$ rpki-client -vvf rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft File: qo4b42JCQNwzAgR_tBp9TkeAjvg.mft (raw, json) Hash identifier: MteMhWA1SLSv991GhwHfQUz1dK9sW0QyzQa4hJV+fsA= Subject key identifier: 5A:27:8B:E3:59:B7:B2:F4:1A:4D:83:35:45:46:8F:91:34:38:AE:D9 Authority key identifier: AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 Certificate issuer: /CN=A911E509/serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Certificate serial: 0864 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft Manifest number: 0851 Signing time: Tue 30 Apr 2024 22:03:13 +0000 Manifest this update: Tue 30 Apr 2024 22:03:13 +0000 Manifest next update: Tue 07 May 2024 22:03:13 +0000 Files and hashes: 1: qo4b42JCQNwzAgR_tBp9TkeAjvg.crl (hash: uMeOyvnjMcR9ng06kXs/Sv2DZeIfPYbITkRpk7FyOk8=) 2: 9A357E62171111EEA9C5DD2CC4F9AE02.roa (hash: gT3PyIIY0c0hru17WSpoCMpj8em+2vMwlrrzzTQ+bRI=) 3: 2E18EB105D0C11EE873B1C2AC4F9AE02.roa (hash: bZEiNJRw250RCgndZb8WrEuPT6rJMFvmM1Vj0bQNhho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 22:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2148 (0x864) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E509/serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Validity Not Before: Apr 30 22:03:13 2024 GMT Not After : May 7 22:03:13 2024 GMT Subject: CN=66316aa1-3fc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:1c:b5:f7:0a:2f:9f:c1:30:53:cd:e7:44:3b: da:6c:02:f2:bc:fa:28:39:38:52:9a:29:a8:7d:bd: f5:41:ed:bb:61:1c:38:67:26:ce:07:db:2d:b1:9e: c6:0d:85:e8:35:33:b2:b7:02:35:89:bc:d3:6d:e9: 85:da:36:e5:b2:88:f0:f2:77:14:ee:4f:be:1d:ce: d4:5a:0f:76:ad:db:47:ae:b2:c8:ff:0d:4c:3a:53: 14:89:02:e8:d6:75:56:12:84:4c:50:eb:86:c7:eb: 8d:ab:3d:d8:da:9e:c7:64:b2:40:ee:bf:fc:40:99: 08:dc:52:ff:6d:dc:78:8c:90:2f:ae:58:d3:9c:a2: a7:52:94:ef:5d:a7:b7:49:ce:e4:a7:9a:13:f7:a2: cf:13:77:d4:13:2c:8d:03:a9:24:94:cc:6e:56:96: 43:40:fc:0c:51:e0:30:85:3d:1e:c1:83:3e:47:8c: 89:da:05:e0:18:bb:c1:5f:48:cc:66:02:91:56:01: 32:cb:3c:1d:85:f2:31:cb:16:41:d8:40:10:39:8c: 6c:55:45:bd:43:ec:02:d3:59:d9:48:fc:64:8b:21: df:10:1e:4b:12:63:7e:0f:c2:6c:21:da:4d:bc:f9: 2d:f3:5a:30:8e:20:f2:11:62:83:e6:d4:21:3b:1e: de:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:27:8B:E3:59:B7:B2:F4:1A:4D:83:35:45:46:8F:91:34:38:AE:D9 X509v3 Authority Key Identifier: keyid:AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:40:ea:d4:8e:d8:95:84:67:48:66:8f:b3:05:cc:b9:33:e7: 