$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft File: QpCYAlfGdws2CulWLaWJPGDa2nc.mft (raw, json) Hash identifier: sche3FTo1qSlo1PGYHQJK2hb/1BcBYcj8MdoSRdqCaA= Subject key identifier: 72:0A:07:18:D6:C3:0F:9B:11:EC:6C:0D:46:01:7C:9E:A2:76:39:AF Authority key identifier: 42:90:98:02:57:C6:77:0B:36:0A:E9:56:2D:A5:89:3C:60:DA:DA:77 Certificate issuer: /CN=A91C3B89/serialNumber=4290980257C6770B360AE9562DA5893C60DADA77 Certificate serial: 080C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpCYAlfGdws2CulWLaWJPGDa2nc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft Manifest number: 080C Signing time: Sat 18 May 2024 21:50:17 +0000 Manifest this update: Sat 18 May 2024 21:50:17 +0000 Manifest next update: Sat 25 May 2024 21:50:17 +0000 Files and hashes: 1: QpCYAlfGdws2CulWLaWJPGDa2nc.crl (hash: fTbwHV1SigBLPXNHGe+tGXuWbWAQI+D586LTSPrdOYA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.crl rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpCYAlfGdws2CulWLaWJPGDa2nc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2060 (0x80c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3B89/serialNumber=4290980257C6770B360AE9562DA5893C60DADA77 Validity Not Before: May 18 21:50:17 2024 GMT Not After : May 25 21:50:17 2024 GMT Subject: CN=66492299-2e4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0c:15:43:cf:ea:c8:eb:2e:4b:cb:7b:58:a2: 60:0a:40:fe:67:75:f1:d6:3c:6c:d1:6a:3e:99:6d: fc:b8:1e:27:4c:eb:2f:59:cd:88:5c:84:88:95:10: 01:41:1b:53:aa:d2:c6:8b:71:3f:b1:a8:f2:f5:54: 1a:b5:c2:a6:49:5a:f6:02:51:91:b6:1c:2e:ca:9f: 6f:f0:f6:ce:8d:f0:85:63:c9:14:fe:e7:e5:20:86: 04:bd:4e:ca:e1:8b:86:f3:c3:7f:ec:d1:e3:9a:98: 85:ac:57:78:a0:6c:c5:02:bc:a4:c6:1c:a6:fd:65: 65:e1:15:3e:8f:a0:b4:ed:6c:78:b5:a9:d4:e5:2c: f1:3d:d9:2c:87:e7:d4:ec:b0:67:5d:90:8a:9b:fb: 5f:36:ee:a0:0c:63:7e:5b:ea:53:47:ef:91:4f:d6: e1:2e:c7:ce:5e:4e:a8:95:04:04:4b:0d:f1:c0:e5: 61:98:f7:8a:ee:e9:e2:bb:86:06:39:78:4b:fa:61: 31:d4:7c:97:96:65:be:ac:29:e9:9f:52:c4:88:53: 5b:46:e4:a8:52:a1:70:60:be:2a:55:3c:07:90:86: b2:04:90:c3:9e:da:07:92:30:e2:80:fb:79:1a:a9: c5:a9:b4:07:4e:23:66:3d:2f:bd:e0:46:da:90:c9: 8f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:0A:07:18:D6:C3:0F:9B:11:EC:6C:0D:46:01:7C:9E:A2:76:39:AF X509v3 Authority Key Identifier: keyid:42:90:98:02:57:C6:77:0B:36:0A:E9:56:2D:A5:89:3C:60:DA:DA:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpCYAlfGdws2CulWLaWJPGDa2nc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:a3:33:60:ee:44:94:f8:8f:42:4e:72:2f:bd:df:2a:b6:26: 