$ rpki-client -vvf rpki.apnic.net/member_repository/A9134B88/2E33F8B01FE311EB9878EC64C4F9AE02/TQJNfuk78G548gwtl4XADK7tbkQ.mft File: TQJNfuk78G548gwtl4XADK7tbkQ.mft (raw, json) Hash identifier: 04PAgFQ1xOzeVo0eCitp/aWA8xKnamc0yn6k68ZEQIg= Subject key identifier: E2:B5:F6:90:08:A6:88:F9:20:54:C0:C1:8A:F6:3A:DE:C0:8B:E4:01 Authority key identifier: 4D:02:4D:7E:E9:3B:F0:6E:78:F2:0C:2D:97:85:C0:0C:AE:ED:6E:44 Certificate issuer: /CN=A9134B88/serialNumber=4D024D7EE93BF06E78F20C2D9785C00CAEED6E44 Certificate serial: 0695 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TQJNfuk78G548gwtl4XADK7tbkQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134B88/2E33F8B01FE311EB9878EC64C4F9AE02/TQJNfuk78G548gwtl4XADK7tbkQ.mft Manifest number: 0695 Signing time: Sat 18 May 2024 23:18:00 +0000 Manifest this update: Sat 18 May 2024 23:18:00 +0000 Manifest next update: Sat 25 May 2024 23:18:00 +0000 Files and hashes: 1: TQJNfuk78G548gwtl4XADK7tbkQ.crl (hash: 5P/DJUjeXina/cfhAdRVx/6If7o+w1eJeBRkq7/rhpU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134B88/2E33F8B01FE311EB9878EC64C4F9AE02/TQJNfuk78G548gwtl4XADK7tbkQ.crl rsync://rpki.apnic.net/member_repository/A9134B88/2E33F8B01FE311EB9878EC64C4F9AE02/TQJNfuk78G548gwtl4XADK7tbkQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TQJNfuk78G548gwtl4XADK7tbkQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1685 (0x695) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134B88/serialNumber=4D024D7EE93BF06E78F20C2D9785C00CAEED6E44 Validity Not Before: May 18 23:18:00 2024 GMT Not After : May 25 23:18:00 2024 GMT Subject: CN=66493728-2678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c4:3b:56:8c:28:23:42:be:a6:9a:cc:d2:40: 0b:9e:c7:5a:b5:30:98:f8:fc:84:7c:28:0c:97:69: 40:2c:18:7c:93:3b:85:e6:a9:1e:bc:2b:93:16:34: bf:c4:5c:c8:18:13:d1:5e:c5:e4:c7:c0:e1:4d:fd: b3:07:f4:4c:40:0c:d5:ea:8a:a8:a5:8b:ac:11:c4: d0:d7:ed:e0:98:3b:17:b5:2b:ed:50:c5:37:0c:cf: 8b:5e:bf:dd:78:de:f7:d2:cd:f9:b9:c5:f1:23:4e: b8:0b:a7:25:b2:b3:7f:0e:0c:49:af:55:25:67:a9: c8:9d:f5:c3:42:9e:70:59:c0:04:15:5b:8a:41:7a: 22:6a:48:64:02:ac:6c:28:ae:6e:3b:3e:c9:5a:e2: 87:91:da:4e:eb:95:32:ce:aa:2e:4f:da:a6:16:50: 2f:79:43:c9:09:aa:03:d2:13:5f:7d:e2:b3:f6:38: b4:c4:89:4a:0d:4c:40:d0:82:85:c9:4f:fd:8a:96: 68:5f:25:df:69:94:57:23:f3:bb:c7:1b:cf:80:d1: 36:9a:56:b2:0d:ad:ea:cc:f8:d1:7e:2f:4b:b2:12: 15:ce:06:b5:ab:34:58:9d:6b:73:c6:12:05:68:b3: 88:10:66:a4:7b:cd:42:a4:ab:a3:1b:ba:92:11:ce: 09:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:B5:F6:90:08:A6:88:F9:20:54:C0:C1:8A:F6:3A:DE:C0:8B:E4:01 X509v3 Authority Key Identifier: