$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft File: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft (raw, json) Hash identifier: 9JjXrd1qnQQyruoD9FkKmrdlWf1yUeQGnhqL/jYXqIA= Subject key identifier: A3:6F:E9:8A:BD:3B:51:F8:8F:E0:E5:B0:5B:11:0E:76:F2:20:F4:60 Authority key identifier: 41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 Certificate issuer: /CN=A91E5D61/serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Certificate serial: 11CA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft Manifest number: 45A7 Signing time: Sat 18 May 2024 14:22:33 +0000 Manifest this update: Sat 18 May 2024 14:22:33 +0000 Manifest next update: Sat 25 May 2024 14:22:33 +0000 Files and hashes: 1: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl (hash: 1G+3gEL04H2PK2nuo70qJXObQgk+ZFnFYUETqQTn2u8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:22:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4554 (0x11ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61/serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Validity Not Before: May 18 14:22:33 2024 GMT Not After : May 25 14:22:33 2024 GMT Subject: CN=6648b9a9-d79e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cf:2b:39:fc:2d:85:a3:d3:ec:53:04:7a:48: 40:46:ae:d0:28:17:4b:00:a8:61:83:87:90:73:c4: 86:ca:c1:57:7f:60:ee:87:43:94:0f:44:c5:d6:e6: 7a:79:b4:50:53:69:58:d4:90:3d:a9:2c:f0:c2:50: 08:d4:bf:85:6c:20:aa:ce:b6:89:02:fb:c9:01:5b: 3f:18:18:83:0a:e5:5e:7b:ab:66:ef:41:2b:58:e9: 6a:8e:11:1a:04:8d:5e:4d:45:a5:47:03:dd:c1:fb: ec:34:cc:22:fa:1a:dc:ee:ab:04:35:82:3c:b5:6b: 36:a1:6f:a3:60:35:d5:3e:35:b8:15:67:ff:56:24: 21:da:d2:48:a2:2c:cc:19:67:3e:7a:41:77:ea:c2: ed:bd:96:a7:73:16:ed:f8:37:23:11:f0:84:87:43: 44:5d:d4:36:20:b4:32:f7:35:0a:9f:05:92:09:b6: 67:17:68:7a:59:4e:d8:1e:2f:1b:3e:87:e0:1a:e7: 8e:47:b7:40:e0:b4:2b:4d:8e:8c:de:35:e6:cb:48: f3:31:42:24:dc:28:6e:79:f2:e0:b0:7f:59:6a:bc: c6:bb:21:07:a5:76:eb:2a:13:c6:df:d7:08:33:d5: c5:b4:f2:c3:86:d1:e5:57:f6:9c:c9:1f:6c:31:15: 66:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:6F:E9:8A:BD:3B:51:F8:8F:E0:E5:B0:5B:11:0E:76:F2:20:F4:60 X509v3 Authority Key Identifier: keyid:41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:3d:27:52:11:ad:b2:7b:42:a6:b6:e0:8d:10:0c:5c:4a:4a: 1f:12:67:f2:ca:b4:11:b4:df:65:86:dc:a9:51:fa:a9:d2:79: 53:9c:38:c4:de:d9:6f:f7:39:26:30:e1:e5:d5:8e:42:d8:22: 80:dd:53:dd:dd:23:49:42:c5:19:8e:83:84:5f:65:b0:9a:32: ed:f7:0b:6e:ca:13:0a:9f:7b:b3:40:ca:dd:c5:0d:55:84:1d: 94:04:7a:c3:37:c0:84:3c:89:ff:5f:c5:2e:77:bb:68:ae:82: 74:a0:b1:4a:e9:63:d7:55:71:2e:d8:3b:17:69:b0:99:39:a9: f2:13:f0:c8:89:4d:6c:06:dc:d7:4b:e6:c7:a9:28:eb:f5:63: c6:d9:19:e5:40:51:7c:48:ce:e2:3c:e3:4b:69:d4:e3:77:0d: 95:4f:2b:4c:36:c1:d5:b4:86:36:bb:84:3a:6e:c4:9d:2c:47: 67:49:a8:01:48:c4:0d:fe:57:df:9e:8c:b2:46:26:aa:6a:ba: ea:8b:c9:17:22:42:ff:dd:29:85:85:57:e8:e4:8d:f2:1d:18: f0:f4:60:a5:6f:57:b2:de:87:9b:eb:e5:7e:ba:72:56:06:da: 56:d9:18:48:01:48:b8:10:cd:ec:44:76:96:17:d5:f0:ba:df: 3a:dd:43:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDQxNkQ2Q0Q2MDM5MEZCN0M5NkVENzlENzhDRTc2RjU0 QUZDRjQ0NTgwHhcNMjQwNTE4MTQyMjMzWhcNMjQwNTI1MTQyMjMzWjAYMRYwFAYD VQQDEw02NjQ4YjlhOS1kNzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu88rOfwthaPT7FMEekhARq7QKBdLAKhhg4eQc8SGysFXf2Duh0OUD0TF1uZ6 ebRQU2lY1JA9qSzwwlAI1L+FbCCqzraJAvvJAVs/GBiDCuVee6tm70ErWOlqjhEa BI1eTUWlRwPdwfvsNMwi+hrc7qsENYI8tWs2oW+jYDXVPjW4FWf/ViQh2tJIoizM GWc+ekF36sLtvZancxbt+DcjEfCEh0NEXdQ2ILQy9zUKnwWSCbZnF2h6WU7YHi8b PofgGueOR7dA4LQrTY6M3jXmy0jzMUIk3ChuefLgsH9ZarzGuyEHpXbrKhPG39cI M9XFtPLDhtHlV/acyR9sMRVmbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKNv6Yq9 O1H4j+DlsFsRDnbyIPRgMB8GA1UdIwQYMBaAFEFtbNYDkPt8lu1514znb1Svz0RY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8yQTdDN0Q5ODFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0zeVc3WG5Yak9kdlZLX1BS RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FXMXMxZ09RLTN5VzdYblhqT2R2VktfUFJGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8yQTdDN0Q5ODFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0z eVc3WG5Yak9kdlZLX1BSRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7PSdSEa2ye0KmtuCNEAxcSkofEmfyyrQRtN9lhtypUfqp0nlTnDjE 3tlv9zkmMOHl1Y5C2CKA3VPd3SNJQsUZjoOEX2WwmjLt9wtuyhMKn3uzQMrdxQ1V hB2UBHrDN8CEPIn/X8Uud7toroJ0oLFK6WPXVXEu2DsXabCZOanyE/DIiU1sBtzX S+bHqSjr9WPG2RnlQFF8SM7iPONLadTjdw2VTytMNsHVtIY2u4Q6bsSdLEdnSagB SMQN/lffnoyyRiaqarrqi8kXIkL/3SmFhVfo5I3yHRjw9GClb1ey3oeb6+V+unJW BtpW2RhIAUi4EM3sRHaWF9Xwut863UPI -----END CERTIFICATE-----Generated at Sat May 18 15:58:27 2024 by rpki-client on console-ams.rpki-client.org