$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft File: PqQ0fS2f1utqAbROVXH4iwiswls.mft (raw, json) Hash identifier: CZo11azSn9dUdv+s2Dd7DvXHIDHsH4FksWhabWI8ebA= Subject key identifier: BE:FF:CC:CD:B7:5F:32:2E:EF:7A:9F:74:DD:05:DE:21:71:D8:90:E0 Authority key identifier: 3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B Certificate issuer: /CN=A917BB51/serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft Manifest number: 3C Signing time: Sun 19 May 2024 08:18:04 +0000 Manifest this update: Sun 19 May 2024 08:18:03 +0000 Manifest next update: Sun 26 May 2024 08:18:03 +0000 Files and hashes: 1: PqQ0fS2f1utqAbROVXH4iwiswls.crl (hash: QXYrOrDRltg+R30aubMbVFQBEyGohVp7Ysb2qpjBjsA=) 2: A9C5C1CAC4B811EE8A03D547C4F9AE02.roa (hash: aHzpUCZxvitp6ra+qOqDl8Tj2DHYKM5Yv+ZqnbUASaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB51/serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Validity Not Before: May 19 08:18:03 2024 GMT Not After : May 26 08:18:03 2024 GMT Subject: CN=6649b5bb-fc14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e0:a8:9e:5f:aa:b9:4a:cf:b6:a6:61:35:3b: fc:2e:87:47:b9:8e:5d:0d:dd:80:60:e0:98:db:d6: df:68:d9:16:b1:98:64:d1:bd:57:88:a1:fb:b6:64: 9f:b0:d0:49:dc:e6:fe:62:4d:f7:4f:c7:d6:c8:1b: d0:7f:5f:c6:37:1a:d0:3f:8b:91:d6:e1:da:5a:f3: 13:17:3d:e1:a1:5a:ae:1b:ab:98:5d:e1:3e:7f:d0: cb:96:5a:e8:ac:81:4a:f8:ac:2f:f2:dd:65:f9:58: dd:d4:5d:08:80:59:9e:ff:b4:75:90:f4:3f:5f:49: 1f:30:74:29:46:40:bc:e6:67:85:b7:32:2a:34:97: 4f:60:ae:6f:cf:52:b7:13:15:68:af:3f:32:32:19: c4:22:8c:06:8e:9d:0a:b2:5a:d2:97:8b:13:05:1a: f2:b5:21:4d:50:81:57:b6:3f:f1:fd:f0:cb:94:e6: 3a:08:1d:c6:0a:b7:02:81:fd:70:39:a4:2b:cc:e5: 6a:af:72:49:49:16:a4:19:17:2e:90:4b:d1:3a:4e: c1:4d:63:f2:5c:9d:4c:49:3c:a6:36:52:4c:2f:be: 8b:9e:c9:3b:34:40:69:57:60:13:8d:60:57:c6:8f: 5b:be:39:a5:d8:1d:5c:8d:6c:70:ee:a7:20:ef:07: 38:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:FF:CC:CD:B7:5F:32:2E:EF:7A:9F:74:DD:05:DE:21:71:D8:90:E0 X509v3 Authority Key Identifier: keyid:3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:23:7f:ab:db:c4:72:21:ef:bf:64:6f:25:37:9c:04:7f:d6: 6a:52:b4:11:5b:3f:ad:37:06:4f:f4:98:0b:9e:27:60:0a:77: 1f:fd:d0:1e:bf:cc:4a:0a:1b:a5:db:eb:2b:03:11:40:01:ae: 4b:51:34:b7:5a:22:5a:80:33:58:3e:ab:e2:2b:ae:ee:d1:34: ea:09:3e:48:4f:d9:76:17:6f:26:bc:76:ea:70:2c:4c:dd:0f: ab:80:f8:11:a9:3d:76:cf:ac:a3:1e:d7:2a:72:b2:7f:16:7d: c7:6d:6f:fe:56:28:0f:3d:9e:9d:3e:83:b3:2b:30:56:ec:68: 09:e7:0a:fb:59:c7:75:6c:8a:c1:4b:84:61:bf:72:2e:a6:ae: 66:03:04:b2:a9:6a:52:3e:c5:0c:95:f5:fc:5b:d3:7e:1c:5e: 19:f0:58:65:35:bc:05:bd:12:33:90:0a:4b:b7:a2:c9:dd:4e: 86:9c:4f:30:7b:c3:de:b3:f1:e0:2a:c0:35:b4:e8:e8:b4:36: 80:d2:a2:4d:c9:cc:ce:b0:8b:34:56:14:25:7a:6b:1d:24:54: 0c:0d:2f:9a:ce:54:74:c1:df:9a:96:a5:46:15:44:1f:5f:62: 1d:df:a3:77:26:c7:7f:69:97:11:ea:c6:b8:15:46:9b:8e:9c: c6:55:56:ae -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QkI1MTExMC8GA1UEBRMoM0VBNDM0N0QyRDlGRDZFQjZBMDFCNDRFNTU3MUY4OEIw OEFDQzI1QjAeFw0yNDA1MTkwODE4MDNaFw0yNDA1MjYwODE4MDNaMBgxFjAUBgNV BAMTDTY2NDliNWJiLWZjMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCu4KieX6q5Ss+2pmE1O/wuh0e5jl0N3YBg4Jjb1t9o2RaxmGTRvVeIofu2ZJ+w 0Enc5v5iTfdPx9bIG9B/X8Y3GtA/i5HW4dpa8xMXPeGhWq4bq5hd4T5/0MuWWuis gUr4rC/y3WX5WN3UXQiAWZ7/tHWQ9D9fSR8wdClGQLzmZ4W3Mio0l09grm/PUrcT FWivPzIyGcQijAaOnQqyWtKXixMFGvK1IU1QgVe2P/H98MuU5joIHcYKtwKB/XA5 pCvM5WqvcklJFqQZFy6QS9E6TsFNY/JcnUxJPKY2UkwvvoueyTs0QGlXYBONYFfG j1u+OaXYHVyNbHDupyDvBzhjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvv/Mzbdf Mi7vep903QXeIXHYkOAwHwYDVR0jBBgwFoAUPqQ0fS2f1utqAbROVXH4iwiswlsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCQjUxLzI1QUNGNUMwQzRC ODExRUVCRDcxQzQ0NkM0RjlBRTAyL1BxUTBmUzJmMXV0cUFiUk9WWEg0aXdpc3ds cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHFRMGZTMmYxdXRxQWJST1ZYSDRpd2lzd2xzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdC QjUxLzI1QUNGNUMwQzRCODExRUVCRDcxQzQ0NkM0RjlBRTAyL1BxUTBmUzJmMXV0 cUFiUk9WWEg0aXdpc3dscy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACUjf6vbxHIh779kbyU3nAR/1mpStBFbP603Bk/0mAueJ2AKdx/90B6/ zEoKG6Xb6ysDEUABrktRNLdaIlqAM1g+q+Irru7RNOoJPkhP2XYXbya8dupwLEzd D6uA+BGpPXbPrKMe1ypysn8Wfcdtb/5WKA89np0+g7MrMFbsaAnnCvtZx3VsisFL hGG/ci6mrmYDBLKpalI+xQyV9fxb034cXhnwWGU1vAW9EjOQCku3osndToacTzB7 w96z8eAqwDW06Oi0NoDSok3JzM6wizRWFCV6ax0kVAwNL5rOVHTB35qWpUYVRB9f Yh3fo3cmx39plxHqxrgVRpuOnMZVVq4= -----END CERTIFICATE-----Generated at Sun May 19 09:04:13 2024 by rpki-client on console-fra.rpki-client.org