$ rpki-client -vvf rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft File: qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft (raw, json) Hash identifier: 1rb0kBZkK+I/9OD4ZmlKGfF1BorQVD2fOtkT3AHvaYQ= Subject key identifier: 8C:53:B8:37:55:F0:21:3C:38:D1:9F:7C:CD:BB:13:C4:B5:51:63:AF Authority key identifier: A8:72:42:B7:36:27:D4:29:23:4A:5F:54:C5:23:BB:41:EB:BE:87:AA Certificate issuer: /CN=A911FABC/serialNumber=A87242B73627D429234A5F54C523BB41EBBE87AA Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft Manifest number: E6 Signing time: Sun 19 May 2024 06:01:14 +0000 Manifest this update: Sun 19 May 2024 06:01:14 +0000 Manifest next update: Sun 26 May 2024 06:01:14 +0000 Files and hashes: 1: qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl (hash: G9VoVw/k64Te022eYVErCA8+71baKCqp2yMimRJEQdM=) 2: 9BF55430C4D611EDA65E8C87C4F9AE02.roa (hash: 0VPDxh48iCXEk/o4NbQMRoYmQk7skfmDkCtQswxooDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FABC/serialNumber=A87242B73627D429234A5F54C523BB41EBBE87AA Validity Not Before: May 19 06:01:14 2024 GMT Not After : May 26 06:01:14 2024 GMT Subject: CN=664995aa-38e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:6a:6a:c2:aa:09:3f:d7:af:3b:ec:34:59:05: 1c:3b:04:cf:a1:0b:cd:2e:7b:5c:a2:54:89:58:b6: 20:49:d7:02:06:33:a4:d1:43:42:a6:95:fb:eb:c9: 83:cd:15:cb:6d:25:bf:45:b8:af:ae:f6:d3:63:16: 9d:eb:bb:06:79:40:03:32:de:7d:14:56:1c:4d:00: 1b:f5:e9:6a:4e:37:01:17:f7:54:6d:9c:45:e1:13: 91:88:7f:e5:22:97:3a:95:ff:83:b2:ad:2d:5f:f3: b4:a8:be:ea:0b:ce:dc:c2:09:67:e0:19:10:30:0f: 80:c8:fb:d9:bd:0d:28:7a:0b:7a:61:6b:b8:a5:98: 76:2f:f2:90:7a:6b:60:5b:26:bb:83:56:19:f2:e3: ad:58:79:36:9b:55:d3:26:e8:c3:8d:88:b2:c0:bd: 4c:0d:44:29:61:34:46:6c:19:da:dc:4d:3d:19:60: 02:6f:b4:52:28:9d:e6:b6:d4:9d:59:01:eb:55:bc: 49:4c:93:4e:8e:48:73:93:c6:e9:d1:fe:09:e7:2e: 6d:29:3f:7e:68:c7:ec:ac:d3:e4:98:bf:73:da:bb: e9:4c:52:6e:91:88:9d:d0:9b:aa:09:fe:18:4d:39: 93:11:af:ef:fa:38:f1:a3:67:f6:6b:02:3e:01:e5: e2:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:53:B8:37:55:F0:21:3C:38:D1:9F:7C:CD:BB:13:C4:B5:51:63:AF X509v3 Authority Key Identifier: keyid:A8:72:42:B7:36:27:D4:29:23:4A:5F:54:C5:23:BB:41:EB:BE:87:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:0b:65:31:8b:54:ff:0b:5e:ae:41:f4:eb:2f:b9:72:a6:98: 