$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF1D9/E37F13822A6C11EC95EB263FC4F9AE02/Q-SoHdWUZzBR6Mfgsa29McSDtlM.mft File: Q-SoHdWUZzBR6Mfgsa29McSDtlM.mft (raw, json) Hash identifier: BV2WQytvzUQr+fOGnMKbl9mvWvVdf5NU0HC3pSkILLY= Subject key identifier: 20:F9:6C:05:39:DF:E8:C4:A6:C0:29:18:00:D0:1C:04:8E:F8:EF:92 Authority key identifier: 43:E4:A8:1D:D5:94:67:30:51:E8:C7:E0:B1:AD:BD:31:C4:83:B6:53 Certificate issuer: /CN=A91DF1D9/serialNumber=43E4A81DD594673051E8C7E0B1ADBD31C483B653 Certificate serial: 03FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-SoHdWUZzBR6Mfgsa29McSDtlM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF1D9/E37F13822A6C11EC95EB263FC4F9AE02/Q-SoHdWUZzBR6Mfgsa29McSDtlM.mft Manifest number: 03FB Signing time: Sun 19 May 2024 02:10:34 +0000 Manifest this update: Sun 19 May 2024 02:10:33 +0000 Manifest next update: Sun 26 May 2024 02:10:33 +0000 Files and hashes: 1: Q-SoHdWUZzBR6Mfgsa29McSDtlM.crl (hash: HmGrjPPa+AsArkBf+FUk9+eKyEMpvjCtcQyCviSpKPg=) 2: 083000C22A6F11EC9AD38840C4F9AE02.roa (hash: U4jh0dKXQZ3WhBcRwpXMGFKraPvEp4Js2Zs1aFb8NU8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF1D9/E37F13822A6C11EC95EB263FC4F9AE02/Q-SoHdWUZzBR6Mfgsa29McSDtlM.crl rsync://rpki.apnic.net/member_repository/A91DF1D9/E37F13822A6C11EC95EB263FC4F9AE02/Q-SoHdWUZzBR6Mfgsa29McSDtlM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-SoHdWUZzBR6Mfgsa29McSDtlM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1023 (0x3ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF1D9/serialNumber=43E4A81DD594673051E8C7E0B1ADBD31C483B653 Validity Not Before: May 19 02:10:33 2024 GMT Not After : May 26 02:10:33 2024 GMT Subject: CN=66495f9a-9bc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:bd:9d:3f:0b:53:d2:2c:b3:db:06:e1:20:7b: 98:39:a0:45:f0:63:30:42:a2:3c:1d:02:1a:e9:3b: a9:4a:33:88:87:61:ad:b7:fd:e1:25:c9:1d:41:d0: 59:26:8f:5c:b0:99:b0:58:b3:6e:51:b3:36:79:33: 4a:4e:fb:a7:11:fa:ef:5c:25:46:73:54:f3:b6:9f: e8:0f:e8:1b:58:3b:b7:33:24:05:6b:86:8b:79:bb: 26:f7:53:da:d6:0f:23:76:0f:c8:ff:c0:59:c8:b4: 47:e3:4f:09:0f:fc:c0:6e:76:e7:5f:b4:be:9e:25: cd:6b:bd:3c:78:92:83:dc:0a:c6:09:62:69:05:43: 0c:1e:9d:8c:e3:49:b9:09:61:a2:fa:4b:1a:b7:47: 0b:a4:00:ac:84:ff:a2:84:ce:45:42:42:75:b8:a6: 91:28:77:2f:07:64:36:c4:8f:8c:88:52:27:fc:cd: 4c:51:1d:cb:fd:e4:6e:bf:6d:ed:38:90:e3:86:24: 1a:6a:68:8d:ec:a9:1b:36:8b:d9:cc:1b:ea:8b:43: 5c:1a:5e:83:86:aa:2a:ce:4f:3b:fd:27:f9:30:8c: d0:3d:d6:18:8e:07:41:45:2a:3e:4d:96:51:2c:17: 77:57:5e:71:b8:3a:5d:97:60:8b:0e:fb:70:6a:42: b9:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:F9:6C:05:39:DF:E8:C4:A6:C0:29:18:00:D0:1C:04:8E:F8:EF:92 X509v3 Authority Key Identifier: keyid:43:E4:A8:1D:D5:94:67:30:51:E8:C7:E0:B1:AD:BD:31:C4:83:B6:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF1D9/E37F13822A6C11EC95EB263FC4F9AE02/Q-SoHdWUZzBR6Mfgsa29McSDtlM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-SoHdWUZzBR6Mfgsa29McSDtlM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF1D9/E37F13822A6C11EC95EB263FC4F9AE02/Q-SoHdWUZzBR6Mfgsa29McSDtlM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:89:e3:43:05:32:a8:c6:1b:c5:90:4d:b5:d6:fa:4f:35:e0: 14:81:b7:cc:91:56:5f:4f:e0:b6:6c:1a:57:c8:88:de:cc:25: ac:68:d7:71:d0:ce:53:57:23:35:88:22:a5:4c:97:1c:63:d0: 19:c5:cc:6c:b0:56:21:4a:96:4c:39:3e:73:c3:a2:86:83:58: 41:53:98:72:9b:f6:28:21:56:6f:de:fd:33:31:55:e3:85:a3: 4c:da:62:3b:fb:64:e1:66:35:f4:fb:fc:61:07:d5:a2:aa:74: 4b:c8:1a:e0:0e:06:5a:48:48:86:da:4c:65:ff:cc:d4:b5:40: 23:8f:1b:15:91:35:f3:83:29:8c:14:ba:39:22:0f:bb:af:76: a4:3a:5f:53:23:47:c0:c8:12:51:77:6a:61:e3:07:61:ea:5b: 81:ab:88:71:e0:20:39:8d:21:d1:2d:8d:d6:71:a7:7c:84:70: 52:5f:1d:d9:9c:f2:93:f8:3b:6b:8e:77:81:3b:91:0c:3a:7b: 85:d9:b5:5d:ca:ea:cc:0c:b1:ae:27:4f:4e:c0:55:a7:0d:12: bd:6f:f6:6d:c9:65:1c:9b:a5:19:05:26:86:33:93:d8:24:19: 14:59:64:d0:66:29:91:96:bf:d6:2b:1f:05:7e:e9:d9:12:1c: c5:99:35:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYxRDkxMTAvBgNVBAUTKDQzRTRBODFERDU5NDY3MzA1MUU4QzdFMEIxQURCRDMx QzQ4M0I2NTMwHhcNMjQwNTE5MDIxMDMzWhcNMjQwNTI2MDIxMDMzWjAYMRYwFAYD VQQDEw02NjQ5NWY5YS05YmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw72dPwtT0iyz2wbhIHuYOaBF8GMwQqI8HQIa6TupSjOIh2Gtt/3hJckdQdBZ Jo9csJmwWLNuUbM2eTNKTvunEfrvXCVGc1Tztp/oD+gbWDu3MyQFa4aLebsm91Pa 1g8jdg/I/8BZyLRH408JD/zAbnbnX7S+niXNa708eJKD3ArGCWJpBUMMHp2M40m5 CWGi+ksat0cLpACshP+ihM5FQkJ1uKaRKHcvB2Q2xI+MiFIn/M1MUR3L/eRuv23t OJDjhiQaamiN7KkbNovZzBvqi0NcGl6Dhqoqzk87/Sf5MIzQPdYYjgdBRSo+TZZR LBd3V15xuDpdl2CLDvtwakK59QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCD5bAU5 3+jEpsApGADQHASO+O+SMB8GA1UdIwQYMBaAFEPkqB3VlGcwUejH4LGtvTHEg7ZT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjFEOS9FMzdGMTM4MjJB NkMxMUVDOTVFQjI2M0ZDNEY5QUUwMi9RLVNvSGRXVVp6QlI2TWZnc2EyOU1jU0R0 bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EtU29IZFdVWnpCUjZNZmdzYTI5TWNTRHRsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjFEOS9FMzdGMTM4MjJBNkMxMUVDOTVFQjI2M0ZDNEY5QUUwMi9RLVNvSGRXVVp6 QlI2TWZnc2EyOU1jU0R0bE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACieNDBTKoxhvFkE211vpPNeAUgbfMkVZfT+C2bBpXyIjezCWsaNdx 0M5TVyM1iCKlTJccY9AZxcxssFYhSpZMOT5zw6KGg1hBU5hym/YoIVZv3v0zMVXj haNM2mI7+2ThZjX0+/xhB9WiqnRLyBrgDgZaSEiG2kxl/8zUtUAjjxsVkTXzgymM FLo5Ig+7r3akOl9TI0fAyBJRd2ph4wdh6luBq4hx4CA5jSHRLY3Wcad8hHBSXx3Z nPKT+DtrjneBO5EMOnuF2bVdyurMDLGuJ09OwFWnDRK9b/ZtyWUcm6UZBSaGM5PY JBkUWWTQZimRlr/WKx8FfunZEhzFmTXL -----END CERTIFICATE-----Generated at Sun May 19 02:59:15 2024 by rpki-client on console-ams.rpki-client.org