$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: UI4su2UGmh2qvSIR6PtFANWZlRmcR9ywxTmCEkzYnBs= Subject key identifier: F9:3D:61:10:89:87:2D:20:9F:80:09:5C:A8:51:F5:38:7E:AB:BC:F5 Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0D57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 0E19 Signing time: Sat 18 May 2024 18:40:57 +0000 Manifest this update: Sat 18 May 2024 18:40:57 +0000 Manifest next update: Sat 25 May 2024 18:40:57 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: FCqD5vVShnUMHlqcNwdtoMV1GVMzKuTQq4UO7vet3fM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3415 (0xd57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: May 18 18:40:57 2024 GMT Not After : May 25 18:40:57 2024 GMT Subject: CN=6648f639-8dfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:02:c3:10:40:8b:aa:e2:c6:a4:ae:3f:df:5a: a6:60:43:30:1b:98:e2:65:b1:1b:52:6e:87:33:62: b1:82:4d:23:cf:33:3d:83:6d:b6:da:d6:39:b5:85: f5:68:41:ec:7f:00:d4:0e:7f:db:24:56:56:b1:74: 62:76:9a:e3:55:7d:84:d4:6b:ac:0a:0f:4f:c7:98: b8:da:87:a4:81:ed:11:3f:02:3f:84:0b:2f:1e:83: bd:5e:f2:49:87:71:ff:5f:a9:43:f2:35:10:e2:3e: 7c:7b:07:bb:bd:95:db:4b:39:33:2e:21:d6:a7:6f: 36:8e:71:79:a3:ff:7c:57:80:05:42:f8:f1:33:db: 14:04:22:ee:82:25:8e:ad:f0:4a:49:23:f9:26:aa: 51:af:02:ce:b4:f0:1e:52:d0:aa:b7:23:43:d3:bf: f5:5e:84:ff:85:dc:a3:c7:73:9c:a2:76:8f:5d:5e: c1:1c:8d:50:40:18:1f:f4:20:12:17:20:28:97:cc: 19:76:20:71:da:51:12:52:f8:a7:6a:18:7c:e1:03: 13:60:d2:21:fa:7d:58:aa:4e:19:88:8b:32:5d:b6: 6d:f3:a8:f8:83:3b:83:54:1a:e0:f7:84:ac:5a:82: 9d:04:75:d5:07:1c:29:d6:79:62:1e:f4:15:0c:bc: 9f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:3D:61:10:89:87:2D:20:9F:80:09:5C:A8:51:F5:38:7E:AB:BC:F5 X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:8c:37:50:90:2a:8a:11:b0:c2:39:31:eb:ab:30:af:1c:2d: 20:72:b7:c0:ee:1b:a0:6c:dd:ae:98:13:28:7b:2e:ad:82:ef: 21:79:fc:be:6f:da:cf:b0:58:d7:79:43:ef:d7:8f:04:fb:26: 4e:75:bf:3e:38:f1:a4:d8:11:05:36:ee:93:a7:f2:06:37:04: df:c8:07:9b:e2:b4:fe:a4:9f:41:70:e7:45:0f:0d:4e:50:cf: 18:92:fc:dc:25:7c:f2:5d:ba:84:08:77:6c:15:3c:13:49:d9: 17:c3:c3:41:05:11:73:78:59:69:9a:4a:20:86:66:9e:f4:13: 97:f6:bb:79:a0:df:96:ae:64:e3:14:48:1f:b7:a9:56:90:04: fe:c6:a0:71:a3:96:9f:8b:3b:16:3a:ec:4c:92:9b:58:88:78: 26:1d:4e:e6:e4:b4:88:b7:4d:58:6b:c9:ee:dc:e9:13:b3:06: af:31:04:6e:85:29:84:84:ba:6a:d4:80:93:46:78:93:d7:22: fa:80:2c:c2:30:f7:2f:32:6f:d1:32:28:3f:4d:8a:bd:86:0d: b8:b5:c3:fc:b6:58:d9:be:8e:45:28:31:16:e4:b0:7f:7f:64: da:d5:cf:ba:d8:9c:06:9b:a4:51:1f:18:98:dc:b1:14:b3:bb: 9e:f7:f9:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjQwNTE4MTg0MDU3WhcNMjQwNTI1MTg0MDU3WjAYMRYwFAYD VQQDEw02NjQ4ZjYzOS04ZGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqALDEECLquLGpK4/31qmYEMwG5jiZbEbUm6HM2Kxgk0jzzM9g2222tY5tYX1 aEHsfwDUDn/bJFZWsXRidprjVX2E1GusCg9Px5i42oekge0RPwI/hAsvHoO9XvJJ h3H/X6lD8jUQ4j58ewe7vZXbSzkzLiHWp282jnF5o/98V4AFQvjxM9sUBCLugiWO rfBKSSP5JqpRrwLOtPAeUtCqtyND07/1XoT/hdyjx3OconaPXV7BHI1QQBgf9CAS FyAol8wZdiBx2lESUvinahh84QMTYNIh+n1Yqk4ZiIsyXbZt86j4gzuDVBrg94Ss WoKdBHXVBxwp1nliHvQVDLyffwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPk9YRCJ hy0gn4AJXKhR9Th+q7z1MB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgjDdQkCqKEbDCOTHrqzCvHC0gcrfA7hugbN2umBMoey6tgu8hefy+ b9rPsFjXeUPv148E+yZOdb8+OPGk2BEFNu6Tp/IGNwTfyAeb4rT+pJ9BcOdFDw1O UM8YkvzcJXzyXbqECHdsFTwTSdkXw8NBBRFzeFlpmkoghmae9BOX9rt5oN+WrmTj FEgft6lWkAT+xqBxo5afizsWOuxMkptYiHgmHU7m5LSIt01Ya8nu3OkTswavMQRu hSmEhLpq1ICTRniT1yL6gCzCMPcvMm/RMig/TYq9hg24tcP8tljZvo5FKDEW5LB/ f2Ta1c+62JwGm6RRHxiY3LEUs7ue9/mM -----END CERTIFICATE-----Generated at Sat May 18 19:21:05 2024 by rpki-client on console-fra.rpki-client.org