$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft File: Qf4dQTWrLWdiPnYIM5hGitT6odw.mft (raw, json) Hash identifier: PxhEOyeHrrRX91qEcD6sw2xWxHwaOzn10xzC6GpE1/0= Subject key identifier: EB:37:97:79:1C:64:7C:1F:31:B3:59:8A:EF:11:50:07:61:04:79:A8 Authority key identifier: 41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC Certificate issuer: /CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Certificate serial: 1AF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft Manifest number: 1ADD Signing time: Mon 06 May 2024 16:47:58 +0000 Manifest this update: Mon 06 May 2024 16:47:58 +0000 Manifest next update: Mon 13 May 2024 16:47:58 +0000 Files and hashes: 1: Qf4dQTWrLWdiPnYIM5hGitT6odw.crl (hash: Se/D7/B7wMvqLudkgsJma4xqB7XxDQllrT586MzPL/w=) 2: 47EEF6A24CB711EE86F6DB1CC4F9AE02.roa (hash: BgVlg8JMnJl1AN4y1835aN7thI04/zmbyhw1v4lrVWI=) 3: CCDEF336515711EEA61D5643C4F9AE02.roa (hash: vMjsWlt+qCptCBWjk8QsOnFHsuU6ZH7+Jgo589b2plE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 16:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6901 (0x1af5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Validity Not Before: May 6 16:47:58 2024 GMT Not After : May 13 16:47:58 2024 GMT Subject: CN=663909be-8dc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e2:8c:b6:0a:4e:0a:7d:9b:eb:41:d1:1f:9d: 80:6f:0e:f4:ce:08:5b:32:8a:80:cc:d7:28:c2:f2: e7:bc:a2:ac:c1:7f:7d:bd:47:33:7c:90:6e:7e:16: e8:0b:5b:a7:99:05:e2:aa:8d:8a:a9:85:a7:2c:02: 78:39:41:7c:a0:ed:8a:ff:e7:72:d2:7f:28:3a:a5: 5c:1d:47:85:98:c8:ce:de:97:7b:cf:98:41:b4:14: 87:c2:d5:c8:84:33:b5:d5:37:8c:ee:cb:04:ef:98: 4c:9c:cd:cd:06:14:bd:82:34:d2:b5:a4:86:26:e1: 90:e5:ef:d4:9e:a0:da:5f:c8:66:da:9b:c9:40:06: d3:0e:19:79:36:2b:f9:e8:5e:05:8e:fa:df:90:93: e1:a2:f4:3a:af:50:93:d5:86:3a:23:0c:ad:af:4b: 36:ed:c8:2b:d0:a0:21:7e:5b:b3:ae:16:6c:a4:40: b1:6d:70:b1:a9:c8:6b:22:3c:1f:76:69:73:ad:17: 03:ae:97:31:d4:69:d7:d5:75:61:26:ae:2a:19:f2: c4:6f:05:d4:83:46:fa:e9:c8:f0:26:25:ba:dd:69: 45:5f:8a:bc:26:71:09:a0:6f:2e:41:f5:58:5c:c8: e9:b7:ac:9f:25:3a:13:82:ce:a7:e4:ff:ba:3c:18: ad:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:37:97:79:1C:64:7C:1F:31:B3:59:8A:EF:11:50:07:61:04:79:A8 X509v3 Authority Key Identifier: keyid:41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:e2:86:ab:4f:a0:ca:db:84:0b:aa:ec:4e:e6:02:71:a5:00: 7b:8d:53:7c:9e:22:58:b5:f9:f5:f7:4a:8f:8d:c5:75:d5:15: 5f:a6:9d:6b:a4:99:75:a9:35:bc:06:1e:1d:0d:fa:62:47:9c: 6c:ad:fa:50:bf:06:06:92:3e:a8:a0:2e:04:52:77:cb:a5:61: 41:d4:48:d1:72:a3:e2:8b:7e:72:dd:b3:a2:a8:55:25:8f:87: 16:65:5d:fb:0d:3a:58:a5:e9:c0:c0:16:0d:de:a7:19:3e:66: a8:61:65:c9:6d:b8:69:64:b3:cd:7e:29:26:25:54:95:8c:40: 6f:c6:1b:e4:ef:fa:c4:6b:6f:b7:5c:14:c0:71:5d:eb:d3:6d: 90:5d:95:f0:88:4f:fa:2e:39:2b:e0:ff:67:af:bf:1b:e0:13: e7:f4:2a:2d:53:cc:9f:3d:23:af:89:6c:bd:0b:32:70:f0:e5: 3d:e3:81:5f:1f:ee:38:3b:6d:47:70:72:49:1f:31:62:c6:3c: e5:c2:ce:d6:a2:78:7e:45:38:f9:1a:d4:c7:1b:c9:41:b9:a4: f2:2f:4b:e0:6b:85:6f:f8:f2:20:87:73:ce:4a:bd:26:e3:20: 19:f2:fb:db:05:89:23:5a:75:3a:35:bd:43:b4:16:4b:2a:e6: b6:68:18:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1RDcxMTAvBgNVBAUTKDQxRkUxRDQxMzVBQjJENjc2MjNFNzYwODMzOTg0NjhB RDRGQUExREMwHhcNMjQwNTA2MTY0NzU4WhcNMjQwNTEzMTY0NzU4WjAYMRYwFAYD VQQDEw02NjM5MDliZS04ZGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5OKMtgpOCn2b60HRH52Abw70zghbMoqAzNcowvLnvKKswX99vUczfJBufhbo C1unmQXiqo2KqYWnLAJ4OUF8oO2K/+dy0n8oOqVcHUeFmMjO3pd7z5hBtBSHwtXI hDO11TeM7ssE75hMnM3NBhS9gjTStaSGJuGQ5e/UnqDaX8hm2pvJQAbTDhl5Niv5 6F4FjvrfkJPhovQ6r1CT1YY6Iwytr0s27cgr0KAhfluzrhZspECxbXCxqchrIjwf dmlzrRcDrpcx1GnX1XVhJq4qGfLEbwXUg0b66cjwJiW63WlFX4q8JnEJoG8uQfVY XMjpt6yfJToTgs6n5P+6PBitbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOs3l3kc ZHwfMbNZiu8RUAdhBHmoMB8GA1UdIwQYMBaAFEH+HUE1qy1nYj52CDOYRorU+qHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVENy8yNTg3MkJCRTAz QjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxXZGlQbllJTTVoR2l0VDZv ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FmNGRRVFdyTFdkaVBuWUlNNWhHaXRUNm9kdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVENy8yNTg3MkJCRTAzQjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxX ZGlQbllJTTVoR2l0VDZvZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa4oarT6DK24QLquxO5gJxpQB7jVN8niJYtfn190qPjcV11RVfpp1r pJl1qTW8Bh4dDfpiR5xsrfpQvwYGkj6ooC4EUnfLpWFB1EjRcqPii35y3bOiqFUl j4cWZV37DTpYpenAwBYN3qcZPmaoYWXJbbhpZLPNfikmJVSVjEBvxhvk7/rEa2+3 XBTAcV3r022QXZXwiE/6Ljkr4P9nr78b4BPn9CotU8yfPSOviWy9CzJw8OU944Ff H+44O21HcHJJHzFixjzlws7Wonh+RTj5GtTHG8lBuaTyL0vga4Vv+PIgh3POSr0m 4yAZ8vvbBYkjWnU6Nb1DtBZLKua2aBia -----END CERTIFICATE-----Generated at Mon May 6 17:42:38 2024 by rpki-client on console-ams.rpki-client.org