$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft File: CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft (raw, json) Hash identifier: DiDNpYazBO+026Yc3ZG2oKkMhQjDm/QrdeNwILGZItM= Subject key identifier: 85:22:41:7C:4B:A9:53:58:3E:00:E6:95:94:47:2F:7F:29:40:40:46 Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 33F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft Manifest number: 33DB Signing time: Thu 02 May 2024 14:20:21 +0000 Manifest this update: Thu 02 May 2024 14:20:20 +0000 Manifest next update: Thu 09 May 2024 14:20:20 +0000 Files and hashes: 1: CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl (hash: DSNr3VI18Zw15z6MBTIdgvkls4kS7fIIGC3cqdW5zgs=) 2: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (hash: RO8mGq9V+LngMo34HYwRFUfgiZ72wGqi5MpbdkZyygY=) 3: E404430CB0F811E595E0F761C4F9AE02.roa (hash: GWQDe+SnZuO3dwYzIbPx3t2XqEH2Z0LTmGVz4nw4kUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 14:20:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13303 (0x33f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: May 2 14:20:20 2024 GMT Not After : May 9 14:20:20 2024 GMT Subject: CN=6633a124-3ab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:82:0c:c0:d7:ff:37:80:f3:20:e5:76:29:1b: aa:a7:48:ac:e8:9d:01:bb:99:34:d9:20:0d:2e:e5: ff:1b:d4:e0:51:fb:f5:3a:1a:db:ac:d1:8e:d6:ee: ae:b5:22:56:d1:a7:82:99:cc:0b:98:88:d8:63:93: 0f:6d:ae:51:c1:9c:c5:ba:f9:1a:e3:35:11:82:f2: 1e:db:8c:5d:bf:58:f4:78:a1:18:34:8a:a1:a6:cf: af:61:2b:29:0f:41:7d:ee:15:5c:f1:cd:6b:da:0b: 44:06:54:64:d0:87:5d:09:b6:8a:ab:2f:01:96:a9: f9:1c:cd:ee:9c:af:5c:6a:4d:b2:b4:dd:6b:43:3c: 4f:4a:66:d0:cc:65:09:df:78:da:b1:7e:96:02:53: 55:7a:02:15:e6:9f:07:d9:fb:ef:53:eb:37:1e:d8: f9:0f:66:0d:bc:cd:46:54:dd:fa:87:81:3b:d6:25: 13:c6:1c:6f:27:c4:84:87:93:04:da:9c:99:7a:14: e7:a3:b2:4a:23:45:52:51:86:48:77:ae:3c:57:a7: 92:4c:6c:4c:ee:e1:9e:e6:23:91:6f:91:90:21:a5: c1:0b:b9:ea:9f:df:b4:46:50:70:76:94:19:98:5e: fc:59:e3:91:e1:de:69:fb:79:c9:67:3e:3a:8b:fd: 8a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:22:41:7C:4B:A9:53:58:3E:00:E6:95:94:47:2F:7F:29:40:40:46 X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:f4:3e:37:16:be:38:7a:b8:6a:95:71:e4:c2:a7:13:0b:87: a6:01:df:44:6e:fe:1a:4c:ab:51:80:e3:f8:29:ad:47:ed:6c: 07:a3:e3:59:a1:bb:e7:bc:84:01:ba:3f:2a:3e:1e:ef:11:05: ec:57:94:98:16:c8:db:09:ff:f1:c2:1d:0b:39:23:5a:96:5b: 6a:35:64:b5:57:4b:74:cc:0f:37:a4:64:70:9b:93:44:72:35: c5:ba:83:03:ea:25:97:e9:8e:1c:6a:6b:50:be:d2:a0:00:90: 3f:ff:4a:10:fe:c5:8e:52:ea:e9:04:0e:a6:42:8f:a7:67:fa: 00:22:74:f6:e8:17:9e:9f:57:c4:77:19:12:53:07:c5:c7:07: 75:30:da:c5:bf:d7:a3:da:43:c0:e2:46:da:88:43:10:24:a8: 6e:ce:04:ad:04:1a:92:3d:44:b2:d0:56:76:d3:b8:84:60:cd: 48:a8:1a:f7:94:bc:c8:2f:f2:b1:50:74:b7:ef:18:d4:24:53: 9e:40:16:03:04:f1:9e:24:c5:b6:10:b7:94:b8:00:e5:f0:42: d1:15:80:d7:cf:74:36:d5:05:4a:8c:0c:1e:23:cc:e1:9a:89: c6:d0:71:f6:89:c7:b0:cf:30:46:a7:97:2b:36:97:ce:4a:a2: 74:f0:6a:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjQwNTAyMTQyMDIwWhcNMjQwNTA5MTQyMDIwWjAYMRYwFAYD VQQDEw02NjMzYTEyNC0zYWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3IIMwNf/N4DzIOV2KRuqp0is6J0Bu5k02SANLuX/G9TgUfv1OhrbrNGO1u6u tSJW0aeCmcwLmIjYY5MPba5RwZzFuvka4zURgvIe24xdv1j0eKEYNIqhps+vYSsp D0F97hVc8c1r2gtEBlRk0IddCbaKqy8Blqn5HM3unK9cak2ytN1rQzxPSmbQzGUJ 33jasX6WAlNVegIV5p8H2fvvU+s3Htj5D2YNvM1GVN36h4E71iUTxhxvJ8SEh5ME 2pyZehTno7JKI0VSUYZId648V6eSTGxM7uGe5iORb5GQIaXBC7nqn9+0RlBwdpQZ mF78WeOR4d5p+3nJZz46i/2KlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIUiQXxL qVNYPgDmlZRHL38pQEBGMB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQxQS9DNTlCMDJEQTFENzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJV akdjWGMzUUlrYzlVNHh1QTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBz9D43Fr44erhqlXHkwqcTC4emAd9Ebv4aTKtRgOP4Ka1H7WwHo+NZ obvnvIQBuj8qPh7vEQXsV5SYFsjbCf/xwh0LOSNalltqNWS1V0t0zA83pGRwm5NE cjXFuoMD6iWX6Y4camtQvtKgAJA//0oQ/sWOUurpBA6mQo+nZ/oAInT26Been1fE dxkSUwfFxwd1MNrFv9ej2kPA4kbaiEMQJKhuzgStBBqSPUSy0FZ207iEYM1IqBr3 lLzIL/KxUHS37xjUJFOeQBYDBPGeJMW2ELeUuADl8ELRFYDXz3Q21QVKjAweI8zh monG0HH2icewzzBGp5crNpfOSqJ08Gqr -----END CERTIFICATE-----Generated at Thu May 2 17:18:58 2024 by rpki-client on console-ams.rpki-client.org