$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft File: iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft (raw, json) Hash identifier: dRUEqGYTVmGYFBJD4IpYDiQBrdEkessrUSnnbbogKWE= Subject key identifier: C6:93:41:FC:90:49:D1:29:0F:D1:5F:24:9B:AB:39:E7:4C:D4:FB:A8 Authority key identifier: 89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D Certificate issuer: /CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft Manifest number: 3C Signing time: Fri 17 May 2024 08:20:09 +0000 Manifest this update: Fri 17 May 2024 08:20:09 +0000 Manifest next update: Fri 24 May 2024 08:20:09 +0000 Files and hashes: 1: iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl (hash: 0fznYwl3rMF+/SkEV9KJJ7qgxj8Ty9PeD7eJHax+vmg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Validity Not Before: May 17 08:20:09 2024 GMT Not After : May 24 08:20:09 2024 GMT Subject: CN=66471339-0595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b7:e4:b8:57:66:51:26:9d:25:57:08:cf:3c: df:3c:cd:da:8a:17:7a:59:9c:83:7f:34:5a:08:5d: 4c:bc:fb:b2:18:63:d4:4a:fd:aa:ee:90:01:ff:32: 66:e2:f2:46:e7:64:b2:6c:ab:a8:b5:e1:18:fe:da: 19:8c:da:50:f8:8a:65:20:72:f9:c1:38:10:c9:75: cb:d2:5a:e8:1e:12:f2:8b:9c:5c:f7:b7:e2:f0:bf: f0:21:85:5c:df:03:af:6c:dd:91:b3:30:d4:0c:03: 09:a6:de:d0:31:0e:b6:0c:67:c4:e3:50:50:63:c7: 0d:4a:c9:73:d8:47:bd:5f:57:5a:d6:d7:40:5d:1c: 54:f1:6f:b1:a8:c1:2e:15:98:68:a0:2c:23:84:fd: 7f:fd:94:2a:5a:40:53:6d:ce:26:58:aa:e6:0f:65: 0c:f2:e9:17:b9:e6:43:f0:4e:e1:21:d9:c0:0a:d3: fb:29:74:01:bf:7e:b6:6a:4f:f3:89:7b:75:1e:09: fd:67:c9:10:95:35:bd:d0:29:41:9c:55:79:b4:3e: 8a:4e:82:ee:d0:7b:44:ab:30:a3:4f:6b:bf:78:bb: 19:d9:f9:e3:00:39:8a:9e:5d:6e:12:ac:04:ec:6e: 75:3b:c8:dd:d5:17:fe:ff:b0:a4:f3:d5:24:d1:81: a8:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:93:41:FC:90:49:D1:29:0F:D1:5F:24:9B:AB:39:E7:4C:D4:FB:A8 X509v3 Authority Key Identifier: keyid:89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:50:54:43:dc:ac:ab:27:7c:d0:8f:a0:9d:4e:7e:40:75:6f: a5:aa:f9:a6:2b:f6:41:8d:91:ac:76:d4:25:6e:35:c3:77:2e: f4:ed:49:e4:db:a6:80:e6:22:09:a0:ec:04:e0:c2:5e:32:22: 47:23:f2:f9:02:cc:2e:ae:c7:0b:b5:be:c1:13:33:ff:9d:69: 03:b7:90:fa:ee:20:a4:3a:f7:2d:b6:80:62:05:2c:34:2b:b1: 30:f9:15:62:f6:1f:f6:93:56:5b:48:2b:2b:1f:fd:ac:db:da: 0c:00:32:51:9b:66:7e:bd:ee:f6:00:f8:77:0e:b0:08:89:e8: 30:aa:73:d5:b5:aa:0a:7f:dc:66:d6:80:97:cc:a9:b4:f3:57: 23:a4:e0:ff:df:83:c3:47:0e:fd:f5:95:22:6b:63:89:c7:d5: 2f:ab:0a:d1:f6:18:4b:32:1a:73:47:86:a3:a0:9a:2e:78:33: d0:06:48:1a:21:d7:2d:62:40:28:2c:04:c4:d1:5a:e1:0c:ca: b5:82:62:6a:6e:b2:20:ba:e6:b4:85:3f:7b:de:92:6f:48:34: f4:99:cd:67:64:9d:71:56:08:b6:02:2c:26:11:48:c1:dc:35: 5b:61:4c:61:e9:b5:eb:54:f0:86:6b:94:7f:dd:83:5b:fa:a7: 7e:ef:6a:e1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NUY3QjExMC8GA1UEBRMoODkwQjFERUZFODhENTkxOTZCQ0M3QjY1MjY4QzYyRTg2 RTU0RDQ2RDAeFw0yNDA1MTcwODIwMDlaFw0yNDA1MjQwODIwMDlaMBgxFjAUBgNV BAMTDTY2NDcxMzM5LTA1OTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCht+S4V2ZRJp0lVwjPPN88zdqKF3pZnIN/NFoIXUy8+7IYY9RK/arukAH/Mmbi 8kbnZLJsq6i14Rj+2hmM2lD4imUgcvnBOBDJdcvSWugeEvKLnFz3t+Lwv/AhhVzf A69s3ZGzMNQMAwmm3tAxDrYMZ8TjUFBjxw1KyXPYR71fV1rW10BdHFTxb7GowS4V mGigLCOE/X/9lCpaQFNtziZYquYPZQzy6Re55kPwTuEh2cAK0/spdAG/frZqT/OJ e3UeCf1nyRCVNb3QKUGcVXm0PopOgu7Qe0SrMKNPa794uxnZ+eMAOYqeXW4SrATs bnU7yN3VF/7/sKTz1STRgaj/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxpNB/JBJ 0SkP0V8km6s550zU+6gwHwYDVR0jBBgwFoAUiQsd7+iNWRlrzHtlJoxi6G5U1G0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1RjdCL0ExMzFCMzk0QkIz OTExRUVBNjU1NDE3RUM0RjlBRTAyL2lRc2Q3LWlOV1JscnpIdGxKb3hpNkc1VTFH MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVFzZDctaU5XUmxyekh0bEpveGk2RzVVMUcwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1 RjdCL0ExMzFCMzk0QkIzOTExRUVBNjU1NDE3RUM0RjlBRTAyL2lRc2Q3LWlOV1Js cnpIdGxKb3hpNkc1VTFHMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA9QVEPcrKsnfNCPoJ1OfkB1b6Wq+aYr9kGNkax21CVuNcN3LvTtSeTb poDmIgmg7ATgwl4yIkcj8vkCzC6uxwu1vsETM/+daQO3kPruIKQ69y22gGIFLDQr sTD5FWL2H/aTVltIKysf/azb2gwAMlGbZn697vYA+HcOsAiJ6DCqc9W1qgp/3GbW gJfMqbTzVyOk4P/fg8NHDv31lSJrY4nH1S+rCtH2GEsyGnNHhqOgmi54M9AGSBoh 1y1iQCgsBMTRWuEMyrWCYmpusiC65rSFP3vekm9INPSZzWdknXFWCLYCLCYRSMHc NVthTGHptetU8IZrlH/dg1v6p37vauE= -----END CERTIFICATE-----Generated at Fri May 17 08:52:51 2024 by rpki-client on console-ams.rpki-client.org