$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft File: Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft (raw, json) Hash identifier: 2j4HJm983q0SBYXTcV7g4BaeJ7US2ho58tpsr1yEeaI= Subject key identifier: 90:A4:1F:67:72:34:9D:9A:7F:24:01:D7:1D:AE:8A:0B:C1:05:52:D1 Authority key identifier: 42:4E:0A:38:43:F3:FA:1F:44:B6:AF:2E:F3:EE:11:81:5C:4B:52:09 Certificate issuer: /CN=A912C8AF/serialNumber=424E0A3843F3FA1F44B6AF2EF3EE11815C4B5209 Certificate serial: 066D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft Manifest number: 0664 Signing time: Sun 02 Jun 2024 21:09:21 +0000 Manifest this update: Sun 02 Jun 2024 21:09:20 +0000 Manifest next update: Sun 09 Jun 2024 21:09:20 +0000 Files and hashes: 1: Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl (hash: FDe6h+p5DtSOUI7XhD4cUc9VYwXxvyfeLlk2+m8ajBo=) 2: 510308503E8211EBA910FF57C4F9AE02.roa (hash: wuKDqTU6tn7/5jHE2t79EVQ5kpnRehQRwOUq9/41axU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 14:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1645 (0x66d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF/serialNumber=424E0A3843F3FA1F44B6AF2EF3EE11815C4B5209 Validity Not Before: Jun 2 21:09:20 2024 GMT Not After : Jun 9 21:09:20 2024 GMT Subject: CN=665cdf80-af00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:35:c3:9d:ba:35:d9:d8:f8:d6:7a:68:f2:40: bc:5c:4e:a4:d7:70:d6:a9:cf:32:ed:85:32:17:c7: e5:df:17:89:5a:cf:3f:0b:58:09:ac:09:24:e9:2d: 61:12:54:0c:6f:8d:94:0e:4e:aa:03:21:9d:7b:30: 76:33:28:c2:55:35:6d:e7:0f:e9:f4:21:6c:0f:26: 1f:62:6c:a7:a2:f8:6e:b6:93:f1:a9:18:26:b4:68: 13:0f:d6:6f:37:a3:2d:85:0c:2c:4b:f6:be:8e:58: 04:b6:d4:c8:93:db:f8:6c:c9:d8:53:d8:87:5c:0c: aa:f1:e3:80:37:00:55:0d:93:29:b9:ba:11:59:25: eb:3a:5e:bc:9d:61:ab:e9:05:f0:a2:99:d2:1b:87: 57:62:b7:b8:77:14:fc:d7:fb:80:31:47:94:9f:90: 59:66:97:57:00:8b:0b:2e:ee:46:8c:f7:5f:0a:8e: 30:3f:2b:51:b7:46:eb:e1:fb:e1:fe:c4:1e:13:98: 67:25:10:25:ed:5e:94:e0:ea:12:d7:e3:83:67:74: 51:c2:2d:32:6c:50:4a:98:f5:f0:1c:1c:6f:71:cf: 05:99:a1:dd:15:d4:d4:dc:5d:ce:9b:f8:19:18:4f: 73:71:38:50:4a:20:66:90:43:17:d2:55:42:79:28: f8:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:A4:1F:67:72:34:9D:9A:7F:24:01:D7:1D:AE:8A:0B:C1:05:52:D1 X509v3 Authority Key Identifier: keyid:42:4E:0A:38:43:F3:FA:1F:44:B6:AF:2E:F3:EE:11:81:5C:4B:52:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:65:3e:89:40:30:83:61:88:4e:cd:c8:5e:7f:11:d6:30:be: 