$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft File: qHH05sNy2xC2TfOZX6FR77OfmYs.mft (raw, json) Hash identifier: Mob2WN8mqwX/nInK9QQd+/y6I1evX1DZfTqeRljuLLQ= Subject key identifier: 3B:49:F6:32:C3:5A:B8:59:F0:7F:90:5B:D9:CC:B5:1D:1B:E0:00:2F Authority key identifier: A8:71:F4:E6:C3:72:DB:10:B6:4D:F3:99:5F:A1:51:EF:B3:9F:99:8B Certificate issuer: /CN=A9195F49/serialNumber=A871F4E6C372DB10B64DF3995FA151EFB39F998B Certificate serial: 036B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft Manifest number: 0366 Signing time: Sun 19 May 2024 02:52:26 +0000 Manifest this update: Sun 19 May 2024 02:52:26 +0000 Manifest next update: Sun 26 May 2024 02:52:26 +0000 Files and hashes: 1: qHH05sNy2xC2TfOZX6FR77OfmYs.crl (hash: owoDC9J8dtEXnIcOt00lxhunRemlDDxjaARgm7QvRv4=) 2: 5FC75DCC66A511EC9C199341C4F9AE02.roa (hash: gnbIBMqD5hJ7Vz9utbOPNutm0e/N5U3T0Xpff+xnLP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.crl rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 875 (0x36b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F49/serialNumber=A871F4E6C372DB10B64DF3995FA151EFB39F998B Validity Not Before: May 19 02:52:26 2024 GMT Not After : May 26 02:52:26 2024 GMT Subject: CN=6649696a-fa5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ab:31:13:86:6c:72:02:11:74:8e:9c:65:4c: d2:09:7c:4f:68:50:1b:a0:bd:80:0e:46:f8:a9:34: 43:40:d1:31:68:83:eb:f3:5b:97:cf:3e:c0:66:66: 2b:20:89:fc:e0:0d:ac:72:1c:1d:55:3d:c1:57:52: 33:8c:34:09:f9:91:e3:8c:1f:5d:90:63:5c:68:74: 2f:31:0a:88:56:60:41:61:80:73:e5:31:d2:c8:57: ae:c3:3e:81:23:02:08:c2:6c:ad:27:21:0b:80:fa: f6:c0:e3:32:21:08:db:6b:23:bd:63:c3:22:a2:0f: 8d:1e:33:37:f7:16:ee:22:4f:37:15:86:28:b2:b4: 79:5d:19:05:5a:92:22:5a:d9:92:bb:54:4b:1c:9b: c1:f8:7e:7d:6e:6e:51:48:b9:85:f6:c4:c6:49:7c: 46:ac:37:91:f0:f6:ef:9e:5a:fd:ef:99:b1:15:9d: 9a:a4:36:93:35:96:2b:eb:c6:08:bf:a8:94:4a:6f: ed:6c:dd:87:73:80:5d:4f:de:42:3e:c7:cc:71:a8: 71:2f:9e:e8:7f:93:35:71:0d:d8:48:df:50:6a:b3: a5:67:50:f9:e1:bc:78:0f:8c:dd:fa:a0:42:12:39: 0c:3a:42:6a:e5:45:ac:a4:c8:77:d8:a0:e6:12:b3: 36:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:49:F6:32:C3:5A:B8:59:F0:7F:90:5B:D9:CC:B5:1D:1B:E0:00:2F X509v3 Authority Key Identifier: keyid:A8:71:F4:E6:C3:72:DB:10:B6:4D:F3:99:5F:A1:51:EF:B3:9F:99:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:ab:96:1e:40:f7:f9:c9:4a:8e:4b:0d:3a:37:d5:75:56:22: