$ rpki-client -vvf rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft File: M4vXge0h5dsUBXs3uQOipAjiQgI.mft (raw, json) Hash identifier: IXfnkzov3eezOCEGj52eyfMvVH7mIULG6ucjJE6yXdk= Subject key identifier: C5:3A:09:A4:2B:F6:C5:EB:69:9F:58:26:24:84:F9:B9:4C:00:26:60 Authority key identifier: 33:8B:D7:81:ED:21:E5:DB:14:05:7B:37:B9:03:A2:A4:08:E2:42:02 Certificate issuer: /CN=A91E38C1/serialNumber=338BD781ED21E5DB14057B37B903A2A408E24202 Certificate serial: 33E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft Manifest number: 33CC Signing time: Tue 30 Apr 2024 15:00:37 +0000 Manifest this update: Tue 30 Apr 2024 15:00:36 +0000 Manifest next update: Tue 07 May 2024 15:00:36 +0000 Files and hashes: 1: M4vXge0h5dsUBXs3uQOipAjiQgI.crl (hash: AEXrKvKZsveqLgtsIn6IxLXl1X0m1DkrNHhxpoR+Ffw=) 2: 5F114FB2C28811EB8BB7245FC4F9AE02.roa (hash: PXWpp6u/LrHOySF1SCldeCo7SamdB2YurYXfusVDxmo=) 3: 5DF144D4C28811EB8BB7245FC4F9AE02.roa (hash: h/nwQIHIoUxMGfpN7/vnAqbU30YF4OssCS9O14azE8M=) 4: 5CD84EBCC28811EB8BB7245FC4F9AE02.roa (hash: Mq3YCN5HPGk1LyeNEX5RCi9RvuzEEUVAvFFniOG6WRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.crl rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 15:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13287 (0x33e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E38C1/serialNumber=338BD781ED21E5DB14057B37B903A2A408E24202 Validity Not Before: Apr 30 15:00:36 2024 GMT Not After : May 7 15:00:36 2024 GMT Subject: CN=66310794-eff0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e0:3e:17:76:8d:15:c8:f1:e9:af:30:2a:48: 79:31:75:73:9d:0e:e6:3c:0e:fa:e5:01:42:fc:bf: 37:8f:57:ea:fe:4f:34:e7:11:70:24:72:3b:df:da: 98:ae:42:36:96:4e:e5:8d:25:6f:18:68:d2:22:0a: 8c:aa:f2:8a:cb:e2:c0:06:e2:5b:45:bd:3b:5c:09: b4:24:75:a9:c4:64:6f:49:c9:a1:a1:e1:8d:19:9d: ed:fd:b2:e3:be:07:ac:c0:ff:84:b2:23:fa:ca:57: c1:08:8a:08:e2:e4:07:ae:bc:46:73:5e:77:65:af: 68:c0:1f:5b:49:27:5c:0e:30:27:ba:3e:f6:7a:5e: 5e:0b:30:d2:10:1b:0b:96:ed:62:a4:84:8c:cc:05: 9b:70:de:3b:1a:ca:32:56:d5:84:80:0f:98:db:1d: d8:bc:26:63:97:df:8d:ff:36:d6:58:48:e5:79:93: 9b:17:f2:d3:b0:e5:5d:de:ae:6c:9c:a2:30:da:23: 47:0d:01:d9:af:a7:47:5f:29:b1:f7:96:29:f4:dc: b0:15:14:bc:d9:a4:50:d1:37:9e:6b:78:56:94:6a: 4e:26:9d:fd:dc:9b:3b:8d:e4:03:15:55:a9:c2:10: 1b:a7:77:69:92:46:cc:62:7c:93:6c:46:2f:56:d8: c6:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:3A:09:A4:2B:F6:C5:EB:69:9F:58:26:24:84:F9:B9:4C:00:26:60 X509v3 Authority Key Identifier: