$ rpki-client -vvf rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft File: qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft (raw, json) Hash identifier: xiwxwrDakNCXYjzeUUDNc+KGgNo0gtmuiMqhylsbaa4= Subject key identifier: 2E:98:B0:FB:5A:21:41:27:CF:4A:22:C7:D0:F7:58:87:9B:48:B9:74 Authority key identifier: A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2 Certificate issuer: /CN=A914D6FC/serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2 Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft Manifest number: 012D Signing time: Fri 03 May 2024 05:07:27 +0000 Manifest this update: Fri 03 May 2024 05:07:26 +0000 Manifest next update: Fri 10 May 2024 05:07:26 +0000 Files and hashes: 1: qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl (hash: 42GwNpB+O+BwvZtUx3VRGFv7pIHUdQHmbjz0LppqO8U=) 2: 6864FC4A433211EDB64D3261C4F9AE02.roa (hash: bnDE6OPWu+v9xdDCD/WjTkNUrfmkzuhsasZ5iZXq4Ug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D6FC/serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2 Validity Not Before: May 3 05:07:26 2024 GMT Not After : May 10 05:07:26 2024 GMT Subject: CN=6634710f-2308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:78:ec:03:34:0c:03:f1:77:a2:4b:ba:f0:a0: 05:2f:98:c2:db:32:c4:31:85:a9:46:28:96:d9:e1: f3:49:e2:64:35:54:5f:e6:4c:f5:b3:c4:5a:14:b8: 9e:9b:af:4d:e0:9e:52:0e:e9:91:5b:3e:75:6f:d4: fc:58:d6:cf:2c:45:b9:cc:60:43:25:bb:68:a6:26: 4f:ff:8b:63:cd:f4:92:9d:cb:22:45:2d:f1:e6:a0: 33:cd:9e:7c:6e:ae:f4:8b:d3:e4:62:a3:1a:d4:17: 8a:23:5f:42:f8:b6:4b:7f:ce:bb:b1:82:20:8f:e3: 04:95:dc:0f:9d:c8:52:ce:c1:7c:bd:23:af:a8:25: f3:be:63:a7:ce:59:1a:be:ba:66:fa:d8:62:62:f4: 71:44:57:97:2f:f8:b0:c0:59:f8:43:18:3d:2f:ef: 8f:7f:bd:6d:96:b5:97:f2:1d:1e:5e:52:7e:50:4c: 55:c6:2d:5d:ee:3c:f1:4c:a1:25:42:5f:c4:bd:5c: 13:44:ec:a2:fd:71:82:06:7e:44:ac:d9:12:0c:e8: 7f:b7:c4:e7:6c:cd:2e:d3:2b:eb:e1:af:17:56:3f: 47:15:56:20:5d:6c:a4:c5:f5:24:1a:3d:48:81:17: d1:af:5c:58:c2:e0:dc:7e:de:92:3e:bb:b0:dc:1a: 8b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:98:B0:FB:5A:21:41:27:CF:4A:22:C7:D0:F7:58:87:9B:48:B9:74 X509v3 Authority Key Identifier: keyid:A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:cf:80:d5:f9:77:3f:a4:a2:56:75:c9:1d:48:45:06:e0:30: a6:72:de:17:b3:2c:6b:d4:25:dc:0b:99:7d:08:8d:fd:b4:7f: 52:c4:07:c5:8c:0f:85:eb:4a:e5:e1:32:32:52:1b:53:51:f8: 71:a8:45:24:01:e2:2a:ad:76:ae:a7:01:2b:e6:bc:d0:91:50: 5e:bd:aa:37:fe:87:65:1d:73:5e:2d:da:33:b2:76:2f:6a:c8: f6:d5:3d:72:cb:16:01:b0:b8:3c:b1:69:f3:78:c7:1e:2f:a7: c0:5c:4f:d9:7a:85:8c:7d:fe:5b:c7:a6:21:d6:5a:45:ef:5f: bd:9e:df:0f:0d:55:dd:dc:c2:ca:26:30:a9:e0:cb:dc:f0:5e: e8:9e:32:b7:f5:ff:75:cc:2f:07:4f:73:02:5b:5a:d3:72:47: 91:fb:d5:35:32:de:5d:eb:30:c6:29:33:28:41:d5:61:c9:f6: 81:b7:82:88:97:b1:16:42:15:04:0d:6a:0a:cb:7c:f8:79:ff: cf:72:be:25:f7:a9:11:6b:f5:ed:e3:c5:f7:dd:61:f8:80:25: ae:a3:19:3e:7c:9f:d9:3c:c3:c7:bb:c7:ea:20:9a:a5:c3:15: 4d:ce:21:25:b5:47:04:10:eb:52:79:6d:c4:e4:a1:05:48:63: d5:ac:d5:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ2RkMxMTAvBgNVBAUTKEE4QkY1NEY2MDgxOTY3MjIxOTM1Q0IxN0NDMTNFQkZC ODQxQTYwQzIwHhcNMjQwNTAzMDUwNzI2WhcNMjQwNTEwMDUwNzI2WjAYMRYwFAYD VQQDEw02NjM0NzEwZi0yMzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1njsAzQMA/F3oku68KAFL5jC2zLEMYWpRiiW2eHzSeJkNVRf5kz1s8RaFLie m69N4J5SDumRWz51b9T8WNbPLEW5zGBDJbtopiZP/4tjzfSSncsiRS3x5qAzzZ58 bq70i9PkYqMa1BeKI19C+LZLf867sYIgj+MEldwPnchSzsF8vSOvqCXzvmOnzlka vrpm+thiYvRxRFeXL/iwwFn4Qxg9L++Pf71tlrWX8h0eXlJ+UExVxi1d7jzxTKEl Ql/EvVwTROyi/XGCBn5ErNkSDOh/t8TnbM0u0yvr4a8XVj9HFVYgXWykxfUkGj1I gRfRr1xYwuDcft6SPruw3BqLgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC6YsPta IUEnz0oix9D3WIebSLl0MB8GA1UdIwQYMBaAFKi/VPYIGWciGTXLF8wT6/uEGmDC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDZGQy84ODc1OTE4MjQz MkYxMUVEQkJEOThGNUNDNEY5QUUwMi9xTDlVOWdnWlp5SVpOY3NYekJQci00UWFZ TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FMOVU5Z2daWnlJWk5jc1h6QlByLTRRYVlNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDZGQy84ODc1OTE4MjQzMkYxMUVEQkJEOThGNUNDNEY5QUUwMi9xTDlVOWdnWlp5 SVpOY3NYekJQci00UWFZTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmz4DV+Xc/pKJWdckdSEUG4DCmct4Xsyxr1CXcC5l9CI39tH9SxAfF jA+F60rl4TIyUhtTUfhxqEUkAeIqrXaupwEr5rzQkVBevao3/odlHXNeLdozsnYv asj21T1yyxYBsLg8sWnzeMceL6fAXE/ZeoWMff5bx6Yh1lpF71+9nt8PDVXd3MLK JjCp4Mvc8F7onjK39f91zC8HT3MCW1rTckeR+9U1Mt5d6zDGKTMoQdVhyfaBt4KI l7EWQhUEDWoKy3z4ef/Pcr4l96kRa/Xt48X33WH4gCWuoxk+fJ/ZPMPHu8fqIJql wxVNziEltUcEEOtSeW3E5KEFSGPVrNU6 -----END CERTIFICATE-----Generated at Fri May 3 06:18:28 2024 by rpki-client on console-ams.rpki-client.org