$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft File: qXEsy37uAkrriHZ7di4Qk7FA_24.mft (raw, json) Hash identifier: wmUNm1M3DEZVfHdajrn6VNFOQWIAqWZ+u/DSBNf4Qvg= Subject key identifier: DF:A3:74:60:E6:2F:3A:88:66:36:7E:DC:BB:E0:ED:81:C9:76:A2:24 Authority key identifier: A9:71:2C:CB:7E:EE:02:4A:EB:88:76:7B:76:2E:10:93:B1:40:FF:6E Certificate issuer: /CN=A9148B6A/serialNumber=A9712CCB7EEE024AEB88767B762E1093B140FF6E Certificate serial: 0F45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft Manifest number: 0F35 Signing time: Sat 18 May 2024 18:11:53 +0000 Manifest this update: Sat 18 May 2024 18:11:52 +0000 Manifest next update: Sat 25 May 2024 18:11:52 +0000 Files and hashes: 1: qXEsy37uAkrriHZ7di4Qk7FA_24.crl (hash: 3GYxXYf5PGDKZXshUS331INcX2DW1eIPG27/bQxciYA=) 2: 07FF4ABC5A1011EAA8B1B456C4F9AE02.roa (hash: FYqToCqaU6AwNyi7R3y66aQZ00VTgMEkAOYM4wvRrOg=) 3: 1BCA5982656311ECA4E81323C4F9AE02.roa (hash: n+N7ciJqykBWnnfMyAsAHqMToDoVYmulmumBAfKqd1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.crl rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3909 (0xf45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B6A/serialNumber=A9712CCB7EEE024AEB88767B762E1093B140FF6E Validity Not Before: May 18 18:11:52 2024 GMT Not After : May 25 18:11:52 2024 GMT Subject: CN=6648ef68-d50c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:56:5a:dd:58:a4:af:af:77:1f:8b:38:f3:92: 28:d1:fc:4b:0d:06:f7:82:52:46:ee:b2:e9:90:2b: a3:b1:b3:88:93:28:6f:d1:c2:ab:1a:61:48:f0:c8: 12:9d:2f:50:1b:29:f6:7f:c1:ca:07:4f:86:35:ba: 37:62:c3:57:1a:d6:20:d7:b9:4e:4f:37:eb:27:be: 31:2f:ad:5f:fb:dd:0d:ff:8c:5d:84:7a:36:a8:b2: cb:a1:4a:e6:dd:28:d5:b0:8e:be:aa:fd:47:dd:64: da:fd:71:27:20:97:58:08:f0:2a:a3:46:1b:da:66: 8f:8f:2b:76:b7:69:6e:ec:5c:4f:fa:65:84:22:1d: 97:e1:83:07:c0:96:c3:ed:64:e4:4d:01:50:9c:d4: 9d:8e:49:9b:a2:a2:45:95:11:8c:17:9a:60:51:3e: a2:6a:d5:2a:9b:0d:cb:c3:cc:f4:3d:a6:dd:e8:99: 19:ca:bc:81:27:e7:cd:27:85:fc:d3:65:58:2b:df: 48:36:dc:f7:66:9a:07:c2:df:24:d1:b8:bf:c5:fd: e2:0f:d0:2e:7a:46:e9:b2:38:f9:49:b6:17:67:41: 79:e5:41:f5:c9:ec:da:e8:52:b1:f1:8d:3a:c6:69: 65:81:f9:ae:47:85:9d:24:98:01:14:52:03:74:e9: bc:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:A3:74:60:E6:2F:3A:88:66:36:7E:DC:BB:E0:ED:81:C9:76:A2:24 X509v3 Authority Key Identifier: keyid:A9:71:2C:CB:7E:EE:02:4A:EB:88:76:7B:76:2E:10:93:B1:40:FF:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:37:b5:5f:d3:bf:99:7e:2f:5f:85:2b:20:85:5e:6a:43:a5: 