$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.mft File: Qp6b3aKWYgADzsXvq7gj0wP-T3E.mft (raw, json) Hash identifier: WqhhMuMf0ZmE0gIZXd9lGcKS7fjBahlZtbuR5YUBIGY= Subject key identifier: A3:37:83:FD:6E:7B:43:06:B9:7A:79:B5:48:5F:E5:0B:79:1E:3B:AA Authority key identifier: 42:9E:9B:DD:A2:96:62:00:03:CE:C5:EF:AB:B8:23:D3:03:FE:4F:71 Certificate issuer: /CN=A91BE1BC/serialNumber=429E9BDDA296620003CEC5EFABB823D303FE4F71 Certificate serial: 0F61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.mft Manifest number: 0F4F Signing time: Sat 18 May 2024 18:10:42 +0000 Manifest this update: Sat 18 May 2024 18:10:42 +0000 Manifest next update: Sat 25 May 2024 18:10:42 +0000 Files and hashes: 1: Qp6b3aKWYgADzsXvq7gj0wP-T3E.crl (hash: tv3sFt5BSCKnuQesQ5eTNSCiwLZRx4vK5DS0PNPR+SA=) 2: 58FDD2EA10C211EA977E7378C4F9AE02.roa (hash: tN1EHa1UYeXagc4zmtE102yqFtWAzIXQIzUc6GH+XWc=) 3: 8C2FEEE0708811ED95A9DC75C4F9AE02.roa (hash: WszsRhmHN8MvwoWSP1GLjLxlHlQgLVNtDapzW8cpCCk=) 4: 8B7BDC02708811ED95A9DC75C4F9AE02.roa (hash: LIC4JqnhhbZV4DldwBIYZJpNNfHsiprIB69VyfCle0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.crl rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3937 (0xf61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE1BC/serialNumber=429E9BDDA296620003CEC5EFABB823D303FE4F71 Validity Not Before: May 18 18:10:42 2024 GMT Not After : May 25 18:10:42 2024 GMT Subject: CN=6648ef22-0998 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:57:e1:db:dd:af:e3:6a:83:20:7d:5e:11:9d: b3:aa:44:8d:23:f5:32:6d:35:9b:a4:e9:8e:20:dd: 6f:97:e5:0f:96:04:41:c4:36:dc:bd:45:90:8e:fc: 0f:c9:b1:f7:e7:e9:61:71:1d:cc:46:24:d5:97:2e: 8a:d8:93:16:35:09:a8:b8:64:74:76:1d:46:97:04: 58:05:ce:cd:3a:a8:1c:51:48:f4:ef:70:df:af:54: f3:fb:04:91:50:5d:41:a0:27:be:e6:78:1f:49:9c: 0a:e8:58:24:b2:da:a6:5b:a0:64:b9:84:f2:6f:2f: 82:d0:bc:85:d4:66:63:47:ad:e2:2e:d2:81:61:da: 7f:e6:b9:99:d9:07:7c:f5:11:5d:a5:9e:fc:c0:b1: 71:69:76:1c:03:3e:da:ab:61:2f:66:c7:ba:6d:75: eb:8b:fe:26:cd:02:dd:7a:d0:49:55:a2:3d:45:c5: 3c:63:5b:21:1b:36:b0:cf:db:c8:9e:fe:41:f4:ae: d3:80:f6:46:da:3d:20:67:b8:ec:08:27:06:15:14: 86:79:85:78:61:d9:fd:d7:fc:08:bc:d8:c5:f8:67: eb:a8:a8:a9:ef:cc:57:fa:eb:8f:e7:55:38:e6:50: c7:f5:fd:5a:62:f6:ca:d2:95:9f:18:eb:2c:e0:45: 0f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:37:83:FD:6E:7B:43:06:B9:7A:79:B5:48:5F:E5:0B:79:1E:3B:AA X509v3 Authority Key Identifier: