$ rpki-client -vvf rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft File: Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft (raw, json) Hash identifier: TLd3GLUZfbuONR80/iWmss9RaEvSNzuQMZNuPDsDUc0= Subject key identifier: B6:04:C6:76:B6:D8:21:0F:54:7E:BC:35:D6:33:D6:DA:AF:94:4A:BD Authority key identifier: 43:92:9D:91:6D:C9:C9:CE:34:63:FF:91:58:CC:BE:FE:9F:18:2C:3B Certificate issuer: /CN=A9132C09/serialNumber=43929D916DC9C9CE3463FF9158CCBEFE9F182C3B Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft Manifest number: 7D Signing time: Sun 19 May 2024 07:14:36 +0000 Manifest this update: Sun 19 May 2024 07:14:35 +0000 Manifest next update: Sun 26 May 2024 07:14:35 +0000 Files and hashes: 1: Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.crl (hash: Gw2SVbJv8tX2KfduTQ+K+20qoLzUcw39Sekjk4kVihk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.crl rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132C09/serialNumber=43929D916DC9C9CE3463FF9158CCBEFE9F182C3B Validity Not Before: May 19 07:14:35 2024 GMT Not After : May 26 07:14:35 2024 GMT Subject: CN=6649a6dc-44dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ae:14:b2:c6:b2:0e:b1:97:0c:ff:a7:f1:12: ac:48:b5:21:f3:3d:33:33:26:1e:22:d1:42:ec:1c: d8:31:cf:ea:f4:eb:f7:0c:3c:8e:09:89:69:2b:3a: d9:f0:2f:b9:80:9b:16:f2:a0:69:aa:6e:d7:50:fc: 5d:87:ff:a1:11:a9:1e:70:c4:75:00:5c:f5:ef:df: dd:f9:ed:0f:3a:d7:32:91:e5:35:8a:e2:4c:f0:0d: a7:0d:f9:ac:8e:76:37:a3:83:c3:d9:31:6e:7a:d3: 58:6f:0c:5b:45:04:68:62:6b:71:be:75:fe:bf:a4: a7:b3:4e:c8:a8:89:6b:6c:d7:23:ad:cf:df:05:a2: e7:0d:42:d7:6b:0d:42:cb:c0:44:29:d7:72:97:3d: 17:ce:01:36:c5:c8:36:3f:c4:af:8b:95:22:f3:c0: 8d:c5:9a:67:2c:3d:ef:af:c0:c7:f9:f5:c1:10:3d: 6b:7e:d3:18:69:c8:d1:a5:a1:fd:af:64:27:20:7a: fc:bd:f5:fc:88:96:db:ef:67:77:9b:9b:e6:80:9f: 5e:ac:7b:34:e0:1c:45:cf:ea:0e:3a:84:a2:5f:29: 9f:97:c6:92:fc:93:d3:02:1e:e5:26:b0:6d:7f:93: 91:99:7b:8d:ee:91:4a:24:b1:e2:75:a4:f8:08:24: 47:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:04:C6:76:B6:D8:21:0F:54:7E:BC:35:D6:33:D6:DA:AF:94:4A:BD X509v3 Authority Key Identifier: keyid:43:92:9D:91:6D:C9:C9:CE:34:63:FF:91:58:CC:BE:FE:9F:18:2C:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:b2:e0:e8:d7:56:3e:11:13:f8:9a:f9:d2:42:0d:e4:1e:bf: 4b:7f:10:53:11:16:13:82:47:36:5e:9d:1c:19:0c:0e:95:8e: be:7c:27:c4:91:1a:2c:06:45:73:5c:1e:6c:eb:f4:da:47:fc: c1:b7:ab:06:af:3a:06:f0:f9:4d:70:f5:d9:04:0d:ca:c1:7c: 3a:e8:81:7c:51:ad:bb:30:b9:0c:be:d9:3c:4a:90:a0:ad:0c: e5:79:8d:a0:88:bf:53:79:45:ca:af:22:6c:2c:f8:ea:e4:00: 5f:8e:e1:05:95:ba:20:7a:58:77:84:89:57:ca:64:7b:08:72: 82:a9:3c:5b:30:16:1e:c9:23:8d:51:2d:a3:53:01:10:1d:c0: c5:f4:09:46:c1:5e:3c:c3:da:42:28:b2:73:0b:60:92:bf:26: 08:64:c3:09:5f:60:70:8f:d4:f4:e9:5b:1e:ee:20:16:dc:74: e7:bf:60:27:06:ec:72:17:3f:e3:1d:22:bc:ab:d0:7a:45:e8: f0:89:10:d6:24:6f:e2:c5:d2:29:7a:bf:45:b2:b7:d7:64:b3: d1:7c:86:4c:d2:94:e1:f4:08:43:1a:83:6e:2b:2b:25:be:42: c1:65:ba:2f:e8:9b:c3:0f:83:19:26:a8:49:e6:77:01:15:25: ad:e4:ca:7c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MkMwOTExMC8GA1UEBRMoNDM5MjlEOTE2REM5QzlDRTM0NjNGRjkxNThDQ0JFRkU5 RjE4MkMzQjAeFw0yNDA1MTkwNzE0MzVaFw0yNDA1MjYwNzE0MzVaMBgxFjAUBgNV BAMTDTY2NDlhNmRjLTQ0ZGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNrhSyxrIOsZcM/6fxEqxItSHzPTMzJh4i0ULsHNgxz+r06/cMPI4JiWkrOtnw L7mAmxbyoGmqbtdQ/F2H/6ERqR5wxHUAXPXv39357Q861zKR5TWK4kzwDacN+ayO djejg8PZMW5601hvDFtFBGhia3G+df6/pKezTsioiWts1yOtz98FoucNQtdrDULL wEQp13KXPRfOATbFyDY/xK+LlSLzwI3FmmcsPe+vwMf59cEQPWt+0xhpyNGlof2v ZCcgevy99fyIltvvZ3ebm+aAn16sezTgHEXP6g46hKJfKZ+XxpL8k9MCHuUmsG1/ k5GZe43ukUokseJ1pPgIJEeBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtgTGdrbY IQ9Ufrw11jPW2q+USr0wHwYDVR0jBBgwFoAUQ5KdkW3Jyc40Y/+RWMy+/p8YLDsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMyQzA5L0NENkQ1MjAyNTZD NTExRUVCRUQzMkUwQkM0RjlBRTAyL1E1S2RrVzNKeWM0MFlfLVJXTXktX3A4WUxE cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUTVLZGtXM0p5YzQwWV8tUldNeS1fcDhZTERzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMy QzA5L0NENkQ1MjAyNTZDNTExRUVCRUQzMkUwQkM0RjlBRTAyL1E1S2RrVzNKeWM0 MFlfLVJXTXktX3A4WUxEcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALWy4OjXVj4RE/ia+dJCDeQev0t/EFMRFhOCRzZenRwZDA6Vjr58J8SR GiwGRXNcHmzr9NpH/MG3qwavOgbw+U1w9dkEDcrBfDrogXxRrbswuQy+2TxKkKCt DOV5jaCIv1N5RcqvImws+OrkAF+O4QWVuiB6WHeEiVfKZHsIcoKpPFswFh7JI41R LaNTARAdwMX0CUbBXjzD2kIosnMLYJK/JghkwwlfYHCP1PTpWx7uIBbcdOe/YCcG 7HIXP+MdIryr0HpF6PCJENYkb+LF0il6v0Wyt9dks9F8hkzSlOH0CEMag24rKyW+ QsFlui/om8MPgxkmqEnmdwEVJa3kynw= -----END CERTIFICATE-----Generated at Sun May 19 07:40:38 2024 by rpki-client on console-fra.rpki-client.org