$ rpki-client -vvf rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft File: qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft (raw, json) Hash identifier: Naxii5lhSQkS6IvXFKgp+VSyM/d//kfI14qVTV8jvsI= Subject key identifier: 68:F4:DA:29:AC:1A:51:BC:01:26:A3:7B:FA:E7:EA:4D:56:D7:25:36 Authority key identifier: AB:0D:87:97:C5:8A:83:A5:B4:9C:07:7A:32:EF:67:32:87:24:E4:12 Certificate issuer: /CN=A914E026/serialNumber=AB0D8797C58A83A5B49C077A32EF67328724E412 Certificate serial: 0BC5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qw2Hl8WKg6W0nAd6Mu9nMock5BI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft Manifest number: 0BC5 Signing time: Sat 04 May 2024 19:17:27 +0000 Manifest this update: Sat 04 May 2024 19:17:27 +0000 Manifest next update: Sat 11 May 2024 19:17:27 +0000 Files and hashes: 1: qw2Hl8WKg6W0nAd6Mu9nMock5BI.crl (hash: uWA6YWgE3LOYkad16espmDzPsm1sLUT7Tu/puzCC8r8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.crl rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qw2Hl8WKg6W0nAd6Mu9nMock5BI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:02:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3013 (0xbc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E026/serialNumber=AB0D8797C58A83A5B49C077A32EF67328724E412 Validity Not Before: May 4 19:17:27 2024 GMT Not After : May 11 19:17:27 2024 GMT Subject: CN=663689c7-4ba4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:56:ff:90:72:cd:e3:54:83:9c:57:bf:0d:4c: 91:49:91:af:c8:55:5a:96:f3:1c:fe:48:a6:04:14: 55:0d:a8:1a:13:55:46:2a:dd:34:6f:47:f7:b0:77: a1:2e:a6:b9:bc:4b:c3:5c:a3:77:6d:c2:5c:05:59: be:1d:fd:41:6e:a6:82:08:49:da:2c:2b:93:62:08: 6f:03:ae:0d:e8:e0:d0:8c:61:15:47:16:18:bf:be: 11:a2:2f:34:99:cd:67:84:d7:95:66:57:e4:22:3d: 43:80:b0:f0:88:3d:8a:c7:15:f9:21:fb:46:83:8d: 6e:ce:c8:7d:ee:2f:23:51:6f:98:f5:ad:9c:17:2a: aa:2c:f7:18:78:7d:a1:06:81:7b:ca:06:1e:7f:a0: b1:0c:9c:18:e7:e0:07:f3:40:ef:36:6d:8a:09:64: f9:f0:0a:a4:aa:5b:f6:3a:b6:98:6d:c4:b8:0d:af: df:b6:2c:85:ae:25:32:7b:9c:02:17:48:d2:49:b3: 2e:4e:17:4f:6f:e5:36:76:6c:50:38:26:92:ba:d0: 2d:e5:f7:22:71:4f:d0:2f:b3:93:9a:d9:54:2b:07: bf:ab:cc:21:65:dd:7b:2e:4e:71:04:35:af:02:d5: bf:1a:d6:17:41:bf:a5:53:1d:66:85:18:07:6e:99: 89:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F4:DA:29:AC:1A:51:BC:01:26:A3:7B:FA:E7:EA:4D:56:D7:25:36 X509v3 Authority Key Identifier: