$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft File: dQWoa19PqlBUPSSMbwhUxQWu3A8.mft (raw, json) Hash identifier: LzWEO1t6CVj0U6rj2NQgLx8XHXspxei4okgiS8x/bV4= Subject key identifier: 32:93:C3:84:64:97:E3:C1:51:31:E1:58:D5:ED:5E:42:35:AF:79:1E Authority key identifier: 75:05:A8:6B:5F:4F:AA:50:54:3D:24:8C:6F:08:54:C5:05:AE:DC:0F Certificate issuer: /CN=A918D0E6/serialNumber=7505A86B5F4FAA50543D248C6F0854C505AEDC0F Certificate serial: 0A74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft Manifest number: 0A66 Signing time: Sat 18 May 2024 20:22:09 +0000 Manifest this update: Sat 18 May 2024 20:22:08 +0000 Manifest next update: Sat 25 May 2024 20:22:08 +0000 Files and hashes: 1: dQWoa19PqlBUPSSMbwhUxQWu3A8.crl (hash: lf9L5YqYCAJTi5UEbVuFhS/whgzdIyFEyIq1Wi9e4ZE=) 2: 4B1D295E9EA211EB901A9532C4F9AE02.roa (hash: /xWesDsMi1pD+tn1de40Hq3CgHdzNliJuaUvah0mIOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.crl rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2676 (0xa74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0E6/serialNumber=7505A86B5F4FAA50543D248C6F0854C505AEDC0F Validity Not Before: May 18 20:22:08 2024 GMT Not After : May 25 20:22:08 2024 GMT Subject: CN=66490df0-fdba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:72:4f:97:64:a0:40:2b:c3:7a:f2:21:c7:1a: a9:e4:ef:ab:22:28:8f:47:f8:fe:aa:4c:82:ec:66: da:01:f9:87:82:67:cc:d2:37:c7:29:87:56:c8:15: af:92:6a:27:fe:5a:65:35:09:6f:0f:17:23:2e:48: 15:3e:91:e9:70:6a:30:af:54:58:0f:7b:b2:0d:18: bf:11:df:26:f1:d6:0c:29:5f:3a:a7:88:4c:69:90: 9b:5e:88:dc:b3:6b:1c:2c:61:08:28:8b:71:f9:70: a1:e5:fe:e7:c2:41:b1:e2:0f:b5:a0:25:1e:42:d9: 04:fe:ed:6d:79:09:8c:51:8d:85:9b:89:88:1a:0a: 12:a7:c9:4a:e7:e9:ee:1a:ed:b9:ed:40:30:ff:93: a8:8a:0f:1f:6f:94:10:0a:de:85:4c:db:f2:d3:94: f7:07:60:0a:3e:58:3f:a0:1a:58:aa:56:6a:5a:be: 39:1e:e7:1a:54:0c:d3:5a:e8:74:1d:bf:f9:22:72: 8a:db:3f:46:84:c2:a5:26:2a:c3:7a:db:cd:aa:12: 9e:33:e4:32:00:59:0d:fa:39:68:d8:ad:91:e7:6b: 5b:f9:83:12:a2:96:2e:09:67:09:63:14:e9:83:06: b6:85:c1:d2:7c:66:2d:92:56:0b:62:c1:ad:94:82: 86:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:93:C3:84:64:97:E3:C1:51:31:E1:58:D5:ED:5E:42:35:AF:79:1E X509v3 Authority Key Identifier: keyid:75:05:A8:6B:5F:4F:AA:50:54:3D:24:8C:6F:08:54:C5:05:AE:DC:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:e0:f1:65:dc:60:8d:23:7d:d4:5c:4d:97:a6:50:11:23:81: 