keyid:33:8B:D7:81:ED:21:E5:DB:14:05:7B:37:B9:03:A2:A4:08:E2:42:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:f5:00:0f:80:9b:27:e1:63:88:0a:49:77:e9:23:b1:d4:ef: 8b:56:0e:88:32:3f:bf:8c:16:75:03:73:0a:95:50:f3:11:79: d5:41:75:57:df:a3:ff:be:a9:79:a8:5f:f0:3e:cf:45:c4:2b: a7:da:60:87:2a:d3:8f:86:1c:85:51:0d:60:45:14:43:09:cc: b8:67:8e:62:9d:5a:89:b9:46:ad:66:d4:7a:bd:07:40:7d:c5: cc:cd:db:9a:2e:72:ec:fa:f4:cb:67:e4:4d:93:e2:46:cf:69: 1f:a7:51:0a:25:5e:7f:7e:41:b4:06:0d:e9:2d:f3:d7:ce:cc: 7e:ca:db:52:af:42:0b:72:a3:96:2d:99:13:0b:a9:17:60:9f: 65:c7:4f:81:27:0c:b0:1d:a2:cf:3d:62:90:ef:d6:3f:ee:d3: b1:95:29:e8:06:79:02:2e:b8:05:f9:20:5f:a2:fc:64:c2:e4: b2:6d:e2:68:e9:4c:e0:5f:a0:c7:0d:22:6a:85:30:13:9f:2d: 33:86:1c:10:c0:5f:07:ae:b6:97:50:06:19:d8:f7:16:17:03: 3e:49:83:8d:59:92:53:36:03:2e:5e:55:d2:3a:b4:04:bb:b1: 2d:8d:a2:a6:cb:82:3d:f8:b1:be:2f:b0:e1:9b:db:ec:3f:d4: b2:66:d5:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4QzExMTAvBgNVBAUTKDMzOEJENzgxRUQyMUU1REIxNDA1N0IzN0I5MDNBMkE0 MDhFMjQyMDIwHhcNMjQwNDMwMTUwMDM2WhcNMjQwNTA3MTUwMDM2WjAYMRYwFAYD VQQDEw02NjMxMDc5NC1lZmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAreA+F3aNFcjx6a8wKkh5MXVznQ7mPA765QFC/L83j1fq/k805xFwJHI739qY rkI2lk7ljSVvGGjSIgqMqvKKy+LABuJbRb07XAm0JHWpxGRvScmhoeGNGZ3t/bLj vgeswP+EsiP6ylfBCIoI4uQHrrxGc153Za9owB9bSSdcDjAnuj72el5eCzDSEBsL lu1ipISMzAWbcN47GsoyVtWEgA+Y2x3YvCZjl9+N/zbWWEjleZObF/LTsOVd3q5s nKIw2iNHDQHZr6dHXymx95Yp9NywFRS82aRQ0Teea3hWlGpOJp393Js7jeQDFVWp whAbp3dpkkbMYnyTbEYvVtjGRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMU6CaQr 9sXraZ9YJiSE+blMACZgMB8GA1UdIwQYMBaAFDOL14HtIeXbFAV7N7kDoqQI4kIC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzhDMS9FNzVBQzI2MjFE OTcxMUUyOEVGODkyODEwOEIwMkNEMi9NNHZYZ2UwaDVkc1VCWHMzdVFPaXBBamlR Z0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL000dlhnZTBoNWRzVUJYczN1UU9pcEFqaVFnSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzhDMS9FNzVBQzI2MjFEOTcxMUUyOEVGODkyODEwOEIwMkNEMi9NNHZYZ2UwaDVk c1VCWHMzdVFPaXBBamlRZ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi9QAPgJsn4WOICkl36SOx1O+LVg6IMj+/jBZ1A3MKlVDzEXnVQXVX 36P/vql5qF/wPs9FxCun2mCHKtOPhhyFUQ1gRRRDCcy4Z45inVqJuUatZtR6vQdA fcXMzduaLnLs+vTLZ+RNk+JGz2kfp1EKJV5/fkG0Bg3pLfPXzsx+yttSr0ILcqOW LZkTC6kXYJ9lx0+BJwywHaLPPWKQ79Y/7tOxlSnoBnkCLrgF+SBfovxkwuSybeJo 6UzgX6DHDSJqhTATny0zhhwQwF8HrraXUAYZ2PcWFwM+SYONWZJTNgMuXlXSOrQE u7EtjaKmy4I9+LG+L7Dhm9vsP9SyZtXf -----END CERTIFICATE-----Generated at Tue Apr 30 15:52:35 2024 by rpki-client on console-fra.rpki-client.org