$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft File: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft (raw, json) Hash identifier: 9atRKtEJ137G5feOYfyxY1LN6YQVKBFkNNtpuCCNpic= Subject key identifier: DD:F8:EA:03:63:49:56:79:EF:0E:1F:FC:F0:AA:8E:6C:24:E6:90:A7 Authority key identifier: E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE Certificate issuer: /CN=A91FCEB1/serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE Certificate serial: 063D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft Manifest number: 1FEB Signing time: Sun 12 May 2024 16:21:19 +0000 Manifest this update: Sun 12 May 2024 16:21:19 +0000 Manifest next update: Sun 19 May 2024 16:21:19 +0000 Files and hashes: 1: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl (hash: QcyXhoo0ZsvrleRFnmQTpnCteM5Y1aCUra2tuPLdbAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1597 (0x63d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1/serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE Validity Not Before: May 12 16:21:19 2024 GMT Not After : May 19 16:21:19 2024 GMT Subject: CN=6640ec7f-4eff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8c:bb:44:22:c8:c1:4d:dd:e2:7a:11:c4:0f: 1b:c2:ff:32:5d:69:b0:81:c1:4e:b5:f2:58:0a:62: 17:f8:92:7c:7e:8a:50:9a:0f:70:75:37:be:d6:cc: 23:f4:b0:d5:b3:9e:11:35:22:ef:f5:31:2d:85:0f: 2c:67:fe:b1:ac:0f:eb:82:82:50:87:c8:67:e4:44: 7d:6b:a1:4f:40:7f:ff:7e:b8:c8:53:26:b2:73:f1: 48:e6:99:19:d8:b4:84:72:8c:11:be:4e:56:f1:7a: de:80:c4:d4:35:7a:8d:c0:df:24:ee:69:64:bd:00: 56:cd:42:63:9f:61:85:e3:65:6b:0a:c9:cc:2f:00: a9:10:ea:81:fa:ae:87:d5:58:d7:f6:e4:1b:33:27: 75:e9:0c:09:6c:a8:65:75:77:38:5f:06:d2:3f:e7: 55:0b:c1:c5:ef:08:38:09:fd:3c:f4:80:31:e6:cf: fb:ed:23:37:02:ef:01:4a:3c:c0:82:04:9f:2d:3f: 06:80:9a:2c:7b:9d:ff:e5:58:59:4a:a1:3b:ac:ed: 4d:e2:07:d9:9b:6f:da:e8:40:0d:22:22:b5:d7:5b: c5:0e:e7:99:e5:39:a2:bb:ef:14:d2:d1:e0:58:24: e6:0e:52:16:33:3e:74:0f:62:be:be:3a:c9:81:d7: 91:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:F8:EA:03:63:49:56:79:EF:0E:1F:FC:F0:AA:8E:6C:24:E6:90:A7 X509v3 Authority Key Identifier: keyid:E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:93:50:ca:b9:fb:60:ce:b0:c9:88:50:1b:03:d0:9c:e9:a9: f6:58:7b:1a:8c:d2:19:ae:3c:78:4c:34:86:f6:4f:76:78:08: dc:72:0d:81:70:39:88:8c:a1:1c:83:45:89:f0:32:56:ad:27: 7e:5f:ec:9b:a6:35:d5:15:82:1d:ca:00:9e:dd:6b:9d:77:20: 12:09:b5:01:a0:a4:9b:ba:4e:c3:fa:44:49:07:47:d0:24:6b: c7:c2:dd:93:e5:a8:03:d3:be:dd:8c:05:e3:0f:44:f2:be:d5: 89:b6:29:7b:f9:26:e2:6d:89:55:82:36:9a:ed:b0:12:3d:10: f8:a6:9a:5a:d3:69:22:1f:ee:3c:58:22:ed:83:6f:5d:05:a9: 56:e3:28:07:fb:ce:71:67:c1:67:e6:8e:d5:c7:ec:f0:60:00: db:4c:f6:e1:ff:1b:e4:74:71:56:cf:07:31:74:9b:e1:21:78: 4c:7f:99:3f:f2:17:63:d1:71:bb:76:34:1f:5f:47:ee:9d:9c: 0d:e1:44:b2:3d:a8:44:ea:42:f9:cb:d8:79:66:ef:68:50:8a: 4d:8a:dc:fc:34:34:83:b8:20:a7:da:c0:bc:ea:28:d6:a9:88: d2:d2:7b:8a:7a:df:7e:c0:ac:ee:03:d7:96:8f:82:1a:9c:a4: bd:ba:9f:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKEU3M0ZCODg2OEREM0I0NjFFQTFBNjczQzdBMzY5NDUy MzVFOUNBQUUwHhcNMjQwNTEyMTYyMTE5WhcNMjQwNTE5MTYyMTE5WjAYMRYwFAYD VQQDEw02NjQwZWM3Zi00ZWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYy7RCLIwU3d4noRxA8bwv8yXWmwgcFOtfJYCmIX+JJ8fopQmg9wdTe+1swj 9LDVs54RNSLv9TEthQ8sZ/6xrA/rgoJQh8hn5ER9a6FPQH//frjIUyayc/FI5pkZ 2LSEcowRvk5W8XregMTUNXqNwN8k7mlkvQBWzUJjn2GF42VrCsnMLwCpEOqB+q6H 1VjX9uQbMyd16QwJbKhldXc4XwbSP+dVC8HF7wg4Cf089IAx5s/77SM3Au8BSjzA ggSfLT8GgJose53/5VhZSqE7rO1N4gfZm2/a6EANIiK111vFDueZ5Tmiu+8U0tHg WCTmDlIWMz50D2K+vjrJgdeRuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN346gNj SVZ57w4f/PCqjmwk5pCnMB8GA1UdIwQYMBaAFOc/uIaN07Rh6hpnPHo2lFI16cqu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS85QzE0QjQwNjNB MjExMUU3OUFBMEQ1MUNDNEY5QUUwMi81ei00aG8zVHRHSHFHbWM4ZWphVVVqWHB5 cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzV6LTRobzNUdEdIcUdtYzhlamFVVWpYcHlxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS85QzE0QjQwNjNBMjExMUU3OUFBMEQ1MUNDNEY5QUUwMi81ei00aG8zVHRH SHFHbWM4ZWphVVVqWHB5cTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCek1DKuftgzrDJiFAbA9Cc6an2WHsajNIZrjx4TDSG9k92eAjccg2B cDmIjKEcg0WJ8DJWrSd+X+ybpjXVFYIdygCe3WuddyASCbUBoKSbuk7D+kRJB0fQ JGvHwt2T5agD077djAXjD0TyvtWJtil7+SbibYlVgjaa7bASPRD4pppa02kiH+48 WCLtg29dBalW4ygH+85xZ8Fn5o7Vx+zwYADbTPbh/xvkdHFWzwcxdJvhIXhMf5k/ 8hdj0XG7djQfX0funZwN4USyPahE6kL5y9h5Zu9oUIpNitz8NDSDuCCn2sC86ijW qYjS0nuKet9+wKzuA9eWj4IanKS9up93 -----END CERTIFICATE-----Generated at Sun May 12 17:52:19 2024 by rpki-client on console-ams.rpki-client.org