$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DF8/EB831BD8013711EAB94D7D3CC4F9AE02/pVeQOZhitrqnfgugRGfoWfsEnBE.mft File: pVeQOZhitrqnfgugRGfoWfsEnBE.mft (raw, json) Hash identifier: qxCs7bxYFQO3P+euju2rdKMMW9qgpJZmf6H8Z9Xyxes= Subject key identifier: 89:16:D7:21:13:69:56:52:26:C7:4B:13:61:F8:06:FE:8E:15:9F:18 Authority key identifier: A5:57:90:39:98:62:B6:BA:A7:7E:0B:A0:44:67:E8:59:FB:04:9C:11 Certificate issuer: /CN=A91C1DF8/serialNumber=A55790399862B6BAA77E0BA04467E859FB049C11 Certificate serial: 0BA4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVeQOZhitrqnfgugRGfoWfsEnBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DF8/EB831BD8013711EAB94D7D3CC4F9AE02/pVeQOZhitrqnfgugRGfoWfsEnBE.mft Manifest number: 1323 Signing time: Sat 18 May 2024 19:17:09 +0000 Manifest this update: Sat 18 May 2024 19:17:08 +0000 Manifest next update: Sat 25 May 2024 19:17:08 +0000 Files and hashes: 1: pVeQOZhitrqnfgugRGfoWfsEnBE.crl (hash: zr7FtlBVWLR56Kew1x+Gnk+pAt66kWj2fNBV6HZfxNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DF8/EB831BD8013711EAB94D7D3CC4F9AE02/pVeQOZhitrqnfgugRGfoWfsEnBE.crl rsync://rpki.apnic.net/member_repository/A91C1DF8/EB831BD8013711EAB94D7D3CC4F9AE02/pVeQOZhitrqnfgugRGfoWfsEnBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVeQOZhitrqnfgugRGfoWfsEnBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2980 (0xba4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DF8/serialNumber=A55790399862B6BAA77E0BA04467E859FB049C11 Validity Not Before: May 18 19:17:08 2024 GMT Not After : May 25 19:17:08 2024 GMT Subject: CN=6648feb4-9b03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:69:d2:5f:ce:8a:ed:5b:3b:56:4c:63:44:05: db:c6:61:50:6c:c6:0d:7b:46:1f:4c:35:3a:51:b1: 6f:11:ed:af:4f:87:5d:ca:1f:aa:eb:58:8c:b9:c5: 59:7a:bd:62:95:d9:6c:83:39:77:a7:33:11:12:81: 09:d9:3a:7f:4e:8c:1d:b1:99:83:b4:45:39:16:fd: 86:64:f3:af:db:10:91:03:b0:17:82:e7:79:db:c8: 39:0f:23:15:fb:b4:c9:1c:16:b9:39:41:43:5c:ee: 96:5a:a3:80:8f:82:86:9f:c6:e2:0d:90:f6:8d:98: 8a:8b:64:c2:77:ba:cb:1a:f7:20:95:d6:e1:de:5e: 52:06:01:73:78:1e:b9:14:ec:77:da:63:8a:7a:f7: 91:8a:7b:6c:80:3b:ab:6b:cc:ae:f7:50:3a:09:31: 7f:1c:97:b6:a3:d7:a9:07:07:15:1d:37:c5:70:51: e0:af:f2:34:bb:15:91:83:3f:ab:21:7a:5e:ea:3d: 3b:d9:b9:6c:98:fd:33:cf:b6:7e:06:00:3e:bc:34: aa:89:24:28:ed:b1:f1:27:f0:be:80:e8:44:1d:9d: d8:61:42:89:0f:89:cc:d0:7b:34:5a:a5:3f:70:ef: 84:ae:85:74:ed:e3:85:0a:a2:63:7c:de:5c:54:dc: b6:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:16:D7:21:13:69:56:52:26:C7:4B:13:61:F8:06:FE:8E:15:9F:18 X509v3 Authority Key Identifier: keyid:A5:57:90:39:98:62:B6:BA:A7:7E:0B:A0:44:67:E8:59:FB:04:9C:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DF8/EB831BD8013711EAB94D7D3CC4F9AE02/pVeQOZhitrqnfgugRGfoWfsEnBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVeQOZhitrqnfgugRGfoWfsEnBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DF8/EB831BD8013711EAB94D7D3CC4F9AE02/pVeQOZhitrqnfgugRGfoWfsEnBE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:f3:a4:05:2c:5b:fe:dc:5c:52:d2:cf:d7:7c:ae:96:6e:ab: 4f:13:e5:c0:e6:cc:ba:94:06:49:48:07:ef:2e:7c:ec:0c:a8: 1c:03:97:6f:79:45:6c:04:26:ef:9c:1c:37:2a:f2:d2:66:b5: 40:47:33:df:45:c0:81:4f:c3:34:9f:9e:e0:fb:b4:3b:cc:a1: 7b:f3:0d:f1:f7:bb:5b:20:c0:4b:3c:ba:f8:c6:f7:f5:e9:c4: ce:9e:cf:6d:67:df:0d:1d:b4:96:4b:bb:49:b8:b1:ed:7e:b5: 8b:3d:92:e5:af:c7:c0:40:3e:21:62:c8:41:0f:69:c2:e9:8f: 1b:cf:1a:f0:13:94:1a:ed:29:b0:b7:2b:64:3c:d1:1b:e3:5c: 67:3b:35:bc:ca:ee:27:ad:eb:27:4a:e6:e5:3b:11:fb:21:5a: 7d:71:cd:9f:00:67:86:0f:0f:0f:bb:66:6e:8e:80:b4:aa:e2: c1:f1:7a:86:a0:d7:c0:87:83:6b:f6:13:db:b3:4f:24:af:a5: 78:21:03:ba:1f:23:fd:75:9f:3c:b4:75:eb:25:49:04:be:d2: 88:01:ea:14:11:c5:0b:f5:9c:6d:75:53:90:a1:1c:77:e7:bc: 2e:39:da:07:8b:66:3d:f0:f0:2c:b6:e6:d8:45:3d:e6:ee:13: f5:82:09:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFERjgxMTAvBgNVBAUTKEE1NTc5MDM5OTg2MkI2QkFBNzdFMEJBMDQ0NjdFODU5 RkIwNDlDMTEwHhcNMjQwNTE4MTkxNzA4WhcNMjQwNTI1MTkxNzA4WjAYMRYwFAYD VQQDEw02NjQ4ZmViNC05YjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmmnSX86K7Vs7VkxjRAXbxmFQbMYNe0YfTDU6UbFvEe2vT4ddyh+q61iMucVZ er1ildlsgzl3pzMREoEJ2Tp/TowdsZmDtEU5Fv2GZPOv2xCRA7AXgud528g5DyMV +7TJHBa5OUFDXO6WWqOAj4KGn8biDZD2jZiKi2TCd7rLGvcgldbh3l5SBgFzeB65 FOx32mOKeveRintsgDura8yu91A6CTF/HJe2o9epBwcVHTfFcFHgr/I0uxWRgz+r IXpe6j072blsmP0zz7Z+BgA+vDSqiSQo7bHxJ/C+gOhEHZ3YYUKJD4nM0Hs0WqU/ cO+EroV07eOFCqJjfN5cVNy2IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkW1yET aVZSJsdLE2H4Bv6OFZ8YMB8GA1UdIwQYMBaAFKVXkDmYYra6p34LoERn6Fn7BJwR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURGOC9FQjgzMUJEODAx MzcxMUVBQjk0RDdEM0NDNEY5QUUwMi9wVmVRT1poaXRycW5mZ3VnUkdmb1dmc0Vu QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BWZVFPWmhpdHJxbmZndWdSR2ZvV2ZzRW5CRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MURGOC9FQjgzMUJEODAxMzcxMUVBQjk0RDdEM0NDNEY5QUUwMi9wVmVRT1poaXRy cW5mZ3VnUkdmb1dmc0VuQkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr86QFLFv+3FxS0s/XfK6WbqtPE+XA5sy6lAZJSAfvLnzsDKgcA5dv eUVsBCbvnBw3KvLSZrVARzPfRcCBT8M0n57g+7Q7zKF78w3x97tbIMBLPLr4xvf1 6cTOns9tZ98NHbSWS7tJuLHtfrWLPZLlr8fAQD4hYshBD2nC6Y8bzxrwE5Qa7Smw tytkPNEb41xnOzW8yu4nresnSublOxH7IVp9cc2fAGeGDw8Pu2ZujoC0quLB8XqG oNfAh4Nr9hPbs08kr6V4IQO6HyP9dZ88tHXrJUkEvtKIAeoUEcUL9ZxtdVOQoRx3 57wuOdoHi2Y98PAstubYRT3m7hP1ggnw -----END CERTIFICATE-----Generated at Sat May 18 19:56:07 2024 by rpki-client on console-fra.rpki-client.org