$ rpki-client -vvf rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.mft File: cqUfTuqiGLczbu_3p6WMsa5UQjk.mft (raw, json) Hash identifier: bqQY/qYjzc4tkzcKjLrThTQ+QnxMhClmNH6hP6B3RWI= Subject key identifier: C6:CE:5F:0C:B3:BB:47:2A:FA:28:EC:58:F4:3F:70:8B:97:A3:9B:C7 Authority key identifier: 72:A5:1F:4E:EA:A2:18:B7:33:6E:EF:F7:A7:A5:8C:B1:AE:54:42:39 Certificate issuer: /CN=A917D121/serialNumber=72A51F4EEAA218B7336EEFF7A7A58CB1AE544239 Certificate serial: 06CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqUfTuqiGLczbu_3p6WMsa5UQjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.mft Manifest number: 06C7 Signing time: Sat 18 May 2024 23:02:25 +0000 Manifest this update: Sat 18 May 2024 23:02:25 +0000 Manifest next update: Sat 25 May 2024 23:02:25 +0000 Files and hashes: 1: cqUfTuqiGLczbu_3p6WMsa5UQjk.crl (hash: exBmZnh7+wZFsudvWGmpkwsN+o0koDZhCd69KqbOEU4=) 2: DAAB94840EC911EBA913852BC4F9AE02.roa (hash: 5YoPL7nE7xz232jtV+9whkhe2x++vTXRcep/e7rSL8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.crl rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqUfTuqiGLczbu_3p6WMsa5UQjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1740 (0x6cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D121/serialNumber=72A51F4EEAA218B7336EEFF7A7A58CB1AE544239 Validity Not Before: May 18 23:02:25 2024 GMT Not After : May 25 23:02:25 2024 GMT Subject: CN=66493381-8949 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0d:50:dd:ba:7e:34:3c:74:ba:11:77:e8:fa: a0:95:e7:ee:9b:4d:c1:9b:25:92:a1:42:d2:ec:69: 11:19:18:32:a6:0b:0b:6f:0c:03:d7:09:b0:2e:fa: b1:21:51:a8:79:b6:33:8a:b9:28:5b:86:8f:50:b9: 6b:36:d6:9e:37:a7:f2:3e:73:0c:79:3d:15:a4:7e: b0:45:0e:a2:4b:10:95:e1:d4:d0:bf:09:62:b0:1f: 55:91:04:3d:04:b6:ee:c7:df:43:87:88:7b:fa:b1: e8:a1:d6:28:f7:a0:5d:e6:12:7d:d9:80:d7:b9:e1: cb:15:25:77:59:ff:45:0b:81:43:8e:50:13:2f:c5: 71:37:98:3f:7a:66:aa:3e:0c:3a:63:05:6c:c1:4e: 0d:84:a1:68:24:b3:67:8d:e8:81:d4:f5:dd:5e:d9: aa:86:9f:75:fb:c2:bc:c8:91:3b:f3:78:d6:c1:c2: 05:58:97:b6:d3:06:f2:51:8c:aa:e4:cb:fc:58:7c: e3:be:35:e5:b4:1c:3b:ff:19:2d:c3:f8:fb:17:95: b4:dd:38:04:e0:1a:96:d0:b5:b0:fd:00:48:7c:69: 08:9e:74:85:f8:31:b8:2d:9a:1a:d1:e5:58:75:ee: 1f:6b:a0:4b:5d:aa:b8:ec:45:0a:0c:98:9b:90:70: 34:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:CE:5F:0C:B3:BB:47:2A:FA:28:EC:58:F4:3F:70:8B:97:A3:9B:C7 X509v3 Authority Key Identifier: keyid:72:A5:1F:4E:EA:A2:18:B7:33:6E:EF:F7:A7:A5:8C:B1:AE:54:42:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqUfTuqiGLczbu_3p6WMsa5UQjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:b2:04:85:0a:f2:4f:8e:fc:99:52:fb:3a:0a:b7:ed:dd:40: 03:68:06:61:33:27:e1:2a:9b:16:4c:19:d9:0e:3a:67:7f:f1: 3a:3c:a6:2c:5d:e3:ec:49:c7:39:b7:08:fc:f9:2d:0a:58:15: a0:fe:d1:05:3b:7e:6d:88:09:30:a0:5c:5d:a5:98:c9:ea:a5: 47:5b:9c:13:f9:f5:86:7e:f6:6c:7f:a9:cd:b7:40:a4:23:36: 7a:c8:00:ac:b3:74:1d:fe:e3:46:43:51:c4:e6:4f:3f:b8:d4: 9f:12:ad:31:4c:2f:41:38:d6:65:06:5f:54:c6:37:ec:5b:db: 84:2c:93:f8:87:24:6a:d3:05:3d:c6:c9:d3:2d:ba:28:ed:9f: c7:e5:92:43:3d:a0:a3:a1:22:92:10:9b:09:62:50:7a:71:a0: 12:e1:a8:c0:da:b5:ff:81:99:80:3c:4d:85:51:5b:d1:32:db: 56:37:2b:a4:79:5a:bf:dc:a4:dc:21:ad:24:9d:0c:21:0d:4d: b2:df:05:4a:1c:67:50:a0:42:48:be:ac:cb:ed:4a:0b:46:3a: 43:63:89:e4:9b:02:57:7e:22:54:48:db:41:b5:65:ef:aa:98: f0:b1:96:00:9b:27:e7:6d:5b:bc:44:e8:13:c0:f4:35:4e:93: 73:e2:36:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QxMjExMTAvBgNVBAUTKDcyQTUxRjRFRUFBMjE4QjczMzZFRUZGN0E3QTU4Q0Ix QUU1NDQyMzkwHhcNMjQwNTE4MjMwMjI1WhcNMjQwNTI1MjMwMjI1WjAYMRYwFAYD VQQDEw02NjQ5MzM4MS04OTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuA1Q3bp+NDx0uhF36Pqglefum03BmyWSoULS7GkRGRgypgsLbwwD1wmwLvqx IVGoebYzirkoW4aPULlrNtaeN6fyPnMMeT0VpH6wRQ6iSxCV4dTQvwlisB9VkQQ9 BLbux99Dh4h7+rHoodYo96Bd5hJ92YDXueHLFSV3Wf9FC4FDjlATL8VxN5g/emaq Pgw6YwVswU4NhKFoJLNnjeiB1PXdXtmqhp91+8K8yJE783jWwcIFWJe20wbyUYyq 5Mv8WHzjvjXltBw7/xktw/j7F5W03TgE4BqW0LWw/QBIfGkInnSF+DG4LZoa0eVY de4fa6BLXaq47EUKDJibkHA0YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMbOXwyz u0cq+ijsWPQ/cIuXo5vHMB8GA1UdIwQYMBaAFHKlH07qohi3M27v96eljLGuVEI5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDEyMS84QjBGOEIwQzBF QzgxMUVCQTUwNDJDMkFDNEY5QUUwMi9jcVVmVHVxaUdMY3pidV8zcDZXTXNhNVVR amsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxVWZUdXFpR0xjemJ1XzNwNldNc2E1VVFqay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDEyMS84QjBGOEIwQzBFQzgxMUVCQTUwNDJDMkFDNEY5QUUwMi9jcVVmVHVxaUdM Y3pidV8zcDZXTXNhNVVRamsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqsgSFCvJPjvyZUvs6Crft3UADaAZhMyfhKpsWTBnZDjpnf/E6PKYs XePsScc5twj8+S0KWBWg/tEFO35tiAkwoFxdpZjJ6qVHW5wT+fWGfvZsf6nNt0Ck IzZ6yACss3Qd/uNGQ1HE5k8/uNSfEq0xTC9BONZlBl9UxjfsW9uELJP4hyRq0wU9 xsnTLboo7Z/H5ZJDPaCjoSKSEJsJYlB6caAS4ajA2rX/gZmAPE2FUVvRMttWNyuk eVq/3KTcIa0knQwhDU2y3wVKHGdQoEJIvqzL7UoLRjpDY4nkmwJXfiJUSNtBtWXv qpjwsZYAmyfnbVu8ROgTwPQ1TpNz4jbn -----END CERTIFICATE-----Generated at Sun May 19 00:30:18 2024 by rpki-client on console-ams.rpki-client.org