$ rpki-client -vvf rpki.apnic.net/member_repository/A9186C05/7E16E59AEFD911EDBC545971C4F9AE02/qPSk14UXEQ17GApeNxuYBcYlIws.mft File: qPSk14UXEQ17GApeNxuYBcYlIws.mft (raw, json) Hash identifier: LprEe+3j9x0tSSV8J/AJAlwL41ujJBCs8KwICk2h0IE= Subject key identifier: 39:B7:5F:99:C7:89:91:DC:4A:1F:B9:89:31:31:5E:E7:6C:F3:94:A7 Authority key identifier: A8:F4:A4:D7:85:17:11:0D:7B:18:0A:5E:37:1B:98:05:C6:25:23:0B Certificate issuer: /CN=A9186C05/serialNumber=A8F4A4D78517110D7B180A5E371B9805C625230B Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qPSk14UXEQ17GApeNxuYBcYlIws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186C05/7E16E59AEFD911EDBC545971C4F9AE02/qPSk14UXEQ17GApeNxuYBcYlIws.mft Manifest number: CA Signing time: Sat 01 Jun 2024 07:36:28 +0000 Manifest this update: Sat 01 Jun 2024 07:36:28 +0000 Manifest next update: Sat 08 Jun 2024 07:36:28 +0000 Files and hashes: 1: qPSk14UXEQ17GApeNxuYBcYlIws.crl (hash: 9nRDsdObVQl41IqRRHG5O6I8fDZlaHPKKn5Za3L0CCc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186C05/7E16E59AEFD911EDBC545971C4F9AE02/qPSk14UXEQ17GApeNxuYBcYlIws.crl rsync://rpki.apnic.net/member_repository/A9186C05/7E16E59AEFD911EDBC545971C4F9AE02/qPSk14UXEQ17GApeNxuYBcYlIws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qPSk14UXEQ17GApeNxuYBcYlIws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186C05/serialNumber=A8F4A4D78517110D7B180A5E371B9805C625230B Validity Not Before: Jun 1 07:36:28 2024 GMT Not After : Jun 8 07:36:28 2024 GMT Subject: CN=665acf7c-d9ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:72:9b:f1:6f:ff:42:f3:71:27:f8:a8:86:f2: 9e:11:cf:14:83:e1:89:0d:53:e8:b0:ec:68:8a:48: 09:98:93:21:75:38:72:56:60:1b:4d:a8:18:7c:e4: 3d:7a:2b:17:c4:a7:1d:2f:e1:57:37:29:8d:2b:a5: ed:91:c6:25:5b:1f:a4:b4:d5:7f:e5:78:68:5c:59: 72:be:f6:97:c5:a4:e9:49:eb:5e:05:35:84:26:5e: 6e:3b:40:59:ea:4b:5b:fe:9c:d1:ef:54:7f:0c:a3: 2a:e4:5f:d0:25:74:d4:dc:4d:7b:cf:90:58:c7:4e: f2:ff:d7:08:49:e9:7b:82:81:9e:cd:fc:0f:47:fb: b2:92:59:a9:ff:a4:dd:a9:b6:dd:df:6b:cf:6d:4c: 99:c7:f6:cd:de:91:9d:c1:2f:c2:2d:f9:9c:4a:cf: ff:85:58:83:9f:82:3b:17:32:3c:29:d5:07:30:0a: ab:e8:d3:44:b1:b1:48:57:80:66:81:5e:b7:ae:be: 04:86:0a:a3:ae:9e:41:46:4f:9f:b1:ff:55:22:39: 74:34:74:06:79:41:19:9d:30:58:e4:1c:bc:05:a8: 8e:02:0b:21:27:65:b5:63:82:6e:c1:cb:8c:ad:cc: 27:5f:4e:12:6d:09:ab:a3:31:64:bd:be:c4:d7:1e: 9a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:B7:5F:99:C7:89:91:DC:4A:1F:B9:89:31:31:5E:E7:6C:F3:94:A7 X509v3 Authority Key Identifier: keyid:A8:F4:A4:D7:85:17:11:0D:7B:18:0A:5E:37:1B:98:05:C6:25:23:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186C05/7E16E59AEFD911EDBC545971C4F9AE02/qPSk14UXEQ17GApeNxuYBcYlIws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qPSk14UXEQ17GApeNxuYBcYlIws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186C05/7E16E59AEFD911EDBC545971C4F9AE02/qPSk14UXEQ17GApeNxuYBcYlIws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:d1:b5:51:10:55:5e:a0:4b:10:83:a7:55:0c:ed:ca:06:db: cc:a7:f1:b9:e1:0a:3d:4a:9f:d3:7a:cd:e7:22:ae:df:96:f6: b1:3a:60:6d:52:24:93:11:bb:42:59:32:c9:b0:a7:84:a3:fe: a6:05:39:f8:84:11:e0:21:64:47:2e:15:f1:bf:e3:48:30:24: 63:1f:7f:8e:f8:21:92:89:39:d5:70:dd:c7:1d:9c:d7:67:14: f8:69:92:b9:5e:a8:45:e6:eb:91:2b:27:bb:3a:fc:48:9d:32: 3c:0b:de:bd:29:67:cb:a2:bd:f6:4e:40:64:39:9f:df:d7:e7: 41:0d:1a:7b:e2:24:c1:45:4e:9b:c3:f9:8a:8a:d6:84:ef:24: e1:a7:94:aa:ae:df:fd:c1:ee:d7:75:ab:63:c6:46:b4:1e:40: 26:5e:de:b7:2a:59:86:bd:ae:b7:22:a0:ef:e5:fe:f0:9a:f8: 7d:b3:4e:e1:c6:4e:8b:69:e4:74:5f:8b:63:99:1e:c6:15:72: 71:71:f9:39:c1:0c:a1:e1:bc:81:63:dc:05:c7:df:0a:9b:db: b8:f6:2f:2f:7e:42:52:5c:82:8a:6b:a0:8a:78:e8:4b:b0:cb: 7a:f8:68:4f:70:63:fa:37:d3:4e:7d:05:da:6c:45:eb:f4:62: ac:f1:09:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZDMDUxMTAvBgNVBAUTKEE4RjRBNEQ3ODUxNzExMEQ3QjE4MEE1RTM3MUI5ODA1 QzYyNTIzMEIwHhcNMjQwNjAxMDczNjI4WhcNMjQwNjA4MDczNjI4WjAYMRYwFAYD VQQDEw02NjVhY2Y3Yy1kOWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3Kb8W//QvNxJ/iohvKeEc8Ug+GJDVPosOxoikgJmJMhdThyVmAbTagYfOQ9 eisXxKcdL+FXNymNK6XtkcYlWx+ktNV/5XhoXFlyvvaXxaTpSeteBTWEJl5uO0BZ 6ktb/pzR71R/DKMq5F/QJXTU3E17z5BYx07y/9cISel7goGezfwPR/uyklmp/6Td qbbd32vPbUyZx/bN3pGdwS/CLfmcSs//hViDn4I7FzI8KdUHMAqr6NNEsbFIV4Bm gV63rr4Ehgqjrp5BRk+fsf9VIjl0NHQGeUEZnTBY5By8BaiOAgshJ2W1Y4JuwcuM rcwnX04SbQmrozFkvb7E1x6aLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDm3X5nH iZHcSh+5iTExXuds85SnMB8GA1UdIwQYMBaAFKj0pNeFFxENexgKXjcbmAXGJSML MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkMwNS83RTE2RTU5QUVG RDkxMUVEQkM1NDU5NzFDNEY5QUUwMi9xUFNrMTRVWEVRMTdHQXBlTnh1WUJjWWxJ d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FQU2sxNFVYRVExN0dBcGVOeHVZQmNZbEl3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkMwNS83RTE2RTU5QUVGRDkxMUVEQkM1NDU5NzFDNEY5QUUwMi9xUFNrMTRVWEVR MTdHQXBlTnh1WUJjWWxJd3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV0bVREFVeoEsQg6dVDO3KBtvMp/G54Qo9Sp/Tes3nIq7flvaxOmBt UiSTEbtCWTLJsKeEo/6mBTn4hBHgIWRHLhXxv+NIMCRjH3+O+CGSiTnVcN3HHZzX ZxT4aZK5XqhF5uuRKye7OvxInTI8C969KWfLor32TkBkOZ/f1+dBDRp74iTBRU6b w/mKitaE7yThp5Sqrt/9we7Xdatjxka0HkAmXt63KlmGva63IqDv5f7wmvh9s07h xk6LaeR0X4tjmR7GFXJxcfk5wQyh4byBY9wFx98Km9u49i8vfkJSXIKKa6CKeOhL sMt6+GhPcGP6N9NOfQXabEXr9GKs8QmF -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:34 2024 by rpki-client on console-fra.rpki-client.org