$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft File: qkHKgdI-9YhhkyqtErMWkNvPEAM.mft (raw, json) Hash identifier: x0yQTOcuZlYvm0XaFITGkHCCFxrAl6nXDyz3T+GFzSA= Subject key identifier: B2:D5:76:2B:0E:C0:B7:0F:A0:2D:74:E7:B4:8C:51:B2:53:76:DF:0C Authority key identifier: AA:41:CA:81:D2:3E:F5:88:61:93:2A:AD:12:B3:16:90:DB:CF:10:03 Certificate issuer: /CN=A91A5744/serialNumber=AA41CA81D23EF58861932AAD12B31690DBCF1003 Certificate serial: 0B80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkHKgdI-9YhhkyqtErMWkNvPEAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft Manifest number: 0B7C Signing time: Sat 18 May 2024 19:23:08 +0000 Manifest this update: Sat 18 May 2024 19:23:08 +0000 Manifest next update: Sat 25 May 2024 19:23:08 +0000 Files and hashes: 1: qkHKgdI-9YhhkyqtErMWkNvPEAM.crl (hash: a0xqZYQiiq6GyTlPSveudhhtbQF9boGONDc6gdM8VSU=) 2: 220DBB66054011EA90A20C7EC4F9AE02.roa (hash: RZTHu0Pp/QOoEKtmlbB4TD2hR3XHnathw6Ld38M8okg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.crl rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkHKgdI-9YhhkyqtErMWkNvPEAM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2944 (0xb80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5744/serialNumber=AA41CA81D23EF58861932AAD12B31690DBCF1003 Validity Not Before: May 18 19:23:08 2024 GMT Not After : May 25 19:23:08 2024 GMT Subject: CN=6649001c-bf78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:38:eb:85:78:41:78:0a:21:77:1e:93:71:6d: 63:d1:53:aa:6d:94:51:ce:f0:2e:f1:0d:ad:e2:26: 92:3c:e1:7a:f6:ad:fc:ce:d4:44:5d:8d:5b:69:df: 8a:bc:94:94:c3:e7:1f:2b:13:f7:6f:4a:bb:3f:a3: cc:6b:c2:78:45:cf:9c:7c:c9:ca:4a:ad:eb:fc:87: 55:3d:fd:e3:6b:b9:d8:1b:3e:fb:a2:8a:96:2e:6b: 64:89:93:29:25:cc:47:e4:77:8c:55:2e:a2:8b:64: d4:e7:88:55:36:01:6a:1d:4a:65:b9:23:28:c5:2a: 77:45:a9:a3:19:be:3c:0b:0c:cf:9a:93:56:49:07: 5b:79:eb:c1:9e:f4:4b:d5:51:44:e2:8a:e8:9a:ca: 6d:49:cd:80:1f:3f:f6:6d:1c:9d:e2:dc:43:77:de: 41:0c:93:9e:41:b2:3b:d8:2b:a4:86:e1:ca:ec:bf: 70:9a:d6:e5:e2:ef:90:72:d3:b9:2d:6d:3d:8e:70: ce:47:80:8e:32:be:ef:2e:60:dc:52:23:f7:08:e4: 3b:ee:a6:88:17:a6:22:f6:2e:be:42:d3:1c:19:4e: 51:ea:94:ac:33:5e:de:9e:c1:f6:f3:c3:67:c4:a7: 5f:6f:b8:17:ff:65:0c:9c:f7:ce:79:fc:85:92:bd: ad:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:D5:76:2B:0E:C0:B7:0F:A0:2D:74:E7:B4:8C:51:B2:53:76:DF:0C X509v3 Authority Key Identifier: keyid:AA:41:CA:81:D2:3E:F5:88:61:93:2A:AD:12:B3:16:90:DB:CF:10:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkHKgdI-9YhhkyqtErMWkNvPEAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:05:d1:0f:88:02:a6:ed:85:aa:4b:36:a3:4c:ec:ca:8e:0c: 90:67:b6:77:fd:50:c0:91:30:a0:8a:de:d8:2a:63:5d:58:ce: 5f:3f:25:ec:6c:c4:3a:52:c3:bd:ad:5f:cd:32:68:92:33:4d: 5c:91:c1:cd:47:d9:66:62:b7:d8:2a:e8:0c:9d:3d:fe:62:59: d7:d8:94:6c:8a:dc:90:65:07:d9:da:3d:58:31:2f:5b:f6:c5: 55:9e:97:40:56:2a:98:6a:be:86:91:c1:5e:d7:df:52:33:43: 38:0e:52:ee:40:6e:4f:fe:3d:df:4a:4b:9d:d9:3b:75:22:b6: de:19:55:df:5c:f6:68:05:eb:91:70:8f:0d:a8:e1:a7:75:c2: cb:7a:2a:02:a0:0b:46:25:f5:df:d0:32:61:b7:99:36:45:8e: b0:ba:47:31:3c:b9:22:b7:42:7b:c4:40:04:b0:1b:83:8e:a5: c2:f3:e4:c7:ac:28:cd:54:0e:91:91:36:6f:a7:85:56:ed:d4: 71:36:ec:7c:83:cf:3d:50:94:91:fc:18:8a:d9:8f:c6:5f:ca: d0:5c:bb:22:80:9f:93:3f:eb:46:02:ab:a9:7d:a3:3e:ee:6f: 3c:c2:6c:a6:56:dd:4d:bb:5c:73:3c:0e:40:68:7b:f6:55:34: 9b:64:1a:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU3NDQxMTAvBgNVBAUTKEFBNDFDQTgxRDIzRUY1ODg2MTkzMkFBRDEyQjMxNjkw REJDRjEwMDMwHhcNMjQwNTE4MTkyMzA4WhcNMjQwNTI1MTkyMzA4WjAYMRYwFAYD VQQDEw02NjQ5MDAxYy1iZjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyjjrhXhBeAohdx6TcW1j0VOqbZRRzvAu8Q2t4iaSPOF69q38ztREXY1bad+K vJSUw+cfKxP3b0q7P6PMa8J4Rc+cfMnKSq3r/IdVPf3ja7nYGz77ooqWLmtkiZMp JcxH5HeMVS6ii2TU54hVNgFqHUpluSMoxSp3RamjGb48CwzPmpNWSQdbeevBnvRL 1VFE4oromsptSc2AHz/2bRyd4txDd95BDJOeQbI72CukhuHK7L9wmtbl4u+QctO5 LW09jnDOR4COMr7vLmDcUiP3COQ77qaIF6Yi9i6+QtMcGU5R6pSsM17ensH288Nn xKdfb7gX/2UMnPfOefyFkr2tbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLLVdisO wLcPoC1057SMUbJTdt8MMB8GA1UdIwQYMBaAFKpByoHSPvWIYZMqrRKzFpDbzxAD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTc0NC8zOTdGNkNENDA1 MkUxMUVBOUQzMTQxNDVDNEY5QUUwMi9xa0hLZ2RJLTlZaGhreXF0RXJNV2tOdlBF QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrSEtnZEktOVloaGt5cXRFck1Xa052UEVBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTc0NC8zOTdGNkNENDA1MkUxMUVBOUQzMTQxNDVDNEY5QUUwMi9xa0hLZ2RJLTlZ aGhreXF0RXJNV2tOdlBFQU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyBdEPiAKm7YWqSzajTOzKjgyQZ7Z3/VDAkTCgit7YKmNdWM5fPyXs bMQ6UsO9rV/NMmiSM01ckcHNR9lmYrfYKugMnT3+YlnX2JRsityQZQfZ2j1YMS9b 9sVVnpdAViqYar6GkcFe199SM0M4DlLuQG5P/j3fSkud2Tt1IrbeGVXfXPZoBeuR cI8NqOGndcLLeioCoAtGJfXf0DJht5k2RY6wukcxPLkit0J7xEAEsBuDjqXC8+TH rCjNVA6RkTZvp4VW7dRxNux8g889UJSR/BiK2Y/GX8rQXLsigJ+TP+tGAqupfaM+ 7m88wmymVt1Nu1xzPA5AaHv2VTSbZBo7 -----END CERTIFICATE-----Generated at Sat May 18 19:56:06 2024 by rpki-client on console-fra.rpki-client.org