$ rpki-client -vvf rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/PqTXApDMqv5dzJxdpfW-J_7d5F4.mft File: PqTXApDMqv5dzJxdpfW-J_7d5F4.mft (raw, json) Hash identifier: IwZX847/qLTdjtJDsPF1wY3KezfbfeYw8JaF8k2YMj8= Subject key identifier: 3B:09:B2:83:57:6F:0E:D0:24:44:2E:27:6A:8F:37:24:38:37:87:A8 Authority key identifier: 3E:A4:D7:02:90:CC:AA:FE:5D:CC:9C:5D:A5:F5:BE:27:FE:DD:E4:5E Certificate issuer: /CN=A911FA74/serialNumber=3EA4D70290CCAAFE5DCC9C5DA5F5BE27FEDDE45E Certificate serial: 33C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqTXApDMqv5dzJxdpfW-J_7d5F4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/PqTXApDMqv5dzJxdpfW-J_7d5F4.mft Manifest number: 33C2 Signing time: Sat 18 May 2024 14:45:25 +0000 Manifest this update: Sat 18 May 2024 14:45:24 +0000 Manifest next update: Sat 25 May 2024 14:45:24 +0000 Files and hashes: 1: PqTXApDMqv5dzJxdpfW-J_7d5F4.crl (hash: XmU5G1QalPOgcEzSlIJEJSaMUFvJOUqnWbP9TwBbT+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/PqTXApDMqv5dzJxdpfW-J_7d5F4.crl rsync://rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/PqTXApDMqv5dzJxdpfW-J_7d5F4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqTXApDMqv5dzJxdpfW-J_7d5F4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:45:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13250 (0x33c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FA74/serialNumber=3EA4D70290CCAAFE5DCC9C5DA5F5BE27FEDDE45E Validity Not Before: May 18 14:45:24 2024 GMT Not After : May 25 14:45:24 2024 GMT Subject: CN=6648bf05-03bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:86:b5:1d:21:2f:1c:a8:58:da:f5:40:e9:98: ab:63:c9:e1:99:a0:3e:20:0e:dd:fa:f3:4b:33:9a: 6c:89:53:5e:b2:79:b2:4a:1a:2b:41:b0:f9:90:89: ed:45:5e:6b:bc:f7:8b:22:df:4b:21:e3:d6:5b:83: 59:67:12:59:8d:28:12:58:de:58:c7:6e:ed:dd:02: 99:58:26:5d:89:15:bd:00:2b:96:2f:ec:39:d7:76: b6:0b:45:c8:12:59:6a:78:11:ea:4e:41:68:33:29: 5c:9b:22:25:03:23:41:4f:0e:22:7b:93:c3:69:48: 39:ff:0f:75:ad:02:33:f6:20:90:cf:91:62:45:c2: a8:17:ae:84:89:00:7e:e6:90:ae:a9:be:f3:48:08: 90:c6:1d:7d:93:2a:9a:d1:40:a4:41:b7:38:4f:f5: cc:21:e7:eb:e9:48:fb:87:63:f1:ab:18:e5:e3:b7: ec:46:8c:7e:04:ab:ca:c0:7c:05:fe:b4:a4:92:23: f9:d9:98:65:ce:54:8c:95:e5:34:78:17:87:9b:fb: a4:01:a1:26:f9:b4:1c:fa:8f:1f:76:64:e6:d3:a7: f7:c5:16:eb:86:a2:a8:f6:8b:9d:36:01:55:cf:34: da:46:aa:d3:4e:d0:ed:d0:13:af:5e:38:7e:53:0a: 4a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:09:B2:83:57:6F:0E:D0:24:44:2E:27:6A:8F:37:24:38:37:87:A8 X509v3 Authority Key Identifier: keyid:3E:A4:D7:02:90:CC:AA:FE:5D:CC:9C:5D:A5:F5:BE:27:FE:DD:E4:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/PqTXApDMqv5dzJxdpfW-J_7d5F4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqTXApDMqv5dzJxdpfW-J_7d5F4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/PqTXApDMqv5dzJxdpfW-J_7d5F4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:58:ff:87:2c:c0:b2:57:b2:22:63:8b:d0:d0:aa:f5:4f:92: d3:f3:81:09:fe:bc:06:4e:14:61:43:fd:75:53:82:c4:89:f4: ca:c5:fb:cc:36:4b:9e:6d:9c:5a:70:44:6a:a2:10:ca:04:e1: a0:a3:ae:44:90:12:86:73:05:9b:0e:1f:f6:70:78:a7:46:cf: ee:9f:c3:a8:62:00:2a:bf:06:6f:24:1f:d5:f3:7d:8c:5e:14: 7d:37:f1:73:b5:c3:f5:85:ca:1a:49:0e:f0:36:40:dd:84:d3: 2c:bf:9a:af:cc:8c:41:ca:e6:10:23:8f:b1:ba:66:b8:ed:7e: eb:6c:69:6a:cf:c9:6c:0a:47:86:0e:d9:90:32:69:bf:d3:55: 2c:19:7f:4e:bd:50:96:78:e4:1f:6a:f0:43:61:a2:d2:c4:e2: 98:ba:52:97:97:37:f5:e0:40:d2:3b:6d:e0:84:c1:93:13:9a: 06:57:be:ee:64:16:c5:c8:c1:51:bf:5f:86:c0:a7:65:b7:14: d7:63:36:0a:2f:35:ed:f3:93:50:4b:23:af:bd:52:ea:d3:d6: 17:2f:bc:0c:f6:b6:75:eb:4a:b2:6a:80:35:18:8a:cb:f6:0e: 14:75:f2:88:15:48:d2:bd:3d:20:f8:10:fa:e3:e6:be:fd:cf: 32:6a:f5:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBNzQxMTAvBgNVBAUTKDNFQTRENzAyOTBDQ0FBRkU1RENDOUM1REE1RjVCRTI3 RkVEREU0NUUwHhcNMjQwNTE4MTQ0NTI0WhcNMjQwNTI1MTQ0NTI0WjAYMRYwFAYD VQQDEw02NjQ4YmYwNS0wM2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4a1HSEvHKhY2vVA6ZirY8nhmaA+IA7d+vNLM5psiVNesnmyShorQbD5kInt RV5rvPeLIt9LIePWW4NZZxJZjSgSWN5Yx27t3QKZWCZdiRW9ACuWL+w513a2C0XI EllqeBHqTkFoMylcmyIlAyNBTw4ie5PDaUg5/w91rQIz9iCQz5FiRcKoF66EiQB+ 5pCuqb7zSAiQxh19kyqa0UCkQbc4T/XMIefr6Uj7h2Pxqxjl47fsRox+BKvKwHwF /rSkkiP52ZhlzlSMleU0eBeHm/ukAaEm+bQc+o8fdmTm06f3xRbrhqKo9oudNgFV zzTaRqrTTtDt0BOvXjh+UwpKWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDsJsoNX bw7QJEQuJ2qPNyQ4N4eoMB8GA1UdIwQYMBaAFD6k1wKQzKr+XcycXaX1vif+3eRe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkE3NC82MTAxQjVCNjFE OEYxMUUyODQ3QzVGRUUwOEIwMkNEMi9QcVRYQXBETXF2NWR6SnhkcGZXLUpfN2Q1 RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxVFhBcERNcXY1ZHpKeGRwZlctSl83ZDVGNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkE3NC82MTAxQjVCNjFEOEYxMUUyODQ3QzVGRUUwOEIwMkNEMi9QcVRYQXBETXF2 NWR6SnhkcGZXLUpfN2Q1RjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHWP+HLMCyV7IiY4vQ0Kr1T5LT84EJ/rwGThRhQ/11U4LEifTKxfvM NkuebZxacERqohDKBOGgo65EkBKGcwWbDh/2cHinRs/un8OoYgAqvwZvJB/V832M XhR9N/FztcP1hcoaSQ7wNkDdhNMsv5qvzIxByuYQI4+xuma47X7rbGlqz8lsCkeG DtmQMmm/01UsGX9OvVCWeOQfavBDYaLSxOKYulKXlzf14EDSO23ghMGTE5oGV77u ZBbFyMFRv1+GwKdltxTXYzYKLzXt85NQSyOvvVLq09YXL7wM9rZ160qyaoA1GIrL 9g4UdfKIFUjSvT0g+BD64+a+/c8yavUA -----END CERTIFICATE-----Generated at Sat May 18 15:26:02 2024 by rpki-client on console-fra.rpki-client.org