$ rpki-client -vvf rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft File: Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft (raw, json) Hash identifier: KHN9peeFybxRBSp9NLzJ/nWG8b3l0a/jYJh6pcIF1q8= Subject key identifier: 20:88:DB:33:68:E8:76:06:AF:E4:3D:D1:7E:3D:29:B7:4A:43:48:44 Authority key identifier: 43:D2:50:D5:C1:F6:09:ED:17:4D:FF:26:43:01:DB:45:BE:25:B1:B4 Certificate issuer: /CN=A91978DD/serialNumber=43D250D5C1F609ED174DFF264301DB45BE25B1B4 Certificate serial: 1670 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft Manifest number: 1668 Signing time: Sat 18 May 2024 17:09:08 +0000 Manifest this update: Sat 18 May 2024 17:09:08 +0000 Manifest next update: Sat 25 May 2024 17:09:07 +0000 Files and hashes: 1: Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl (hash: zJNnKQhV6rS3Sw2MBi1r8+nG9cvQYQymCSUvLDw3EL0=) 2: 16ABD910E0C111E7BA64DE22C4F9AE02.roa (hash: 4y/ma/sx7t7qxzFWfsKKQaspdUYpR7GKn4wcpl9gpOg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5744 (0x1670) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91978DD/serialNumber=43D250D5C1F609ED174DFF264301DB45BE25B1B4 Validity Not Before: May 18 17:09:08 2024 GMT Not After : May 25 17:09:07 2024 GMT Subject: CN=6648e0b4-14df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:be:4e:8d:d7:ed:04:3e:39:16:78:68:a3:67: d8:69:01:b5:05:f9:b7:d0:55:88:79:00:88:23:a0: c3:51:4d:7d:e8:d3:1c:d2:fd:30:c1:4d:1a:19:4e: 33:58:cd:9f:fc:8a:f0:fc:16:ce:df:aa:bc:51:95: b0:c8:7d:7b:24:47:1d:5d:0d:22:e9:cd:e0:5d:8d: 2e:d7:c1:9d:8e:11:60:82:d3:bd:38:74:c2:be:e4: 58:b2:d1:28:b8:a0:23:6e:d7:57:42:d9:e7:d5:90: 95:de:30:a9:31:1b:82:99:e4:0f:fe:7a:68:5f:92: ef:38:63:1e:db:9b:bc:43:cb:1e:61:ad:92:9d:6e: 14:af:3e:6e:da:71:84:50:a5:7b:12:cd:5c:5b:31: 42:02:5b:e9:8d:b5:03:81:06:e2:f1:fa:d4:e1:ae: 08:67:a5:f4:91:87:2f:7a:bc:10:0f:e4:ee:0f:f8: 5d:e4:6d:a5:7d:21:62:3f:ee:b1:3f:0e:22:91:8a: 9d:42:41:3b:f7:fd:b9:cc:b6:bc:7d:49:82:32:65: f1:41:1d:ba:5e:6f:8f:12:ef:f1:15:90:e5:7c:37: 39:30:46:39:55:d9:e3:18:c0:09:4b:3b:50:56:c8: 82:9b:e9:4c:da:99:e2:3c:1a:9f:29:08:4c:da:13: 25:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:88:DB:33:68:E8:76:06:AF:E4:3D:D1:7E:3D:29:B7:4A:43:48:44 X509v3 Authority Key Identifier: keyid:43:D2:50:D5:C1:F6:09:ED:17:4D:FF:26:43:01:DB:45:BE:25:B1:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:a3:7c:01:7f:58:ba:11:7f:0c:61:dd:f3:50:c7:8b:2c:1a: 