$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE6B9/526E16A4044E11EA8442D40FC4F9AE02/3qLQJgwXCVFn4eO81lmJ_nZHy2o.mft File: 3qLQJgwXCVFn4eO81lmJ_nZHy2o.mft (raw, json) Hash identifier: uw5JgKdBtP04sMnP9DP//yg9EiwBHI2HG+aXhRdCqxQ= Subject key identifier: 6F:92:3E:AD:0E:EF:0D:01:81:70:DC:15:A3:66:4B:CE:44:8A:CD:0C Authority key identifier: DE:A2:D0:26:0C:17:09:51:67:E1:E3:BC:D6:59:89:FE:76:47:CB:6A Certificate issuer: /CN=A91AE6B9/serialNumber=DEA2D0260C17095167E1E3BCD65989FE7647CB6A Certificate serial: 0B88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qLQJgwXCVFn4eO81lmJ_nZHy2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE6B9/526E16A4044E11EA8442D40FC4F9AE02/3qLQJgwXCVFn4eO81lmJ_nZHy2o.mft Manifest number: 0B83 Signing time: Sat 18 May 2024 19:19:17 +0000 Manifest this update: Sat 18 May 2024 19:19:17 +0000 Manifest next update: Sat 25 May 2024 19:19:17 +0000 Files and hashes: 1: 3qLQJgwXCVFn4eO81lmJ_nZHy2o.crl (hash: tmivG3WtYhGnFA1qVPtb2/OWvCIuVZIRfg7IDIIStLg=) 2: D91746DE044F11EA8C37D012C4F9AE02.roa (hash: DsvVVTAja1HxBFFoPVI14G+L8aNSXctmjV2ADcNrbXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE6B9/526E16A4044E11EA8442D40FC4F9AE02/3qLQJgwXCVFn4eO81lmJ_nZHy2o.crl rsync://rpki.apnic.net/member_repository/A91AE6B9/526E16A4044E11EA8442D40FC4F9AE02/3qLQJgwXCVFn4eO81lmJ_nZHy2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qLQJgwXCVFn4eO81lmJ_nZHy2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2952 (0xb88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE6B9/serialNumber=DEA2D0260C17095167E1E3BCD65989FE7647CB6A Validity Not Before: May 18 19:19:17 2024 GMT Not After : May 25 19:19:17 2024 GMT Subject: CN=6648ff35-a75b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:42:1b:47:c6:9c:5e:53:a6:5d:d2:3f:7c:85: 24:8b:ea:5c:3b:5d:3b:7c:71:e3:76:5c:0a:e5:57: ab:41:7c:63:1a:04:62:ed:f7:42:8f:d1:1e:39:12: 1a:22:2c:1d:f1:04:6b:b5:f1:39:2e:65:7d:f7:53: 08:fa:35:65:37:1e:19:a7:4e:5e:9a:02:7e:48:85: ce:c8:e4:67:1b:d1:1c:b1:50:79:26:32:2c:be:24: cb:e3:e5:0c:f9:71:33:ba:94:af:f6:bc:95:c0:68: e9:7d:13:b2:e4:d5:04:af:2a:e4:7e:73:0c:94:ae: a8:14:38:cb:93:8f:e9:7e:f5:f0:a3:3c:40:2d:aa: 1c:6b:ff:ab:3f:5d:a4:be:f5:5e:1e:cb:b0:eb:20: d3:8d:1f:e3:48:eb:b1:ba:78:57:f5:dc:4e:a2:60: b8:96:92:c4:3c:49:cc:19:f6:ab:83:f5:2c:7d:95: 93:ca:da:d3:ac:3e:b2:6b:ec:93:86:68:f0:63:6b: 5f:7e:c6:67:e7:bb:78:75:71:9b:a9:a3:68:2f:33: 69:b8:09:2e:08:b1:76:aa:17:c2:00:c8:94:41:49: 7a:31:de:07:06:28:60:a9:5e:e0:02:db:2b:78:67: f2:c8:aa:a2:3e:b2:89:6d:bf:02:75:1c:36:f6:03: af:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:92:3E:AD:0E:EF:0D:01:81:70:DC:15:A3:66:4B:CE:44:8A:CD:0C X509v3 Authority Key Identifier: