$ rpki-client -vvf rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.mft File: 1QN6-WnIrOoBtXD8ZK3UgorAZBQ.mft (raw, json) Hash identifier: a8kzOfWHCpCiAbWzgFw98A4QvapD2QZdDysfsYV5rug= Subject key identifier: 83:A2:53:ED:2C:E2:A6:FF:66:5A:B2:FB:D3:54:F8:C0:B8:87:C1:61 Authority key identifier: D5:03:7A:F9:69:C8:AC:EA:01:B5:70:FC:64:AD:D4:82:8A:C0:64:14 Certificate issuer: /CN=A914A49B/serialNumber=D5037AF969C8ACEA01B570FC64ADD4828AC06414 Certificate serial: 13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.mft Manifest number: 10 Signing time: Sun 19 May 2024 08:51:17 +0000 Manifest this update: Sun 19 May 2024 08:51:16 +0000 Manifest next update: Sun 26 May 2024 08:51:16 +0000 Files and hashes: 1: 1QN6-WnIrOoBtXD8ZK3UgorAZBQ.crl (hash: OJMLi1xoPwu8gzVs91ActuelsyOu3vmJukZsBrxIrBA=) 2: 2907520205DA11EF974A6A0BC4F9AE02.roa (hash: 1gtkL+UA2oj2CtkbitkzKA9U2kMx9KNP4ClU7cUaHIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.crl rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A49B/serialNumber=D5037AF969C8ACEA01B570FC64ADD4828AC06414 Validity Not Before: May 19 08:51:16 2024 GMT Not After : May 26 08:51:16 2024 GMT Subject: CN=6649bd85-39cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e8:c6:d4:89:e6:95:4d:67:b5:60:fd:e5:93: e4:66:06:db:8d:c1:35:a4:d7:87:1e:d6:fd:15:4b: 7a:30:e2:ec:3c:eb:3f:cc:e4:df:86:fb:20:fa:34: ae:27:57:3f:53:57:5e:c8:26:a1:7e:9c:3e:49:da: 8e:61:be:22:2c:fd:c3:98:19:fd:2a:23:e4:f8:07: f8:da:56:5e:0e:99:ff:75:8e:6c:e5:a9:9e:a2:ca: b7:3f:11:82:f3:ee:94:60:39:56:08:17:6b:f3:e1: 05:f3:89:54:24:88:b5:86:01:64:82:99:cc:25:be: c9:3b:6a:b8:94:21:28:6b:27:81:06:97:4c:66:32: fc:e0:ea:54:c9:e6:c1:26:3b:82:6d:41:77:5f:df: 08:7d:3c:8e:bc:36:c1:6a:60:3a:f0:f9:86:fc:54: 3e:25:46:77:50:88:15:9b:af:bf:0b:bf:12:63:c4: d5:c8:63:9f:04:76:0e:b7:8c:86:87:ae:7f:47:83: f2:3a:60:e7:bb:bd:3a:36:5a:60:51:fe:b9:d9:16: dd:d3:65:75:9d:9f:80:06:84:b2:d6:76:1a:e4:36: d3:c4:dc:4a:97:e2:c0:5f:ca:b8:c0:c1:78:b3:32: 87:d1:3f:1b:a1:eb:69:d7:80:fe:32:65:9d:25:25: 7d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:A2:53:ED:2C:E2:A6:FF:66:5A:B2:FB:D3:54:F8:C0:B8:87:C1:61 X509v3 Authority Key Identifier: keyid:D5:03:7A:F9:69:C8:AC:EA:01:B5:70:FC:64:AD:D4:82:8A:C0:64:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:97:74:aa:42:be:a1:b5:79:84:01:e6:11:d7:67:3a:cc:4e: 