$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft File: -qIKGvsgkct_URR4g_NkpFMJQTE.mft (raw, json) Hash identifier: Yb0F8l5acORGnhTL10fbbtnrxdih/1kGYPvalaMqjvE= Subject key identifier: 4C:34:DC:24:57:10:F7:5C:57:51:FA:5B:D2:93:E8:01:B1:B8:65:32 Authority key identifier: FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 Certificate issuer: /CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Certificate serial: 33D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft Manifest number: 33CC Signing time: Sat 18 May 2024 15:19:48 +0000 Manifest this update: Sat 18 May 2024 15:19:47 +0000 Manifest next update: Sat 25 May 2024 15:19:47 +0000 Files and hashes: 1: -qIKGvsgkct_URR4g_NkpFMJQTE.crl (hash: CS6sOaRp1dCje+pcmiorzSO82or93ELvyNTJD/arU9s=) 2: 0A956A80B48711EC83327546C4F9AE02.roa (hash: 9LTH0YNpJSoOIQpkw88J8KChbFMDLdSzcK4sN/Oo+iE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13270 (0x33d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Validity Not Before: May 18 15:19:47 2024 GMT Not After : May 25 15:19:47 2024 GMT Subject: CN=6648c713-8605 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:73:23:5d:8c:2e:8f:42:be:2d:fd:a2:94:d3: d3:9c:83:b6:18:bb:f2:38:9a:81:04:2c:fa:0f:0d: d4:bc:56:0c:ce:a5:d0:b1:75:b8:9e:97:14:e1:a1: 7d:f9:74:ad:79:f0:c0:b1:28:e3:6e:83:5f:74:7e: f1:b1:40:51:18:8f:e5:9c:1d:ef:41:e2:dc:77:47: 1c:41:01:ac:eb:7f:79:b7:c5:3d:9b:1b:80:4f:0d: 8e:20:fb:3d:a2:0e:ab:aa:3c:58:c0:0a:3f:07:01: eb:4f:e8:e5:7e:e4:76:a6:3e:68:b8:e1:d7:c0:95: be:c0:fd:47:29:20:34:94:51:ba:60:08:fd:07:8f: a0:d6:0c:06:55:25:df:5f:24:a0:1e:f0:53:7a:f0: 7a:d0:e2:09:af:71:68:92:31:3d:12:43:94:e2:93: a2:dc:b4:c9:fa:43:40:72:7d:74:b7:76:bb:fd:41: d6:cd:0e:27:a2:54:c3:22:d4:a0:6d:09:06:cc:9a: 58:f6:a7:e9:6a:51:6e:a0:4e:35:d9:19:1a:b2:cb: e3:bd:4b:7b:c4:01:bc:7a:ee:91:33:43:bd:5c:88: d7:d3:69:c4:59:b3:94:4a:c6:08:7f:e8:99:76:15: 16:5f:a3:43:f1:ff:88:20:16:b3:c3:8f:5d:a5:28: 38:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:34:DC:24:57:10:F7:5C:57:51:FA:5B:D2:93:E8:01:B1:B8:65:32 X509v3 Authority Key Identifier: keyid:FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:b9:60:0e:8e:58:d7:c5:c9:1d:44:01:1c:15:1c:5c:2f:a1: 1a:98:ff:3f:d3:72:f5:d9:2a:e5:06:f9:5f:ed:d8:32:7c:3c: b6:ad:89:4c:3c:d1:76:52:bb:2c:94:0b:99:f3:9f:28:23:19: 0e:3e:34:1d:f0:06:2d:f4:fb:53:bc:81:ed:8e:00:cc:a9:e2: c0:50:eb:cf:fe:f0:ce:3f:d3:cc:15:48:76:85:41:95:6f:6f: 28:aa:83:c1:a3:0e:8b:98:2d:49:c9:4c:27:37:9e:9c:ba:b2: fb:cc:c7:ac:2d:ac:65:f3:d2:be:0c:41:d0:c5:cc:61:e2:2e: 14:49:88:ab:fd:28:a6:ac:20:e4:96:44:6e:0c:11:f1:62:d0: b8:2d:9f:00:af:d9:73:10:f9:3d:b2:7d:a1:90:45:0a:c7:2d: c3:59:7c:a9:e8:8b:4d:1e:71:12:7a:ea:af:3f:3d:2e:76:b3: 33:eb:dd:15:7b:8e:c0:14:68:61:53:d7:71:ec:4b:1e:f7:c5: 5d:e2:41:40:f8:a3:01:1a:36:78:cc:f4:fc:04:cf:7d:87:aa: 98:3b:61:d0:f1:8a:a2:e8:71:a7:b4:87:25:da:8d:81:f8:67: bd:ff:e5:aa:96:8d:d8:81:05:06:4a:61:df:26:d6:9a:a2:4c: d4:5d:64:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwRTgxMTAvBgNVBAUTKEZBQTIwQTFBRkIyMDkxQ0I3RjUxMTQ3ODgzRjM2NEE0 NTMwOTQxMzEwHhcNMjQwNTE4MTUxOTQ3WhcNMjQwNTI1MTUxOTQ3WjAYMRYwFAYD VQQDEw02NjQ4YzcxMy04NjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XMjXYwuj0K+Lf2ilNPTnIO2GLvyOJqBBCz6Dw3UvFYMzqXQsXW4npcU4aF9 +XStefDAsSjjboNfdH7xsUBRGI/lnB3vQeLcd0ccQQGs6395t8U9mxuATw2OIPs9 og6rqjxYwAo/BwHrT+jlfuR2pj5ouOHXwJW+wP1HKSA0lFG6YAj9B4+g1gwGVSXf XySgHvBTevB60OIJr3FokjE9EkOU4pOi3LTJ+kNAcn10t3a7/UHWzQ4nolTDItSg bQkGzJpY9qfpalFuoE412RkassvjvUt7xAG8eu6RM0O9XIjX02nEWbOUSsYIf+iZ dhUWX6ND8f+IIBazw49dpSg4UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEw03CRX EPdcV1H6W9KT6AGxuGUyMB8GA1UdIwQYMBaAFPqiChr7IJHLf1EUeIPzZKRTCUEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjBFOC80NTc5NkFEMjFE QTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tjdF9VUlI0Z19Oa3BGTUpR VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1xSUtHdnNna2N0X1VSUjRnX05rcEZNSlFURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjBFOC80NTc5NkFEMjFEQTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tj dF9VUlI0Z19Oa3BGTUpRVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYuWAOjljXxckdRAEcFRxcL6EamP8/03L12SrlBvlf7dgyfDy2rYlM PNF2UrsslAuZ858oIxkOPjQd8AYt9PtTvIHtjgDMqeLAUOvP/vDOP9PMFUh2hUGV b28oqoPBow6LmC1JyUwnN56curL7zMesLaxl89K+DEHQxcxh4i4USYir/SimrCDk lkRuDBHxYtC4LZ8Ar9lzEPk9sn2hkEUKxy3DWXyp6ItNHnESeuqvPz0udrMz690V e47AFGhhU9dx7Ese98Vd4kFA+KMBGjZ4zPT8BM99h6qYO2HQ8Yqi6HGntIcl2o2B +Ge9/+Wqlo3YgQUGSmHfJtaaokzUXWQR -----END CERTIFICATE-----Generated at Sat May 18 15:58:25 2024 by rpki-client on console-ams.rpki-client.org