0b:e7:f8:5e:41:75:b0:5d:88:d9:4a:0e:19:2b:6e:a6:52:0b: e9:6f:56:5c:f6:7b:1a:31:50:ce:42:81:59:52:39:d2:52:35: 61:5c:f9:cf:0f:26:8e:e3:02:6c:7a:f4:81:fb:7d:27:7d:cd: 25:a2:db:0f:c5:6d:f3:5d:9f:a9:45:62:6c:9a:cc:31:29:91: ae:82:ff:54:be:83:72:2b:fb:74:24:48:ba:da:17:17:eb:fd: 60:79:b9:9e:d0:72:90:fa:f8:96:fb:48:f3:fa:e1:93:84:ab: 78:c1:ef:7f:fa:78:ca:ed:07:c6:d9:75:16:8f:f3:ce:52:c7: d7:2e:91:91:c8:35:c4:5d:23:dd:71:ef:14:74:a8:3f:6d:b3: 23:90:0c:0e:cd:5d:c8:85:0e:ff:6d:03:a8:57:2a:b8:57:e6: 07:fc:71:d2:cb:14:1b:f5:47:5b:0f:6f:12:c0:b4:db:98:77: 4b:52:6e:1c:bc:b4:5b:8e:80:38:48:84:6f:e6:73:ac:00:63: 39:16:2f:ec:56:19:be:0a:67:cb:92:ce:48:b9:57:4e:dd:50: 67:49:fe:67:34:27:82:8a:eb:07:78:ac:69:56:a5:33:86:3b: ca:d7:52:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwRTYxMTAvBgNVBAUTKDc1MDVBODZCNUY0RkFBNTA1NDNEMjQ4QzZGMDg1NEM1 MDVBRURDMEYwHhcNMjQwNTE4MjAyMjA4WhcNMjQwNTI1MjAyMjA4WjAYMRYwFAYD VQQDEw02NjQ5MGRmMC1mZGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynJPl2SgQCvDevIhxxqp5O+rIiiPR/j+qkyC7GbaAfmHgmfM0jfHKYdWyBWv kmon/lplNQlvDxcjLkgVPpHpcGowr1RYD3uyDRi/Ed8m8dYMKV86p4hMaZCbXojc s2scLGEIKItx+XCh5f7nwkGx4g+1oCUeQtkE/u1teQmMUY2Fm4mIGgoSp8lK5+nu Gu257UAw/5Ooig8fb5QQCt6FTNvy05T3B2AKPlg/oBpYqlZqWr45HucaVAzTWuh0 Hb/5InKK2z9GhMKlJirDetvNqhKeM+QyAFkN+jlo2K2R52tb+YMSopYuCWcJYxTp gwa2hcHSfGYtklYLYsGtlIKG1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDKTw4Rk l+PBUTHhWNXtXkI1r3keMB8GA1UdIwQYMBaAFHUFqGtfT6pQVD0kjG8IVMUFrtwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBFNi9EOEFERDk0MjNG MzcxMUVBQTc4NjQzNEJDNEY5QUUwMi9kUVdvYTE5UHFsQlVQU1NNYndoVXhRV3Uz QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRV29hMTlQcWxCVVBTU01id2hVeFFXdTNBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBFNi9EOEFERDk0MjNGMzcxMUVBQTc4NjQzNEJDNEY5QUUwMi9kUVdvYTE5UHFs QlVQU1NNYndoVXhRV3UzQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz4PFl3GCNI33UXE2XplARI4EL5/heQXWwXYjZSg4ZK26mUgvpb1Zc 9nsaMVDOQoFZUjnSUjVhXPnPDyaO4wJsevSB+30nfc0lotsPxW3zXZ+pRWJsmswx KZGugv9UvoNyK/t0JEi62hcX6/1gebme0HKQ+viW+0jz+uGThKt4we9/+njK7QfG 2XUWj/POUsfXLpGRyDXEXSPdce8UdKg/bbMjkAwOzV3IhQ7/bQOoVyq4V+YH/HHS yxQb9UdbD28SwLTbmHdLUm4cvLRbjoA4SIRv5nOsAGM5Fi/sVhm+CmfLks5IuVdO 3VBnSf5nNCeCiusHeKxpVqUzhjvK11IS -----END CERTIFICATE-----Generated at Sat May 18 20:48:20 2024 by rpki-client on console-fra.rpki-client.org