$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: J5T5VEGmvfC6YhEbNfNaJBriEoa0ZthSDD0mkmxFQPs= Subject key identifier: 3B:66:56:06:F0:F5:63:B1:94:B0:47:ED:B3:DF:8C:F0:80:7A:AD:71 Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: 87 Signing time: Sun 19 May 2024 07:06:52 +0000 Manifest this update: Sun 19 May 2024 07:06:52 +0000 Manifest next update: Sun 26 May 2024 07:06:52 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: voGVgKaygF96/awsGqAGGmSnRmBYd0E0j9XK3lNiMWc=) 2: A99E5658488011EE8113A766C4F9AE02.roa (hash: 8Dn//xxk+Kx/zIBBYcJin19jgdcY8gKSviqPRnpbGGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: May 19 07:06:52 2024 GMT Not After : May 26 07:06:52 2024 GMT Subject: CN=6649a50c-659d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1a:c6:f3:c4:2d:e4:fd:40:64:53:f7:c7:55: 86:63:43:b6:14:bc:01:3a:97:f2:a3:f8:4f:7f:34: c3:2e:fe:04:06:88:89:4d:d5:f6:59:c1:f5:26:17: 15:6a:7f:7d:04:5c:7c:d2:53:d3:a4:5c:a1:fb:a7: 6d:a5:4c:54:c7:b2:62:9a:ea:2f:c7:ad:1e:2d:b7: d4:2c:99:ed:d0:b4:20:37:f6:2d:64:a7:6b:1f:38: c3:43:96:9e:39:56:25:0b:18:96:0a:3d:e2:1f:ce: d7:05:07:20:d5:2d:e0:cd:d9:21:76:a2:be:a6:ee: 4e:f8:64:ee:dd:f5:9c:ca:0a:a1:99:96:b0:44:16: 3f:60:23:21:23:8e:90:ea:c6:cd:cf:07:dd:f0:3d: 7b:d7:9c:04:4c:2f:dd:40:29:0e:fe:b5:6c:8e:00: ce:52:62:79:07:54:bb:d4:d0:05:94:f6:a2:d0:03: 72:04:6e:6c:2f:ac:59:f3:43:33:cb:9c:0b:09:ad: fc:0a:14:63:8a:0e:f8:5f:d4:26:b1:20:db:24:1b: f5:c1:04:76:82:d7:83:5d:a6:f7:6a:34:82:c9:9f: d8:47:02:e7:84:6e:10:30:ca:15:d5:52:57:b0:46: 4e:c4:2b:3c:3c:57:ed:75:22:c4:22:6f:c1:af:d9: 06:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:66:56:06:F0:F5:63:B1:94:B0:47:ED:B3:DF:8C:F0:80:7A:AD:71 X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:b9:ac:5d:f8:0c:3c:da:24:36:4d:27:36:ed:76:c6:9d:bf: cc:cc:3e:9b:8c:1d:da:b8:49:71:8f:e1:b7:84:d4:05:1f:ac: 34:c6:af:a4:cf:fb:9d:e6:51:b8:9f:6f:30:9a:9e:79:53:b2: dd:a3:af:18:44:ce:44:80:f1:e5:8d:2f:e3:a8:dd:23:c6:af: fd:37:66:98:d4:09:67:7f:55:c7:02:6a:6f:90:ce:9b:80:a6: 2b:ae:a4:d1:4b:e3:d4:74:18:b1:d6:d4:87:d8:70:1a:f7:81: a8:00:e8:4e:ad:7d:ec:c7:32:63:3c:5d:82:14:c6:0c:f2:4d: 0d:e3:80:b3:12:31:67:44:ad:e6:10:90:98:0b:ff:cc:20:58: ff:22:d6:2a:ef:d8:f8:a3:86:94:a6:36:37:15:b6:19:02:9a: 74:e3:69:67:6e:53:17:e5:5a:6c:ee:0d:02:9b:c6:e1:f1:be: f5:e3:3c:1a:a5:31:31:e8:d4:06:91:9f:71:c7:30:e3:3f:fe: 07:22:e8:21:1d:90:45:d7:68:b8:c0:ac:76:16:46:d1:36:8b: 2a:9d:39:ac:76:13:4b:a3:16:7f:2d:c8:a7:32:ba:76:77:8a: c6:9c:e1:69:19:34:9e:9d:9a:bd:a0:1e:1e:a9:26:e9:25:b7: 03:25:25:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjQwNTE5MDcwNjUyWhcNMjQwNTI2MDcwNjUyWjAYMRYwFAYD VQQDEw02NjQ5YTUwYy02NTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhrG88Qt5P1AZFP3x1WGY0O2FLwBOpfyo/hPfzTDLv4EBoiJTdX2WcH1JhcV an99BFx80lPTpFyh+6dtpUxUx7Jimuovx60eLbfULJnt0LQgN/YtZKdrHzjDQ5ae OVYlCxiWCj3iH87XBQcg1S3gzdkhdqK+pu5O+GTu3fWcygqhmZawRBY/YCMhI46Q 6sbNzwfd8D1715wETC/dQCkO/rVsjgDOUmJ5B1S71NAFlPai0ANyBG5sL6xZ80Mz y5wLCa38ChRjig74X9QmsSDbJBv1wQR2gteDXab3ajSCyZ/YRwLnhG4QMMoV1VJX sEZOxCs8PFftdSLEIm/Br9kGDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtmVgbw 9WOxlLBH7bPfjPCAeq1xMB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7uaxd+Aw82iQ2TSc27XbGnb/MzD6bjB3auElxj+G3hNQFH6w0xq+k z/ud5lG4n28wmp55U7Ldo68YRM5EgPHljS/jqN0jxq/9N2aY1Alnf1XHAmpvkM6b gKYrrqTRS+PUdBix1tSH2HAa94GoAOhOrX3sxzJjPF2CFMYM8k0N44CzEjFnRK3m EJCYC//MIFj/ItYq79j4o4aUpjY3FbYZApp042lnblMX5Vps7g0Cm8bh8b714zwa pTEx6NQGkZ9xxzDjP/4HIughHZBF12i4wKx2FkbRNosqnTmsdhNLoxZ/LcinMrp2 d4rGnOFpGTSenZq9oB4eqSbpJbcDJSXj -----END CERTIFICATE-----Generated at Sun May 19 08:25:07 2024 by rpki-client on console-ams.rpki-client.org