$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft File: cz1KHp8pnM0_jnJKteer9Ci7GV0.mft (raw, json) Hash identifier: bAu20BqKoQhO7Ml9A0MUKiV/2WGbayjpOXYp/EKbCYc= Subject key identifier: D7:60:FA:0F:3A:9D:DC:BA:87:F9:17:E9:D1:A9:9E:13:B9:60:59:5F Authority key identifier: 73:3D:4A:1E:9F:29:9C:CD:3F:8E:72:4A:B5:E7:AB:F4:28:BB:19:5D Certificate issuer: /CN=A91DE500/serialNumber=733D4A1E9F299CCD3F8E724AB5E7ABF428BB195D Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft Manifest number: 33 Signing time: Wed 15 May 2024 08:31:02 +0000 Manifest this update: Wed 15 May 2024 08:31:02 +0000 Manifest next update: Wed 22 May 2024 08:31:02 +0000 Files and hashes: 1: cz1KHp8pnM0_jnJKteer9Ci7GV0.crl (hash: kMYk9xzlrI1uxAPo2CWv5nFx7Ipf+/I0pGb3ugodjDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.crl rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:31:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE500/serialNumber=733D4A1E9F299CCD3F8E724AB5E7ABF428BB195D Validity Not Before: May 15 08:31:02 2024 GMT Not After : May 22 08:31:02 2024 GMT Subject: CN=664472c6-361b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9b:f6:57:f9:9a:92:27:f9:0c:58:ef:05:0c: fa:5e:de:f5:0a:4c:74:77:6a:87:ec:0f:1d:71:37: ca:00:3f:4d:cd:c9:d5:3b:b5:86:ae:a4:61:f9:86: 70:4a:80:d1:0b:02:e9:22:2f:88:18:a9:a5:ce:93: 62:fc:69:3f:68:02:94:10:a2:7b:4e:77:1f:0b:46: 52:22:ef:4b:90:d3:73:a0:8c:6c:fd:4f:ee:d8:f8: 9c:16:4e:64:21:ee:c7:be:47:66:87:e9:76:f5:68: 6c:a8:1e:46:41:18:d0:3c:d5:b6:50:53:8d:11:2c: 2a:8d:af:01:08:21:36:1c:63:b7:5b:96:01:8a:c0: 8e:31:bb:db:e5:73:d4:76:13:38:e8:51:e0:bf:56: 0a:9b:07:08:98:2b:64:2b:ff:11:90:0e:1b:ee:e4: e8:67:b5:25:4f:6c:c9:9b:f9:6b:46:24:82:53:d8: 64:2a:d9:77:05:4b:d9:c1:13:43:0c:21:86:a7:28: 83:6c:2a:dc:73:00:35:1a:b8:e1:1d:4e:6a:e2:a5: fa:3d:a9:ef:24:a5:a1:60:d6:35:91:c3:4f:a1:a7: d0:c6:b4:1f:f8:75:74:1d:e3:69:7c:12:ba:1b:d8: 9b:48:d7:e7:36:d6:78:ab:bf:87:d8:5a:36:6f:40: 66:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:60:FA:0F:3A:9D:DC:BA:87:F9:17:E9:D1:A9:9E:13:B9:60:59:5F X509v3 Authority Key Identifier: keyid:73:3D:4A:1E:9F:29:9C:CD:3F:8E:72:4A:B5:E7:AB:F4:28:BB:19:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:ba:e2:07:1c:5d:88:8d:85:a7:8e:05:3e:b7:cf:67:b7:16: fb:01:d9:0c:a8:e0:7d:1c:3a:3f:97:13:dd:20:46:b1:ee:4e: 