c1:83:a7:ca:5d:2d:71:c7:6b:fc:92:47:d1:9b:96:e4:99:f7: 2f:a2:ae:a1:b1:78:2b:44:be:13:3f:e8:74:3a:38:96:60:8b: 54:d0:fb:59:7e:cd:52:b9:f2:28:7c:78:fa:38:01:c4:7d:d1: 34:6b:e0:5f:16:34:dd:fa:78:dc:3d:e3:8e:79:6d:39:a6:f5: f8:f5:1c:e8:34:73:3e:66:0f:ba:9e:19:ca:db:df:e0:27:f4: e9:56:83:7c:a9:e9:69:3c:f2:bb:c2:02:68:4d:20:e1:0e:3b: 8a:44:32:bb:a1:66:30:9f:17:fb:f8:36:66:df:91:f3:e1:32: 28:4d:93:97:8a:00:5e:67:16:6f:d6:46:96:a3:5c:38:4a:fe: b3:06:47:48:55:7d:f6:ee:54:76:b4:ea:57:dd:7e:df:8b:4c: 0b:8c:f8:dd:97:b0:a9:d9:5c:aa:6d:ae:2a:4e:5a:e4:69:d9: 61:52:86:22:80:85:b0:a2:14:88:0c:74:1b:33:88:20:85:e5: c8:23:37:f2:56:90:38:2f:b3:5f:06:35:a6:bf:53:6d:17:37: 22:22:4b:ac:1d:d7:92:b8:2b:4e:83:90:af:ac:0d:94:8f:61: 6b:81:65:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGNDkxMTAvBgNVBAUTKEE4NzFGNEU2QzM3MkRCMTBCNjRERjM5OTVGQTE1MUVG QjM5Rjk5OEIwHhcNMjQwNTE5MDI1MjI2WhcNMjQwNTI2MDI1MjI2WjAYMRYwFAYD VQQDEw02NjQ5Njk2YS1mYTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvasxE4ZscgIRdI6cZUzSCXxPaFAboL2ADkb4qTRDQNExaIPr81uXzz7AZmYr IIn84A2schwdVT3BV1IzjDQJ+ZHjjB9dkGNcaHQvMQqIVmBBYYBz5THSyFeuwz6B IwIIwmytJyELgPr2wOMyIQjbayO9Y8Miog+NHjM39xbuIk83FYYosrR5XRkFWpIi WtmSu1RLHJvB+H59bm5RSLmF9sTGSXxGrDeR8Pbvnlr975mxFZ2apDaTNZYr68YI v6iUSm/tbN2Hc4BdT95CPsfMcahxL57of5M1cQ3YSN9QarOlZ1D54bx4D4zd+qBC EjkMOkJq5UWspMh32KDmErM2BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtJ9jLD WrhZ8H+QW9nMtR0b4AAvMB8GA1UdIwQYMBaAFKhx9ObDctsQtk3zmV+hUe+zn5mL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY0OS85RDNDNzQ5MjY2 QTIxMUVDQkI3QTBBM0NDNEY5QUUwMi9xSEgwNXNOeTJ4QzJUZk9aWDZGUjc3T2Zt WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FISDA1c055MnhDMlRmT1pYNkZSNzdPZm1Zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY0OS85RDNDNzQ5MjY2QTIxMUVDQkI3QTBBM0NDNEY5QUUwMi9xSEgwNXNOeTJ4 QzJUZk9aWDZGUjc3T2ZtWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWq5YeQPf5yUqOSw06N9V1ViLBg6fKXS1xx2v8kkfRm5bkmfcvoq6h sXgrRL4TP+h0OjiWYItU0PtZfs1SufIofHj6OAHEfdE0a+BfFjTd+njcPeOOeW05 pvX49RzoNHM+Zg+6nhnK29/gJ/TpVoN8qelpPPK7wgJoTSDhDjuKRDK7oWYwnxf7 +DZm35Hz4TIoTZOXigBeZxZv1kaWo1w4Sv6zBkdIVX327lR2tOpX3X7fi0wLjPjd l7Cp2Vyqba4qTlrkadlhUoYigIWwohSIDHQbM4ggheXIIzfyVpA4L7NfBjWmv1Nt FzciIkusHdeSuCtOg5CvrA2Uj2FrgWXG -----END CERTIFICATE-----Generated at Sun May 19 03:48:52 2024 by rpki-client on console-fra.rpki-client.org