$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.mft File: iQoeXMwexsfOHqcfSRKRH1mShrI.mft (raw, json) Hash identifier: fFfhu7Ib7p1IgjocYa/Z0BO0KsOkM3P1/FUEMuYbbuM= Subject key identifier: 57:1A:DD:CF:D3:02:60:3A:7B:5B:AB:74:A9:62:6C:58:14:FC:33:D8 Authority key identifier: 89:0A:1E:5C:CC:1E:C6:C7:CE:1E:A7:1F:49:12:91:1F:59:92:86:B2 Certificate issuer: /CN=A91E2234/serialNumber=890A1E5CCC1EC6C7CE1EA71F4912911F599286B2 Certificate serial: 33B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQoeXMwexsfOHqcfSRKRH1mShrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.mft Manifest number: 33B9 Signing time: Mon 06 May 2024 14:58:44 +0000 Manifest this update: Mon 06 May 2024 14:58:44 +0000 Manifest next update: Mon 13 May 2024 14:58:44 +0000 Files and hashes: 1: iQoeXMwexsfOHqcfSRKRH1mShrI.crl (hash: j9tFb4CG7x4lB+aSbE5Z2LTPeRnVwgUs8brdywHBqFI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.crl rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQoeXMwexsfOHqcfSRKRH1mShrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 14:58:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13241 (0x33b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2234/serialNumber=890A1E5CCC1EC6C7CE1EA71F4912911F599286B2 Validity Not Before: May 6 14:58:44 2024 GMT Not After : May 13 14:58:44 2024 GMT Subject: CN=6638f024-f9e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:7f:e8:fc:8a:79:6b:82:da:8a:01:3e:92:88: dd:29:ac:19:4b:1b:f4:05:6b:c7:29:e4:74:aa:05: 05:46:2b:a4:c8:36:6a:01:c2:68:0c:04:c3:f9:3e: 41:a6:d7:75:39:d5:97:18:87:80:46:63:f8:01:90: d6:12:3e:9b:b9:88:ee:5d:21:8e:7e:e8:36:a0:eb: a7:ad:d7:54:fe:49:c8:87:51:b9:65:c8:a5:19:7a: 32:32:49:bf:40:90:a9:51:a0:90:3d:7f:de:21:81: 26:f9:20:84:05:c8:37:c3:62:d7:71:28:47:27:14: 58:f6:24:c6:be:93:f8:61:5e:6d:59:7b:57:eb:c2: d2:1e:f1:f4:71:2b:35:07:c3:01:00:37:9d:2f:1a: 63:cf:2c:e0:1f:c0:e2:f4:39:41:ca:77:cf:a5:53: 91:95:41:40:c6:c8:dd:8b:2a:eb:84:ba:e7:c0:6b: 62:51:45:87:44:d1:de:8e:15:75:34:85:84:88:66: 9d:7e:0d:53:67:69:d6:20:69:34:53:a7:26:ee:86: ae:57:a7:81:e5:17:ad:c7:fe:5c:8c:01:0f:7e:c4: c7:2a:a3:30:e0:de:a6:dc:99:83:f9:0a:04:ac:a8: 3f:54:85:bb:03:b5:c5:e8:9d:9a:13:1a:1c:dd:f3: 59:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:1A:DD:CF:D3:02:60:3A:7B:5B:AB:74:A9:62:6C:58:14:FC:33:D8 X509v3 Authority Key Identifier: keyid:89:0A:1E:5C:CC:1E:C6:C7:CE:1E:A7:1F:49:12:91:1F:59:92:86:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQoeXMwexsfOHqcfSRKRH1mShrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:ff:a2:e9:0e:86:d2:96:c8:b8:9d:ff:ec:4f:c3:4e:8f:05: 