97:8a:60:a0:93:f1:6d:ca:d9:3b:77:8d:05:2a:47:29:36:f0: 7d:3e:a9:02:72:da:be:96:eb:c6:15:6d:73:98:5e:17:d4:0c: 72:3f:98:1b:58:f1:67:fd:19:d8:17:22:d0:69:5f:fd:9f:be: 0b:4c:30:7e:40:5c:ea:be:c6:c0:be:88:5c:78:80:c4:d4:0a: 5d:34:22:4d:e6:f2:77:d7:7d:e9:0d:3e:6f:c2:c3:1a:0a:14: 49:36:e0:41:24:1d:b1:92:35:96:02:c1:1d:26:5f:88:95:a0: 89:be:8c:8b:c5:7a:ad:2b:89:fa:94:47:33:ed:8f:a6:84:3e: dc:80:ef:6e:d4:9f:c6:89:f2:98:0f:8e:48:41:3c:88:38:be: 5d:9e:f1:dc:82:fe:92:d1:a0:4e:b7:87:9f:d6:d1:17:55:6f: 1f:6d:85:81:8a:09:5d:37:96:9f:2c:5a:d0:24:84:e9:28:f0: 2a:8b:f2:2c:1c:da:84:02:71:ba:81:12:cc:a1:06:16:09:36: f3:a6:8d:79:0d:b3:4a:e6:27:fd:98:37:f5:d1:f4:15:3d:a8: 91:e3:cc:cd:00:5c:e2:9a:b2:8f:9a:72:f5:ec:bf:c0:69:70: 6e:04:90:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQkMxMTAvBgNVBAUTKEE4NzI0MkI3MzYyN0Q0MjkyMzRBNUY1NEM1MjNCQjQx RUJCRTg3QUEwHhcNMjQwNTE5MDYwMTE0WhcNMjQwNTI2MDYwMTE0WjAYMRYwFAYD VQQDEw02NjQ5OTVhYS0zOGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4GpqwqoJP9evO+w0WQUcOwTPoQvNLntcolSJWLYgSdcCBjOk0UNCppX768mD zRXLbSW/RbivrvbTYxad67sGeUADMt59FFYcTQAb9elqTjcBF/dUbZxF4RORiH/l Ipc6lf+Dsq0tX/O0qL7qC87cwgln4BkQMA+AyPvZvQ0oegt6YWu4pZh2L/KQemtg Wya7g1YZ8uOtWHk2m1XTJujDjYiywL1MDUQpYTRGbBna3E09GWACb7RSKJ3mttSd WQHrVbxJTJNOjkhzk8bp0f4J5y5tKT9+aMfsrNPkmL9z2rvpTFJukYid0JuqCf4Y TTmTEa/v+jjxo2f2awI+AeXiZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIxTuDdV 8CE8ONGffM27E8S1UWOvMB8GA1UdIwQYMBaAFKhyQrc2J9QpI0pfVMUju0Hrvoeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFCQy9EOTQyMDA3NkM0 RDIxMUVEQkYwRTE5ODJDNEY5QUUwMi9xSEpDdHpZbjFDa2pTbDlVeFNPN1FldS1o Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FISkN0elluMUNralNsOVV4U083UWV1LWg2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkFCQy9EOTQyMDA3NkM0RDIxMUVEQkYwRTE5ODJDNEY5QUUwMi9xSEpDdHpZbjFD a2pTbDlVeFNPN1FldS1oNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANC2Uxi1T/C16uQfTrL7lyppiXimCgk/Ftytk7d40FKkcpNvB9PqkC ctq+luvGFW1zmF4X1AxyP5gbWPFn/RnYFyLQaV/9n74LTDB+QFzqvsbAvohceIDE 1ApdNCJN5vJ3133pDT5vwsMaChRJNuBBJB2xkjWWAsEdJl+IlaCJvoyLxXqtK4n6 lEcz7Y+mhD7cgO9u1J/GifKYD45IQTyIOL5dnvHcgv6S0aBOt4ef1tEXVW8fbYWB igldN5afLFrQJITpKPAqi/IsHNqEAnG6gRLMoQYWCTbzpo15DbNK5if9mDf10fQV PaiR48zNAFzimrKPmnL17L/AaXBuBJBV -----END CERTIFICATE-----