keyid:42:9E:9B:DD:A2:96:62:00:03:CE:C5:EF:AB:B8:23:D3:03:FE:4F:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:28:e3:1a:bb:b5:32:a0:5f:2d:9b:f4:06:b5:dd:ba:84:b2: f7:ae:86:43:ee:66:95:e0:aa:d7:d0:71:3c:7f:db:ab:da:aa: da:1f:1a:ed:c6:2e:79:ca:c1:36:55:42:be:8b:a0:06:bc:10: 7a:ce:e1:a5:5c:c9:78:15:d6:af:74:ac:e0:46:2f:a3:4a:5c: ae:63:e6:a4:51:6f:4a:66:5e:70:96:47:9a:9f:e8:14:89:9f: 5d:69:68:ad:a5:d6:f0:2e:a6:22:e0:50:60:8c:88:58:6d:11: 4a:40:1d:74:4d:b3:09:cf:28:2d:80:ec:48:a9:91:e1:4d:a7: ae:45:41:69:4a:2f:32:9e:c1:45:09:0b:59:b0:c4:e2:40:04: ef:35:43:d2:02:91:4e:83:90:17:5d:2d:64:01:f3:bd:49:67: 8d:ca:a9:9d:f6:13:1f:01:88:82:b7:c5:e8:b2:26:18:b2:bb: 13:02:5d:63:d2:09:1d:7e:78:3c:4b:96:30:18:e2:c8:b1:20: fa:9d:b9:ca:aa:e7:1c:c9:70:01:67:de:48:8b:d2:cd:07:db: dd:c2:fd:25:a2:44:1e:44:d9:78:90:3a:cb:65:76:f1:cb:85: 05:e8:3f:35:a2:ea:4a:6c:ec:16:4d:e6:6d:b0:57:98:b9:31: 48:5a:ca:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUxQkMxMTAvBgNVBAUTKDQyOUU5QkREQTI5NjYyMDAwM0NFQzVFRkFCQjgyM0Qz MDNGRTRGNzEwHhcNMjQwNTE4MTgxMDQyWhcNMjQwNTI1MTgxMDQyWjAYMRYwFAYD VQQDEw02NjQ4ZWYyMi0wOTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlfh292v42qDIH1eEZ2zqkSNI/UybTWbpOmOIN1vl+UPlgRBxDbcvUWQjvwP ybH35+lhcR3MRiTVly6K2JMWNQmouGR0dh1GlwRYBc7NOqgcUUj073Dfr1Tz+wSR UF1BoCe+5ngfSZwK6FgkstqmW6BkuYTyby+C0LyF1GZjR63iLtKBYdp/5rmZ2Qd8 9RFdpZ78wLFxaXYcAz7aq2EvZse6bXXri/4mzQLdetBJVaI9RcU8Y1shGzawz9vI nv5B9K7TgPZG2j0gZ7jsCCcGFRSGeYV4Ydn91/wIvNjF+GfrqKip78xX+uuP51U4 5lDH9f1aYvbK0pWfGOss4EUPxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKM3g/1u e0MGuXp5tUhf5Qt5HjuqMB8GA1UdIwQYMBaAFEKem92ilmIAA87F76u4I9MD/k9x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTFCQy84OTZDNkM0ODQ2 Q0UxMUU5OTI4NTBBM0NDNEY5QUUwMi9RcDZiM2FLV1lnQUR6c1h2cTdnajB3UC1U M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FwNmIzYUtXWWdBRHpzWHZxN2dqMHdQLVQzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RTFCQy84OTZDNkM0ODQ2Q0UxMUU5OTI4NTBBM0NDNEY5QUUwMi9RcDZiM2FLV1ln QUR6c1h2cTdnajB3UC1UM0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYKOMau7UyoF8tm/QGtd26hLL3roZD7maV4KrX0HE8f9ur2qraHxrt xi55ysE2VUK+i6AGvBB6zuGlXMl4FdavdKzgRi+jSlyuY+akUW9KZl5wlkean+gU iZ9daWitpdbwLqYi4FBgjIhYbRFKQB10TbMJzygtgOxIqZHhTaeuRUFpSi8ynsFF CQtZsMTiQATvNUPSApFOg5AXXS1kAfO9SWeNyqmd9hMfAYiCt8XosiYYsrsTAl1j 0gkdfng8S5YwGOLIsSD6nbnKquccyXABZ95Ii9LNB9vdwv0lokQeRNl4kDrLZXbx y4UF6D81oupKbOwWTeZtsFeYuTFIWspY -----END CERTIFICATE-----Generated at Sat May 18 19:15:26 2024 by rpki-client on console-ams.rpki-client.org