5c:75:7c:2b:de:ce:71:4d:a1:66:2c:11:34:37:8d:c4:d4:0d: 0a:38:80:b2:3d:bc:8c:21:d6:96:85:92:6f:24:bc:8a:35:74: cf:98:1c:22:11:b2:73:c6:19:13:a7:cf:0c:55:61:04:29:c9: 34:93:bf:81:eb:cb:9d:2c:76:fb:a7:ef:26:96:d9:ea:6a:35: 37:33:fa:21:bc:c2:18:25:32:12:2d:aa:f2:99:28:40:0c:21: 6a:4d:cc:9f:58:24:39:5e:8a:a9:e3:84:9f:bd:90:5b:a0:24: b5:38:8b:c7:30:08:38:78:a4:4c:dc:34:bd:b4:cf:71:fd:f5: 00:61:68:c2:06:f6:bc:41:ab:d4:cf:50:2d:fa:03:d2:4c:14: 61:39:55:7a:c1:71:56:96:b2:04:f4:d3:bb:67:6e:33:2d:4d: b3:68:ea:4f:9b:07:4d:d2:37:44:7c:90:07:c2:03:3b:81:b4: cd:e0:e5:4b:44:b2:02:41:9c:e1:42:6e:08:06:0b:d3:1a:d9: e8:8c:ab:59:d0:43:b3:d0:c8:b5:0e:03:b5:79:d8:57:4b:88: ba:d2:d5:a0:28:d9:a9:83:19:92:88:fa:20:87:d1:7e:64:c2: 1c:e1:94:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIyMzQxMTAvBgNVBAUTKDg5MEExRTVDQ0MxRUM2QzdDRTFFQTcxRjQ5MTI5MTFG NTk5Mjg2QjIwHhcNMjQwNTA2MTQ1ODQ0WhcNMjQwNTEzMTQ1ODQ0WjAYMRYwFAYD VQQDEw02NjM4ZjAyNC1mOWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA13/o/Ip5a4LaigE+kojdKawZSxv0BWvHKeR0qgUFRiukyDZqAcJoDATD+T5B ptd1OdWXGIeARmP4AZDWEj6buYjuXSGOfug2oOunrddU/knIh1G5ZcilGXoyMkm/ QJCpUaCQPX/eIYEm+SCEBcg3w2LXcShHJxRY9iTGvpP4YV5tWXtX68LSHvH0cSs1 B8MBADedLxpjzyzgH8Di9DlBynfPpVORlUFAxsjdiyrrhLrnwGtiUUWHRNHejhV1 NIWEiGadfg1TZ2nWIGk0U6cm7oauV6eB5Retx/5cjAEPfsTHKqMw4N6m3JmD+QoE rKg/VIW7A7XF6J2aExoc3fNZsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFca3c/T AmA6e1urdKlibFgU/DPYMB8GA1UdIwQYMBaAFIkKHlzMHsbHzh6nH0kSkR9Zkoay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjIzNC81MjI1NjkxNDFE OTYxMUUyOUVFNUNCN0UwOEIwMkNEMi9pUW9lWE13ZXhzZk9IcWNmU1JLUkgxbVNo ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRb2VYTXdleHNmT0hxY2ZTUktSSDFtU2hySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjIzNC81MjI1NjkxNDFEOTYxMUUyOUVFNUNCN0UwOEIwMkNEMi9pUW9lWE13ZXhz Zk9IcWNmU1JLUkgxbVNockkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX/6LpDobSlsi4nf/sT8NOjwVcdXwr3s5xTaFmLBE0N43E1A0KOICy PbyMIdaWhZJvJLyKNXTPmBwiEbJzxhkTp88MVWEEKck0k7+B68udLHb7p+8mltnq ajU3M/ohvMIYJTISLarymShADCFqTcyfWCQ5Xoqp44SfvZBboCS1OIvHMAg4eKRM 3DS9tM9x/fUAYWjCBva8QavUz1At+gPSTBRhOVV6wXFWlrIE9NO7Z24zLU2zaOpP mwdN0jdEfJAHwgM7gbTN4OVLRLICQZzhQm4IBgvTGtnojKtZ0EOz0Mi1DgO1edhX S4i60tWgKNmpgxmSiPogh9F+ZMIc4ZQd -----END CERTIFICATE-----Generated at Mon May 6 17:43:27 2024 by rpki-client on console-ams.rpki-client.org