$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8A96/909D74901DA311E2A00B069908B02CD2/msqKXCR04g_6ZzTz9yVL__GFE_4.mft File: msqKXCR04g_6ZzTz9yVL__GFE_4.mft (raw, json) Hash identifier: f0Z7MSOgldRqz8gH57MXefIlVSdCI+9/qN/a900En1s= Subject key identifier: EF:8D:21:03:D5:57:18:F9:CF:A3:9A:F7:96:3F:65:1E:5A:3C:B2:0D Authority key identifier: 9A:CA:8A:5C:24:74:E2:0F:FA:67:34:F3:F7:25:4B:FF:F1:85:13:FE Certificate issuer: /CN=A91A8A96/serialNumber=9ACA8A5C2474E20FFA6734F3F7254BFFF18513FE Certificate serial: 33BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/msqKXCR04g_6ZzTz9yVL__GFE_4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8A96/909D74901DA311E2A00B069908B02CD2/msqKXCR04g_6ZzTz9yVL__GFE_4.mft Manifest number: 33BE Signing time: Sat 18 May 2024 15:20:17 +0000 Manifest this update: Sat 18 May 2024 15:20:16 +0000 Manifest next update: Sat 25 May 2024 15:20:16 +0000 Files and hashes: 1: msqKXCR04g_6ZzTz9yVL__GFE_4.crl (hash: aEbFQzRKJTysmoNjO1DJy8pSqFjfLJs7vVap34KUrLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8A96/909D74901DA311E2A00B069908B02CD2/msqKXCR04g_6ZzTz9yVL__GFE_4.crl rsync://rpki.apnic.net/member_repository/A91A8A96/909D74901DA311E2A00B069908B02CD2/msqKXCR04g_6ZzTz9yVL__GFE_4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/msqKXCR04g_6ZzTz9yVL__GFE_4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13246 (0x33be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8A96/serialNumber=9ACA8A5C2474E20FFA6734F3F7254BFFF18513FE Validity Not Before: May 18 15:20:16 2024 GMT Not After : May 25 15:20:16 2024 GMT Subject: CN=6648c731-fbdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ba:15:af:db:70:52:99:48:b0:bd:42:88:53: 35:b8:5b:b4:83:ab:c2:92:d1:8c:6a:4f:fb:b6:60: 72:77:a7:7e:88:22:76:c3:6e:58:a9:f2:4b:63:b4: 1e:3b:21:a2:25:f9:61:18:e0:f9:7d:7b:b9:cb:b0: 9b:8f:e5:00:72:ac:e4:22:25:18:cb:36:5c:9a:dc: fb:7d:e7:04:9c:4e:37:4b:9e:e8:88:00:5f:5b:0b: 98:d0:b1:0b:a4:a9:a1:e0:f9:97:68:9a:f1:f0:b7: d9:56:f9:21:32:ed:d9:eb:86:6e:e9:60:26:ca:84: c3:a7:fb:9e:b1:1b:a1:87:c1:61:20:13:c7:a2:42: ca:65:f7:a4:74:7f:4b:e2:24:8b:ee:59:8b:ba:1b: fa:96:c5:7f:00:c0:1f:77:03:cd:da:e1:cd:56:04: 57:c0:00:b3:04:18:31:7c:e8:2c:c5:ba:a2:88:d9: 8f:5a:3a:2c:e2:90:f8:03:08:e4:63:4c:b6:68:06: 8c:d2:55:ef:09:8d:91:b8:20:fd:59:73:62:d2:35: 4f:6e:ef:de:6a:67:d7:0d:8d:7f:48:cd:50:d1:c9: 11:d1:0e:c0:a1:43:41:92:31:88:55:a6:01:8f:5e: e5:29:59:0d:bf:c8:75:3c:65:93:7d:65:5f:e7:fd: ea:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:8D:21:03:D5:57:18:F9:CF:A3:9A:F7:96:3F:65:1E:5A:3C:B2:0D X509v3 Authority Key Identifier: keyid:9A:CA:8A:5C:24:74:E2:0F:FA:67:34:F3:F7:25:4B:FF:F1:85:13:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8A96/909D74901DA311E2A00B069908B02CD2/msqKXCR04g_6ZzTz9yVL__GFE_4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/msqKXCR04g_6ZzTz9yVL__GFE_4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8A96/909D74901DA311E2A00B069908B02CD2/msqKXCR04g_6ZzTz9yVL__GFE_4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:fb:4f:2a:ea:5e:df:01:33:fb:b9:26:0f:64:3e:d8:09:7f: 8e:dd:6c:4b:e3:12:64:ce:cb:3f:a2:1f:2e:2b:34:02:56:89: 24:af:c6:82:52:34:e3:77:c5:4c:ff:78:4d:85:a7:9f:9a:b0: 1a:22:f1:f7:8b:6c:47:f4:66:ee:5f:b7:cc:76:79:ff:80:a8: d0:c7:f6:1e:60:6b:71:6a:98:ff:bd:8c:e1:5c:0d:92:29:1b: 0f:f2:10:8b:e3:7d:d1:52:25:35:49:20:e2:cb:a6:4f:5e:ed: 0e:60:49:72:5f:cd:87:02:5e:7d:6a:73:14:cb:ed:eb:77:95: fa:30:e1:84:05:c6:9a:62:f6:1a:1d:54:92:3c:f0:66:79:6e: 70:3d:ea:07:52:32:1c:25:c8:2b:15:84:e2:44:e0:11:01:c6: ca:a3:b7:0d:42:bb:eb:a4:01:4b:e8:8c:7d:a2:ae:92:a3:de: 2a:a0:49:51:ff:54:16:2e:25:dd:82:f2:af:9f:3d:c0:65:85: 90:b3:53:02:05:c9:1b:a0:41:c0:02:31:09:f7:30:1a:63:a0: a2:8f:54:be:9d:a5:2f:da:0d:57:cb:15:e8:5e:5e:02:3a:8d: 80:16:67:b6:cf:99:0b:c0:75:ce:2b:2e:3c:a5:aa:a6:05:37: e1:07:bd:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThBOTYxMTAvBgNVBAUTKDlBQ0E4QTVDMjQ3NEUyMEZGQTY3MzRGM0Y3MjU0QkZG RjE4NTEzRkUwHhcNMjQwNTE4MTUyMDE2WhcNMjQwNTI1MTUyMDE2WjAYMRYwFAYD VQQDEw02NjQ4YzczMS1mYmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyroVr9twUplIsL1CiFM1uFu0g6vCktGMak/7tmByd6d+iCJ2w25YqfJLY7Qe OyGiJflhGOD5fXu5y7Cbj+UAcqzkIiUYyzZcmtz7fecEnE43S57oiABfWwuY0LEL pKmh4PmXaJrx8LfZVvkhMu3Z64Zu6WAmyoTDp/uesRuhh8FhIBPHokLKZfekdH9L 4iSL7lmLuhv6lsV/AMAfdwPN2uHNVgRXwACzBBgxfOgsxbqiiNmPWjos4pD4Awjk Y0y2aAaM0lXvCY2RuCD9WXNi0jVPbu/eamfXDY1/SM1Q0ckR0Q7AoUNBkjGIVaYB j17lKVkNv8h1PGWTfWVf5/3qJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO+NIQPV Vxj5z6Oa95Y/ZR5aPLINMB8GA1UdIwQYMBaAFJrKilwkdOIP+mc08/clS//xhRP+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEE5Ni85MDlENzQ5MDFE QTMxMUUyQTAwQjA2OTkwOEIwMkNEMi9tc3FLWENSMDRnXzZaelR6OXlWTF9fR0ZF XzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21zcUtYQ1IwNGdfNlp6VHo5eVZMX19HRkVfNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEE5Ni85MDlENzQ5MDFEQTMxMUUyQTAwQjA2OTkwOEIwMkNEMi9tc3FLWENSMDRn XzZaelR6OXlWTF9fR0ZFXzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU+08q6l7fATP7uSYPZD7YCX+O3WxL4xJkzss/oh8uKzQCVokkr8aC UjTjd8VM/3hNhaefmrAaIvH3i2xH9GbuX7fMdnn/gKjQx/YeYGtxapj/vYzhXA2S KRsP8hCL433RUiU1SSDiy6ZPXu0OYElyX82HAl59anMUy+3rd5X6MOGEBcaaYvYa HVSSPPBmeW5wPeoHUjIcJcgrFYTiROARAcbKo7cNQrvrpAFL6Ix9oq6So94qoElR /1QWLiXdgvKvnz3AZYWQs1MCBckboEHAAjEJ9zAaY6Cij1S+naUv2g1XyxXoXl4C Oo2AFme2z5kLwHXOKy48paqmBTfhB71G -----END CERTIFICATE-----Generated at Sat May 18 15:58:25 2024 by rpki-client on console-ams.rpki-client.org