$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft File: q2JivH0C7BrUi3HamLc9IqNi2vA.mft (raw, json) Hash identifier: vRjAVRrDSFKE4SOdP1puXD8DVvEUfOref8jX8SKxVuM= Subject key identifier: 3D:90:07:B1:7D:F9:50:88:F0:E4:8A:E5:D4:D4:47:57:FD:19:8E:77 Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 3518 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft Manifest number: 345E Signing time: Sat 18 May 2024 14:31:56 +0000 Manifest this update: Sat 18 May 2024 14:31:56 +0000 Manifest next update: Sat 25 May 2024 14:31:56 +0000 Files and hashes: 1: q2JivH0C7BrUi3HamLc9IqNi2vA.crl (hash: y9Tn7nOESs2iGLtJp04qKcpV9/ujA79z1Gb1d/k4VTg=) 2: 4D5247EEA4C911E782854F50C4F9AE02.roa (hash: RZ0C9YYnh8QbXqgqtPsPNLAyin0VjmTVQMvXuKLH1Cg=) 3: 78123422B0CD11E58B55FC73C4F9AE02.roa (hash: tQqDan24vaXVZ/JHfmO5h2VgPFM+vGEwPOlOViAHg/U=) 4: A7F526A0C9E711ED8C3F1522C4F9AE02.roa (hash: m9mUrw5rbNXvlgqj2YgTcs5xv+pxaEtsVNhCqS1ssbo=) 5: 7B938024B0CD11E58B55FC73C4F9AE02.roa (hash: K7Nj7n/i6tjKO0doM6XNQ63Jlt3J6xLH5CMscSm9Z5g=) 6: 7F4D30ACB0CD11E58B55FC73C4F9AE02.roa (hash: 6C31VW1wAP88v4um75J1DZnDG+WPIUaSY7f4Z3u9JGY=) 7: 4BF67550A4C911E782854F50C4F9AE02.roa (hash: 9n8pt4kX+PtaR3/LW1Yxlup2XWliy6SYO39Frte/ZAk=) 8: 7D920C1AB0CD11E58B55FC73C4F9AE02.roa (hash: BSMjWbafIqq8yLgIrzC661RluMtE07f15/2lXA/YQYE=) 9: 9C193BAC08C511EDBC862E48C4F9AE02.roa (hash: qJyPntIEz/4gHNPJ1UvQwCvzPZ1Sc1npCHePSECjEec=) 10: 4C9925F2A4C911E782854F50C4F9AE02.roa (hash: vV5Yr/BkXALl7LzgLGethZCdonSKacfw4uRlE5AN9Mc=) 11: 8207CCA0906C11EC86E8B711C4F9AE02.roa (hash: 9qCo4gewXoo4/qYQLpJ3mS2E+hjvvsdSgOLjxvHk+D4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:31:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13592 (0x3518) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: May 18 14:31:56 2024 GMT Not After : May 25 14:31:56 2024 GMT Subject: CN=6648bbdc-4f94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2d:33:1c:a3:00:7c:29:32:66:9c:b9:29:0c: 84:68:92:9f:a5:9a:b2:2a:b1:8f:04:25:3f:c2:c5: 57:b4:94:1d:ec:e9:75:8f:89:16:b6:5c:df:3b:8f: 48:26:38:78:0e:01:d2:96:7b:59:dc:ea:f3:79:2f: 24:bc:6b:93:91:1c:b6:3a:82:36:5b:52:c8:7f:f3: 46:57:48:1e:92:aa:2c:26:8c:fc:4d:15:41:9e:ba: 31:97:14:60:08:8b:0f:bf:0e:0d:27:60:04:a0:2a: 86:78:fd:d1:4f:d0:b1:a3:86:81:f7:4b:b5:ae:e7: ce:9b:09:73:f2:31:fc:e4:af:46:d4:c4:82:16:d3: 24:d1:a8:4b:9b:84:2a:db:b7:f9:28:c9:90:9a:e8: b2:a2:c7:8a:b6:4d:31:14:06:a4:0b:a2:75:0e:eb: 36:0b:19:7b:10:cc:ec:68:70:f8:a2:1e:93:12:d7: 