$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft File: iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft (raw, json) Hash identifier: 5v7nnJ93mF/QyY1h+hqYXP4E+46xNi8NFRUj9medEnQ= Subject key identifier: 8E:74:DD:95:25:81:B2:16:3D:0F:66:4F:9A:D6:98:F5:0D:B2:22:DF Authority key identifier: 89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D Certificate issuer: /CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft Manifest number: 3D Signing time: Sun 19 May 2024 08:12:39 +0000 Manifest this update: Sun 19 May 2024 08:12:38 +0000 Manifest next update: Sun 26 May 2024 08:12:38 +0000 Files and hashes: 1: iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl (hash: BVNuIQ7/uGg9CRg4rsGHYZckp1bJ4RfdjHHzcLCP1SQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Validity Not Before: May 19 08:12:38 2024 GMT Not After : May 26 08:12:38 2024 GMT Subject: CN=6649b476-a685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9a:8f:88:3d:bc:5f:31:ad:b9:cc:58:f8:58: c0:80:e4:25:83:74:0b:e3:7d:bf:9c:07:c1:2a:14: 94:fb:d6:5f:83:17:36:cb:a7:71:fa:52:a0:13:f7: 7e:fb:5b:11:c4:e5:e5:d9:f7:0e:cb:08:32:e3:a8: dd:c6:d7:4e:bf:0f:44:16:68:04:54:f0:c3:94:b1: 2b:93:b5:8b:77:5f:b7:8f:54:38:ad:37:2f:71:17: 6e:d7:c3:30:79:db:1c:50:39:9d:06:25:49:f8:79: 0d:20:8a:aa:91:57:0a:9c:ef:e5:3c:66:21:ee:33: f3:10:18:40:f1:26:25:c8:75:9a:48:0e:a5:e7:b7: a4:98:a2:3d:0f:f2:19:20:e5:44:a5:e6:7c:2e:d6: 08:97:f9:fc:62:2e:a0:2c:c1:b9:20:98:8b:35:5d: a9:1a:fe:86:aa:b6:54:81:32:5f:fe:c7:ef:b0:f8: d2:cd:1a:42:99:c6:d0:fc:73:54:75:0d:e3:29:24: b5:21:7f:38:fa:b6:95:38:af:31:a9:67:ea:f7:14: a0:50:3c:ff:54:53:45:2f:2e:de:8e:e9:a2:d1:ed: 06:cd:98:8a:51:d7:b2:f2:d4:a7:d7:f3:21:c4:4b: d1:2d:b1:05:63:c1:35:b1:67:46:bd:60:06:2c:a4: 09:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:74:DD:95:25:81:B2:16:3D:0F:66:4F:9A:D6:98:F5:0D:B2:22:DF X509v3 Authority Key Identifier: keyid:89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:5b:99:ef:e8:13:62:11:11:56:93:f7:ba:ec:48:aa:cb:a5: 83:6c:41:d8:8d:43:7e:42:ca:a1:35:d1:ed:44:b3:11:30:cd: 3e:91:03:90:68:f5:34:b9:e1:1a:e1:ed:f3:d2:ba:f6:15:41: ec:87:79:5e:68:a2:28:98:ae:69:fc:fb:fa:4d:af:69:4e:45: 2a:5b:ac:51:4c:ff:95:f8:9c:7c:2b:6a:49:92:c6:02:a6:21: e0:be:ce:55:63:e7:c1:01:34:dc:22:9c:ed:24:38:67:c5:be: 22:75:62:b7:e7:bc:95:fc:22:9d:92:d2:1e:fd:5e:30:3b:80: 2e:41:0e:8a:58:b7:52:6a:9d:07:e8:32:7f:6f:0c:26:ef:cc: e2:4a:28:81:9e:ed:6e:aa:4a:f7:a1:19:fd:75:e6:a4:90:c0: c7:26:86:71:b0:51:66:10:2d:ef:32:f6:ff:1f:f5:73:6c:86: 2e:de:ea:aa:2e:6c:33:76:14:a5:01:1e:4c:b8:0c:af:cc:a4: b2:3d:87:75:0d:2e:c4:c6:64:56:e4:e7:26:90:00:3b:56:f1: 86:19:5e:03:92:3e:ab:a2:25:58:4e:7d:47:1b:70:97:91:f9: a4:da:21:fb:5f:28:16:5c:d9:9c:ed:ef:72:a8:59:02:9c:45: 80:ff:ae:00 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NUY3QjExMC8GA1UEBRMoODkwQjFERUZFODhENTkxOTZCQ0M3QjY1MjY4QzYyRTg2 RTU0RDQ2RDAeFw0yNDA1MTkwODEyMzhaFw0yNDA1MjYwODEyMzhaMBgxFjAUBgNV BAMTDTY2NDliNDc2LWE2ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAmo+IPbxfMa25zFj4WMCA5CWDdAvjfb+cB8EqFJT71l+DFzbLp3H6UqAT9377 WxHE5eXZ9w7LCDLjqN3G106/D0QWaARU8MOUsSuTtYt3X7ePVDitNy9xF27XwzB5 2xxQOZ0GJUn4eQ0giqqRVwqc7+U8ZiHuM/MQGEDxJiXIdZpIDqXnt6SYoj0P8hkg 5USl5nwu1giX+fxiLqAswbkgmIs1Xaka/oaqtlSBMl/+x++w+NLNGkKZxtD8c1R1 DeMpJLUhfzj6tpU4rzGpZ+r3FKBQPP9UU0UvLt6O6aLR7QbNmIpR17Ly1KfX8yHE S9EtsQVjwTWxZ0a9YAYspAm9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjnTdlSWB shY9D2ZPmtaY9Q2yIt8wHwYDVR0jBBgwFoAUiQsd7+iNWRlrzHtlJoxi6G5U1G0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1RjdCL0ExMzFCMzk0QkIz OTExRUVBNjU1NDE3RUM0RjlBRTAyL2lRc2Q3LWlOV1JscnpIdGxKb3hpNkc1VTFH MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVFzZDctaU5XUmxyekh0bEpveGk2RzVVMUcwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1 RjdCL0ExMzFCMzk0QkIzOTExRUVBNjU1NDE3RUM0RjlBRTAyL2lRc2Q3LWlOV1Js cnpIdGxKb3hpNkc1VTFHMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI9bme/oE2IREVaT97rsSKrLpYNsQdiNQ35CyqE10e1EsxEwzT6RA5Bo 9TS54Rrh7fPSuvYVQeyHeV5ooiiYrmn8+/pNr2lORSpbrFFM/5X4nHwrakmSxgKm IeC+zlVj58EBNNwinO0kOGfFviJ1YrfnvJX8Ip2S0h79XjA7gC5BDopYt1JqnQfo Mn9vDCbvzOJKKIGe7W6qSvehGf115qSQwMcmhnGwUWYQLe8y9v8f9XNshi7e6qou bDN2FKUBHky4DK/MpLI9h3UNLsTGZFbk5yaQADtW8YYZXgOSPquiJVhOfUcbcJeR +aTaIftfKBZc2Zzt73KoWQKcRYD/rgA= -----END CERTIFICATE-----Generated at Sun May 19 09:04:13 2024 by rpki-client on console-fra.rpki-client.org