$ rpki-client -vvf rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft File: QN1mK29ul7NNO3WoAH3lOI2SclM.mft (raw, json) Hash identifier: EtniX/dWHiR36B0uezJR4Yu72xioEPJUxMmBhIEMIFo= Subject key identifier: A0:CC:EC:2E:42:82:87:73:F7:8F:2B:28:C0:EF:37:83:98:D4:4D:4E Authority key identifier: 40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 Certificate issuer: /CN=A911CF44/serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Certificate serial: 0585 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft Manifest number: 057F Signing time: Fri 03 May 2024 00:41:24 +0000 Manifest this update: Fri 03 May 2024 00:41:24 +0000 Manifest next update: Fri 10 May 2024 00:41:24 +0000 Files and hashes: 1: QN1mK29ul7NNO3WoAH3lOI2SclM.crl (hash: qfFhl264WYYPV8lgtXsdwu7ZwvVSUw04U4pSWu7GlKw=) 2: 85613B4E8C8411EBB68DD829C4F9AE02.roa (hash: QHP0aD4ImRkFLj+jX01YDeLCypyOMufG/+vYnm1Iw50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1413 (0x585) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CF44/serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Validity Not Before: May 3 00:41:24 2024 GMT Not After : May 10 00:41:24 2024 GMT Subject: CN=663432b4-5d63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ca:47:24:d4:83:a0:27:12:0b:5b:14:18:84: ad:75:36:14:34:df:63:eb:c0:68:ad:2b:6c:62:07: 07:22:b4:dd:e0:4b:54:b6:c1:c4:d4:55:27:1f:17: 7b:a8:14:9f:a7:d8:ee:90:44:9a:51:17:66:4e:fe: 0d:cb:40:fc:8e:42:e5:69:b2:59:8b:80:cf:55:12: 14:e3:30:b7:88:f3:aa:17:c1:a9:d3:47:65:3f:f0: f5:bc:b6:bd:e6:5c:8c:05:22:f0:63:ba:d2:08:9b: 71:0d:7f:4e:97:3f:0c:db:9a:05:31:da:9a:c1:44: 52:54:2f:f1:ef:31:fb:37:d1:27:20:18:45:9a:75: 36:19:0a:90:7c:f6:cd:46:dc:0e:47:8a:34:31:43: 9f:ec:43:6e:54:8f:6a:4b:f4:b8:79:7a:7b:b7:26: e1:41:31:a5:0e:39:15:2f:5a:b2:58:5d:59:15:73: 07:e4:17:2c:d7:3c:0d:48:26:56:e1:8c:09:54:4e: ab:7f:80:1e:5e:aa:b5:a5:2d:8e:af:61:46:ab:9e: 8f:fc:ee:62:34:2c:93:0e:6f:c1:e5:f4:ed:a5:83: ab:60:52:fb:c9:de:5f:bb:eb:4c:0e:57:ba:df:1c: e8:ea:59:09:8e:d6:3a:29:b1:ec:7c:56:22:9b:aa: ad:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:CC:EC:2E:42:82:87:73:F7:8F:2B:28:C0:EF:37:83:98:D4:4D:4E X509v3 Authority Key Identifier: keyid:40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:1e:a9:03:23:bd:18:97:a0:83:cd:db:fe:f3:b3:2f:59:65: da:4c:c9:01:05:3f:ae:f4:20:0a:a0:f2:50:66:e0:b7:bc:7c: 7a:95:ba:83:ab:21:d3:49:13:f1:ae:8e:af:16:a9:6d:ea:7e: ce:a8:bc:86:11:5e:a5:cd:18:25:3f:49:c2:78:47:13:30:44: 14:e1:00:f7:e7:72:a1:c3:43:b9:d7:6d:2f:72:be:68:f0:a3: ac:c9:ee:fb:a0:60:df:f0:dd:c9:76:52:13:16:d4:45:25:f6: 47:bf:7b:ee:98:6e:85:e4:38:3d:94:18:06:4a:2e:1e:f2:d1: bf:70:b0:c7:93:c1:f0:fe:35:a9:30:12:05:a6:61:c4:15:3d: 2a:95:02:ba:3d:47:64:75:cb:2f:84:8f:84:cc:d0:51:e7:5d: 7e:85:c4:ab:b5:f9:ad:8f:17:4c:4a:10:ed:40:a6:14:7c:5d: 2b:99:f8:f9:6e:03:58:7d:c4:f6:24:3a:20:cd:e3:97:99:f9: a4:e3:e1:d8:bd:ac:24:a5:de:02:2e:95:fd:a8:9a:f8:42:9e: e9:d4:0b:10:83:8a:1a:41:93:48:6d:1a:4f:46:d1:11:94:95: e5:a5:8c:81:c3:c3:d7:ab:05:6a:7f:43:8a:c9:5c:aa:a3:c9: 2f:d4:1e:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGNDQxMTAvBgNVBAUTKDQwREQ2NjJCNkY2RTk3QjM0RDNCNzVBODAwN0RFNTM4 OEQ5MjcyNTMwHhcNMjQwNTAzMDA0MTI0WhcNMjQwNTEwMDA0MTI0WjAYMRYwFAYD VQQDEw02NjM0MzJiNC01ZDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcpHJNSDoCcSC1sUGIStdTYUNN9j68BorStsYgcHIrTd4EtUtsHE1FUnHxd7 qBSfp9jukESaURdmTv4Ny0D8jkLlabJZi4DPVRIU4zC3iPOqF8Gp00dlP/D1vLa9 5lyMBSLwY7rSCJtxDX9Olz8M25oFMdqawURSVC/x7zH7N9EnIBhFmnU2GQqQfPbN RtwOR4o0MUOf7ENuVI9qS/S4eXp7tybhQTGlDjkVL1qyWF1ZFXMH5Bcs1zwNSCZW 4YwJVE6rf4AeXqq1pS2Or2FGq56P/O5iNCyTDm/B5fTtpYOrYFL7yd5fu+tMDle6 3xzo6lkJjtY6KbHsfFYim6qtfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKDM7C5C godz948rKMDvN4OY1E1OMB8GA1UdIwQYMBaAFEDdZitvbpezTTt1qAB95TiNknJT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0Y0NC82Njc3QkVCNjhD ODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3Tk5PM1dvQUgzbE9JMlNj bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOMW1LMjl1bDdOTk8zV29BSDNsT0kyU2NsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0Y0NC82Njc3QkVCNjhDODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3 Tk5PM1dvQUgzbE9JMlNjbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAHqkDI70Yl6CDzdv+87MvWWXaTMkBBT+u9CAKoPJQZuC3vHx6lbqD qyHTSRPxro6vFqlt6n7OqLyGEV6lzRglP0nCeEcTMEQU4QD353Khw0O5120vcr5o 8KOsye77oGDf8N3JdlITFtRFJfZHv3vumG6F5Dg9lBgGSi4e8tG/cLDHk8Hw/jWp MBIFpmHEFT0qlQK6PUdkdcsvhI+EzNBR511+hcSrtfmtjxdMShDtQKYUfF0rmfj5 bgNYfcT2JDogzeOXmfmk4+HYvawkpd4CLpX9qJr4Qp7p1AsQg4oaQZNIbRpPRtER lJXlpYyBw8PXqwVqf0OKyVyqo8kv1B4f -----END CERTIFICATE-----Generated at Fri May 3 01:30:23 2024 by rpki-client on console-fra.rpki-client.org