keyid:4D:02:4D:7E:E9:3B:F0:6E:78:F2:0C:2D:97:85:C0:0C:AE:ED:6E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134B88/2E33F8B01FE311EB9878EC64C4F9AE02/TQJNfuk78G548gwtl4XADK7tbkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TQJNfuk78G548gwtl4XADK7tbkQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134B88/2E33F8B01FE311EB9878EC64C4F9AE02/TQJNfuk78G548gwtl4XADK7tbkQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:35:6d:59:de:82:c9:63:07:c4:6e:84:ea:e2:af:07:d6:26: 18:3b:52:c0:9a:fc:b8:ff:1f:67:b4:fc:8e:e6:38:e1:66:44: f3:f6:89:a9:a8:84:26:51:07:0b:a6:12:db:b5:9b:ed:03:72: cb:22:72:b3:1f:60:d9:1d:c4:08:3f:c3:15:17:3c:75:be:f8: dd:20:4b:8c:7f:ab:9b:b3:fc:85:24:4b:eb:9f:43:84:1e:ea: f5:e9:33:c7:dd:fb:c4:b1:19:f9:c1:b6:00:03:2d:85:59:17: 02:e0:ad:0c:0b:20:b5:aa:2d:92:4e:bd:54:75:65:52:f1:27: 9c:cc:ee:ce:44:f8:d9:f1:08:fb:30:5d:23:6e:d8:56:d8:81: 93:93:a1:1a:0a:fa:b4:98:45:9f:53:40:ab:e4:7a:17:76:f2: 90:4e:a7:37:d2:f5:ee:18:32:66:f9:05:2b:48:50:72:b0:2a: 69:e2:f0:5d:25:9e:ae:03:59:b5:69:b6:e7:f8:ac:87:a3:68: c6:58:d2:d4:f0:09:bd:8b:a8:73:da:33:af:c8:fa:e2:5b:91: de:26:d9:48:bb:31:78:67:22:82:fa:7f:c8:c7:1b:c8:5c:98: fe:54:71:c0:c0:67:00:ff:41:86:4d:d0:d7:86:1c:71:8c:88: 60:4b:e1:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCODgxMTAvBgNVBAUTKDREMDI0RDdFRTkzQkYwNkU3OEYyMEMyRDk3ODVDMDBD QUVFRDZFNDQwHhcNMjQwNTE4MjMxODAwWhcNMjQwNTI1MjMxODAwWjAYMRYwFAYD VQQDEw02NjQ5MzcyOC0yNjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8Q7VowoI0K+pprM0kALnsdatTCY+PyEfCgMl2lALBh8kzuF5qkevCuTFjS/ xFzIGBPRXsXkx8DhTf2zB/RMQAzV6oqopYusEcTQ1+3gmDsXtSvtUMU3DM+LXr/d eN730s35ucXxI064C6clsrN/DgxJr1UlZ6nInfXDQp5wWcAEFVuKQXoiakhkAqxs KK5uOz7JWuKHkdpO65UyzqouT9qmFlAveUPJCaoD0hNffeKz9ji0xIlKDUxA0IKF yU/9ipZoXyXfaZRXI/O7xxvPgNE2mlayDa3qzPjRfi9LshIVzga1qzRYnWtzxhIF aLOIEGake81CpKujG7qSEc4JuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOK19pAI poj5IFTAwYr2Ot7Ai+QBMB8GA1UdIwQYMBaAFE0CTX7pO/BuePIMLZeFwAyu7W5E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEI4OC8yRTMzRjhCMDFG RTMxMUVCOTg3OEVDNjRDNEY5QUUwMi9UUUpOZnVrNzhHNTQ4Z3d0bDRYQURLN3Ri a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RRSk5mdWs3OEc1NDhnd3RsNFhBREs3dGJrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEI4OC8yRTMzRjhCMDFGRTMxMUVCOTg3OEVDNjRDNEY5QUUwMi9UUUpOZnVrNzhH NTQ4Z3d0bDRYQURLN3Ria1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5NW1Z3oLJYwfEboTq4q8H1iYYO1LAmvy4/x9ntPyO5jjhZkTz9omp qIQmUQcLphLbtZvtA3LLInKzH2DZHcQIP8MVFzx1vvjdIEuMf6ubs/yFJEvrn0OE Hur16TPH3fvEsRn5wbYAAy2FWRcC4K0MCyC1qi2STr1UdWVS8SeczO7ORPjZ8Qj7 MF0jbthW2IGTk6EaCvq0mEWfU0Cr5HoXdvKQTqc30vXuGDJm+QUrSFBysCpp4vBd JZ6uA1m1abbn+KyHo2jGWNLU8Am9i6hz2jOvyPriW5HeJtlIuzF4ZyKC+n/IxxvI XJj+VHHAwGcA/0GGTdDXhhxxjIhgS+E3 -----END CERTIFICATE-----Generated at Sun May 19 00:30:13 2024 by rpki-client on console-ams.rpki-client.org