$ rpki-client -vvf rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft File: 2QhrDfk0LcKwkbrobLd5_GJZvXs.mft (raw, json) Hash identifier: PFswCQN9LzA9rdtduyVu3SF0mUtgVE5Y1xxjeEYGh+M= Subject key identifier: 07:82:51:C0:3D:2D:19:14:F0:C8:FB:61:C1:F8:E7:45:CA:F1:58:D3 Authority key identifier: D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B Certificate issuer: /CN=A914F2EC/serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Certificate serial: 33D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft Manifest number: 33CB Signing time: Sat 18 May 2024 15:08:51 +0000 Manifest this update: Sat 18 May 2024 15:08:51 +0000 Manifest next update: Sat 25 May 2024 15:08:51 +0000 Files and hashes: 1: 2QhrDfk0LcKwkbrobLd5_GJZvXs.crl (hash: 36AzdaY22EhrgfwKcq6FfvptQqhUkpdN2YNzvCa18qA=) 2: 588BD7269A1211E8B97A623AC4F9AE02.roa (hash: KVkyGHEDYe6UG/J4dXnzUoXIppIbCqNkEnIga+9tHI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13267 (0x33d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F2EC/serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Validity Not Before: May 18 15:08:51 2024 GMT Not After : May 25 15:08:51 2024 GMT Subject: CN=6648c483-cc02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:53:d4:2b:7e:1d:e5:4c:e5:5d:a9:bf:03:25: 47:d1:63:d9:79:10:22:96:87:6d:ef:c6:b6:d9:d5: de:ab:1d:0e:1a:50:a1:1c:55:d2:c6:94:b9:5b:e0: 2e:3f:70:5d:0a:7d:5a:0c:d2:32:f3:10:8d:2c:f5: f0:b4:2f:ae:86:aa:5a:a1:29:f4:a6:ec:20:82:f7: 45:f2:52:7d:39:84:74:db:a8:49:de:e0:30:bd:48: 21:e7:de:93:b8:89:2d:ea:88:28:5f:16:e1:e7:14: 25:ab:cf:ae:22:a3:a5:26:66:e0:e3:d5:e7:25:ca: e8:95:9b:a6:6c:47:4b:86:20:a9:6b:c0:a5:5e:0d: d9:f4:40:da:74:5c:a7:16:2c:94:bc:dd:c4:07:e8: 1b:28:03:72:22:b3:f7:6e:8e:eb:a7:a1:67:73:c9: 31:89:99:e8:16:01:6f:38:de:33:ea:e2:e7:0d:4d: 24:76:55:9c:16:2e:16:a3:3e:36:b9:30:88:ee:bc: 91:fb:62:74:76:d0:bd:09:c7:9b:27:72:14:34:7b: ef:1a:10:97:e7:9b:5c:93:ca:45:72:a1:ef:0e:cd: 50:aa:17:9e:cc:84:5f:0b:19:a9:52:e1:58:46:58: 41:87:75:99:66:1f:0d:28:64:68:6f:91:b2:61:6f: c3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:82:51:C0:3D:2D:19:14:F0:C8:FB:61:C1:F8:E7:45:CA:F1:58:D3 X509v3 Authority Key Identifier: keyid:D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:25:7f:f2:68:46:ce:ec:d8:0e:8a:2b:c9:a5:90:f4:24:d1: d3:cd:0b:ad:9a:6a:9b:d6:8e:51:c0:0c:e0:ef:7e:33:0a:49: f0:7c:f0:1d:bd:ae:e2:0f:fc:c3:9f:2c:64:e9:9b:b5:b1:10: 6d:1b:32:42:01:f5:91:a1:03:eb:79:43:4e:40:26:a9:bf:f4: ef:45:58:8c:8c:40:dc:f3:ad:cb:e5:4a:0c:c8:e1:c4:6b:2d: 7d:8e:4b:fa:c7:66:69:f5:ff:c9:ed:d9:ee:60:bf:ea:f4:a0: 4b:dc:bb:14:74:90:8a:83:be:4d:0e:73:1a:d2:86:f9:d1:c1: 5e:d2:77:2d:24:97:0a:12:08:13:9f:96:07:e5:53:d0:4c:40: 72:fc:92:d2:96:e7:1e:41:8f:11:1a:d6:cd:e3:fa:e5:f9:83: ce:b3:86:7b:ab:ee:3c:dd:e6:14:6f:ab:fd:f0:5f:19:9a:d9: b6:b7:84:d4:b2:86:71:0c:1b:fc:bd:92:9c:ce:80:9e:ce:8e: f2:9d:8f:ee:54:c0:1e:eb:44:1d:fe:dc:02:8d:17:0c:c6:f1: e8:79:6b:82:1d:f7:58:0a:d1:08:90:b3:62:ca:53:87:06:a3: d5:a4:64:70:9a:b3:0f:b5:c9:4d:f6:d4:2f:99:7e:fd:62:b1: 37:cf:2c:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyRUMxMTAvBgNVBAUTKEQ5MDg2QjBERjkzNDJEQzJCMDkxQkFFODZDQjc3OUZD NjI1OUJEN0IwHhcNMjQwNTE4MTUwODUxWhcNMjQwNTI1MTUwODUxWjAYMRYwFAYD VQQDEw02NjQ4YzQ4My1jYzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21PUK34d5UzlXam/AyVH0WPZeRAilodt78a22dXeqx0OGlChHFXSxpS5W+Au P3BdCn1aDNIy8xCNLPXwtC+uhqpaoSn0puwggvdF8lJ9OYR026hJ3uAwvUgh596T uIkt6ogoXxbh5xQlq8+uIqOlJmbg49XnJcrolZumbEdLhiCpa8ClXg3Z9EDadFyn FiyUvN3EB+gbKANyIrP3bo7rp6Fnc8kxiZnoFgFvON4z6uLnDU0kdlWcFi4Woz42 uTCI7ryR+2J0dtC9CcebJ3IUNHvvGhCX55tck8pFcqHvDs1QqheezIRfCxmpUuFY RlhBh3WZZh8NKGRob5GyYW/DWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAeCUcA9 LRkU8Mj7YcH450XK8VjTMB8GA1UdIwQYMBaAFNkIaw35NC3CsJG66Gy3efxiWb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjJFQy9ENThBMjI2QzFE OUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExjS3drYnJvYkxkNV9HSlp2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaHJEZmswTGNLd2ticm9iTGQ1X0dKWnZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjJFQy9ENThBMjI2QzFEOUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExj S3drYnJvYkxkNV9HSlp2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyJX/yaEbO7NgOiivJpZD0JNHTzQutmmqb1o5RwAzg734zCknwfPAd va7iD/zDnyxk6Zu1sRBtGzJCAfWRoQPreUNOQCapv/TvRViMjEDc863L5UoMyOHE ay19jkv6x2Zp9f/J7dnuYL/q9KBL3LsUdJCKg75NDnMa0ob50cFe0nctJJcKEggT n5YH5VPQTEBy/JLSluceQY8RGtbN4/rl+YPOs4Z7q+483eYUb6v98F8Zmtm2t4TU soZxDBv8vZKczoCezo7ynY/uVMAe60Qd/twCjRcMxvHoeWuCHfdYCtEIkLNiylOH BqPVpGRwmrMPtclN9tQvmX79YrE3zyxe -----END CERTIFICATE-----Generated at Sat May 18 15:58:22 2024 by rpki-client on console-ams.rpki-client.org