$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.mft File: QOlsrrGdQeDa1lL0Na0I566Anvk.mft (raw, json) Hash identifier: JygWmzbwHqU1ZZM6Ej6+Aq+5REprg49YDJtoljnDvn4= Subject key identifier: 8A:17:2D:3E:16:6B:4A:7F:1B:CE:30:D7:E2:37:D8:84:C9:3F:6D:62 Authority key identifier: 40:E9:6C:AE:B1:9D:41:E0:DA:D6:52:F4:35:AD:08:E7:AE:80:9E:F9 Certificate issuer: /CN=A91BD000/serialNumber=40E96CAEB19D41E0DAD652F435AD08E7AE809EF9 Certificate serial: 0B5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlsrrGdQeDa1lL0Na0I566Anvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.mft Manifest number: 0B55 Signing time: Sat 18 May 2024 19:39:08 +0000 Manifest this update: Sat 18 May 2024 19:39:08 +0000 Manifest next update: Sat 25 May 2024 19:39:08 +0000 Files and hashes: 1: QOlsrrGdQeDa1lL0Na0I566Anvk.crl (hash: Q3Ht+xkwheXCWy6I6xI4sHY8FbTYv1lYpoziQ632F1k=) 2: 57C356780DB811EA829EA10AC4F9AE02.roa (hash: MBnvK8CN9mGVCw7YymiY5EeU0OzIfO6oZvvJ/LCGdTs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.crl rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlsrrGdQeDa1lL0Na0I566Anvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2907 (0xb5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD000/serialNumber=40E96CAEB19D41E0DAD652F435AD08E7AE809EF9 Validity Not Before: May 18 19:39:08 2024 GMT Not After : May 25 19:39:08 2024 GMT Subject: CN=664903dc-0384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:30:ba:dc:83:37:91:2f:2b:fd:ef:97:11:50: bf:ee:95:15:7a:75:bc:32:7a:46:51:4e:be:c3:a8: 58:fd:c2:c2:24:77:fe:ca:5f:89:91:12:51:2b:bc: 63:78:f4:38:14:aa:ad:40:51:14:f0:b4:f6:31:5d: c8:23:11:e2:ab:6f:f3:48:38:0b:91:8b:48:9e:fc: c0:68:dd:9f:38:d1:b2:f5:7c:d2:ad:64:b0:3a:fd: e4:4c:bf:de:57:7c:7a:a0:42:c2:7e:c7:2b:2a:9e: 08:da:e3:df:0f:53:91:59:9c:b5:6a:52:e4:b3:4a: 77:ce:8c:b8:b2:5c:c5:20:b9:7c:59:ee:66:1b:73: 25:a5:dc:a9:05:31:66:84:92:09:5c:a6:65:71:4f: b3:d1:f2:bf:cd:df:5f:a9:2e:fe:dd:78:ef:61:c9: 9e:f1:db:7c:86:77:19:dd:72:18:b8:88:67:62:77: df:79:47:11:79:c2:4b:c0:d6:dd:5c:60:1e:9c:3b: ee:c2:69:df:16:99:9d:2c:01:de:a1:1c:cd:f0:d9: 82:cc:9f:5b:2b:27:aa:20:60:35:95:63:82:64:87: d6:d7:d4:21:eb:08:a5:47:27:02:3e:b3:55:1e:b6: 60:22:76:44:9f:0e:75:b3:e4:2c:d9:cd:98:37:02: 7c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:17:2D:3E:16:6B:4A:7F:1B:CE:30:D7:E2:37:D8:84:C9:3F:6D:62 X509v3 Authority Key Identifier: keyid:40:E9:6C:AE:B1:9D:41:E0:DA:D6:52:F4:35:AD:08:E7:AE:80:9E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlsrrGdQeDa1lL0Na0I566Anvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:a7:76:97:e8:8d:85:4e:cf:ac:00:41:28:05:ce:78:5c:b8: d8:f8:3a:81:6a:6b:a5:e3:4c:eb:b3:02:13:22:f9:5f:9b:8d: 4c:1a:d2:6b:97:88:21:d1:b2:2a:33:c0:5e:62:02:dc:cb:4c: 2b:1a:61:c4:4d:10:c8:53:16:6f:95:75:26:b2:ee:ea:2e:b5: 0e:82:c8:56:90:e6:38:7f:e5:1c:41:d7:05:7a:a1:90:0c:79: 6a:bb:e9:ae:2a:aa:53:59:69:0a:b6:88:72:b6:4a:d5:94:49: a3:3a:cb:a9:b0:af:7a:92:38:c4:90:d7:9e:b8:6d:83:4c:d7: 82:1b:ce:fa:34:b2:e5:b6:ae:d0:71:a9:d9:81:2d:c8:9e:97: 83:e9:ac:05:4f:6b:d5:e5:d4:66:5b:16:2a:22:a9:29:72:fd: 0f:d5:57:cb:06:ca:fa:bb:cc:a1:62:b1:10:22:64:38:ec:b5: 60:eb:36:56:50:25:6e:d0:95:11:73:af:87:e5:0d:94:83:98: 6f:c2:5c:a8:f5:38:66:f5:b2:82:ec:94:95:7b:19:ee:43:91: e1:22:97:c5:1e:18:49:39:4f:48:ba:e4:4b:af:06:2b:75:14: 7d:0d:c6:e0:79:93:75:89:bc:8d:af:d0:be:d1:4a:9a:97:e9: 76:f8:8d:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQwMDAxMTAvBgNVBAUTKDQwRTk2Q0FFQjE5RDQxRTBEQUQ2NTJGNDM1QUQwOEU3 QUU4MDlFRjkwHhcNMjQwNTE4MTkzOTA4WhcNMjQwNTI1MTkzOTA4WjAYMRYwFAYD VQQDEw02NjQ5MDNkYy0wMzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDC63IM3kS8r/e+XEVC/7pUVenW8MnpGUU6+w6hY/cLCJHf+yl+JkRJRK7xj ePQ4FKqtQFEU8LT2MV3IIxHiq2/zSDgLkYtInvzAaN2fONGy9XzSrWSwOv3kTL/e V3x6oELCfscrKp4I2uPfD1ORWZy1alLks0p3zoy4slzFILl8We5mG3MlpdypBTFm hJIJXKZlcU+z0fK/zd9fqS7+3XjvYcme8dt8hncZ3XIYuIhnYnffeUcRecJLwNbd XGAenDvuwmnfFpmdLAHeoRzN8NmCzJ9bKyeqIGA1lWOCZIfW19Qh6wilRycCPrNV HrZgInZEnw51s+Qs2c2YNwJ8KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIoXLT4W a0p/G84w1+I32ITJP21iMB8GA1UdIwQYMBaAFEDpbK6xnUHg2tZS9DWtCOeugJ75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDAwMC9FNjYwMkVEMjBE QjQxMUVBQkE1QzFEN0ZDNEY5QUUwMi9RT2xzcnJHZFFlRGExbEwwTmEwSTU2NkFu dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPbHNyckdkUWVEYTFsTDBOYTBJNTY2QW52ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDAwMC9FNjYwMkVEMjBEQjQxMUVBQkE1QzFEN0ZDNEY5QUUwMi9RT2xzcnJHZFFl RGExbEwwTmEwSTU2NkFudmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKp3aX6I2FTs+sAEEoBc54XLjY+DqBamul40zrswITIvlfm41MGtJr l4gh0bIqM8BeYgLcy0wrGmHETRDIUxZvlXUmsu7qLrUOgshWkOY4f+UcQdcFeqGQ DHlqu+muKqpTWWkKtohytkrVlEmjOsupsK96kjjEkNeeuG2DTNeCG876NLLltq7Q canZgS3InpeD6awFT2vV5dRmWxYqIqkpcv0P1VfLBsr6u8yhYrEQImQ47LVg6zZW UCVu0JURc6+H5Q2Ug5hvwlyo9Thm9bKC7JSVexnuQ5HhIpfFHhhJOU9IuuRLrwYr dRR9DcbgeZN1ibyNr9C+0Uqal+l2+I10 -----END CERTIFICATE-----Generated at Sat May 18 21:31:31 2024 by rpki-client on console-ams.rpki-client.org