9a:b3:9e:b1:79:e7:a7:e3:d4:7d:86:ab:d3:21:f4:87:55:03: b0:fd:5d:28:ff:61:6e:93:2b:f4:7d:63:a3:e0:e4:ab:f2:3f: f5:b8:cb:4a:4e:c1:9a:4b:22:e7:91:9c:43:c6:cb:8a:9b:9f: 0f:44:8c:00:15:17:1a:84:d5:ed:fd:03:08:ca:0a:3b:97:ed: 3b:1f:73:21:59:77:5c:f1:a0:ca:ef:11:0c:66:50:41:cb:b1: 64:85:96:1e:f2:5b:8b:51:4c:59:19:ca:01:5c:cf:8e:fb:2b: 03:a5:86:c7:9c:4c:94:5d:a5:2d:bb:bb:b3:57:10:c7:87:4d: 43:07:2d:54:84:4c:d5:84:88:fd:0a:d5:3c:da:61:b8:ea:a3: 50:7d:49:f7:35:bc:5c:55:f8:f0:c5:17:e8:f9:5c:c5:74:30: 65:7f:13:fd:9a:37:b1:4f:5c:2b:a5:20:8a:94:cd:5d:5a:15: 41:37:de:9c:70:13:b3:85:0a:b4:d9:f8:9c:2d:cf:af:7e:c5: 10:e2:d0:97:5c:87:3e:69:d9:5b:22:4b:36:9c:83:1a:9a:9f: d3:80:b1:4c:74:54:d6:1d:d0:ca:b3:66:7d:3b:2c:bd:d8:66: fd:99:d1:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNCODkxMTAvBgNVBAUTKDQyOTA5ODAyNTdDNjc3MEIzNjBBRTk1NjJEQTU4OTND NjBEQURBNzcwHhcNMjQwNTE4MjE1MDE3WhcNMjQwNTI1MjE1MDE3WjAYMRYwFAYD VQQDEw02NjQ5MjI5OS0yZTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwwVQ8/qyOsuS8t7WKJgCkD+Z3Xx1jxs0Wo+mW38uB4nTOsvWc2IXISIlRAB QRtTqtLGi3E/sajy9VQatcKmSVr2AlGRthwuyp9v8PbOjfCFY8kU/uflIIYEvU7K 4YuG88N/7NHjmpiFrFd4oGzFArykxhym/WVl4RU+j6C07Wx4tanU5SzxPdksh+fU 7LBnXZCKm/tfNu6gDGN+W+pTR++RT9bhLsfOXk6olQQESw3xwOVhmPeK7uniu4YG OXhL+mEx1HyXlmW+rCnpn1LEiFNbRuSoUqFwYL4qVTwHkIayBJDDntoHkjDigPt5 GqnFqbQHTiNmPS+94EbakMmP0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHIKBxjW ww+bEexsDUYBfJ6idjmvMB8GA1UdIwQYMBaAFEKQmAJXxncLNgrpVi2liTxg2tp3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0I4OS9EODM1NkJBQ0Iw NzQxMUVBODdCNjBGNzNDNEY5QUUwMi9RcENZQWxmR2R3czJDdWxXTGFXSlBHRGEy bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FwQ1lBbGZHZHdzMkN1bFdMYVdKUEdEYTJuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0I4OS9EODM1NkJBQ0IwNzQxMUVBODdCNjBGNzNDNEY5QUUwMi9RcENZQWxmR2R3 czJDdWxXTGFXSlBHRGEybmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsozNg7kSU+I9CTnIvvd8qtiaas56xeeen49R9hqvTIfSHVQOw/V0o /2Fukyv0fWOj4OSr8j/1uMtKTsGaSyLnkZxDxsuKm58PRIwAFRcahNXt/QMIygo7 l+07H3MhWXdc8aDK7xEMZlBBy7FkhZYe8luLUUxZGcoBXM+O+ysDpYbHnEyUXaUt u7uzVxDHh01DBy1UhEzVhIj9CtU82mG46qNQfUn3NbxcVfjwxRfo+VzFdDBlfxP9 mjexT1wrpSCKlM1dWhVBN96ccBOzhQq02ficLc+vfsUQ4tCXXIc+adlbIks2nIMa mp/TgLFMdFTWHdDKs2Z9Oyy92Gb9mdGc -----END CERTIFICATE-----Generated at Sat May 18 22:28:01 2024 by rpki-client on console-ams.rpki-client.org