$ rpki-client -vvf rpki.apnic.net/member_repository/A91754CB/53BE4DBEFDD111ED98733067C4F9AE02/3QKn6NfJdXxle9pq2dV_BYgf-lc.mft File: 3QKn6NfJdXxle9pq2dV_BYgf-lc.mft (raw, json) Hash identifier: M7FGY4bAgKwjgxG9Qcvdtqbh5figDws5yXRsUfuishQ= Subject key identifier: 5A:CE:F6:B0:C7:F7:7D:0A:12:B4:CB:85:C1:0B:1B:0E:37:C8:1D:23 Authority key identifier: DD:02:A7:E8:D7:C9:75:7C:65:7B:DA:6A:D9:D5:7F:05:88:1F:FA:57 Certificate issuer: /CN=A91754CB/serialNumber=DD02A7E8D7C9757C657BDA6AD9D57F05881FFA57 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3QKn6NfJdXxle9pq2dV_BYgf-lc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91754CB/53BE4DBEFDD111ED98733067C4F9AE02/3QKn6NfJdXxle9pq2dV_BYgf-lc.mft Manifest number: D2 Signing time: Wed 12 Jun 2024 10:16:12 +0000 Manifest this update: Wed 12 Jun 2024 10:16:11 +0000 Manifest next update: Wed 19 Jun 2024 10:16:11 +0000 Files and hashes: 1: 3QKn6NfJdXxle9pq2dV_BYgf-lc.crl (hash: q7N4EnH/gLvgw5FCrgSEqDNwxgogmxngQnrc5di/R1A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91754CB/53BE4DBEFDD111ED98733067C4F9AE02/3QKn6NfJdXxle9pq2dV_BYgf-lc.crl rsync://rpki.apnic.net/member_repository/A91754CB/53BE4DBEFDD111ED98733067C4F9AE02/3QKn6NfJdXxle9pq2dV_BYgf-lc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3QKn6NfJdXxle9pq2dV_BYgf-lc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 07:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91754CB/serialNumber=DD02A7E8D7C9757C657BDA6AD9D57F05881FFA57 Validity Not Before: Jun 12 10:16:11 2024 GMT Not After : Jun 19 10:16:11 2024 GMT Subject: CN=6669756b-6d9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:a0:68:35:bc:ea:b4:16:65:a4:3e:c8:62:89: 65:dd:56:c2:9b:64:65:01:66:65:45:cb:7b:2b:65: ef:46:e0:45:88:a0:86:49:28:32:e6:ac:e7:39:11: 23:50:84:8d:17:30:8e:26:85:a0:78:d1:07:b9:24: b1:a2:3a:0e:b5:82:43:08:98:45:b0:ef:35:d0:7c: 27:8d:2a:cd:0b:55:99:2b:04:61:90:8c:98:84:7c: 85:ac:28:cd:c8:08:c0:5c:67:56:b1:10:4d:b3:29: 75:fd:0d:c6:6f:68:25:7f:83:5f:e3:d8:40:c0:fd: 0f:36:2a:e7:7d:f3:ff:7c:65:85:58:39:d3:22:db: 7c:c8:77:b3:6e:c1:31:02:18:f0:b2:27:ad:b0:a2: 19:e9:2d:af:ef:7b:ac:30:19:7a:84:48:61:a6:cb: ea:2d:9b:51:b9:77:ba:88:fc:a9:11:84:2f:78:14: ae:ab:b5:42:e6:c7:3a:31:a5:14:c6:3e:05:f6:f2: 94:4c:81:dc:84:de:51:ba:08:fd:01:4e:8e:fc:44: c1:8d:09:77:0b:63:6d:ca:29:ba:b6:88:10:20:17: a0:28:83:85:73:36:46:6d:0b:99:7d:d2:e0:ea:a8: 61:19:9f:2f:05:b5:8b:d9:19:74:e9:83:e3:5a:77: a0:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:CE:F6:B0:C7:F7:7D:0A:12:B4:CB:85:C1:0B:1B:0E:37:C8:1D:23 X509v3 Authority Key Identifier: keyid:DD:02:A7:E8:D7:C9:75:7C:65:7B:DA:6A:D9:D5:7F:05:88:1F:FA:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91754CB/53BE4DBEFDD111ED98733067C4F9AE02/3QKn6NfJdXxle9pq2dV_BYgf-lc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3QKn6NfJdXxle9pq2dV_BYgf-lc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91754CB/53BE4DBEFDD111ED98733067C4F9AE02/3QKn6NfJdXxle9pq2dV_BYgf-lc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:4d:e9:4e:3d:5b:14:d2:0b:2c:fd:8a:b4:02:fd:a5:5b:a8: 74:df:54:0f:c9:fa:48:9d:59:a1:77:69:67:79:d5:ab:b3:ed: dc:b9:58:f7:05:7e:3d:f1:7b:9a:69:7d:b0:94:c8:10:92:50: 16:c1:50:c9:3c:54:82:88:26:37:78:06:10:ec:73:59:36:2d: d0:73:1a:4d:85:86:19:7f:58:2d:e2:14:bb:ce:8c:72:58:f6: a5:46:19:c4:3a:a8:09:75:e0:0f:01:48:bc:88:9e:b4:e6:ab: 33:cc:fd:d6:9d:75:3a:48:ea:dd:e7:51:b7:c9:19:40:bd:d1: 46:3d:86:d8:7c:3c:65:41:41:c4:8a:86:97:43:1f:21:fa:e2: 46:b6:7f:5e:8a:f6:d7:69:ad:ee:50:96:f9:19:4c:01:79:30: 68:21:34:62:d8:ce:84:4c:ab:af:1f:d8:67:2c:6c:5c:f9:e3: b6:aa:bf:fd:e8:b3:6a:7d:80:56:0b:db:00:47:9d:9d:fb:09: be:d6:7d:90:9c:65:e4:97:58:f2:8c:4c:47:db:a7:06:3e:ab: 9a:b1:a1:74:a9:f8:17:25:8b:f0:27:78:85:4e:7f:be:19:84: 1a:b1:ce:ba:95:1b:93:4a:99:d0:3c:6c:22:66:1c:07:dc:31: d9:23:b0:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU0Q0IxMTAvBgNVBAUTKEREMDJBN0U4RDdDOTc1N0M2NTdCREE2QUQ5RDU3RjA1 ODgxRkZBNTcwHhcNMjQwNjEyMTAxNjExWhcNMjQwNjE5MTAxNjExWjAYMRYwFAYD VQQDEw02NjY5NzU2Yi02ZDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8aBoNbzqtBZlpD7IYoll3VbCm2RlAWZlRct7K2XvRuBFiKCGSSgy5qznOREj UISNFzCOJoWgeNEHuSSxojoOtYJDCJhFsO810HwnjSrNC1WZKwRhkIyYhHyFrCjN yAjAXGdWsRBNsyl1/Q3Gb2glf4Nf49hAwP0PNirnffP/fGWFWDnTItt8yHezbsEx AhjwsietsKIZ6S2v73usMBl6hEhhpsvqLZtRuXe6iPypEYQveBSuq7VC5sc6MaUU xj4F9vKUTIHchN5Rugj9AU6O/ETBjQl3C2Ntyim6togQIBegKIOFczZGbQuZfdLg 6qhhGZ8vBbWL2Rl06YPjWnegaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFrO9rDH 930KErTLhcELGw43yB0jMB8GA1UdIwQYMBaAFN0Cp+jXyXV8ZXvaatnVfwWIH/pX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTRDQi81M0JFNERCRUZE RDExMUVEOTg3MzMwNjdDNEY5QUUwMi8zUUtuNk5mSmRYeGxlOXBxMmRWX0JZZ2Yt bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNRS242TmZKZFh4bGU5cHEyZFZfQllnZi1sYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTRDQi81M0JFNERCRUZERDExMUVEOTg3MzMwNjdDNEY5QUUwMi8zUUtuNk5mSmRY eGxlOXBxMmRWX0JZZ2YtbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvTelOPVsU0gss/Yq0Av2lW6h031QPyfpInVmhd2lnedWrs+3cuVj3 BX498XuaaX2wlMgQklAWwVDJPFSCiCY3eAYQ7HNZNi3QcxpNhYYZf1gt4hS7zoxy WPalRhnEOqgJdeAPAUi8iJ605qszzP3WnXU6SOrd51G3yRlAvdFGPYbYfDxlQUHE ioaXQx8h+uJGtn9eivbXaa3uUJb5GUwBeTBoITRi2M6ETKuvH9hnLGxc+eO2qr/9 6LNqfYBWC9sAR52d+wm+1n2QnGXkl1jyjExH26cGPquasaF0qfgXJYvwJ3iFTn++ GYQasc66lRuTSpnQPGwiZhwH3DHZI7A2 -----END CERTIFICATE-----Generated at Wed Jun 12 11:58:29 2024 by rpki-client on console-fra.rpki-client.org