f:fe:8f:5c:25:ab:4b:f7:df: 38:a1:19:81:19:28:a2:21:6a:c5:cb:c3:e1:34:f5: b8:4e:fd:89:db:b8:96:9c:d5:3e:c7:f0:c2:44:50: e2:56:2a:3f:ad:f6:e0:92:87:ad:20:db:9a:75:30: da:8e:01:d9:59:cc:30:fe:06:08:90:dd:33:cd:c1: 63:e1:63:a8:46:de:92:65:e7:34:94:79:cd:d1:14: 19:90:46:4d:97:e2:cd:8d:a4:da:a1:80:be:2d:ff: d3:85:4c:6a:35:29:b7:ce:33:ca:7e:fa:e9:cb:78: 3f:24:02:43:73:2d:a8:a7:a3:11:39:f1:07:42:d2: 59:e3:58:31:d3:64:e2:77:91:48:d6:ef:91:d2:bb: d2:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:CF:56:34:2E:48:45:91:99:66:04:64:C2:9D:7B:9F:72:45:4F:57 X509v3 Authority Key Identifier: keyid:0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:fc:aa:99:3e:d5:bb:73:51:3d:65:98:1d:35:4f:24:97:9c: 57:7c:72:1b:01:c4:73:69:ee:ca:df:3b:26:f8:46:79:dd:5e: f0:74:74:55:de:74:af:d0:23:9e:1a:9d:b9:ca:36:eb:0b:23: f8:18:41:1a:0d:a1:71:3e:a1:7e:c7:82:f9:9d:c9:15:25:e8: d7:3f:6c:0c:2a:4e:62:25:c1:f8:d1:34:a9:35:0f:90:1e:4e: 61:14:ce:ad:d9:a3:42:c5:53:4d:52:b8:26:a7:5f:03:0c:8c: fc:1c:6b:0f:22:c6:53:99:89:32:7a:00:49:c1:54:1f:3f:d7: ed:b4:27:24:95:af:5b:6f:38:b7:9f:5b:09:80:c3:70:94:ae: bc:16:1d:32:50:9b:97:dd:ec:e7:d0:13:10:ad:a2:75:17:64: ff:26:07:44:57:9c:ca:eb:85:e7:bd:47:13:84:a4:10:15:71: 63:f8:28:9d:95:0d:79:5a:78:c4:8d:00:da:c1:83:81:77:2a: dd:9c:48:e4:fd:76:32:77:0a:c4:e4:f8:3e:e2:33:bd:32:45: 2e:31:d7:46:75:1d:e0:82:ad:0f:cc:0c:3d:56:59:ca:ee:ee: 9b:01:20:0e:3b:ac:bb:3f:07:14:03:69:25:19:f9:a8:da:68: d6:d1:79:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNTcxMTAvBgNVBAUTKDBCN0RFQzk4N0M2MTc1MUQzRURBMURCRjNFN0MyMkE3 M0ExNURFRUQwHhcNMjQwNTA3MDIwNTExWhcNMjQwNTE0MDIwNTExWjAYMRYwFAYD VQQDEw02NjM5OGM1OC0wMmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrwzqSOmsUUy5RYtuIi83djS1W4sqwHqkOImFRtLolemfx0nGX/jLFz2jvUL NWphjIWA6pWa2vQMR0fVquB7iskCK/2arm9wonelh+TN/Dv3wJntKaOe7CWXArGb HjATm7tgORhd0fmQKrl4E6MP/o9cJatL9984oRmBGSiiIWrFy8PhNPW4Tv2J27iW nNU+x/DCRFDiVio/rfbgkoetINuadTDajgHZWcww/gYIkN0zzcFj4WOoRt6SZec0 lHnN0RQZkEZNl+LNjaTaoYC+Lf/ThUxqNSm3zjPKfvrpy3g/JAJDcy2op6MROfEH QtJZ41gx02Tid5FI1u+R0rvSfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/PVjQu SEWRmWYEZMKde59yRU9XMB8GA1UdIwQYMBaAFAt97Jh8YXUdPtodvz58Iqc6Fd7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1Ny9GQ0MxOEExNDIw NEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRSMC0yaDJfUG53aXB6b1Yz dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MzM3NtSHhoZFIwLTJoMl9QbndpcHpvVjN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEU1Ny9GQ0MxOEExNDIwNEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRS MC0yaDJfUG53aXB6b1YzdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC/KqZPtW7c1E9ZZgdNU8kl5xXfHIbAcRzae7K3zsm+EZ53V7wdHRV 3nSv0COeGp25yjbrCyP4GEEaDaFxPqF+x4L5nckVJejXP2wMKk5iJcH40TSpNQ+Q Hk5hFM6t2aNCxVNNUrgmp18DDIz8HGsPIsZTmYkyegBJwVQfP9fttCckla9bbzi3 n1sJgMNwlK68Fh0yUJuX3ezn0BMQraJ1F2T/JgdEV5zK64XnvUcThKQQFXFj+Cid lQ15WnjEjQDawYOBdyrdnEjk/XYydwrE5Pg+4jO9MkUuMddGdR3ggq0PzAw9VlnK 7u6bASAOO6y7PwcUA2klGfmo2mjW0Xle -----END CERTIFICATE-----Generated at Tue May 7 03:10:22 2024 by rpki-client on console-ams.rpki-client.org