$ rpki-client -vvf rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.mft File: gqha_fMpJW9H4LcAstFHVqEEwRI.mft (raw, json) Hash identifier: fE06AaXWfBxEYLP6dp7LhjVLzOe1eI/STLldNy9U0uI= Subject key identifier: FF:C1:1D:4C:B4:F5:70:17:F6:5C:6C:C5:FC:8A:1C:64:10:C0:6C:5F Authority key identifier: 82:A8:5A:FD:F3:29:25:6F:47:E0:B7:00:B2:D1:47:56:A1:04:C1:12 Certificate issuer: /CN=A9171C23/serialNumber=82A85AFDF329256F47E0B700B2D14756A104C112 Certificate serial: 04C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqha_fMpJW9H4LcAstFHVqEEwRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.mft Manifest number: 04BC Signing time: Sun 19 May 2024 01:28:38 +0000 Manifest this update: Sun 19 May 2024 01:28:37 +0000 Manifest next update: Sun 26 May 2024 01:28:37 +0000 Files and hashes: 1: gqha_fMpJW9H4LcAstFHVqEEwRI.crl (hash: MNIeYcJTW1Ze4y+rD9wwJisFj+x8bVgv5nPqW7ONBCY=) 2: 7CC19FBCDCAA11EBB87DAD44C4F9AE02.roa (hash: 1FB+xGGfJFBtYkIcTivZWRxeSxbgKD7RpqSre6ctfDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.crl rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqha_fMpJW9H4LcAstFHVqEEwRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1219 (0x4c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171C23/serialNumber=82A85AFDF329256F47E0B700B2D14756A104C112 Validity Not Before: May 19 01:28:37 2024 GMT Not After : May 26 01:28:37 2024 GMT Subject: CN=664955c6-c803 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6b:33:60:34:c3:e1:a1:db:cc:01:b5:5d:1d: 55:de:fd:59:eb:10:04:5b:00:42:bf:c2:cb:0f:0b: 22:29:df:c4:47:39:ea:6d:9a:8a:59:89:eb:74:f7: 8c:f4:37:3c:35:81:8f:95:ed:2a:f9:a7:86:28:db: d9:67:3a:d0:7e:5f:46:5c:ab:e9:74:a3:64:3e:65: f5:d3:01:05:56:14:8b:4c:84:51:9b:cb:9b:1e:d3: 90:c9:22:5b:a4:76:9f:c9:e3:5a:1a:04:c7:4d:bc: f0:bd:0a:6a:04:fa:c1:8b:22:07:81:d5:3d:43:49: 3c:40:ca:4a:5b:f8:46:30:80:f7:fc:67:cb:1c:00: ad:f6:d3:af:24:9c:0e:3c:de:47:51:bf:03:43:45: b9:b6:98:a6:a0:6d:58:66:c7:8b:7f:10:e9:e6:cc: 59:dc:f1:24:c2:70:09:1e:11:5c:5a:d4:a6:28:c5: 50:3c:de:b2:18:3c:84:50:b9:79:4c:dc:64:e2:11: f6:09:ae:b9:1c:79:4a:b0:37:dc:5a:16:74:d7:6b: da:f5:5f:83:93:3f:2d:cf:eb:d5:69:14:b2:e8:97: e8:7f:bf:7a:d7:4d:93:a0:20:58:72:9b:cc:f9:b1: 7d:58:85:eb:35:61:b4:5c:54:30:66:60:6b:9c:a1: cd:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:C1:1D:4C:B4:F5:70:17:F6:5C:6C:C5:FC:8A:1C:64:10:C0:6C:5F X509v3 Authority Key Identifier: keyid:82:A8:5A:FD:F3:29:25:6F:47:E0:B7:00:B2:D1:47:56:A1:04:C1:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqha_fMpJW9H4LcAstFHVqEEwRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:51:89:99:c0:2f:69:e4:cd:f8:fc:86:58:c1:b5:84:fb:94: 55:13:d7:c3:f5:55:46:de:9e:84:d1:99:4f:d8:11:0d:77:e2: 2f:66:01:5f:04:cd:c6:21:da:b7:3e:3f:8f:d0:12:b3:ab:65: 75:16:4a:42:7a:76:f9:dc:3e:95:fe:b6:27:d9:30:e7:47:de: c4:b9:07:56:e4:79:da:51:c0:3a:c1:b5:e1:4e:18:1c:66:aa: d7:4e:f3:4b:c2:0a:4b:b1:b2:53:a4:66:eb:05:62:22:be:aa: 2f:d7:ab:69:6a:66:0a:ed:b8:eb:05:5b:8f:ef:3a:c9:8f:24: 7e:b5:41:7e:b9:b7:80:b2:6a:a2:38:02:5f:cf:da:08:9e:b9: 8f:74:eb:15:ba:3a:91:83:52:05:cb:0d:59:ba:4a:93:23:78: 5d:5e:ab:f3:85:32:bf:44:16:19:be:39:ca:41:09:d3:dd:b6: ae:29:56:fc:e7:9e:60:63:68:0b:04:45:10:35:44:b7:65:db: a3:b7:1b:6c:e3:9f:bc:a3:c1:77:15:14:cc:8e:74:0d:2a:33: 9d:73:7c:39:98:69:33:8b:33:89:f9:bb:e4:69:92:c3:47:67: 89:59:51:1c:e6:81:db:60:ab:53:ad:47:16:c7:36:6d:0e:92: 7e:14:40:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFDMjMxMTAvBgNVBAUTKDgyQTg1QUZERjMyOTI1NkY0N0UwQjcwMEIyRDE0NzU2 QTEwNEMxMTIwHhcNMjQwNTE5MDEyODM3WhcNMjQwNTI2MDEyODM3WjAYMRYwFAYD VQQDEw02NjQ5NTVjNi1jODAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mszYDTD4aHbzAG1XR1V3v1Z6xAEWwBCv8LLDwsiKd/ERznqbZqKWYnrdPeM 9Dc8NYGPle0q+aeGKNvZZzrQfl9GXKvpdKNkPmX10wEFVhSLTIRRm8ubHtOQySJb pHafyeNaGgTHTbzwvQpqBPrBiyIHgdU9Q0k8QMpKW/hGMID3/GfLHACt9tOvJJwO PN5HUb8DQ0W5tpimoG1YZseLfxDp5sxZ3PEkwnAJHhFcWtSmKMVQPN6yGDyEULl5 TNxk4hH2Ca65HHlKsDfcWhZ012va9V+Dkz8tz+vVaRSy6Jfof796102ToCBYcpvM +bF9WIXrNWG0XFQwZmBrnKHNZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/BHUy0 9XAX9lxsxfyKHGQQwGxfMB8GA1UdIwQYMBaAFIKoWv3zKSVvR+C3ALLRR1ahBMES MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUMyMy9DNkJEMUUyQ0RD MTIxMUVCOEMxREE2NEFDNEY5QUUwMi9ncWhhX2ZNcEpXOUg0TGNBc3RGSFZxRUV3 UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dxaGFfZk1wSlc5SDRMY0FzdEZIVnFFRXdSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUMyMy9DNkJEMUUyQ0RDMTIxMUVCOEMxREE2NEFDNEY5QUUwMi9ncWhhX2ZNcEpX OUg0TGNBc3RGSFZxRUV3UkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoUYmZwC9p5M34/IZYwbWE+5RVE9fD9VVG3p6E0ZlP2BENd+IvZgFf BM3GIdq3Pj+P0BKzq2V1FkpCenb53D6V/rYn2TDnR97EuQdW5HnaUcA6wbXhThgc ZqrXTvNLwgpLsbJTpGbrBWIivqov16tpamYK7bjrBVuP7zrJjyR+tUF+ubeAsmqi OAJfz9oInrmPdOsVujqRg1IFyw1ZukqTI3hdXqvzhTK/RBYZvjnKQQnT3bauKVb8 555gY2gLBEUQNUS3Zdujtxts45+8o8F3FRTMjnQNKjOdc3w5mGkzizOJ+bvkaZLD R2eJWVEc5oHbYKtTrUcWxzZtDpJ+FEDm -----END CERTIFICATE-----Generated at Sun May 19 02:59:08 2024 by rpki-client on console-ams.rpki-client.org