$ rpki-client -vvf rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/IiQPt4cqphjT4NSTRdv0JHOtBMc.mft File: IiQPt4cqphjT4NSTRdv0JHOtBMc.mft (raw, json) Hash identifier: 2mCAyDwIDs6xFspAemWE1Y8rLyrhbvngz0wt+SR8g4o= Subject key identifier: DA:6D:52:AE:D3:DE:E7:8C:D5:BF:4D:07:2C:C4:A2:75:EF:80:8B:F4 Authority key identifier: 22:24:0F:B7:87:2A:A6:18:D3:E0:D4:93:45:DB:F4:24:73:AD:04:C7 Certificate issuer: /CN=A916C38F/serialNumber=22240FB7872AA618D3E0D49345DBF42473AD04C7 Certificate serial: 0A75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiQPt4cqphjT4NSTRdv0JHOtBMc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/IiQPt4cqphjT4NSTRdv0JHOtBMc.mft Manifest number: 0A6F Signing time: Sat 18 May 2024 20:18:07 +0000 Manifest this update: Sat 18 May 2024 20:18:06 +0000 Manifest next update: Sat 25 May 2024 20:18:06 +0000 Files and hashes: 1: IiQPt4cqphjT4NSTRdv0JHOtBMc.crl (hash: zmjIo/UYcoZok/3t4KbJxk7EKbN6NagLElxSLmo8TN0=) 2: 0F072D383AAE11EAB5D8270EC4F9AE02.roa (hash: smZ3CNEBdSZvQ78ThJQSEWeNvx/p4Bniyj6JMYUhZv0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/IiQPt4cqphjT4NSTRdv0JHOtBMc.crl rsync://rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/IiQPt4cqphjT4NSTRdv0JHOtBMc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiQPt4cqphjT4NSTRdv0JHOtBMc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2677 (0xa75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C38F/serialNumber=22240FB7872AA618D3E0D49345DBF42473AD04C7 Validity Not Before: May 18 20:18:06 2024 GMT Not After : May 25 20:18:06 2024 GMT Subject: CN=66490cfe-756f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:cc:f4:4e:ab:92:e8:cc:30:d7:29:db:21:81: 58:a3:75:f0:69:f8:aa:db:c7:5b:fa:03:f3:5b:a4: de:1c:45:89:79:1d:5f:3b:03:89:6d:21:bd:5d:1f: 57:43:1d:a3:94:f8:fd:04:ce:5d:57:6e:5a:3d:fd: e7:4d:c7:d0:ed:1a:20:9d:a7:14:65:8d:d8:7a:5a: 46:65:31:86:59:e1:19:8e:86:0e:37:13:8b:d8:b2: 12:71:04:46:42:4f:e6:37:83:93:1b:e8:be:b5:28: 8f:72:39:5a:71:22:b1:ad:ce:14:c1:ed:a7:1e:40: 22:6d:fa:e9:53:53:ea:f1:9a:de:8a:e9:dd:e1:e4: ca:92:2b:c4:43:f0:e2:1a:a9:39:e3:e7:00:1c:cb: 5d:39:e8:c9:98:c7:b0:e1:17:b6:32:b0:2c:9b:8f: 75:53:91:4d:b0:3f:9b:e0:06:74:ba:f8:2d:2b:da: e1:e4:94:9f:af:4b:b9:db:79:c6:3d:b5:26:73:9e: b3:d9:4c:6b:76:d0:b8:24:b6:13:15:b6:2b:a2:2b: 8a:0f:11:74:e5:7c:65:34:c8:cd:0d:3a:f4:ca:fb: c8:5c:c3:e9:e7:f7:69:88:eb:13:64:ab:60:d8:5f: 7e:1e:b0:38:9e:7d:1b:9f:cb:67:a8:ff:9f:3b:0a: 39:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:6D:52:AE:D3:DE:E7:8C:D5:BF:4D:07:2C:C4:A2:75:EF:80:8B:F4 X509v3 Authority Key Identifier: keyid:22:24:0F:B7:87:2A:A6:18:D3:E0:D4:93:45:DB:F4:24:73:AD:04:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/IiQPt4cqphjT4NSTRdv0JHOtBMc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiQPt4cqphjT4NSTRdv0JHOtBMc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/IiQPt4cqphjT4NSTRdv0JHOtBMc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:89:8d:53:28:ca:1e:00:a1:92:22:9f:eb:a1:ab:e5:96:e4: 4e:ab:ac:2f:69:c8:2e:af:f8:55:23:49:7d:37:5a:d6:54:6a: 25:08:27:a3:a1:5d:f6:c7:0e:3b:a8:1c:40:79:74:63:82:94: 6e:4c:c4:c5:9a:ef:5f:a7:b7:d8:b7:c7:04:40:41:4e:c3:88: a4:ca:a2:73:29:e7:43:08:3b:82:d3:f6:76:03:21:f3:7c:e5: 85:ea:86:12:4e:fe:7f:a7:f5:c4:25:91:c9:c2:2d:c4:d4:7e: 87:b5:6c:85:6e:12:7b:0e:81:53:85:6d:ea:c5:63:62:5f:1a: 0f:a4:ab:3e:87:23:f0:3b:05:b1:82:b6:d5:fc:d2:b3:90:93: 15:99:68:81:05:c3:14:e2:0e:5b:87:f7:fa:17:84:3a:06:a1: 10:30:10:ef:22:b5:44:81:0f:94:48:99:5e:43:f4:c5:84:8e: cd:fe:d7:4e:09:e5:53:c8:3f:dc:31:a2:c0:b0:ef:9f:d4:8c: bf:58:6b:35:21:8b:92:73:ef:0f:51:6f:7e:70:d7:71:1a:27: 2d:ce:ed:74:c7:63:aa:37:18:b2:66:60:14:13:e7:16:6e:3d: 24:e8:6f:1d:b7:37:23:0d:4f:82:fe:dd:e3:b3:e0:d3:c5:7f: 2f:0f:bd:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMzOEYxMTAvBgNVBAUTKDIyMjQwRkI3ODcyQUE2MThEM0UwRDQ5MzQ1REJGNDI0 NzNBRDA0QzcwHhcNMjQwNTE4MjAxODA2WhcNMjQwNTI1MjAxODA2WjAYMRYwFAYD VQQDEw02NjQ5MGNmZS03NTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsz0TquS6Mww1ynbIYFYo3Xwafiq28db+gPzW6TeHEWJeR1fOwOJbSG9XR9X Qx2jlPj9BM5dV25aPf3nTcfQ7RognacUZY3YelpGZTGGWeEZjoYONxOL2LIScQRG Qk/mN4OTG+i+tSiPcjlacSKxrc4Uwe2nHkAibfrpU1Pq8Zreiund4eTKkivEQ/Di Gqk54+cAHMtdOejJmMew4Re2MrAsm491U5FNsD+b4AZ0uvgtK9rh5JSfr0u523nG PbUmc56z2UxrdtC4JLYTFbYroiuKDxF05XxlNMjNDTr0yvvIXMPp5/dpiOsTZKtg 2F9+HrA4nn0bn8tnqP+fOwo5kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNptUq7T 3ueM1b9NByzEonXvgIv0MB8GA1UdIwQYMBaAFCIkD7eHKqYY0+DUk0Xb9CRzrQTH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzM4Ri82OUU5OUI4RTNB QUMxMUVBODQ3OTVFMEJDNEY5QUUwMi9JaVFQdDRjcXBoalQ0TlNUUmR2MEpIT3RC TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lpUVB0NGNxcGhqVDROU1RSZHYwSkhPdEJNYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzM4Ri82OUU5OUI4RTNBQUMxMUVBODQ3OTVFMEJDNEY5QUUwMi9JaVFQdDRjcXBo alQ0TlNUUmR2MEpIT3RCTWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuiY1TKMoeAKGSIp/roavlluROq6wvacgur/hVI0l9N1rWVGolCCej oV32xw47qBxAeXRjgpRuTMTFmu9fp7fYt8cEQEFOw4ikyqJzKedDCDuC0/Z2AyHz fOWF6oYSTv5/p/XEJZHJwi3E1H6HtWyFbhJ7DoFThW3qxWNiXxoPpKs+hyPwOwWx grbV/NKzkJMVmWiBBcMU4g5bh/f6F4Q6BqEQMBDvIrVEgQ+USJleQ/TFhI7N/tdO CeVTyD/cMaLAsO+f1Iy/WGs1IYuSc+8PUW9+cNdxGictzu10x2OqNxiyZmAUE+cW bj0k6G8dtzcjDU+C/t3js+DTxX8vD73n -----END CERTIFICATE-----Generated at Sat May 18 21:31:29 2024 by rpki-client on console-ams.rpki-client.org