3c:46:b6:4c:c8:ac:1c:d3:c6:49:36:31:1d:23:67:17:7f:5c: 27:57:e0:fa:71:e6:6a:10:f3:8f:10:04:c4:03:87:52:33:b1: 70:bf:02:ef:4a:54:88:1e:25:60:b7:fc:f5:51:da:53:46:7d: c3:76:93:5e:af:fd:17:11:b4:ed:96:5f:32:f2:54:18:c3:5f: 58:71:c6:80:2b:63:e4:4f:b8:2d:03:ca:0c:65:08:20:59:dc: 68:32:bd:36:f9:93:e0:c7:c2:04:0f:42:80:e0:d0:8e:17:fe: be:92:c1:54:bd:65:ff:c5:73:c6:05:57:b2:2a:d5:61:bf:69: ca:7d:50:c1:51:94:ab:78:ad:6d:09:99:16:d8:ad:d3:92:ee: 54:eb:b1:bc:56:5f:ef:95:8d:e7:4b:32:29:c6:ed:14:e4:bd: b6:1a:75:bb:65:c1:da:8a:96:2a:91:eb:61:15:fc:1a:ba:c1: 90:c2:33:74:41:af:a5:f5:60:81:f5:24:d4:dd:6f:b1:ee:21: 58:6a:b0:9a:0d:cd:2a:37:77:f4:a9:9c:0c:22:0c:24:34:29: 64:fe:f6:78:11:e1:36:c3:23:23:6f:06:49:51:f3:05:4a:d0: 9e:8b:7f:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU1MDkxMTAvBgNVBAUTKEFBOEUxQkUzNjI0MjQwREMzMzAyMDQ3RkI0MUE3RDRF NDc4MDhFRjgwHhcNMjQwNDMwMjIwMzEzWhcNMjQwNTA3MjIwMzEzWjAYMRYwFAYD VQQDEw02NjMxNmFhMS0zZmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6xy19wovn8EwU83nRDvabALyvPooOThSmimofb31Qe27YRw4ZybOB9stsZ7G DYXoNTOytwI1ibzTbemF2jblsojw8ncU7k++Hc7UWg92rdtHrrLI/w1MOlMUiQLo 1nVWEoRMUOuGx+uNqz3Y2p7HZLJA7r/8QJkI3FL/bdx4jJAvrljTnKKnUpTvXae3 Sc7kp5oT96LPE3fUEyyNA6kklMxuVpZDQPwMUeAwhT0ewYM+R4yJ2gXgGLvBX0jM ZgKRVgEyyzwdhfIxyxZB2EAQOYxsVUW9Q+wC01nZSPxkiyHfEB5LEmN+D8JsIdpN vPkt81owjiDyEWKD5tQhOx7eUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFoni+NZ t7L0Gk2DNUVGj5E0OK7ZMB8GA1UdIwQYMBaAFKqOG+NiQkDcMwIEf7QafU5HgI74 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTUwOS83OUVBNTkxRUE3 QkQxMUVBQUFBNjI5NDhDNEY5QUUwMi9xbzRiNDJKQ1FOd3pBZ1JfdEJwOVRrZUFq dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FvNGI0MkpDUU53ekFnUl90QnA5VGtlQWp2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTUwOS83OUVBNTkxRUE3QkQxMUVBQUFBNjI5NDhDNEY5QUUwMi9xbzRiNDJKQ1FO d3pBZ1JfdEJwOVRrZUFqdmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrQOrUjtiVhGdIZo+zBcy5M+c8RrZMyKwc08ZJNjEdI2cXf1wnV+D6 ceZqEPOPEATEA4dSM7FwvwLvSlSIHiVgt/z1UdpTRn3DdpNer/0XEbTtll8y8lQY w19YccaAK2PkT7gtA8oMZQggWdxoMr02+ZPgx8IED0KA4NCOF/6+ksFUvWX/xXPG BVeyKtVhv2nKfVDBUZSreK1tCZkW2K3Tku5U67G8Vl/vlY3nSzIpxu0U5L22GnW7 ZcHaipYqkethFfwausGQwjN0Qa+l9WCB9STU3W+x7iFYarCaDc0qN3f0qZwMIgwk NClk/vZ4EeE2wyMjbwZJUfMFStCei39B -----END CERTIFICATE-----Generated at Tue Apr 30 22:56:12 2024 by rpki-client on console-fra.rpki-client.org