50:3c:e3:26:27:fa:55:98:c9:ba:14:43:3f:6a:06:a6:1e:7c: 2f:5c:7c:a2:15:f7:6e:5a:cd:6a:92:f2:bb:7c:27:a7:a3:c1: 5d:0a:d0:cd:41:59:fd:3c:25:49:b3:ec:31:5b:2d:5f:b0:00: 17:c1:f2:74:a1:d0:af:3e:01:ed:85:f0:d5:53:f3:0b:23:9a: 67:19:d9:f2:ba:7b:a9:1e:da:7a:61:0b:bf:bc:78:e9:af:13: 21:d2:d3:dd:cc:86:b7:5c:27:8e:cc:95:fa:ad:d5:e3:f9:a1: 81:e6:85:d7:37:6c:43:ee:b0:ec:1d:98:ee:72:3f:cb:cb:1a: c7:20:76:df:fc:1c:9a:43:dd:5a:a4:83:96:55:4b:9f:07:16: 2a:66:0e:b0:6f:dd:61:93:cf:82:5d:2c:c1:d3:ea:8f:30:88: 5a:39:57:7b:8b:89:d2:96:16:f8:12:52:ab:43:66:ac:4d:48: db:d8:ef:03:2a:2f:d7:92:38:85:9d:7a:c7:68:07:52:fc:05: 45:4b:5c:1a:83:8b:fc:7e:cc:b6:f0:cd:56:9b:76:35:83:e6: 6f:32:5a:03:ff:7d:c6:35:2c:5f:8f:96:2c:03:c2:be:f9:8f: fc:64:24:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDQyNEUwQTM4NDNGM0ZBMUY0NEI2QUYyRUYzRUUxMTgx NUM0QjUyMDkwHhcNMjQwNjAyMjEwOTIwWhcNMjQwNjA5MjEwOTIwWjAYMRYwFAYD VQQDEw02NjVjZGY4MC1hZjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4jXDnbo12dj41npo8kC8XE6k13DWqc8y7YUyF8fl3xeJWs8/C1gJrAkk6S1h ElQMb42UDk6qAyGdezB2MyjCVTVt5w/p9CFsDyYfYmynovhutpPxqRgmtGgTD9Zv N6MthQwsS/a+jlgEttTIk9v4bMnYU9iHXAyq8eOANwBVDZMpuboRWSXrOl68nWGr 6QXwopnSG4dXYre4dxT81/uAMUeUn5BZZpdXAIsLLu5GjPdfCo4wPytRt0br4fvh /sQeE5hnJRAl7V6U4OoS1+ODZ3RRwi0ybFBKmPXwHBxvcc8FmaHdFdTU3F3Om/gZ GE9zcThQSiBmkEMX0lVCeSj4wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCkH2dy NJ2afyQB1x2uigvBBVLRMB8GA1UdIwQYMBaAFEJOCjhD8/ofRLavLvPuEYFcS1IJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9FRTBBRUVDQTNF ODExMUVCOUFCRDkyMEZDNEY5QUUwMi9RazRLT0VQei1oOUV0cTh1OC00UmdWeExV Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FrNEtPRVB6LWg5RXRxOHU4LTRSZ1Z4TFVnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi9FRTBBRUVDQTNFODExMUVCOUFCRDkyMEZDNEY5QUUwMi9RazRLT0VQei1o OUV0cTh1OC00UmdWeExVZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBZT6JQDCDYYhOzchefxHWML5QPOMmJ/pVmMm6FEM/agamHnwvXHyi FfduWs1qkvK7fCeno8FdCtDNQVn9PCVJs+wxWy1fsAAXwfJ0odCvPgHthfDVU/ML I5pnGdnyunupHtp6YQu/vHjprxMh0tPdzIa3XCeOzJX6rdXj+aGB5oXXN2xD7rDs HZjucj/LyxrHIHbf/ByaQ91apIOWVUufBxYqZg6wb91hk8+CXSzB0+qPMIhaOVd7 i4nSlhb4ElKrQ2asTUjb2O8DKi/XkjiFnXrHaAdS/AVFS1wag4v8fsy28M1Wm3Y1 g+ZvMloD/33GNSxfj5YsA8K++Y/8ZCT8 -----END CERTIFICATE-----Generated at Sun Jun 2 21:40:09 2024 by rpki-client on console-fra.rpki-client.org