keyid:DE:A2:D0:26:0C:17:09:51:67:E1:E3:BC:D6:59:89:FE:76:47:CB:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE6B9/526E16A4044E11EA8442D40FC4F9AE02/3qLQJgwXCVFn4eO81lmJ_nZHy2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qLQJgwXCVFn4eO81lmJ_nZHy2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE6B9/526E16A4044E11EA8442D40FC4F9AE02/3qLQJgwXCVFn4eO81lmJ_nZHy2o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:c7:0f:4a:12:82:9e:05:05:96:cd:60:36:09:af:25:8f:a7: 1d:92:bc:22:8a:c4:7b:7b:2d:e4:3c:ff:4e:2a:f6:ce:d0:d2: 24:02:12:d9:c3:48:8d:d9:0a:9b:47:a5:97:a5:d7:88:e7:2f: ca:e5:f2:70:23:ad:f1:b4:44:6f:56:09:1e:44:9b:2a:36:a7: 87:7b:5f:6b:2b:74:b0:1d:c8:5c:39:db:9a:06:81:f5:d9:ba: db:1b:06:53:48:80:1b:ca:19:63:51:4e:f1:de:35:d6:e1:55: 79:90:ea:81:82:93:18:6b:25:fa:26:fd:a7:49:c7:c1:24:9d: ca:ed:3c:e0:77:0b:e2:d0:c5:d8:d0:1c:46:ca:3e:25:18:dd: be:f5:b6:0e:ff:19:6b:c0:0e:dd:c6:29:0d:53:46:f0:46:f8: a5:0a:6b:c1:25:73:f7:d1:d4:83:1a:9b:fc:39:30:60:43:97: 1f:91:4a:18:0e:ac:13:18:7b:75:2a:9f:b7:6b:c7:2f:f6:23: ac:29:26:a0:44:a1:da:67:c6:ae:7c:ad:e7:33:c1:ea:de:fd: 4b:7d:5a:21:65:80:f1:3e:cf:d1:f8:73:f0:46:69:2c:fb:da: 4d:4f:4f:09:0c:52:a1:23:7a:01:00:95:31:cb:35:9b:94:85: 5d:ce:69:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU2QjkxMTAvBgNVBAUTKERFQTJEMDI2MEMxNzA5NTE2N0UxRTNCQ0Q2NTk4OUZF NzY0N0NCNkEwHhcNMjQwNTE4MTkxOTE3WhcNMjQwNTI1MTkxOTE3WjAYMRYwFAYD VQQDEw02NjQ4ZmYzNS1hNzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEIbR8acXlOmXdI/fIUki+pcO107fHHjdlwK5VerQXxjGgRi7fdCj9EeORIa Iiwd8QRrtfE5LmV991MI+jVlNx4Zp05emgJ+SIXOyORnG9EcsVB5JjIsviTL4+UM +XEzupSv9ryVwGjpfROy5NUEryrkfnMMlK6oFDjLk4/pfvXwozxALaoca/+rP12k vvVeHsuw6yDTjR/jSOuxunhX9dxOomC4lpLEPEnMGfarg/UsfZWTytrTrD6ya+yT hmjwY2tffsZn57t4dXGbqaNoLzNpuAkuCLF2qhfCAMiUQUl6Md4HBihgqV7gAtsr eGfyyKqiPrKJbb8CdRw29gOv/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG+SPq0O 7w0BgXDcFaNmS85Eis0MMB8GA1UdIwQYMBaAFN6i0CYMFwlRZ+HjvNZZif52R8tq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTZCOS81MjZFMTZBNDA0 NEUxMUVBODQ0MkQ0MEZDNEY5QUUwMi8zcUxRSmd3WENWRm40ZU84MWxtSl9uWkh5 Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxTFFKZ3dYQ1ZGbjRlTzgxbG1KX25aSHkyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTZCOS81MjZFMTZBNDA0NEUxMUVBODQ0MkQ0MEZDNEY5QUUwMi8zcUxRSmd3WENW Rm40ZU84MWxtSl9uWkh5Mm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjxw9KEoKeBQWWzWA2Ca8lj6cdkrwiisR7ey3kPP9OKvbO0NIkAhLZ w0iN2QqbR6WXpdeI5y/K5fJwI63xtERvVgkeRJsqNqeHe19rK3SwHchcOduaBoH1 2brbGwZTSIAbyhljUU7x3jXW4VV5kOqBgpMYayX6Jv2nScfBJJ3K7Tzgdwvi0MXY 0BxGyj4lGN2+9bYO/xlrwA7dxikNU0bwRvilCmvBJXP30dSDGpv8OTBgQ5cfkUoY DqwTGHt1Kp+3a8cv9iOsKSagRKHaZ8aufK3nM8Hq3v1LfVohZYDxPs/R+HPwRmks +9pNT08JDFKhI3oBAJUxyzWblIVdzmmk -----END CERTIFICATE-----Generated at Sat May 18 19:56:07 2024 by rpki-client on console-fra.rpki-client.org