$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft File: Qf4dQTWrLWdiPnYIM5hGitT6odw.mft (raw, json) Hash identifier: 0kkKJTtFjj6Fqah3srjWqQqMH02HnC/WjCZrLTdDYIA= Subject key identifier: 39:84:39:1F:90:AE:49:E1:1D:EC:AC:B6:DD:3F:A6:84:FE:19:6E:ED Authority key identifier: 41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC Certificate issuer: /CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Certificate serial: 1AFB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft Manifest number: 1AE3 Signing time: Sat 18 May 2024 16:42:36 +0000 Manifest this update: Sat 18 May 2024 16:42:36 +0000 Manifest next update: Sat 25 May 2024 16:42:36 +0000 Files and hashes: 1: Qf4dQTWrLWdiPnYIM5hGitT6odw.crl (hash: krMfWhr8B7vnCG0XCQ6+T0aZ9SacNpWzt/clsY9F/yo=) 2: 47EEF6A24CB711EE86F6DB1CC4F9AE02.roa (hash: BgVlg8JMnJl1AN4y1835aN7thI04/zmbyhw1v4lrVWI=) 3: CCDEF336515711EEA61D5643C4F9AE02.roa (hash: vMjsWlt+qCptCBWjk8QsOnFHsuU6ZH7+Jgo589b2plE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6907 (0x1afb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Validity Not Before: May 18 16:42:36 2024 GMT Not After : May 25 16:42:36 2024 GMT Subject: CN=6648da7c-c361 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7d:d9:22:c0:21:b5:15:e4:ef:56:ef:5d:4d: 5f:0c:54:51:71:e7:0a:f0:e1:d2:2f:cb:e0:a6:90: 67:3e:8d:12:83:18:f9:22:95:20:6d:b3:22:ac:6a: 82:7f:a5:06:d0:b1:d4:db:f1:d0:3b:1f:28:fb:73: e4:64:08:7d:3c:14:2f:f1:d6:2a:96:05:d2:2c:a1: f1:16:86:66:6b:fb:f2:79:79:c8:b6:23:0a:4d:be: 1f:01:fb:0a:f5:f1:ba:45:f6:a3:00:7b:78:1e:0d: 10:f1:e9:6d:10:59:02:a8:af:f7:fd:f1:9a:3e:43: ac:c9:b2:45:87:ca:ce:d5:40:bf:47:d8:14:67:97: 29:e5:fb:7e:a5:eb:f9:12:ca:96:a5:58:50:46:58: d5:06:26:d3:09:8a:44:dd:f5:60:21:92:2a:6a:b5: 83:b1:74:67:7e:1b:6d:68:4b:ce:40:df:20:6e:dc: d9:9e:be:5b:de:a6:e9:71:a7:1d:ac:ed:03:e0:ff: 78:4d:54:79:6d:89:cf:de:13:29:82:36:ae:2e:1f: 0e:c1:b2:0c:1c:a9:ff:37:f5:16:a5:d9:f8:a2:83: 69:4c:54:76:fb:35:a1:94:c3:d7:94:27:b8:7d:53: c2:8d:4c:16:93:d8:75:c8:e8:13:4a:96:df:63:64: 75:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:84:39:1F:90:AE:49:E1:1D:EC:AC:B6:DD:3F:A6:84:FE:19:6E:ED X509v3 Authority Key Identifier: keyid:41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:8c:fd:ea:81:32:ba:d8:18:44:61:84:65:4d:24:11:2e:a5: 33:21:32:f9:45:f3:2c:fb:e2:dc:f1:58:8a:2c:03:51:0a:da: 56:cd:fe:1d:82:f0:1c:3b:a2:66:a8:14:5a:ea:4d:95:ce:84: 24:91:ae:09:58:7c:5a:06:46:46:48:f8:1a:3c:3d:a4:80:10: 26:1a:32:2b:28:af:91:b4:06:87:1d:38:3d:96:9f:42:af:be: ab:f6:de:56:bf:12:38:98:4d:71:66:5a:4c:c7:45:f2:84:1b: e5:25:73:ec:f9:0c:47:d5:ed:66:4a:7c:6d:ff:43:b5:ad:15: 2f:d2:2e:b7:68:76:f9:9c:94:22:ec:18:67:5f:31:3d:10:4a: 14:fd:0c:b3:15:26:e7:90:dc:0b:fd:b4:6f:6f:b6:25:0b:49: a9:d2:e7:6b:0d:58:60:71:51:37:a6:c6:c7:ee:16:d4:d7:67: 5d:be:4c:8b:00:a3:df:52:d7:66:cc:3c:5f:af:0f:85:01:ad: 29:bf:54:02:4f:44:ff:eb:ca:49:89:32:3f:33:c4:30:e7:91: 54:01:74:24:ef:27:a4:95:bd:d2:10:fd:a4:ae:39:53:f7:2b: e0:d7:e2:4c:51:bf:46:7f:2c:ec:50:d3:ff:a0:3e:06:c6:7a: e8:e3:22:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1RDcxMTAvBgNVBAUTKDQxRkUxRDQxMzVBQjJENjc2MjNFNzYwODMzOTg0NjhB RDRGQUExREMwHhcNMjQwNTE4MTY0MjM2WhcNMjQwNTI1MTY0MjM2WjAYMRYwFAYD VQQDEw02NjQ4ZGE3Yy1jMzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuH3ZIsAhtRXk71bvXU1fDFRRcecK8OHSL8vgppBnPo0Sgxj5IpUgbbMirGqC f6UG0LHU2/HQOx8o+3PkZAh9PBQv8dYqlgXSLKHxFoZma/vyeXnItiMKTb4fAfsK 9fG6RfajAHt4Hg0Q8eltEFkCqK/3/fGaPkOsybJFh8rO1UC/R9gUZ5cp5ft+pev5 EsqWpVhQRljVBibTCYpE3fVgIZIqarWDsXRnfhttaEvOQN8gbtzZnr5b3qbpcacd rO0D4P94TVR5bYnP3hMpgjauLh8OwbIMHKn/N/UWpdn4ooNpTFR2+zWhlMPXlCe4 fVPCjUwWk9h1yOgTSpbfY2R1GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDmEOR+Q rknhHeystt0/poT+GW7tMB8GA1UdIwQYMBaAFEH+HUE1qy1nYj52CDOYRorU+qHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVENy8yNTg3MkJCRTAz QjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxXZGlQbllJTTVoR2l0VDZv ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FmNGRRVFdyTFdkaVBuWUlNNWhHaXRUNm9kdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVENy8yNTg3MkJCRTAzQjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxX ZGlQbllJTTVoR2l0VDZvZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBujP3qgTK62BhEYYRlTSQRLqUzITL5RfMs++Lc8ViKLANRCtpWzf4d gvAcO6JmqBRa6k2VzoQkka4JWHxaBkZGSPgaPD2kgBAmGjIrKK+RtAaHHTg9lp9C r76r9t5WvxI4mE1xZlpMx0XyhBvlJXPs+QxH1e1mSnxt/0O1rRUv0i63aHb5nJQi 7BhnXzE9EEoU/QyzFSbnkNwL/bRvb7YlC0mp0udrDVhgcVE3psbH7hbU12ddvkyL AKPfUtdmzDxfrw+FAa0pv1QCT0T/68pJiTI/M8Qw55FUAXQk7yeklb3SEP2krjlT 9yvg1+JMUb9GfyzsUNP/oD4Gxnro4yJp -----END CERTIFICATE-----Generated at Sat May 18 17:20:02 2024 by rpki-client on console-ams.rpki-client.org