$ rpki-client -vvf rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft File: QgHlq32GvGha8R8C3mhAUVttgFg.mft (raw, json) Hash identifier: 8u6+ZXZ5NOzYVCzYpFVU9x9CPHKSEzb3TGwWm/EMiuk= Subject key identifier: D6:3D:0A:0B:5D:CD:82:0A:11:5D:70:33:4A:02:08:34:7B:81:E7:EB Authority key identifier: 42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 Certificate issuer: /CN=A91454B0/serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Certificate serial: 33C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft Manifest number: 33C8 Signing time: Sat 18 May 2024 14:43:02 +0000 Manifest this update: Sat 18 May 2024 14:43:01 +0000 Manifest next update: Sat 25 May 2024 14:43:01 +0000 Files and hashes: 1: QgHlq32GvGha8R8C3mhAUVttgFg.crl (hash: McJdSQxP2TtCB0Io9oRHApfsds0/Xe3E+lYUd5k2a7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:43:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13256 (0x33c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454B0/serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Validity Not Before: May 18 14:43:01 2024 GMT Not After : May 25 14:43:01 2024 GMT Subject: CN=6648be75-895a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:cd:9b:c6:4c:b3:99:31:91:69:dd:d4:6e:93: 49:ad:23:d9:d2:6a:72:af:54:19:f0:34:79:5f:16: 7f:dd:8e:f2:7c:89:1f:88:96:f8:c4:2c:e9:b4:16: 42:41:3c:3c:0d:75:06:6a:d1:1c:38:a4:ca:1d:da: 8e:1a:b4:78:5a:8e:34:bf:a3:2b:c0:01:b7:d9:3a: 56:d7:f8:b5:ad:f5:8d:03:98:42:83:01:8b:97:2a: b9:20:88:5a:eb:af:0b:81:cc:a6:26:e7:7c:73:da: a9:f7:2f:98:94:84:7e:39:50:08:79:2b:9e:0b:e7: f6:1c:5d:00:c2:74:1a:d1:c5:76:89:9a:f1:e6:82: 14:74:be:e1:45:c5:4c:37:f1:bf:e1:7b:44:4a:ab: d5:e8:b4:d2:fa:5c:89:77:c0:a6:21:87:e2:ec:f4: 87:53:b5:ba:62:9e:3c:5b:f3:18:ad:d4:03:cf:15: bf:31:7b:d1:58:0b:33:23:95:4b:9c:5a:29:10:c4: 82:c2:c9:de:b4:c6:91:fc:96:8d:59:6a:f4:ed:82: 72:f8:e3:a4:1e:72:37:33:50:35:ed:bb:39:71:0f: 48:f2:7e:25:7b:25:4a:a1:b0:52:f3:83:8b:76:92: f2:b7:80:e3:83:47:ee:aa:04:a9:16:68:6e:94:50: 91:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:3D:0A:0B:5D:CD:82:0A:11:5D:70:33:4A:02:08:34:7B:81:E7:EB X509v3 Authority Key Identifier: keyid:42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:92:1e:ad:34:de:4c:f4:5f:55:93:2a:01:0f:51:4c:f3:c5: 28:0a:bf:b7:f3:51:82:db:7f:f5:10:9e:d2:cf:a0:42:fb:0e: 9b:c7:35:e6:7c:80:0e:d0:af:3e:ce:2d:06:fe:70:74:f8:95: 9b:66:1b:5b:00:7d:97:3c:c9:4f:ed:6b:9a:84:99:56:bd:c2: 3f:73:13:83:b5:d8:9e:e5:b2:e9:a9:26:2f:bf:44:e7:f7:7b: 4b:53:dd:0d:92:79:05:10:66:53:af:08:8e:0c:26:31:db:65: 43:ca:0e:23:54:0c:c5:85:5b:94:da:14:2b:b9:3b:cb:5b:e6: b3:6f:7e:a3:b2:65:9a:2b:99:77:b6:5a:9e:80:19:98:76:8c: 89:59:c8:16:a2:69:22:dc:aa:8b:ed:be:b5:14:fe:03:80:dd: 2a:9a:73:52:4a:1d:08:0e:ce:69:b4:58:36:3e:f5:64:b2:9f: f3:92:9e:ba:62:31:b7:6b:59:d2:18:f4:96:6f:9a:fc:61:e4: 2f:22:e4:ea:93:60:8c:47:61:cc:d5:df:c5:bb:17:34:f2:05: 2a:ef:73:a5:97:fd:dd:e3:d8:67:f6:31:89:db:2b:b9:b2:9e: 97:f1:55:8b:15:eb:90:00:c7:85:86:05:4d:7e:a7:d1:94:dd: 97:dd:8b:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0QjAxMTAvBgNVBAUTKDQyMDFFNUFCN0Q4NkJDNjg1QUYxMUYwMkRFNjg0MDUx NUI2RDgwNTgwHhcNMjQwNTE4MTQ0MzAxWhcNMjQwNTI1MTQ0MzAxWjAYMRYwFAYD VQQDEw02NjQ4YmU3NS04OTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5s2bxkyzmTGRad3UbpNJrSPZ0mpyr1QZ8DR5XxZ/3Y7yfIkfiJb4xCzptBZC QTw8DXUGatEcOKTKHdqOGrR4Wo40v6MrwAG32TpW1/i1rfWNA5hCgwGLlyq5IIha 668LgcymJud8c9qp9y+YlIR+OVAIeSueC+f2HF0AwnQa0cV2iZrx5oIUdL7hRcVM N/G/4XtESqvV6LTS+lyJd8CmIYfi7PSHU7W6Yp48W/MYrdQDzxW/MXvRWAszI5VL nFopEMSCwsnetMaR/JaNWWr07YJy+OOkHnI3M1A17bs5cQ9I8n4leyVKobBS84OL dpLyt4Djg0fuqgSpFmhulFCR8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNY9Cgtd zYIKEV1wM0oCCDR7gefrMB8GA1UdIwQYMBaAFEIB5at9hrxoWvEfAt5oQFFbbYBY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRCMC8xQ0M0RERCNjFE OEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZHaGE4UjhDM21oQVVWdHRn RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnSGxxMzJHdkdoYThSOEMzbWhBVVZ0dGdGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRCMC8xQ0M0RERCNjFEOEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZH aGE4UjhDM21oQVVWdHRnRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBkh6tNN5M9F9VkyoBD1FM88UoCr+381GC23/1EJ7Sz6BC+w6bxzXm fIAO0K8+zi0G/nB0+JWbZhtbAH2XPMlP7WuahJlWvcI/cxODtdie5bLpqSYvv0Tn 93tLU90NknkFEGZTrwiODCYx22VDyg4jVAzFhVuU2hQruTvLW+azb36jsmWaK5l3 tlqegBmYdoyJWcgWomki3KqL7b61FP4DgN0qmnNSSh0IDs5ptFg2PvVksp/zkp66 YjG3a1nSGPSWb5r8YeQvIuTqk2CMR2HM1d/Fuxc08gUq73Oll/3d49hn9jGJ2yu5 sp6X8VWLFeuQAMeFhgVNfqfRlN2X3Ysy -----END CERTIFICATE-----Generated at Sat May 18 15:26:02 2024 by rpki-client on console-fra.rpki-client.org