$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft File: qpoNy1ExOS1xlqhEGKioRkVTH5c.mft (raw, json) Hash identifier: G295Beae0JLlSi+e/AtZOUuhJktingIDwsu4hozWWxA= Subject key identifier: B3:EB:B8:4D:1C:01:62:0A:7E:FF:C2:E3:1C:E0:A5:10:CE:CF:46:78 Authority key identifier: AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97 Certificate issuer: /CN=A91EF66D/serialNumber=AA9A0DCB5131392D7196A84418A8A84645531F97 Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft Manifest number: 70 Signing time: Sun 19 May 2024 07:31:22 +0000 Manifest this update: Sun 19 May 2024 07:31:22 +0000 Manifest next update: Sun 26 May 2024 07:31:22 +0000 Files and hashes: 1: qpoNy1ExOS1xlqhEGKioRkVTH5c.crl (hash: tJkIjKcRv1ERUH0pa+LYMfwOjXBbiE6XRR7ENkuWFuY=) 2: C2D66F8271A911EEAEEE351CC4F9AE02.roa (hash: P8RCG3anUB4OlTp6lr7fbucHFI/jOy6jB+56lSRIUq0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.crl rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF66D/serialNumber=AA9A0DCB5131392D7196A84418A8A84645531F97 Validity Not Before: May 19 07:31:22 2024 GMT Not After : May 26 07:31:22 2024 GMT Subject: CN=6649aaca-a3f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:32:70:6c:34:47:ad:8b:1a:de:f5:53:cd:44: 4b:f0:2d:0c:60:7f:26:14:a6:e0:54:43:6d:37:0f: 51:2d:71:39:e4:99:13:9b:50:6e:ae:20:a4:cb:70: f2:53:36:f2:5d:cd:19:bb:ca:c0:2a:c8:fe:8b:dd: 85:cb:33:1f:98:0e:a3:25:51:24:4b:7f:d2:da:8e: 2a:88:64:5b:b1:40:44:58:43:64:07:84:1b:88:a8: 8e:c2:76:6f:cd:3d:5f:03:98:7e:64:21:6d:e0:e0: e3:b0:b2:9a:0e:73:10:21:25:bf:a3:37:ab:c6:30: ea:2b:4f:72:f5:81:c5:0b:fb:30:b0:72:fd:c3:84: c0:9c:51:88:1c:16:c8:4b:5a:4e:b5:0b:ef:06:8e: b9:9f:f8:71:f8:be:f8:56:f9:ee:21:17:99:ec:8c: f5:f4:4d:ad:42:6e:f3:ab:0a:95:08:92:0f:c3:84: 95:2c:45:50:1c:67:b3:fd:20:6b:06:1c:47:4e:25: 3a:39:dd:3c:54:71:6f:69:a6:21:14:70:1b:85:55: df:9d:4f:d7:e3:f8:ba:4b:95:13:27:fe:96:33:aa: c8:d2:54:6d:72:07:8e:a4:ff:20:9c:04:2d:23:25: 02:c3:6f:f6:93:a1:ba:7d:68:98:98:3a:8b:c4:7b: 7a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:EB:B8:4D:1C:01:62:0A:7E:FF:C2:E3:1C:E0:A5:10:CE:CF:46:78 X509v3 Authority Key Identifier: keyid:AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:6f:4b:9e:9f:8b:7d:eb:d9:95:bc:56:0e:04:e7:c3:65:04: 36:2d:b7:06:58:d7:44:8f:3d:ed:bc:cf:27:e3:42:da:68:5b: bb:b2:f3:8f:b9:86:7f:3a:ac:1d:4f:b0:59:84:b7:d3:27:01: 26:68:d4:04:37:c9:b8:41:9d:ab:81:2e:ba:54:18:18:1c:8d: 89:68:79:dd:1e:48:9f:5f:43:80:e7:80:ea:ae:ca:b7:c1:56: 6f:31:8c:a8:7b:db:2a:dc:e8:12:86:cc:39:03:c4:a7:00:ff: 63:8c:fe:01:f9:07:07:62:b1:33:c1:1f:cf:71:62:67:ed:84: f3:1a:76:d1:69:04:14:01:1f:af:c3:53:bf:16:df:a7:e9:31: 15:76:4d:0f:c0:b0:aa:0a:c5:14:55:d8:f9:a8:be:21:36:dd: 2a:aa:3e:bc:8b:59:3b:bc:93:07:cf:aa:17:b6:40:da:4b:b4: 2f:d6:20:d8:45:58:73:17:5d:f1:7f:55:82:0a:38:e6:1c:03: 4a:7a:20:4f:da:a5:89:a3:9a:00:04:87:98:dc:e3:be:9f:73: 89:ea:fb:7e:4e:bb:c2:ed:a4:13:6b:73:b4:6c:cd:cd:63:e1: 08:0a:04:0a:ae:ab:21:43:54:88:31:81:47:b3:03:71:1e:ff: 42:bf:41:8f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RjY2RDExMC8GA1UEBRMoQUE5QTBEQ0I1MTMxMzkyRDcxOTZBODQ0MThBOEE4NDY0 NTUzMUY5NzAeFw0yNDA1MTkwNzMxMjJaFw0yNDA1MjYwNzMxMjJaMBgxFjAUBgNV BAMTDTY2NDlhYWNhLWEzZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkMnBsNEetixre9VPNREvwLQxgfyYUpuBUQ203D1EtcTnkmRObUG6uIKTLcPJT NvJdzRm7ysAqyP6L3YXLMx+YDqMlUSRLf9LajiqIZFuxQERYQ2QHhBuIqI7Cdm/N PV8DmH5kIW3g4OOwspoOcxAhJb+jN6vGMOorT3L1gcUL+zCwcv3DhMCcUYgcFshL Wk61C+8Gjrmf+HH4vvhW+e4hF5nsjPX0Ta1CbvOrCpUIkg/DhJUsRVAcZ7P9IGsG HEdOJTo53TxUcW9ppiEUcBuFVd+dT9fj+LpLlRMn/pYzqsjSVG1yB46k/yCcBC0j JQLDb/aTobp9aJiYOovEe3rLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUs+u4TRwB Ygp+/8LjHOClEM7PRngwHwYDVR0jBBgwFoAUqpoNy1ExOS1xlqhEGKioRkVTH5cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVGNjZELzUxMUE4OTJFNzFB ODExRUVCNDM3RjE4MUM0RjlBRTAyL3Fwb055MUV4T1MxeGxxaEVHS2lvUmtWVEg1 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcXBvTnkxRXhPUzF4bHFoRUdLaW9Sa1ZUSDVjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVG NjZELzUxMUE4OTJFNzFBODExRUVCNDM3RjE4MUM0RjlBRTAyL3Fwb055MUV4T1Mx eGxxaEVHS2lvUmtWVEg1Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIZvS56fi33r2ZW8Vg4E58NlBDYttwZY10SPPe28zyfjQtpoW7uy84+5 hn86rB1PsFmEt9MnASZo1AQ3ybhBnauBLrpUGBgcjYloed0eSJ9fQ4DngOquyrfB Vm8xjKh72yrc6BKGzDkDxKcA/2OM/gH5BwdisTPBH89xYmfthPMadtFpBBQBH6/D U78W36fpMRV2TQ/AsKoKxRRV2PmoviE23SqqPryLWTu8kwfPqhe2QNpLtC/WINhF WHMXXfF/VYIKOOYcA0p6IE/apYmjmgAEh5jc476fc4nq+35Ou8LtpBNrc7Rszc1j 4QgKBAquqyFDVIgxgUezA3Ee/0K/QY8= -----END CERTIFICATE-----Generated at Sun May 19 08:25:11 2024 by rpki-client on console-ams.rpki-client.org