46:ce:6a:a7:c5:3d:7e:20:b7:2f:f1:02:3a:bd:a3:a9:cc:91: ec:4a:c4:ad:9c:e5:65:5b:11:69:74:b4:fb:7c:5d:e3:0b:42: 9c:46:af:87:c8:03:98:d6:dd:52:20:4d:a1:71:fa:03:2f:7c: 7c:ce:f6:f7:15:b1:7f:53:80:3f:6b:ef:2f:39:3a:af:76:76: fc:49:7e:de:f8:07:18:a7:6e:78:9c:a1:d9:b6:28:4c:86:32: a5:62:c9:5b:6f:f9:8c:6a:fa:c1:c8:fa:e9:dc:7e:cf:d2:66: 4e:08:32:22:5d:fe:64:24:4f:a9:75:de:f3:1d:a8:7e:0b:47: 46:7a:ec:d0:84:dc:9e:20:7d:3f:5a:32:58:94:f7:11:1c:be: 08:34:0c:37:d1:0f:df:23:23:e8:1b:76:15:5f:5a:39:b0:c7: b1:7f:7e:c8:10:63:47:42:e9:a5:8b:cc:8b:80:34:fd:59:4b: 0f:58:26:d2:b0:9c:c2:ec:78:6e:74:9b:bc:7a:ab:ad:cd:bb: 34:37:47:3d:20:11:58:3b:e9:b2:ee:45:84:c9:79:e9:8c:be: ac:64:4b:74 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RTUwMDExMC8GA1UEBRMoNzMzRDRBMUU5RjI5OUNDRDNGOEU3MjRBQjVFN0FCRjQy OEJCMTk1RDAeFw0yNDA1MTUwODMxMDJaFw0yNDA1MjIwODMxMDJaMBgxFjAUBgNV BAMTDTY2NDQ3MmM2LTM2MWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0m/ZX+ZqSJ/kMWO8FDPpe3vUKTHR3aofsDx1xN8oAP03NydU7tYaupGH5hnBK gNELAukiL4gYqaXOk2L8aT9oApQQontOdx8LRlIi70uQ03OgjGz9T+7Y+JwWTmQh 7se+R2aH6Xb1aGyoHkZBGNA81bZQU40RLCqNrwEIITYcY7dblgGKwI4xu9vlc9R2 EzjoUeC/VgqbBwiYK2Qr/xGQDhvu5OhntSVPbMmb+WtGJIJT2GQq2XcFS9nBE0MM IYanKINsKtxzADUauOEdTmripfo9qe8kpaFg1jWRw0+hp9DGtB/4dXQd42l8Erob 2JtI1+c21nirv4fYWjZvQGaHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU12D6Dzqd 3LqH+Rfp0ameE7lgWV8wHwYDVR0jBBgwFoAUcz1KHp8pnM0/jnJKteer9Ci7GV0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURFNTAwLzQ5RTZGRTQ2Qzcy RDExRUU5QzdDMzUxREM0RjlBRTAyL2N6MUtIcDhwbk0wX2puSkt0ZWVyOUNpN0dW MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY3oxS0hwOHBuTTBfam5KS3RlZXI5Q2k3R1YwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURF NTAwLzQ5RTZGRTQ2QzcyRDExRUU5QzdDMzUxREM0RjlBRTAyL2N6MUtIcDhwbk0w X2puSkt0ZWVyOUNpN0dWMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAS64gccXYiNhaeOBT63z2e3FvsB2Qyo4H0cOj+XE90gRrHuTkbOaqfF PX4gty/xAjq9o6nMkexKxK2c5WVbEWl0tPt8XeMLQpxGr4fIA5jW3VIgTaFx+gMv fHzO9vcVsX9TgD9r7y85Oq92dvxJft74Bxinbnicodm2KEyGMqViyVtv+Yxq+sHI +uncfs/SZk4IMiJd/mQkT6l13vMdqH4LR0Z67NCE3J4gfT9aMliU9xEcvgg0DDfR D98jI+gbdhVfWjmwx7F/fsgQY0dC6aWLzIuANP1ZSw9YJtKwnMLseG50m7x6q63N uzQ3Rz0gEVg76bLuRYTJeemMvqxkS3Q= -----END CERTIFICATE-----Generated at Wed May 15 11:17:44 2024 by rpki-client on console-ams.rpki-client.org