$ rpki-client -vvf rpki.apnic.net/member_repository/A91168B5/32C6568CF6E011E692A20B87C4F9AE02/3JAYFdyRlzyvoZqLV2-GjphBPjk.mft File: 3JAYFdyRlzyvoZqLV2-GjphBPjk.mft (raw, json) Hash identifier: HCOxF9FaVoPhwhsTyUhAMcLNxLJppX/CJ0PUlYWslGA= Subject key identifier: C4:BE:C2:B6:29:A2:02:F4:AE:17:17:15:60:8D:9D:7F:A4:7C:4E:C1 Authority key identifier: DC:90:18:15:DC:91:97:3C:AF:A1:9A:8B:57:6F:86:8E:98:41:3E:39 Certificate issuer: /CN=A91168B5/serialNumber=DC901815DC91973CAFA19A8B576F868E98413E39 Certificate serial: 1B0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JAYFdyRlzyvoZqLV2-GjphBPjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91168B5/32C6568CF6E011E692A20B87C4F9AE02/3JAYFdyRlzyvoZqLV2-GjphBPjk.mft Manifest number: 1B0D Signing time: Sat 18 May 2024 16:39:56 +0000 Manifest this update: Sat 18 May 2024 16:39:56 +0000 Manifest next update: Sat 25 May 2024 16:39:56 +0000 Files and hashes: 1: 3JAYFdyRlzyvoZqLV2-GjphBPjk.crl (hash: i6shbcOd2/TjHcr4+HsGakko8+4+vM3wAXMIp7HpriM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91168B5/32C6568CF6E011E692A20B87C4F9AE02/3JAYFdyRlzyvoZqLV2-GjphBPjk.crl rsync://rpki.apnic.net/member_repository/A91168B5/32C6568CF6E011E692A20B87C4F9AE02/3JAYFdyRlzyvoZqLV2-GjphBPjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JAYFdyRlzyvoZqLV2-GjphBPjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6925 (0x1b0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91168B5/serialNumber=DC901815DC91973CAFA19A8B576F868E98413E39 Validity Not Before: May 18 16:39:56 2024 GMT Not After : May 25 16:39:56 2024 GMT Subject: CN=6648d9dc-6108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6b:0c:e5:2a:48:89:45:c9:7b:40:11:af:a3: 72:f0:0b:99:3a:8d:6c:2b:ca:b2:be:e8:55:5c:71: 41:a0:3f:67:43:1c:a7:94:ff:6f:8b:ad:0a:0d:d8: 39:24:65:ab:c7:1e:00:d4:15:1d:aa:fc:e9:6b:be: c3:42:21:50:70:69:8e:b7:a8:32:8c:3a:88:88:25: 8a:f1:01:ce:c5:ec:84:2f:d6:da:37:b4:fd:19:6c: 29:f3:e1:f8:3d:48:0b:6e:f7:ab:16:df:ed:50:ad: a5:38:98:3c:eb:ff:c8:35:d6:82:1e:51:af:e3:b2: 8a:e5:30:e8:7b:1c:66:d0:14:d0:c8:2e:8d:f4:d4: ac:c0:9a:ad:79:ea:96:47:57:b6:2e:e9:87:18:13: df:84:ca:c3:a9:13:52:8c:2f:df:04:80:6f:2c:04: ff:95:b5:ee:9b:e8:7e:93:d1:1c:dc:29:26:6f:b4: eb:0e:85:a6:b8:1a:ae:63:fe:dd:53:8b:e2:67:19: 47:6d:8e:d0:59:2b:27:a4:5b:40:50:95:3d:0f:d1: 1d:3f:b3:e0:08:20:f5:02:4e:00:02:ea:a4:7c:7c: 50:1c:12:d8:b5:4a:ab:fa:eb:fe:d6:ad:b4:08:40: 0c:a7:bd:3a:b3:bd:04:4f:b2:eb:59:d1:e2:c8:b1: a3:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:BE:C2:B6:29:A2:02:F4:AE:17:17:15:60:8D:9D:7F:A4:7C:4E:C1 X509v3 Authority Key Identifier: keyid:DC:90:18:15:DC:91:97:3C:AF:A1:9A:8B:57:6F:86:8E:98:41:3E:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91168B5/32C6568CF6E011E692A20B87C4F9AE02/3JAYFdyRlzyvoZqLV2-GjphBPjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JAYFdyRlzyvoZqLV2-GjphBPjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91168B5/32C6568CF6E011E692A20B87C4F9AE02/3JAYFdyRlzyvoZqLV2-GjphBPjk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:13:c7:c5:cc:e5:d9:1f:e6:51:2d:dc:1e:cc:06:c9:a6:c6: 3f:8e:21:4a:be:49:58:af:29:ce:6b:b0:9b:1f:c3:a9:58:68: ae:ae:49:54:83:85:fb:7c:0e:46:d0:92:81:23:45:a1:a4:4f: 64:9a:57:74:d9:4e:62:bb:9d:c0:e9:f0:5d:92:0a:3b:1b:92: 20:9c:58:71:3a:21:3e:1d:96:66:66:f4:bb:23:71:ca:e7:dd: a7:27:06:7e:e2:ff:fa:8e:94:e9:f4:c3:56:e0:6e:16:1d:e6: 75:79:f0:34:0f:cb:0b:a7:9b:01:77:0c:ab:cb:28:8c:ae:c9: d3:5d:3b:0f:09:a0:07:00:80:54:1e:8f:f5:1a:73:39:53:46: d9:95:28:aa:17:d5:b9:1d:ea:80:e9:1c:8b:6c:4f:3d:ab:b2: f1:2e:ff:c6:6a:84:33:8d:bd:18:4c:e6:6b:bf:38:34:be:10: e4:63:c9:6a:b9:73:62:73:52:b2:93:a1:60:87:4a:48:3a:1d: 9e:cb:1a:f1:6c:9d:d4:9f:ae:84:9e:52:b6:92:5d:ef:0b:6c: 9d:9a:fe:ea:28:86:05:7d:91:5e:ef:3a:21:48:90:6d:2a:47: af:91:e3:8f:97:a3:e4:fe:50:63:a7:d8:68:91:73:cc:83:1b: 9e:44:ce:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY4QjUxMTAvBgNVBAUTKERDOTAxODE1REM5MTk3M0NBRkExOUE4QjU3NkY4NjhF OTg0MTNFMzkwHhcNMjQwNTE4MTYzOTU2WhcNMjQwNTI1MTYzOTU2WjAYMRYwFAYD VQQDEw02NjQ4ZDlkYy02MTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2sM5SpIiUXJe0ARr6Ny8AuZOo1sK8qyvuhVXHFBoD9nQxynlP9vi60KDdg5 JGWrxx4A1BUdqvzpa77DQiFQcGmOt6gyjDqIiCWK8QHOxeyEL9baN7T9GWwp8+H4 PUgLbverFt/tUK2lOJg86//INdaCHlGv47KK5TDoexxm0BTQyC6N9NSswJqteeqW R1e2LumHGBPfhMrDqRNSjC/fBIBvLAT/lbXum+h+k9Ec3Ckmb7TrDoWmuBquY/7d U4viZxlHbY7QWSsnpFtAUJU9D9EdP7PgCCD1Ak4AAuqkfHxQHBLYtUqr+uv+1q20 CEAMp706s70ET7LrWdHiyLGjfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMS+wrYp ogL0rhcXFWCNnX+kfE7BMB8GA1UdIwQYMBaAFNyQGBXckZc8r6Gai1dvho6YQT45 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjhCNS8zMkM2NTY4Q0Y2 RTAxMUU2OTJBMjBCODdDNEY5QUUwMi8zSkFZRmR5Umx6eXZvWnFMVjItR2pwaEJQ amsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNKQVlGZHlSbHp5dm9acUxWMi1HanBoQlBqay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjhCNS8zMkM2NTY4Q0Y2RTAxMUU2OTJBMjBCODdDNEY5QUUwMi8zSkFZRmR5Umx6 eXZvWnFMVjItR2pwaEJQamsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+E8fFzOXZH+ZRLdwezAbJpsY/jiFKvklYrynOa7CbH8OpWGiurklU g4X7fA5G0JKBI0WhpE9kmld02U5iu53A6fBdkgo7G5IgnFhxOiE+HZZmZvS7I3HK 592nJwZ+4v/6jpTp9MNW4G4WHeZ1efA0D8sLp5sBdwyryyiMrsnTXTsPCaAHAIBU Ho/1GnM5U0bZlSiqF9W5HeqA6RyLbE89q7LxLv/GaoQzjb0YTOZrvzg0vhDkY8lq uXNic1Kyk6Fgh0pIOh2eyxrxbJ3Un66EnlK2kl3vC2ydmv7qKIYFfZFe7zohSJBt KkevkeOPl6Pk/lBjp9hokXPMgxueRM4z -----END CERTIFICATE-----Generated at Sat May 18 17:37:32 2024 by rpki-client on console-fra.rpki-client.org