$ rpki-client -vvf rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft File: 4QZLtgGhMQh2G1RXofcVJMSky84.mft (raw, json) Hash identifier: K2hr96z5IlHmebpsAF5SSDU8Y0Zyqj1kGjUkw4bNDtM= Subject key identifier: 6E:21:02:04:63:4F:C5:B8:91:67:98:0B:E0:F3:DE:F5:57:4D:75:3A Authority key identifier: E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE Certificate issuer: /CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Certificate serial: 0A05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft Manifest number: 0A00 Signing time: Thu 02 May 2024 20:45:15 +0000 Manifest this update: Thu 02 May 2024 20:45:14 +0000 Manifest next update: Thu 09 May 2024 20:45:14 +0000 Files and hashes: 1: 4QZLtgGhMQh2G1RXofcVJMSky84.crl (hash: L0OyMeSpKqv2BFkDq5VOdXnKft1XiEqYUTCgmrd84EM=) 2: 11685AAC4F0D11EAA161D143C4F9AE02.roa (hash: ame4UZMdYFliqC/mSpG65pYY+jVmeYH/e2VwVJkKgkw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 20:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2565 (0xa05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Validity Not Before: May 2 20:45:14 2024 GMT Not After : May 9 20:45:14 2024 GMT Subject: CN=6633fb5a-fe7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:83:80:84:99:e8:09:26:52:67:94:8f:77:6e: 97:44:dc:6a:a8:cd:40:55:4e:06:92:fb:62:de:98: ac:6c:eb:6c:18:dd:25:7d:b3:6d:eb:37:5b:83:8a: c1:84:e5:c4:74:66:ec:e9:5d:03:f2:9f:b8:9e:81: a2:59:73:c5:a1:9a:40:ea:a3:da:e0:c6:43:78:98: 37:7a:05:68:72:55:52:6f:ed:c6:02:68:76:3c:65: 81:43:eb:9e:93:c6:c5:f1:54:7e:5f:51:68:ca:69: 5c:80:9d:18:07:e9:6b:34:26:e1:53:7f:92:89:87: f0:67:9d:c4:88:f8:42:87:77:1c:87:2f:19:5e:47: 1e:81:7e:f4:cb:91:26:be:7e:52:c1:fc:d6:6f:97: 8f:ff:0f:f8:9c:af:d5:83:8e:f4:c5:22:bc:33:87: 37:95:9b:41:8a:d0:df:96:f0:4a:3d:dc:67:08:31: 3a:50:d9:3b:9c:f6:a2:d6:98:d0:d4:0c:ca:f5:62: d7:15:16:89:95:de:ce:9e:b9:20:f7:02:82:48:dc: 91:c5:e5:7b:9f:f6:8c:13:5b:0e:96:37:e6:c6:4a: cd:8a:7f:ee:06:01:f5:74:01:a6:f8:19:bd:d7:41: f3:13:2b:b6:fd:c1:4f:66:7a:bd:e3:71:e0:b7:02: a6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:21:02:04:63:4F:C5:B8:91:67:98:0B:E0:F3:DE:F5:57:4D:75:3A X509v3 Authority Key Identifier: keyid:E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:8f:1b:a1:71:c8:50:5e:40:eb:df:2e:59:a8:11:6c:5c:c1: 29:59:05:40:06:c5:7a:46:65:1c:10:fc:64:da:09:1e:25:a6: a2:dd:fa:4c:3e:44:a8:01:d8:4f:f0:12:3f:84:5f:d1:23:75: 2e:47:26:89:df:c7:ea:cf:e7:b7:ae:7f:5b:21:9b:a3:8f:e6: 43:76:b2:f3:bd:17:50:50:ea:dc:df:68:e0:e2:75:fd:38:51: 66:3b:4e:02:b9:a6:d9:37:0b:1b:49:8d:80:1a:b5:a3:98:8d: c5:f7:28:b7:6d:a2:c5:9d:8b:36:8d:9a:16:47:61:7b:1b:56: 46:41:64:1d:52:2b:4f:50:3e:78:38:ed:a7:44:3d:30:94:fa: b4:7c:7b:b5:50:a1:c0:50:57:5f:58:0f:48:a9:34:77:b6:01: 95:f5:af:52:e2:58:a2:65:e4:3e:e6:89:7e:20:bb:d2:f6:b9: 5b:7b:76:dc:56:28:e6:ef:52:5f:40:7e:7f:05:ff:8c:c5:d1: cb:e1:48:76:45:e9:f6:62:de:f8:1a:60:7c:b7:f9:d0:23:29: 10:85:c0:96:f9:f2:6c:c8:94:5d:5d:22:45:e7:47:36:1c:be: 71:36:b7:fe:65:8b:f0:82:b5:20:80:df:6e:0d:6d:a8:a0:86: 0e:6c:e8:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI1N0YxMTAvBgNVBAUTKEUxMDY0QkI2MDFBMTMxMDg3NjFCNTQ1N0ExRjcxNTI0 QzRBNENCQ0UwHhcNMjQwNTAyMjA0NTE0WhcNMjQwNTA5MjA0NTE0WjAYMRYwFAYD VQQDEw02NjMzZmI1YS1mZTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoOAhJnoCSZSZ5SPd26XRNxqqM1AVU4Gkvti3pisbOtsGN0lfbNt6zdbg4rB hOXEdGbs6V0D8p+4noGiWXPFoZpA6qPa4MZDeJg3egVoclVSb+3GAmh2PGWBQ+ue k8bF8VR+X1FoymlcgJ0YB+lrNCbhU3+SiYfwZ53EiPhCh3cchy8ZXkcegX70y5Em vn5SwfzWb5eP/w/4nK/Vg470xSK8M4c3lZtBitDflvBKPdxnCDE6UNk7nPai1pjQ 1AzK9WLXFRaJld7Onrkg9wKCSNyRxeV7n/aME1sOljfmxkrNin/uBgH1dAGm+Bm9 10HzEyu2/cFPZnq943HgtwKm6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG4hAgRj T8W4kWeYC+Dz3vVXTXU6MB8GA1UdIwQYMBaAFOEGS7YBoTEIdhtUV6H3FSTEpMvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjU3Ri9CMjQ1N0Q2QTRF NTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1RaDJHMVJYb2ZjVkpNU2t5 ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRWkx0Z0doTVFoMkcxUlhvZmNWSk1Ta3k4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjU3Ri9CMjQ1N0Q2QTRFNTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1R aDJHMVJYb2ZjVkpNU2t5ODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnjxuhcchQXkDr3y5ZqBFsXMEpWQVABsV6RmUcEPxk2gkeJaai3fpM PkSoAdhP8BI/hF/RI3UuRyaJ38fqz+e3rn9bIZujj+ZDdrLzvRdQUOrc32jg4nX9 OFFmO04CuabZNwsbSY2AGrWjmI3F9yi3baLFnYs2jZoWR2F7G1ZGQWQdUitPUD54 OO2nRD0wlPq0fHu1UKHAUFdfWA9IqTR3tgGV9a9S4liiZeQ+5ol+ILvS9rlbe3bc Vijm71JfQH5/Bf+MxdHL4Uh2Ren2Yt74GmB8t/nQIykQhcCW+fJsyJRdXSJF50c2 HL5xNrf+ZYvwgrUggN9uDW2ooIYObOiG -----END CERTIFICATE-----Generated at Thu May 2 22:13:17 2024 by rpki-client on console-fra.rpki-client.org