4b:87:42:6d:fb:32:ea:ae:4f:08:67:f6:88:4e:2d: 2c:2d:af:04:09:e2:38:76:df:83:2a:08:8f:e0:85: ad:87:9b:80:89:be:fb:5f:3f:40:67:aa:62:da:a3: 9f:71:eb:81:36:e7:d3:11:4f:22:d3:1a:07:f8:cd: ae:03:e6:fd:17:75:c2:d5:e1:dd:41:c8:08:0b:4f: 78:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:90:07:B1:7D:F9:50:88:F0:E4:8A:E5:D4:D4:47:57:FD:19:8E:77 X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:0b:0d:17:d0:5c:f6:6e:b7:92:b0:1b:dd:e8:3b:3a:e2:95: 5c:0b:ca:41:aa:03:ff:02:88:78:f0:af:43:c0:77:af:95:6a: 5f:71:09:89:86:d8:99:4c:06:a5:7e:5c:68:09:25:6f:8f:08: 32:ac:82:f9:d8:be:f3:0d:bf:f5:4c:2b:7e:7f:bd:68:72:d3: 83:7c:16:28:b4:7a:59:84:33:7b:f8:c9:a3:4b:a6:24:0b:0e: 7a:92:53:2f:1f:50:6e:a6:69:7a:f0:8d:5e:40:f8:1b:e3:4e: fd:35:c4:7c:63:e5:60:84:d6:42:15:09:d0:b2:e1:cb:59:6c: 76:6a:7a:fe:05:7a:72:ec:85:88:cf:fc:3f:dc:b1:42:f2:58: 78:14:bd:45:db:d0:86:2c:24:04:86:7d:04:c5:79:38:58:0c: 2a:1e:fc:b2:06:e0:9d:97:cf:ca:78:c1:d9:26:95:e1:33:fb: 37:64:21:94:6a:b6:6d:cd:8f:fd:55:d0:62:05:a8:f5:51:b1: 3e:7a:29:47:56:d6:29:e1:4e:03:2f:6b:85:3c:e6:f8:d2:a8: 42:07:69:15:79:84:e3:b9:9c:9d:0f:a4:20:85:c5:de:c2:01: 70:de:29:2a:70:bf:f4:ab:fa:d2:e8:1f:7c:ef:4a:1b:44:8d: e6:8f:eb:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjQwNTE4MTQzMTU2WhcNMjQwNTI1MTQzMTU2WjAYMRYwFAYD VQQDEw02NjQ4YmJkYy00Zjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2C0zHKMAfCkyZpy5KQyEaJKfpZqyKrGPBCU/wsVXtJQd7Ol1j4kWtlzfO49I Jjh4DgHSlntZ3OrzeS8kvGuTkRy2OoI2W1LIf/NGV0gekqosJoz8TRVBnroxlxRg CIsPvw4NJ2AEoCqGeP3RT9Cxo4aB90u1rufOmwlz8jH85K9G1MSCFtMk0ahLm4Qq 27f5KMmQmuiyoseKtk0xFAakC6J1Dus2Cxl7EMzsaHD4oh6TEtdLh0Jt+zLqrk8I Z/aITi0sLa8ECeI4dt+DKgiP4IWth5uAib77Xz9AZ6pi2qOfceuBNufTEU8i0xoH +M2uA+b9F3XC1eHdQcgIC094VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2QB7F9 +VCI8OSK5dTUR1f9GY53MB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjQ1NC9ENEMzMEI0MjFEODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdC clVpM0hhbUxjOUlxTmkydkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBCw0X0Fz2breSsBvd6Ds64pVcC8pBqgP/Aoh48K9DwHevlWpfcQmJ htiZTAalflxoCSVvjwgyrIL52L7zDb/1TCt+f71octODfBYotHpZhDN7+MmjS6Yk Cw56klMvH1Bupml68I1eQPgb4079NcR8Y+VghNZCFQnQsuHLWWx2anr+BXpy7IWI z/w/3LFC8lh4FL1F29CGLCQEhn0ExXk4WAwqHvyyBuCdl8/KeMHZJpXhM/s3ZCGU arZtzY/9VdBiBaj1UbE+eilHVtYp4U4DL2uFPOb40qhCB2kVeYTjuZydD6QghcXe wgFw3ikqcL/0q/rS6B9870obRI3mj+uK -----END CERTIFICATE-----Generated at Sat May 18 15:26:07 2024 by rpki-client on console-fra.rpki-client.org