$ rpki-client -vvf rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/QnVRUgCwOWcq-g6Fh31OP-cNidc.mft File: QnVRUgCwOWcq-g6Fh31OP-cNidc.mft (raw, json) Hash identifier: bHZZL94UiW2Yjx9HfBI/FdpWVVKRWGVlr51IZBJF/mM= Subject key identifier: 03:A7:60:BD:0E:B1:62:91:30:C8:9D:62:DC:77:C8:35:33:46:CE:61 Authority key identifier: 42:75:51:52:00:B0:39:67:2A:FA:0E:85:87:7D:4E:3F:E7:0D:89:D7 Certificate issuer: /CN=A9127733/serialNumber=4275515200B039672AFA0E85877D4E3FE70D89D7 Certificate serial: 0664 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QnVRUgCwOWcq-g6Fh31OP-cNidc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/QnVRUgCwOWcq-g6Fh31OP-cNidc.mft Manifest number: 0650 Signing time: Sat 01 Jun 2024 00:33:16 +0000 Manifest this update: Sat 01 Jun 2024 00:33:15 +0000 Manifest next update: Sat 08 Jun 2024 00:33:15 +0000 Files and hashes: 1: QnVRUgCwOWcq-g6Fh31OP-cNidc.crl (hash: RRSBvoLUfVsh1juMBhaGqIw6i9hvFisGUFYXWmtlONE=) 2: E91BDAD0D6DE11ED88F30263C4F9AE02.roa (hash: 4lo9uf5DKxwwcPDqUSZ+9SBJl0uUBGbrDJMOemG6f1k=) 3: 683CDAD0B4C411EE8F1E5D85C4F9AE02.roa (hash: IJ2HgijVq6BG0TSXKcMj7TfcF8QRuMwnTAmE7peGsZs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/QnVRUgCwOWcq-g6Fh31OP-cNidc.crl rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/QnVRUgCwOWcq-g6Fh31OP-cNidc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QnVRUgCwOWcq-g6Fh31OP-cNidc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:33:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1636 (0x664) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127733/serialNumber=4275515200B039672AFA0E85877D4E3FE70D89D7 Validity Not Before: Jun 1 00:33:15 2024 GMT Not After : Jun 8 00:33:15 2024 GMT Subject: CN=665a6c4b-3180 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:22:63:38:45:8a:b2:6f:11:40:24:01:d9:4c: ac:22:b3:a3:51:da:11:12:f6:56:b2:55:9b:ee:e1: ca:19:11:c0:a9:eb:a4:16:2a:66:1b:03:45:e9:f0: 10:fa:24:e2:75:f2:a6:0d:91:01:8e:2f:14:81:2b: 8e:15:dc:bc:d8:9e:1c:28:b5:6b:fb:48:c8:ea:07: 6d:c9:b0:f1:03:8f:aa:6e:f4:e2:45:1b:e5:19:11: e8:2b:a0:ec:a6:c6:60:51:37:df:89:63:6c:38:4d: 76:90:61:42:1f:61:69:75:fc:fb:79:a2:0e:66:c6: 00:26:70:e9:7e:6c:14:2e:4f:63:08:fe:f1:a4:e3: 4f:80:6e:3b:bb:59:16:8e:d6:7d:d4:fc:a4:b0:fb: 71:a0:ca:0c:03:aa:d9:f4:04:9a:d2:ad:12:ce:08: 7f:a7:3a:e7:ca:39:ad:1c:71:22:53:79:25:4d:c0: 2b:e0:48:16:97:20:ec:c1:eb:a7:68:2b:a9:75:d9: 94:f8:b5:67:de:fc:81:17:17:7e:e2:5d:e1:5b:a0: 05:bf:b4:a5:8e:2d:34:c1:ff:88:8e:7d:71:b8:33: 0d:7e:bc:43:19:bf:47:d6:13:a4:63:a1:09:9b:81: 2d:05:77:cb:8f:d7:c8:a6:46:0f:30:9e:6e:58:c3: 1c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:A7:60:BD:0E:B1:62:91:30:C8:9D:62:DC:77:C8:35:33:46:CE:61 X509v3 Authority Key Identifier: keyid:42:75:51:52:00:B0:39:67:2A:FA:0E:85:87:7D:4E:3F:E7:0D:89:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/QnVRUgCwOWcq-g6Fh31OP-cNidc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QnVRUgCwOWcq-g6Fh31OP-cNidc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/QnVRUgCwOWcq-g6Fh31OP-cNidc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:dc:57:e1:04:0d:11:d0:da:4a:d4:50:ce:da:ac:13:0f:21: 92:bb:d5:98:a1:22:03:cb:92:d9:7b:62:be:f8:58:a1:b5:51: e3:97:63:e7:9b:af:1e:84:8c:e5:c6:34:61:b3:3d:31:41:ee: 82:02:5a:0e:df:c7:90:1d:16:1f:3c:c8:60:7a:91:b1:81:7a: 36:b9:d6:6f:83:83:23:1e:4d:51:b8:70:34:6d:a1:e3:34:67: f7:c4:97:b3:1f:51:c6:d6:ed:9a:87:d6:60:e7:02:5f:0c:dd: 39:cc:c2:48:d6:99:26:a1:61:35:40:d9:6c:bd:5c:1a:8d:1f: 61:d8:96:5a:7e:15:50:65:2d:ff:9c:db:15:c8:f5:ef:34:49: 6e:9d:eb:06:97:3a:d3:cb:e6:10:c0:14:49:0f:81:0f:97:ea: b1:12:2c:2c:f8:8a:2c:90:97:8c:cb:46:10:bc:71:47:f0:c2: 94:7c:b4:04:09:03:f7:e7:5d:41:8e:1f:e0:e6:64:da:05:7f: 8a:9a:fd:68:26:76:7a:9a:20:76:af:bf:c2:eb:7b:d2:f2:81: 21:c0:0d:6d:ca:a2:5e:8a:39:59:49:be:34:d4:d7:e9:fa:6b: 2a:58:63:be:14:d9:8e:20:12:da:b0:52:14:3a:6c:46:84:d7: 8d:4c:70:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc3MzMxMTAvBgNVBAUTKDQyNzU1MTUyMDBCMDM5NjcyQUZBMEU4NTg3N0Q0RTNG RTcwRDg5RDcwHhcNMjQwNjAxMDAzMzE1WhcNMjQwNjA4MDAzMzE1WjAYMRYwFAYD VQQDEw02NjVhNmM0Yi0zMTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyJjOEWKsm8RQCQB2UysIrOjUdoREvZWslWb7uHKGRHAqeukFipmGwNF6fAQ +iTidfKmDZEBji8UgSuOFdy82J4cKLVr+0jI6gdtybDxA4+qbvTiRRvlGRHoK6Ds psZgUTffiWNsOE12kGFCH2Fpdfz7eaIOZsYAJnDpfmwULk9jCP7xpONPgG47u1kW jtZ91PyksPtxoMoMA6rZ9ASa0q0Szgh/pzrnyjmtHHEiU3klTcAr4EgWlyDsweun aCupddmU+LVn3vyBFxd+4l3hW6AFv7Slji00wf+Ijn1xuDMNfrxDGb9H1hOkY6EJ m4EtBXfLj9fIpkYPMJ5uWMMcfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAOnYL0O sWKRMMidYtx3yDUzRs5hMB8GA1UdIwQYMBaAFEJ1UVIAsDlnKvoOhYd9Tj/nDYnX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzczMy9BRERDM0IzRTQ1 OEQxMUVCQTM5QUM3NDBDNEY5QUUwMi9RblZSVWdDd09XY3EtZzZGaDMxT1AtY05p ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FuVlJVZ0N3T1djcS1nNkZoMzFPUC1jTmlkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzczMy9BRERDM0IzRTQ1OEQxMUVCQTM5QUM3NDBDNEY5QUUwMi9RblZSVWdDd09X Y3EtZzZGaDMxT1AtY05pZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBh3FfhBA0R0NpK1FDO2qwTDyGSu9WYoSIDy5LZe2K++FihtVHjl2Pn m68ehIzlxjRhsz0xQe6CAloO38eQHRYfPMhgepGxgXo2udZvg4MjHk1RuHA0baHj NGf3xJezH1HG1u2ah9Zg5wJfDN05zMJI1pkmoWE1QNlsvVwajR9h2JZafhVQZS3/ nNsVyPXvNElunesGlzrTy+YQwBRJD4EPl+qxEiws+IoskJeMy0YQvHFH8MKUfLQE CQP3511Bjh/g5mTaBX+Kmv1oJnZ6miB2r7/C63vS8oEhwA1tyqJeijlZSb401Nfp +msqWGO+FNmOIBLasFIUOmxGhNeNTHBx -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:11 2024 by rpki-client on console-ams.rpki-client.org