47:1e:b3:32:85:bf:be:e0:c8:74:22:6f:bd:24:31:62:49:67: 4d:05:7b:a7:30:93:18:88:e9:9f:7f:4c:67:77:5f:f9:ec:aa: 04:cd:ba:89:d8:3a:b7:40:fe:6d:29:d0:7a:ae:33:5f:a3:82: 50:97:63:b8:14:d5:6e:00:31:b4:31:e1:b2:fc:c6:ea:30:e7: 80:68:06:1c:a3:cb:1c:12:82:99:f7:cf:1e:e3:fc:7e:b9:dd: 24:60:d1:c2:c4:7f:56:3f:c6:bd:82:1c:7f:ca:8e:14:af:79: 17:23:fc:d7:73:ce:68:75:ca:0a:41:d5:66:6a:92:36:2e:b4: 14:d3:89:1f:1b:ec:73:8a:d2:75:d7:89:6d:6b:51:91:2e:97: 2a:a9:27:d6:eb:ea:7b:7a:9f:20:fe:e6:1d:41:96:88:b7:d1: 6c:58:19:4d:df:8b:54:af:ad:52:79:5e:19:c2:ea:6f:56:d6: 0f:34:e1:9c:43:57:05:18:5b:96:36:14:96:ab:69:c3:9a:4a: 14:ad:1d:83:4e:d0:91:1b:77:cd:99:f8:89:df:07:13:b4:e5: cd:58:23:25:93:5c:e7:fe:f0:a3:71:fb:2b:56:c3:b9:0f:c7: cf:57:62:ff -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QTQ5QjExMC8GA1UEBRMoRDUwMzdBRjk2OUM4QUNFQTAxQjU3MEZDNjRBREQ0ODI4 QUMwNjQxNDAeFw0yNDA1MTkwODUxMTZaFw0yNDA1MjYwODUxMTZaMBgxFjAUBgNV BAMTDTY2NDliZDg1LTM5Y2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDO6MbUieaVTWe1YP3lk+RmBtuNwTWk14ce1v0VS3ow4uw86z/M5N+G+yD6NK4n Vz9TV17IJqF+nD5J2o5hviIs/cOYGf0qI+T4B/jaVl4Omf91jmzlqZ6iyrc/EYLz 7pRgOVYIF2vz4QXziVQkiLWGAWSCmcwlvsk7ariUIShrJ4EGl0xmMvzg6lTJ5sEm O4JtQXdf3wh9PI68NsFqYDrw+Yb8VD4lRndQiBWbr78LvxJjxNXIY58Edg63jIaH rn9Hg/I6YOe7vTo2WmBR/rnZFt3TZXWdn4AGhLLWdhrkNtPE3EqX4sBfyrjAwXiz MofRPxuh62nXgP4yZZ0lJX37AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUg6JT7Szi pv9mWrL701T4wLiHwWEwHwYDVR0jBBgwFoAU1QN6+WnIrOoBtXD8ZK3UgorAZBQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRBNDlCL0I5NEY2OTM2MDE1 MTExRUY5ODU3QzAxRUM0RjlBRTAyLzFRTjYtV25Jck9vQnRYRDhaSzNVZ29yQVpC US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMVFONi1XbklyT29CdFhEOFpLM1Vnb3JBWkJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRB NDlCL0I5NEY2OTM2MDE1MTExRUY5ODU3QzAxRUM0RjlBRTAyLzFRTjYtV25Jck9v QnRYRDhaSzNVZ29yQVpCUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABmXdKpCvqG1eYQB5hHXZzrMTkceszKFv77gyHQib70kMWJJZ00Fe6cw kxiI6Z9/TGd3X/nsqgTNuonYOrdA/m0p0HquM1+jglCXY7gU1W4AMbQx4bL8xuow 54BoBhyjyxwSgpn3zx7j/H653SRg0cLEf1Y/xr2CHH/KjhSveRcj/Ndzzmh1ygpB 1WZqkjYutBTTiR8b7HOK0nXXiW1rUZEulyqpJ9br6nt6nyD+5h1Bloi30WxYGU3f i1SvrVJ5XhnC6m9W1g804ZxDVwUYW5Y2FJaracOaShStHYNO0JEbd82Z+InfBxO0 5c1YIyWTXOf+8KNx+ytWw7kPx89XYv8= -----END CERTIFICATE-----Generated at Sun May 19 09:32:16 2024 by rpki-client on console-ams.rpki-client.org