$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft File: QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft (raw, json) Hash identifier: AtOSW0lyvxlTiHLeHWUicnvS9OvOot/WrUewg9AaNbU= Subject key identifier: 3E:1B:90:6E:8E:31:B2:88:D2:99:A9:7B:5E:50:F9:0F:34:32:CD:62 Authority key identifier: 42:67:CF:5D:03:00:4A:8F:EF:DF:21:39:5D:0F:E8:24:54:8B:13:C1 Certificate issuer: /CN=A91FCEB1/serialNumber=4267CF5D03004A8FEFDF21395D0FE824548B13C1 Certificate serial: 1FC2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft Manifest number: 25FB Signing time: Sat 04 May 2024 16:23:56 +0000 Manifest this update: Sat 04 May 2024 16:23:55 +0000 Manifest next update: Sat 11 May 2024 16:23:55 +0000 Files and hashes: 1: QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl (hash: tWmDsk2P+Tn7452dDbE0hufXU9p4e7F0iPTifhrv7ZU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8130 (0x1fc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1/serialNumber=4267CF5D03004A8FEFDF21395D0FE824548B13C1 Validity Not Before: May 4 16:23:55 2024 GMT Not After : May 11 16:23:55 2024 GMT Subject: CN=6636611b-d3db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:07:ce:d8:c0:15:35:0d:a1:37:07:65:3e:28: 84:ac:8b:f1:25:b6:d1:a5:0b:50:c6:f7:2c:a6:e0: 86:ce:04:f2:78:18:cc:57:5b:38:87:6f:3a:16:2a: b0:95:a6:4c:ab:34:d8:49:56:d7:ea:1e:68:3c:9d: 2b:d6:31:65:7e:16:40:13:2a:92:e4:7e:b0:bf:05: c6:b1:45:4c:a9:4b:30:4d:78:93:3f:92:32:47:7c: 90:b9:f7:58:b7:b1:de:52:d6:8f:16:06:96:f6:98: 6f:c0:49:5e:00:10:2e:16:fc:3b:07:0c:df:fd:5a: e8:81:22:29:b3:fd:45:cd:a0:4f:64:a7:ca:e2:57: 5c:de:05:23:59:67:ba:a4:3d:71:a0:36:ec:62:a6: e5:2b:42:1f:49:a4:a6:f4:52:56:9b:bd:17:3f:40: 9d:b1:26:7d:ab:aa:2d:44:9a:d9:8d:61:45:c6:af: 25:7d:35:9c:71:87:c1:c5:14:5b:54:31:de:ba:84: 4a:46:00:ff:7f:45:27:56:a9:0b:c0:05:53:4e:25: 5f:72:7d:ea:86:73:ec:79:bd:75:f8:9e:20:2c:69: 8e:9d:c2:c9:7f:55:2d:06:8b:1e:13:dc:9b:e7:20: 6c:50:40:37:46:c0:41:e5:52:d3:42:ce:d6:9c:45: 02:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:1B:90:6E:8E:31:B2:88:D2:99:A9:7B:5E:50:F9:0F:34:32:CD:62 X509v3 Authority Key Identifier: keyid:42:67:CF:5D:03:00:4A:8F:EF:DF:21:39:5D:0F:E8:24:54:8B:13:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:6d:9e:fc:5d:31:22:0b:2f:16:27:c9:8a:c9:e5:df:5a:79: 76:29:21:eb:7d:ca:a7:92:3d:e1:be:5c:97:20:ee:cb:69:d8: f5:d2:45:52:90:13:a8:c4:c5:1a:c3:2f:15:1c:f2:a3:fb:f3: af:f3:52:d0:35:bc:a9:3f:9f:81:a1:9c:d3:12:af:a7:ec:0c: 1d:df:cd:af:45:d0:3e:34:d7:8b:a4:7b:e1:d6:c9:cf:0e:05: 7e:d6:3c:94:df:be:9d:74:4f:70:d8:0c:2b:a3:9d:2e:d6:18: 2d:17:c2:58:a4:9d:75:e8:fb:95:94:2f:ef:a6:6f:f3:ae:b3: 50:2c:99:33:e6:7e:17:0e:a9:b8:fe:3f:49:8a:4b:41:46:90: ce:90:78:c3:eb:5a:b8:86:f3:bb:82:74:da:dd:72:b3:3a:c0: ba:bf:05:e7:77:cf:08:4e:87:74:01:47:59:46:09:4b:9b:14: 89:a2:62:16:a6:0c:39:53:c4:91:b8:b2:86:7b:35:aa:97:83: 2f:f3:dd:e9:fa:72:ba:f3:ab:77:f2:a0:53:ae:be:e2:e6:19: b3:f2:f7:06:fc:0f:bc:f2:45:c3:e0:57:47:e9:65:5e:36:9c: 08:f9:39:37:18:a1:35:29:1b:41:5d:ed:33:81:a1:6e:bf:cb: 65:6d:48:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICH8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKDQyNjdDRjVEMDMwMDRBOEZFRkRGMjEzOTVEMEZFODI0 NTQ4QjEzQzEwHhcNMjQwNTA0MTYyMzU1WhcNMjQwNTExMTYyMzU1WjAYMRYwFAYD VQQDEw02NjM2NjExYi1kM2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwfO2MAVNQ2hNwdlPiiErIvxJbbRpQtQxvcspuCGzgTyeBjMV1s4h286Fiqw laZMqzTYSVbX6h5oPJ0r1jFlfhZAEyqS5H6wvwXGsUVMqUswTXiTP5IyR3yQufdY t7HeUtaPFgaW9phvwEleABAuFvw7Bwzf/VrogSIps/1FzaBPZKfK4ldc3gUjWWe6 pD1xoDbsYqblK0IfSaSm9FJWm70XP0CdsSZ9q6otRJrZjWFFxq8lfTWccYfBxRRb VDHeuoRKRgD/f0UnVqkLwAVTTiVfcn3qhnPseb11+J4gLGmOncLJf1UtBoseE9yb 5yBsUEA3RsBB5VLTQs7WnEUCJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD4bkG6O MbKI0pmpe15Q+Q80Ms1iMB8GA1UdIwQYMBaAFEJnz10DAEqP798hOV0P6CRUixPB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS9FRkI4NzVDODA4 QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9RbWZQWFFNQVNvX3YzeUU1WFFfb0pGU0xF OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FtZlBYUU1BU29fdjN5RTVYUV9vSkZTTEU4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS9FRkI4NzVDODA4QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9RbWZQWFFNQVNv X3YzeUU1WFFfb0pGU0xFOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARbZ78XTEiCy8WJ8mKyeXfWnl2KSHrfcqnkj3hvlyXIO7Ladj10kVS kBOoxMUawy8VHPKj+/Ov81LQNbypP5+BoZzTEq+n7Awd382vRdA+NNeLpHvh1snP DgV+1jyU376ddE9w2Awro50u1hgtF8JYpJ116PuVlC/vpm/zrrNQLJkz5n4XDqm4 /j9JiktBRpDOkHjD61q4hvO7gnTa3XKzOsC6vwXnd88ITod0AUdZRglLmxSJomIW pgw5U8SRuLKGezWql4Mv893p+nK686t38qBTrr7i5hmz8vcG/A+88kXD4FdH6WVe NpwI+Tk3GKE1KRtBXe0zgaFuv8tlbUiJ -----END CERTIFICATE-----Generated at Sat May 4 17:19:51 2024 by rpki-client on console-fra.rpki-client.org