13:8b:42:96:ff:52:45:65:02:d3:a3:3c:84:5e:c4:27:1d:41: 7e:5d:61:83:8d:6e:ae:a6:2e:c5:86:e7:2a:4a:5d:f8:d8:8b: 9e:61:23:6e:fe:0c:b9:b0:d9:84:1b:d8:66:b5:0b:e2:f8:b9: b5:18:c3:26:fd:ab:f3:18:ab:78:f9:0b:14:06:5a:c4:95:df: 10:7d:41:6f:8b:ad:97:17:99:28:06:f1:2f:e3:c6:07:a6:4c: 52:a8:7a:75:a9:9e:33:c3:76:94:e3:b7:4a:0d:ab:29:d1:3c: 4a:e3:af:c2:a9:43:93:09:68:cb:4c:1c:bd:52:56:a5:db:7e: a6:75:b1:b8:cc:74:34:df:7c:0b:c5:79:a2:11:eb:29:50:c1: e2:30:3b:35:04:e1:9f:52:af:61:6e:94:59:81:e6:ee:b1:b3: 6b:f3:73:ca:75:a1:be:b9:ea:dc:2a:0a:d3:65:53:07:26:22: eb:60:6e:6a:30:11:72:ff:3c:89:47:0f:99:eb:0e:60:b2:3a: 84:ce:f1:67:ac:b0:98:e8:22:f1:76:98:0b:f2:40:f0:09:fc: fe:80:1d:44:36:3d:36:6d:6c:74:1c:74:77:e2:ea:ec:b0:2e: 21:9f:74:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc4REQxMTAvBgNVBAUTKDQzRDI1MEQ1QzFGNjA5RUQxNzRERkYyNjQzMDFEQjQ1 QkUyNUIxQjQwHhcNMjQwNTE4MTcwOTA4WhcNMjQwNTI1MTcwOTA3WjAYMRYwFAYD VQQDEw02NjQ4ZTBiNC0xNGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxr5OjdftBD45Fnhoo2fYaQG1Bfm30FWIeQCII6DDUU196NMc0v0wwU0aGU4z WM2f/Irw/BbO36q8UZWwyH17JEcdXQ0i6c3gXY0u18GdjhFggtO9OHTCvuRYstEo uKAjbtdXQtnn1ZCV3jCpMRuCmeQP/npoX5LvOGMe25u8Q8seYa2SnW4Urz5u2nGE UKV7Es1cWzFCAlvpjbUDgQbi8frU4a4IZ6X0kYcverwQD+TuD/hd5G2lfSFiP+6x Pw4ikYqdQkE79/25zLa8fUmCMmXxQR26Xm+PEu/xFZDlfDc5MEY5VdnjGMAJSztQ VsiCm+lM2pniPBqfKQhM2hMlIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCI2zNo 6HYGr+Q90X49KbdKQ0hEMB8GA1UdIwQYMBaAFEPSUNXB9gntF03/JkMB20W+JbG0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzhERC9DQzE4RDlENEUw QjYxMUU3OTlBMkI2ODJDNEY5QUUwMi9ROUpRMWNIMkNlMFhUZjhtUXdIYlJiNGxz YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E5SlExY0gyQ2UwWFRmOG1Rd0hiUmI0bHNiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzhERC9DQzE4RDlENEUwQjYxMUU3OTlBMkI2ODJDNEY5QUUwMi9ROUpRMWNIMkNl MFhUZjhtUXdIYlJiNGxzYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7o3wBf1i6EX8MYd3zUMeLLBoTi0KW/1JFZQLTozyEXsQnHUF+XWGD jW6upi7FhucqSl342IueYSNu/gy5sNmEG9hmtQvi+Lm1GMMm/avzGKt4+QsUBlrE ld8QfUFvi62XF5koBvEv48YHpkxSqHp1qZ4zw3aU47dKDasp0TxK46/CqUOTCWjL TBy9Ulal236mdbG4zHQ033wLxXmiEespUMHiMDs1BOGfUq9hbpRZgebusbNr83PK daG+uercKgrTZVMHJiLrYG5qMBFy/zyJRw+Z6w5gsjqEzvFnrLCY6CLxdpgL8kDw Cfz+gB1ENj02bWx0HHR34urssC4hn3S1 -----END CERTIFICATE-----Generated at Sat May 18 18:21:38 2024 by rpki-client on console-ams.rpki-client.org