$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json) Hash identifier: Ef5puvI5myy++8xn2cVvyMQlK4jxOgpBgymHzaZa5Yg= Subject key identifier: 74:CD:C2:ED:69:CB:0A:D3:15:65:AC:52:C3:C7:31:FC:9E:9D:21:B6 Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft Manifest number: 0107 Signing time: Sat 01 Jun 2024 06:55:31 +0000 Manifest this update: Sat 01 Jun 2024 06:55:30 +0000 Manifest next update: Sat 08 Jun 2024 06:55:30 +0000 Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: jlAfF6rHFyOnCHt01mm0cGhqfTc/OW9hyOZb05S3hfw=) 2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: oyJ8pYc57E6anvBg+OfGz7YjmNkraWU0j/Nep9q9F5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 06:55:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Validity Not Before: Jun 1 06:55:30 2024 GMT Not After : Jun 8 06:55:30 2024 GMT Subject: CN=665ac5e3-856d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5c:27:30:52:84:14:28:62:74:d5:6a:ef:de: 75:11:97:68:29:be:2e:2e:77:66:3e:f9:f9:40:29: 52:a1:06:ed:33:f7:5f:c5:24:e6:11:a1:f5:4c:09: f8:77:4b:c5:f2:57:15:5d:d5:2d:e2:e3:8c:b4:8d: 29:8d:f4:ac:93:eb:49:38:fa:46:94:e5:8f:c3:9f: 3f:a8:59:b4:cc:42:dc:f9:b5:43:de:36:e0:d6:ca: c9:d8:19:3c:43:9f:02:3d:61:8a:26:0f:e8:33:8d: 58:93:c1:a4:b6:14:43:69:d9:5d:14:28:f2:ae:55: 55:96:9e:9b:c1:21:42:48:7e:40:c2:e2:bf:90:56: cc:7a:55:dc:16:44:49:a8:9f:5c:e3:0c:33:74:36: bd:8d:59:66:f8:61:22:b8:af:15:6b:e3:6c:35:2f: a2:4d:83:23:b2:96:4d:df:ba:89:95:5f:3d:c5:41: 22:12:a5:62:54:fe:19:a4:42:ce:90:29:f2:02:03: 53:5d:17:31:55:da:1c:8a:b1:10:ce:99:37:f7:66: 38:59:6d:83:1c:ed:10:46:5e:cb:e8:72:bd:5b:1c: e4:4d:a5:52:2b:88:f3:7f:6d:70:d4:2d:3b:f7:1f: 16:cd:18:89:75:eb:36:6b:2d:0d:b5:16:5b:fc:49: 70:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:CD:C2:ED:69:CB:0A:D3:15:65:AC:52:C3:C7:31:FC:9E:9D:21:B6 X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:81:c1:b4:29:bd:6b:1f:7f:14:39:b5:9f:a5:47:f0:c2:d0: ae:a3:7d:94:e2:3b:dc:fb:d5:90:f4:be:17:b1:a5:b1:bb:36: 81:62:f9:fe:e1:5e:1e:f3:47:9f:54:f4:1a:da:9c:32:40:4b: 0c:de:be:35:87:c9:55:47:8f:00:50:8d:03:87:8e:00:78:e4: 71:f3:e9:9c:1a:82:f6:5a:c1:ce:36:b1:ae:47:42:f6:90:ad: 25:a8:34:32:87:03:4b:92:23:45:e8:83:6d:ae:1b:9c:c0:b9: 72:87:60:4f:46:96:86:71:68:ed:2d:e3:fe:d0:3d:e6:3f:dd: db:15:00:d5:81:d2:53:9a:42:08:3a:61:9a:b3:c6:90:2e:ea: 58:1a:28:c2:1b:1b:38:a4:a6:19:d1:ca:65:4a:30:8e:c1:45: 52:73:f9:1a:49:6d:bd:6b:8a:82:6f:8e:47:74:72:63:31:e7: 5e:2d:76:6b:8f:a7:4f:60:fb:7d:e3:ec:79:63:a5:ba:46:a1: ff:0e:09:af:a1:e8:7b:36:ed:dd:6d:de:7a:c2:15:67:ef:8b: 9e:9e:c8:62:45:96:f5:cc:bd:6d:72:cb:81:98:3f:03:f4:72: ff:36:dd:a1:3c:77:ff:3e:b5:31:57:30:11:73:75:99:98:2d: a0:16:fc:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjQwNjAxMDY1NTMwWhcNMjQwNjA4MDY1NTMwWjAYMRYwFAYD VQQDEw02NjVhYzVlMy04NTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtlwnMFKEFChidNVq7951EZdoKb4uLndmPvn5QClSoQbtM/dfxSTmEaH1TAn4 d0vF8lcVXdUt4uOMtI0pjfSsk+tJOPpGlOWPw58/qFm0zELc+bVD3jbg1srJ2Bk8 Q58CPWGKJg/oM41Yk8GkthRDadldFCjyrlVVlp6bwSFCSH5AwuK/kFbMelXcFkRJ qJ9c4wwzdDa9jVlm+GEiuK8Va+NsNS+iTYMjspZN37qJlV89xUEiEqViVP4ZpELO kCnyAgNTXRcxVdocirEQzpk392Y4WW2DHO0QRl7L6HK9WxzkTaVSK4jzf21w1C07 9x8WzRiJdes2ay0NtRZb/ElwOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTNwu1p ywrTFWWsUsPHMfyenSG2MB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjhENy9CNjdGMzAxQTk4OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJh TS1xNVVZRl9Gbm05a1F4cXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5gcG0Kb1rH38UObWfpUfwwtCuo32U4jvc+9WQ9L4XsaWxuzaBYvn+ 4V4e80efVPQa2pwyQEsM3r41h8lVR48AUI0Dh44AeORx8+mcGoL2WsHONrGuR0L2 kK0lqDQyhwNLkiNF6INtrhucwLlyh2BPRpaGcWjtLeP+0D3mP93bFQDVgdJTmkII OmGas8aQLupYGijCGxs4pKYZ0cplSjCOwUVSc/kaSW29a4qCb45HdHJjMedeLXZr j6dPYPt94+x5Y6W6RqH/Dgmvoeh7Nu3dbd56whVn74uenshiRZb1zL1tcsuBmD8D 9HL/Nt2hPHf/PrUxVzARc3WZmC2gFvyW -----END CERTIFICATE-----Generated at Sat Jun 1 08:16:01 2024 by rpki-client on console-ams.rpki-client.org