$ rpki-client -vvf rpki.apnic.net/member_repository/A91144AB/5E0AA9A21D9511E2B4EE337D08B02CD2/QXbxCRjJsY0t74t8ZvxaOmWCIx4.mft File: QXbxCRjJsY0t74t8ZvxaOmWCIx4.mft (raw, json) Hash identifier: GWe7Ud6t1k+YF8kj5wHig8BdzwCtKFwLlEfr4OS8gfk= Subject key identifier: C4:22:C1:BD:A6:48:D1:58:1D:50:39:D1:40:B1:B8:6D:17:A2:3C:92 Authority key identifier: 41:76:F1:09:18:C9:B1:8D:2D:EF:8B:7C:66:FC:5A:3A:65:82:23:1E Certificate issuer: /CN=A91144AB/serialNumber=4176F10918C9B18D2DEF8B7C66FC5A3A6582231E Certificate serial: 33C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QXbxCRjJsY0t74t8ZvxaOmWCIx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91144AB/5E0AA9A21D9511E2B4EE337D08B02CD2/QXbxCRjJsY0t74t8ZvxaOmWCIx4.mft Manifest number: 33C3 Signing time: Sat 18 May 2024 14:56:06 +0000 Manifest this update: Sat 18 May 2024 14:56:05 +0000 Manifest next update: Sat 25 May 2024 14:56:05 +0000 Files and hashes: 1: QXbxCRjJsY0t74t8ZvxaOmWCIx4.crl (hash: CrT8y3AI9veHEoMSLeFPLZUB91aak2Ng1V+ar6FUuMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91144AB/5E0AA9A21D9511E2B4EE337D08B02CD2/QXbxCRjJsY0t74t8ZvxaOmWCIx4.crl rsync://rpki.apnic.net/member_repository/A91144AB/5E0AA9A21D9511E2B4EE337D08B02CD2/QXbxCRjJsY0t74t8ZvxaOmWCIx4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QXbxCRjJsY0t74t8ZvxaOmWCIx4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13251 (0x33c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91144AB/serialNumber=4176F10918C9B18D2DEF8B7C66FC5A3A6582231E Validity Not Before: May 18 14:56:05 2024 GMT Not After : May 25 14:56:05 2024 GMT Subject: CN=6648c186-5dec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:35:a8:9d:cd:25:39:b5:96:0a:c5:cc:24:66: bf:73:cb:10:c4:0e:6c:ee:b1:0e:01:aa:1e:4e:ee: e8:e8:40:75:13:f1:c1:2a:98:1b:e9:2d:31:8c:47: 5c:2e:d4:f8:92:be:dd:80:3c:a5:68:63:ac:4d:1d: 68:ca:5f:4e:df:48:11:f2:c3:16:fb:96:af:ba:06: 4a:6f:e5:d9:4a:24:dd:ff:d3:8e:18:07:17:5b:f7: 20:72:42:e3:74:0b:c9:90:92:a7:fa:91:ee:0f:d6: 5b:d3:6f:58:f6:e7:59:61:8c:61:cb:4f:57:98:1f: 83:67:37:cb:3e:57:8a:20:a4:d8:42:29:8e:e0:74: 61:58:b7:74:fb:3a:ff:22:d3:13:0b:84:ba:48:47: 8d:1c:53:f2:c1:22:d2:0b:59:42:dd:ff:df:46:3f: b2:eb:c5:80:8a:f5:2c:1b:0e:b2:53:19:a2:64:95: 09:e4:5e:0d:47:68:b4:71:2a:75:89:1f:99:7e:41: 4f:d6:7a:01:6b:27:38:90:50:06:bd:41:f0:45:7f: fe:28:cb:a6:ed:07:8d:b7:2a:4f:b1:46:75:6a:d7: 9f:67:f4:60:d6:6c:b6:a4:8e:28:c2:f6:97:81:80: 17:c6:13:b5:d1:d9:4f:a0:28:68:28:80:55:f2:fc: e4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:22:C1:BD:A6:48:D1:58:1D:50:39:D1:40:B1:B8:6D:17:A2:3C:92 X509v3 Authority Key Identifier: keyid:41:76:F1:09:18:C9:B1:8D:2D:EF:8B:7C:66:FC:5A:3A:65:82:23:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91144AB/5E0AA9A21D9511E2B4EE337D08B02CD2/QXbxCRjJsY0t74t8ZvxaOmWCIx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QXbxCRjJsY0t74t8ZvxaOmWCIx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91144AB/5E0AA9A21D9511E2B4EE337D08B02CD2/QXbxCRjJsY0t74t8ZvxaOmWCIx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:1e:b5:63:8b:c2:45:82:d2:d2:fa:56:59:e6:78:fd:05:39: 6d:77:5a:1b:01:1f:28:0f:a2:8d:67:db:16:46:d8:6b:22:b1: 90:9c:f8:a1:17:12:10:50:a1:73:8f:d3:cc:51:02:64:e6:09: d3:99:47:e9:c4:17:d1:41:1a:8f:28:bd:40:6c:13:94:ae:f0: 7a:0b:c8:14:eb:a7:80:68:84:45:ec:9a:94:a7:87:4e:f6:ea: 2b:9d:5e:cf:9b:c8:94:61:00:a6:8b:54:f7:72:6c:98:c6:bd: c1:30:f4:b0:dc:5b:5a:df:90:df:06:d5:62:e0:8d:58:d7:de: 9a:6d:d1:93:08:bf:d8:c5:14:78:e9:af:74:17:15:c3:bd:dd: 68:a7:f8:e6:3a:74:6c:1f:0c:eb:98:54:2f:78:28:ad:4b:95: 71:0c:d4:31:c3:95:7d:08:04:e9:a1:7f:a9:8b:5a:44:87:ac: 05:05:f0:dd:60:00:55:01:4d:54:0f:5a:a1:22:f4:fe:f2:20: 41:20:c3:6c:4f:5c:e1:02:82:79:e9:35:38:d0:e3:5e:04:21: d2:c5:87:05:94:fa:32:5e:46:eb:28:e5:d5:b6:0e:de:10:93: 43:51:40:d6:6c:4f:58:ea:2a:ba:6b:c9:00:85:c1:23:0f:86: fc:ec:ca:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQ0QUIxMTAvBgNVBAUTKDQxNzZGMTA5MThDOUIxOEQyREVGOEI3QzY2RkM1QTNB NjU4MjIzMUUwHhcNMjQwNTE4MTQ1NjA1WhcNMjQwNTI1MTQ1NjA1WjAYMRYwFAYD VQQDEw02NjQ4YzE4Ni01ZGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6zWonc0lObWWCsXMJGa/c8sQxA5s7rEOAaoeTu7o6EB1E/HBKpgb6S0xjEdc LtT4kr7dgDylaGOsTR1oyl9O30gR8sMW+5avugZKb+XZSiTd/9OOGAcXW/cgckLj dAvJkJKn+pHuD9Zb029Y9udZYYxhy09XmB+DZzfLPleKIKTYQimO4HRhWLd0+zr/ ItMTC4S6SEeNHFPywSLSC1lC3f/fRj+y68WAivUsGw6yUxmiZJUJ5F4NR2i0cSp1 iR+ZfkFP1noBayc4kFAGvUHwRX/+KMum7QeNtypPsUZ1atefZ/Rg1my2pI4owvaX gYAXxhO10dlPoChoKIBV8vzkHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQiwb2m SNFYHVA50UCxuG0XojySMB8GA1UdIwQYMBaAFEF28QkYybGNLe+LfGb8WjplgiMe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDRBQi81RTBBQTlBMjFE OTUxMUUyQjRFRTMzN0QwOEIwMkNEMi9RWGJ4Q1JqSnNZMHQ3NHQ4WnZ4YU9tV0NJ eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FYYnhDUmpKc1kwdDc0dDhadnhhT21XQ0l4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDRBQi81RTBBQTlBMjFEOTUxMUUyQjRFRTMzN0QwOEIwMkNEMi9RWGJ4Q1JqSnNZ MHQ3NHQ4WnZ4YU9tV0NJeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgHrVji8JFgtLS+lZZ5nj9BTltd1obAR8oD6KNZ9sWRthrIrGQnPih FxIQUKFzj9PMUQJk5gnTmUfpxBfRQRqPKL1AbBOUrvB6C8gU66eAaIRF7JqUp4dO 9uornV7Pm8iUYQCmi1T3cmyYxr3BMPSw3Fta35DfBtVi4I1Y196abdGTCL/YxRR4 6a90FxXDvd1op/jmOnRsHwzrmFQveCitS5VxDNQxw5V9CATpoX+pi1pEh6wFBfDd YABVAU1UD1qhIvT+8iBBIMNsT1zhAoJ56TU40ONeBCHSxYcFlPoyXkbrKOXVtg7e EJNDUUDWbE9Y6iq6a8kAhcEjD4b87MpY -----END CERTIFICATE-----Generated at Sat May 18 15:58:20 2024 by rpki-client on console-ams.rpki-client.org