$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft File: qafXPj7Y1cRm3LxsIJzUNTzemM8.mft (raw, json) Hash identifier: 6iJ1MMQu/BSNWB8TL/MktMNwxqjFlTkrJzjIDCoPAow= Subject key identifier: 2A:32:7A:6C:10:08:51:A8:D1:7B:8F:2C:59:34:E6:E2:2D:76:F5:49 Authority key identifier: A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF Certificate issuer: /CN=A9143FC4/serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Certificate serial: 337C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft Manifest number: 337C Signing time: Sat 04 May 2024 15:37:35 +0000 Manifest this update: Sat 04 May 2024 15:37:35 +0000 Manifest next update: Sat 11 May 2024 15:37:35 +0000 Files and hashes: 1: qafXPj7Y1cRm3LxsIJzUNTzemM8.crl (hash: mhNMVDBbbYrJ5QCFQP3yaPrNpSRyVj+J/xUFaC1RCfU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13180 (0x337c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FC4/serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Validity Not Before: May 4 15:37:35 2024 GMT Not After : May 11 15:37:35 2024 GMT Subject: CN=6636563f-5868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:e1:f2:39:75:1a:c7:7f:b5:4c:81:0f:bd:cb: a4:b3:4a:b4:e4:3f:e1:32:0f:10:01:e0:5f:9e:b7: ba:bb:6f:24:47:67:64:09:56:97:87:60:f7:5e:fe: e1:49:1c:ec:f4:78:6e:88:1f:70:a5:a5:6e:ea:45: 01:9f:80:f8:91:d7:82:f3:ea:cb:d5:62:38:ca:91: 37:54:46:b7:3e:59:53:7a:6f:b8:ea:aa:8b:84:1f: aa:a1:83:de:23:b1:63:3c:c8:69:ef:42:11:45:d2: 14:11:3c:00:7b:d9:84:18:28:d6:eb:51:9a:69:cb: b0:7a:f8:95:fe:2e:62:95:e9:a6:72:84:fb:05:23: 30:24:8f:c9:84:5c:24:82:bb:0c:23:2c:71:ff:a5: f6:a7:0e:80:5f:7b:ef:58:03:9b:06:1c:65:31:40: 53:8d:f9:f2:ee:6f:6b:5e:35:aa:c9:f9:9c:ae:a5: 07:8b:6e:23:db:a3:29:bb:d6:18:3a:84:0b:f2:36: 11:42:7f:b3:af:27:62:9f:34:f0:6e:f4:1a:b8:c0: 7f:01:4d:a2:da:f0:e3:a9:f0:6d:e5:d3:19:db:36: 5c:d7:ae:59:5e:d7:73:95:bb:87:d7:d1:a0:3e:43: a2:75:62:ab:17:c8:95:b9:6d:4f:a7:85:1f:64:69: bd:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:32:7A:6C:10:08:51:A8:D1:7B:8F:2C:59:34:E6:E2:2D:76:F5:49 X509v3 Authority Key Identifier: keyid:A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:c2:93:b4:98:00:06:23:5d:72:6a:4a:b6:3d:95:a8:90:33: 23:5e:7d:33:ff:0d:0f:61:49:7b:f9:9e:b4:c9:ae:e5:d9:39: 6c:23:c6:63:3a:6f:7c:5d:e3:7d:6a:36:a3:08:02:56:ba:18: 76:f6:aa:c2:96:b0:c3:d5:5f:86:b1:d1:2e:48:a8:06:4c:b9: 47:4a:81:fc:88:43:41:77:f0:40:7e:46:21:5a:5c:ac:1c:e7: 89:36:9b:7d:f2:37:68:17:b4:35:96:1b:28:79:47:7b:82:85: b8:cf:b7:34:f4:86:df:b4:e5:dd:c1:ef:27:dc:30:e1:b1:da: fc:57:87:be:5a:4a:bd:2c:d8:94:4f:f1:ee:d2:05:30:32:bd: 92:d7:71:3d:a0:58:ba:33:c9:10:5a:7b:08:2c:ef:55:fe:b0: f7:e7:aa:77:7c:e9:2f:4c:3f:40:43:eb:1b:07:16:a4:ba:2f: f2:8d:a2:48:5e:e9:e4:14:ae:3a:3b:fb:55:60:1b:5e:bd:23: 29:9a:1f:c8:dd:2f:a7:0f:fd:7e:6e:62:c8:0d:45:f0:b2:5d: 13:3f:8e:b6:8d:4e:1b:59:4d:6f:dd:ea:f6:07:b4:84:5f:86: 0b:82:92:f3:0d:4a:21:5b:3f:82:8a:60:7a:78:fe:f6:37:00: d6:b3:6a:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGQzQxMTAvBgNVBAUTKEE5QTdENzNFM0VEOEQ1QzQ2NkRDQkM2QzIwOUNENDM1 M0NERTk4Q0YwHhcNMjQwNTA0MTUzNzM1WhcNMjQwNTExMTUzNzM1WjAYMRYwFAYD VQQDEw02NjM2NTYzZi01ODY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmuHyOXUax3+1TIEPvcuks0q05D/hMg8QAeBfnre6u28kR2dkCVaXh2D3Xv7h SRzs9HhuiB9wpaVu6kUBn4D4kdeC8+rL1WI4ypE3VEa3PllTem+46qqLhB+qoYPe I7FjPMhp70IRRdIUETwAe9mEGCjW61GaacuweviV/i5ilemmcoT7BSMwJI/JhFwk grsMIyxx/6X2pw6AX3vvWAObBhxlMUBTjfny7m9rXjWqyfmcrqUHi24j26Mpu9YY OoQL8jYRQn+zrydinzTwbvQauMB/AU2i2vDjqfBt5dMZ2zZc165ZXtdzlbuH19Gg PkOidWKrF8iVuW1Pp4UfZGm9jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCoyemwQ CFGo0XuPLFk05uItdvVJMB8GA1UdIwQYMBaAFKmn1z4+2NXEZty8bCCc1DU83pjP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZDNC9CMTY1QTNBODI5 NTgxMUUyQjM4RDU4RkIwOEIwMkNEMi9xYWZYUGo3WTFjUm0zTHhzSUp6VU5UemVt TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FhZlhQajdZMWNSbTNMeHNJSnpVTlR6ZW1NOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0ZDNC9CMTY1QTNBODI5NTgxMUUyQjM4RDU4RkIwOEIwMkNEMi9xYWZYUGo3WTFj Um0zTHhzSUp6VU5UemVtTTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDwpO0mAAGI11yakq2PZWokDMjXn0z/w0PYUl7+Z60ya7l2TlsI8Zj Om98XeN9ajajCAJWuhh29qrClrDD1V+GsdEuSKgGTLlHSoH8iENBd/BAfkYhWlys HOeJNpt98jdoF7Q1lhsoeUd7goW4z7c09IbftOXdwe8n3DDhsdr8V4e+Wkq9LNiU T/Hu0gUwMr2S13E9oFi6M8kQWnsILO9V/rD356p3fOkvTD9AQ+sbBxakui/yjaJI XunkFK46O/tVYBtevSMpmh/I3S+nD/1+bmLIDUXwsl0TP462jU4bWU1v3er2B7SE X4YLgpLzDUohWz+CimB6eP72NwDWs2qb -----END CERTIFICATE-----Generated at Sat May 4 16:33:54 2024 by rpki-client on console-fra.rpki-client.org