$ rpki-client -vvf rpki.apnic.net/member_repository/A91388E0/4CBB1B32B85211EE8ACAA96AC4F9AE02/JSQuExmXg1v8mxgEBceXxiiUR-c.mft File: JSQuExmXg1v8mxgEBceXxiiUR-c.mft (raw, json) Hash identifier: jCqTInbxpJVdODHBUtwmyiCbJzbxYlnKIFXmXxyW9bY= Subject key identifier: 24:29:5F:9F:EF:1C:AE:31:0B:11:47:58:1E:EC:04:1F:EB:D8:86:61 Authority key identifier: 25:24:2E:13:19:97:83:5B:FC:9B:18:04:05:C7:97:C6:28:94:47:E7 Certificate issuer: /CN=A91388E0/serialNumber=25242E131997835BFC9B180405C797C6289447E7 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JSQuExmXg1v8mxgEBceXxiiUR-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91388E0/4CBB1B32B85211EE8ACAA96AC4F9AE02/JSQuExmXg1v8mxgEBceXxiiUR-c.mft Manifest number: 42 Signing time: Sun 19 May 2024 08:10:58 +0000 Manifest this update: Sun 19 May 2024 08:10:58 +0000 Manifest next update: Sun 26 May 2024 08:10:58 +0000 Files and hashes: 1: JSQuExmXg1v8mxgEBceXxiiUR-c.crl (hash: 4AThpv9vNjMnY6J0oykDoUcQSVjZtCXhKLpVKPP9ShQ=) 2: 1F5F5920B85F11EE9B53995FC4F9AE02.roa (hash: hNCRC9+DFNhTvM3v/BstmJffMNQ5AXXkJyzRo3ph1EY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91388E0/4CBB1B32B85211EE8ACAA96AC4F9AE02/JSQuExmXg1v8mxgEBceXxiiUR-c.crl rsync://rpki.apnic.net/member_repository/A91388E0/4CBB1B32B85211EE8ACAA96AC4F9AE02/JSQuExmXg1v8mxgEBceXxiiUR-c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JSQuExmXg1v8mxgEBceXxiiUR-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91388E0/serialNumber=25242E131997835BFC9B180405C797C6289447E7 Validity Not Before: May 19 08:10:58 2024 GMT Not After : May 26 08:10:58 2024 GMT Subject: CN=6649b412-b3e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:01:2f:ed:0b:d8:09:7f:f4:da:d2:07:8c:3f: 33:54:6c:e8:e1:be:96:b9:5b:d6:cf:e8:cb:25:3e: 2a:bc:af:56:25:10:01:17:95:a9:b1:84:2b:3b:e4: 64:80:1a:5a:17:4b:9f:ad:d4:d9:6c:47:c2:1e:c3: bb:88:62:80:e1:0e:80:5c:47:22:eb:dd:09:6a:4d: c4:ef:61:ff:b5:0a:6b:f7:b9:c7:5a:df:b6:0b:f8: b4:69:a3:31:ee:76:7f:dc:1c:bb:1d:e9:69:37:ab: b4:06:06:43:73:d0:99:77:0b:b5:9d:21:5d:84:5c: 6d:b3:70:b4:58:c5:58:71:f1:2a:2f:aa:f6:64:71: 86:9b:3e:44:7c:e8:5d:74:86:2a:a4:7f:c7:a7:67: 10:96:c9:0b:ce:4e:b9:d4:bf:e0:25:5f:d2:ec:19: 61:c4:3f:25:36:c9:81:40:11:68:f2:6d:98:6c:5f: 9f:9d:31:90:fe:0c:68:1f:99:35:86:70:4b:b4:7d: f3:d9:a3:0e:83:ac:c6:07:3e:b0:b1:f2:75:d0:0c: a7:34:6a:a1:a6:7e:7a:77:27:de:aa:f8:bb:58:a3: ea:0c:94:e9:ff:da:89:61:7f:a8:aa:d4:b2:a2:2b: 14:0d:d6:92:fc:a4:c6:f8:10:8d:b3:8c:3c:54:19: a4:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:29:5F:9F:EF:1C:AE:31:0B:11:47:58:1E:EC:04:1F:EB:D8:86:61 X509v3 Authority Key Identifier: keyid:25:24:2E:13:19:97:83:5B:FC:9B:18:04:05:C7:97:C6:28:94:47:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91388E0/4CBB1B32B85211EE8ACAA96AC4F9AE02/JSQuExmXg1v8mxgEBceXxiiUR-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JSQuExmXg1v8mxgEBceXxiiUR-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91388E0/4CBB1B32B85211EE8ACAA96AC4F9AE02/JSQuExmXg1v8mxgEBceXxiiUR-c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:71:9f:a5:e6:9a:33:88:05:8a:dc:33:e7:6b:b6:44:ef:b0: 23:14:92:ec:5f:93:3b:60:4f:85:95:5f:60:7f:82:80:d4:4b: 41:60:42:c1:00:af:81:a9:f8:7a:c1:e3:8e:37:c3:00:18:b4: da:4d:a0:89:88:19:75:f5:4e:cd:04:3e:41:a5:6b:0a:77:5e: 58:b2:84:f3:d7:19:d9:8b:da:a6:af:f1:4c:85:a3:99:7b:d1: 93:33:d5:37:35:20:37:ed:67:7f:9e:03:53:51:f6:e0:25:a0: 7b:8f:9b:60:06:3c:ff:c3:35:22:d8:8c:64:04:52:d0:ac:50: 3f:54:ba:76:64:c8:36:b8:02:99:d5:e3:9b:88:d6:a2:ff:e2: 6b:eb:04:01:aa:aa:6e:d1:ee:a7:df:1d:5b:a8:95:9e:8a:62: 97:3a:d2:96:3e:59:db:1a:28:68:10:45:89:5e:87:53:5d:11: ed:c1:ad:58:31:c4:e2:a4:25:65:cf:80:e2:34:65:ce:bd:b0: 97:7d:36:56:8f:26:4c:67:97:0d:e9:37:1c:2c:9c:c8:39:43: 6c:54:48:1a:c9:47:61:21:b8:bf:2d:cd:90:e4:04:d3:89:e1: a8:54:65:41:96:6f:e7:02:0b:85:e8:d1:97:d9:f0:ae:22:1c: cc:bd:ad:b6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODhFMDExMC8GA1UEBRMoMjUyNDJFMTMxOTk3ODM1QkZDOUIxODA0MDVDNzk3QzYy ODk0NDdFNzAeFw0yNDA1MTkwODEwNThaFw0yNDA1MjYwODEwNThaMBgxFjAUBgNV BAMTDTY2NDliNDEyLWIzZTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRAS/tC9gJf/Ta0geMPzNUbOjhvpa5W9bP6MslPiq8r1YlEAEXlamxhCs75GSA GloXS5+t1NlsR8Iew7uIYoDhDoBcRyLr3QlqTcTvYf+1Cmv3ucda37YL+LRpozHu dn/cHLsd6Wk3q7QGBkNz0Jl3C7WdIV2EXG2zcLRYxVhx8SovqvZkcYabPkR86F10 hiqkf8enZxCWyQvOTrnUv+AlX9LsGWHEPyU2yYFAEWjybZhsX5+dMZD+DGgfmTWG cEu0ffPZow6DrMYHPrCx8nXQDKc0aqGmfnp3J96q+LtYo+oMlOn/2olhf6iq1LKi KxQN1pL8pMb4EI2zjDxUGaTRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJClfn+8c rjELEUdYHuwEH+vYhmEwHwYDVR0jBBgwFoAUJSQuExmXg1v8mxgEBceXxiiUR+cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4OEUwLzRDQkIxQjMyQjg1 MjExRUU4QUNBQTk2QUM0RjlBRTAyL0pTUXVFeG1YZzF2OG14Z0VCY2VYeGlpVVIt Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSlNRdUV4bVhnMXY4bXhnRUJjZVh4aWlVUi1jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4 OEUwLzRDQkIxQjMyQjg1MjExRUU4QUNBQTk2QUM0RjlBRTAyL0pTUXVFeG1YZzF2 OG14Z0VCY2VYeGlpVVItYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIxxn6XmmjOIBYrcM+drtkTvsCMUkuxfkztgT4WVX2B/goDUS0FgQsEA r4Gp+HrB4443wwAYtNpNoImIGXX1Ts0EPkGlawp3XliyhPPXGdmL2qav8UyFo5l7 0ZMz1Tc1IDftZ3+eA1NR9uAloHuPm2AGPP/DNSLYjGQEUtCsUD9UunZkyDa4ApnV 45uI1qL/4mvrBAGqqm7R7qffHVuolZ6KYpc60pY+WdsaKGgQRYleh1NdEe3BrVgx xOKkJWXPgOI0Zc69sJd9NlaPJkxnlw3pNxwsnMg5Q2xUSBrJR2EhuL8tzZDkBNOJ 4ahUZUGWb+cCC4Xo0ZfZ8K4iHMy9rbY= -----END CERTIFICATE-----Generated at Sun May 19 09:04:12 2024 by rpki-client on console-fra.rpki-client.org