$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft File: QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft (raw, json) Hash identifier: csk40jOwSryFnfgjG1r2sx3crdYa4J0PlrfAV0MoKPI= Subject key identifier: AF:29:8F:BC:FF:C0:0A:CB:60:48:55:C2:74:99:B7:63:A2:EB:25:3D Authority key identifier: 42:67:CF:5D:03:00:4A:8F:EF:DF:21:39:5D:0F:E8:24:54:8B:13:C1 Certificate issuer: /CN=A91FCEB1/serialNumber=4267CF5D03004A8FEFDF21395D0FE824548B13C1 Certificate serial: 1FC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft Manifest number: 2609 Signing time: Sat 18 May 2024 16:20:24 +0000 Manifest this update: Sat 18 May 2024 16:20:24 +0000 Manifest next update: Sat 25 May 2024 16:20:24 +0000 Files and hashes: 1: QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl (hash: A3CJX9Yj9fmtaaEltcWVtODSxLXzHe7naV+tyxp8PkM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8137 (0x1fc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1/serialNumber=4267CF5D03004A8FEFDF21395D0FE824548B13C1 Validity Not Before: May 18 16:20:24 2024 GMT Not After : May 25 16:20:24 2024 GMT Subject: CN=6648d548-c70e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e0:6c:48:fa:c0:65:ef:11:9b:ab:c5:2f:6a: 56:f8:54:c8:f7:ec:99:8e:8b:d2:31:38:c6:58:7d: ba:46:31:bd:91:7b:0a:98:34:59:77:9e:82:ef:ea: d3:0a:50:71:4d:88:63:4e:0c:38:d5:9d:95:d4:d2: fa:9c:22:c7:0d:7d:af:79:3a:28:cf:c5:6b:2f:44: 9c:c2:b6:c3:d9:c3:1e:9c:7c:da:b4:2f:7a:13:0d: 15:71:4a:c4:de:d6:da:e9:f6:a2:2f:d3:b6:23:a4: a0:53:88:28:63:85:31:bb:ac:e9:f2:44:2f:c3:ed: 94:78:53:42:35:5a:ab:81:15:1b:82:ef:a0:e9:67: b8:0e:45:4b:8b:bd:fa:23:94:6a:82:ce:e2:94:de: 5c:cd:a9:3a:f2:23:b9:1b:32:96:14:6a:6a:5b:3a: 12:b5:a2:a3:1a:fe:fa:2d:6b:26:1b:5e:ea:0b:e2: f4:16:77:04:92:33:a3:3b:17:a7:a9:e8:62:6c:5f: a0:b7:99:81:89:c8:94:6b:be:2a:b7:59:9a:0a:a5: a0:36:63:1c:8d:4c:a4:9e:ee:9f:04:ee:9b:a8:e9: 95:ee:68:8a:20:52:93:17:ad:31:b9:23:69:35:b3: 61:eb:4c:9d:c3:25:df:6b:05:a2:4c:b0:8c:56:9f: a5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:29:8F:BC:FF:C0:0A:CB:60:48:55:C2:74:99:B7:63:A2:EB:25:3D X509v3 Authority Key Identifier: keyid:42:67:CF:5D:03:00:4A:8F:EF:DF:21:39:5D:0F:E8:24:54:8B:13:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:81:94:39:e8:93:9e:4c:49:ff:30:69:01:ed:4e:06:f5:79: 96:e9:c5:d4:c4:14:07:35:b0:ad:de:af:af:8d:59:c2:3f:64: c5:06:d7:7d:17:de:61:c3:2a:0e:34:2c:59:2e:7e:cf:cf:dc: 8e:16:09:2e:33:35:52:c9:b7:9a:36:c7:8b:c5:2d:2f:1e:15: 8f:29:56:e7:47:ce:c9:a9:29:bc:2a:4f:4e:84:32:86:26:3c: bf:8e:6f:0a:79:8f:e9:21:cc:39:33:1f:d2:35:7c:14:da:d1: a3:25:9f:f7:2a:c1:93:43:f4:59:8f:ce:dc:1c:b2:63:10:3b: cb:08:67:96:de:88:b6:ef:8b:27:97:15:d9:9b:ff:e8:dc:43: 42:0b:93:7a:34:ec:7f:6f:e7:a4:a4:f2:fe:bf:7c:5f:17:c3: 62:dc:f0:14:4b:6c:52:28:cc:b8:67:d1:92:ae:26:62:9d:99: a5:09:f2:7f:6a:9f:0e:b3:66:cf:ea:61:4e:d1:13:de:52:d8: 76:a8:24:8d:c8:1c:3d:5b:60:ca:86:0c:76:33:49:02:a9:da: c8:9c:86:11:d4:cc:e5:0b:80:39:fb:1f:c8:d5:af:e0:3e:1a: 92:02:22:7f:56:22:5c:01:ab:01:07:28:53:bf:35:a3:30:e5: 09:8b:67:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICH8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKDQyNjdDRjVEMDMwMDRBOEZFRkRGMjEzOTVEMEZFODI0 NTQ4QjEzQzEwHhcNMjQwNTE4MTYyMDI0WhcNMjQwNTI1MTYyMDI0WjAYMRYwFAYD VQQDEw02NjQ4ZDU0OC1jNzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+BsSPrAZe8Rm6vFL2pW+FTI9+yZjovSMTjGWH26RjG9kXsKmDRZd56C7+rT ClBxTYhjTgw41Z2V1NL6nCLHDX2veTooz8VrL0ScwrbD2cMenHzatC96Ew0VcUrE 3tba6faiL9O2I6SgU4goY4Uxu6zp8kQvw+2UeFNCNVqrgRUbgu+g6We4DkVLi736 I5Rqgs7ilN5czak68iO5GzKWFGpqWzoStaKjGv76LWsmG17qC+L0FncEkjOjOxen qehibF+gt5mBiciUa74qt1maCqWgNmMcjUyknu6fBO6bqOmV7miKIFKTF60xuSNp NbNh60ydwyXfawWiTLCMVp+lQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK8pj7z/ wArLYEhVwnSZt2Oi6yU9MB8GA1UdIwQYMBaAFEJnz10DAEqP798hOV0P6CRUixPB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS9FRkI4NzVDODA4 QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9RbWZQWFFNQVNvX3YzeUU1WFFfb0pGU0xF OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FtZlBYUU1BU29fdjN5RTVYUV9vSkZTTEU4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS9FRkI4NzVDODA4QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9RbWZQWFFNQVNv X3YzeUU1WFFfb0pGU0xFOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAagZQ56JOeTEn/MGkB7U4G9XmW6cXUxBQHNbCt3q+vjVnCP2TFBtd9 F95hwyoONCxZLn7Pz9yOFgkuMzVSybeaNseLxS0vHhWPKVbnR87JqSm8Kk9OhDKG Jjy/jm8KeY/pIcw5Mx/SNXwU2tGjJZ/3KsGTQ/RZj87cHLJjEDvLCGeW3oi274sn lxXZm//o3ENCC5N6NOx/b+ekpPL+v3xfF8Ni3PAUS2xSKMy4Z9GSriZinZmlCfJ/ ap8Os2bP6mFO0RPeUth2qCSNyBw9W2DKhgx2M0kCqdrInIYR1MzlC4A5+x/I1a/g PhqSAiJ/ViJcAasBByhTvzWjMOUJi2dg -----END CERTIFICATE-----Generated at Sat May 18 17:20:36 2024 by rpki-client on console-ams.rpki-client.org