34:92:35:82:17:c0:fc:f8:68:72:61:de:dc:73:a3:04:98:7a: 2c:1a:63:e9:61:c9:78:11:8d:9c:f1:2d:46:d9:bf:cf:f7:bd: 2c:cc:7d:08:c1:c4:7e:1a:92:33:39:94:db:30:1a:52:40:d0: c3:a3:2c:e8:ef:0a:2e:28:4c:c1:6d:8f:4f:91:66:94:c0:93: d4:35:ed:52:ed:cc:f8:b4:88:5f:44:4a:5e:07:57:97:c6:31: e4:ba:6f:3f:ad:c4:eb:d2:ed:fb:b0:62:56:96:94:cd:ed:57: fc:dc:32:78:10:b8:27:d8:88:0c:c0:0d:63:27:71:80:dc:11: 64:00:78:ba:17:63:51:62:2a:10:d7:75:ca:02:39:32:f9:d2: 5f:2d:67:85:30:cd:94:3e:54:67:ad:ca:c4:b7:b5:f1:fe:fb: 25:5f:b3:f4:df:5c:e0:84:fd:c8:95:a0:ca:df:72:8f:7c:03: bd:bd:a6:60:98:7d:32:6a:b0:49:fb:fb:ea:4a:f1:1d:76:fb: 65:5c:10:d2:7b:2c:63:be:be:06:14:e1:15:40:03:87:aa:72: e3:f5:09:96:d8:80:56:fc:99:ce:30:90:d3:8e:5b:8d:fa:89: a7:cf:9f:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCNkExMTAvBgNVBAUTKEE5NzEyQ0NCN0VFRTAyNEFFQjg4NzY3Qjc2MkUxMDkz QjE0MEZGNkUwHhcNMjQwNTE4MTgxMTUyWhcNMjQwNTI1MTgxMTUyWjAYMRYwFAYD VQQDEw02NjQ4ZWY2OC1kNTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApVZa3Vikr693H4s485Io0fxLDQb3glJG7rLpkCujsbOIkyhv0cKrGmFI8MgS nS9QGyn2f8HKB0+GNbo3YsNXGtYg17lOTzfrJ74xL61f+90N/4xdhHo2qLLLoUrm 3SjVsI6+qv1H3WTa/XEnIJdYCPAqo0Yb2maPjyt2t2lu7FxP+mWEIh2X4YMHwJbD 7WTkTQFQnNSdjkmboqJFlRGMF5pgUT6iatUqmw3Lw8z0Pabd6JkZyryBJ+fNJ4X8 02VYK99INtz3ZpoHwt8k0bi/xf3iD9Auekbpsjj5SbYXZ0F55UH1yeza6FKx8Y06 xmllgfmuR4WdJJgBFFIDdOm85wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+jdGDm LzqIZjZ+3Lvg7YHJdqIkMB8GA1UdIwQYMBaAFKlxLMt+7gJK64h2e3YuEJOxQP9u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI2QS8wODc1RjQ5NjRD NzQxMUU5OTc5MDBGNTVDNEY5QUUwMi9xWEVzeTM3dUFrcnJpSFo3ZGk0UWs3RkFf MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FYRXN5Mzd1QWtycmlIWjdkaTRRazdGQV8yNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEI2QS8wODc1RjQ5NjRDNzQxMUU5OTc5MDBGNTVDNEY5QUUwMi9xWEVzeTM3dUFr cnJpSFo3ZGk0UWs3RkFfMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADN7Vf07+Zfi9fhSsghV5qQ6U0kjWCF8D8+GhyYd7cc6MEmHosGmPp Ycl4EY2c8S1G2b/P970szH0IwcR+GpIzOZTbMBpSQNDDoyzo7wouKEzBbY9PkWaU wJPUNe1S7cz4tIhfREpeB1eXxjHkum8/rcTr0u37sGJWlpTN7Vf83DJ4ELgn2IgM wA1jJ3GA3BFkAHi6F2NRYioQ13XKAjky+dJfLWeFMM2UPlRnrcrEt7Xx/vslX7P0 31zghP3IlaDK33KPfAO9vaZgmH0yarBJ+/vqSvEddvtlXBDSeyxjvr4GFOEVQAOH qnLj9QmW2IBW/JnOMJDTjluN+omnz5/Y -----END CERTIFICATE-----Generated at Sat May 18 18:46:45 2024 by rpki-client on console-fra.rpki-client.org