keyid:AB:0D:87:97:C5:8A:83:A5:B4:9C:07:7A:32:EF:67:32:87:24:E4:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qw2Hl8WKg6W0nAd6Mu9nMock5BI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:63:6f:ef:d8:d1:56:94:82:46:62:35:83:c9:d7:f7:5d:29: 58:f7:c2:df:cd:e0:4a:c2:04:66:82:5c:10:97:3c:80:05:1f: dc:ef:9d:1d:13:77:e2:2c:cf:68:ab:2e:17:9a:6a:87:05:5a: 66:68:4b:22:1e:b7:78:53:70:04:3a:7f:bf:31:f5:99:ba:a9: ae:9f:e2:af:a9:68:bb:20:11:23:46:b1:2c:ee:e4:d4:60:f9: 20:d9:70:ea:0b:ff:fa:f3:da:b6:0d:df:7d:e5:fc:0c:66:e5: 22:a4:86:33:ba:2e:50:ce:18:d2:ea:cb:28:28:2c:9f:23:51: bf:e8:ac:d8:e2:5f:2d:46:d9:60:26:7d:74:9d:39:ad:3b:1b: 93:23:23:5a:9d:e1:fb:b9:00:1d:fb:53:f5:b9:72:ad:ac:98: 84:7b:ec:30:84:7e:82:c9:54:3e:2b:89:41:7b:a7:be:27:66: 86:72:84:50:46:3a:60:ab:e1:c0:3c:4b:c8:65:f7:8c:7f:e7: 1c:4f:a5:69:97:81:1d:91:fe:1a:13:54:b2:0d:6e:9e:a4:ba: 96:03:a7:01:8f:f3:d2:6f:6e:ad:61:29:5a:a7:11:1d:df:fc: 39:18:75:13:a9:81:21:53:df:a1:57:39:ae:f4:a7:6b:8c:88: b1:be:e6:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwMjYxMTAvBgNVBAUTKEFCMEQ4Nzk3QzU4QTgzQTVCNDlDMDc3QTMyRUY2NzMy ODcyNEU0MTIwHhcNMjQwNTA0MTkxNzI3WhcNMjQwNTExMTkxNzI3WjAYMRYwFAYD VQQDEw02NjM2ODljNy00YmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlb/kHLN41SDnFe/DUyRSZGvyFValvMc/kimBBRVDagaE1VGKt00b0f3sHeh Lqa5vEvDXKN3bcJcBVm+Hf1BbqaCCEnaLCuTYghvA64N6ODQjGEVRxYYv74Roi80 mc1nhNeVZlfkIj1DgLDwiD2KxxX5IftGg41uzsh97i8jUW+Y9a2cFyqqLPcYeH2h BoF7ygYef6CxDJwY5+AH80DvNm2KCWT58Aqkqlv2OraYbcS4Da/ftiyFriUye5wC F0jSSbMuThdPb+U2dmxQOCaSutAt5fcicU/QL7OTmtlUKwe/q8whZd17Lk5xBDWv AtW/GtYXQb+lUx1mhRgHbpmJQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGj02ims GlG8ASaje/rn6k1W1yU2MB8GA1UdIwQYMBaAFKsNh5fFioOltJwHejLvZzKHJOQS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTAyNi9ENkIyNjMwNEY1 NkExMUU5QkYyQUU2ODRDNEY5QUUwMi9xdzJIbDhXS2c2VzBuQWQ2TXU5bk1vY2s1 QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F3MkhsOFdLZzZXMG5BZDZNdTluTW9jazVCSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTAyNi9ENkIyNjMwNEY1NkExMUU5QkYyQUU2ODRDNEY5QUUwMi9xdzJIbDhXS2c2 VzBuQWQ2TXU5bk1vY2s1QkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVY2/v2NFWlIJGYjWDydf3XSlY98LfzeBKwgRmglwQlzyABR/c750d E3fiLM9oqy4XmmqHBVpmaEsiHrd4U3AEOn+/MfWZuqmun+KvqWi7IBEjRrEs7uTU YPkg2XDqC//689q2Dd995fwMZuUipIYzui5QzhjS6ssoKCyfI1G/6KzY4l8tRtlg Jn10nTmtOxuTIyNaneH7uQAd+1P1uXKtrJiEe+wwhH6CyVQ+K4lBe6e+J2aGcoRQ Rjpgq+HAPEvIZfeMf+ccT6Vpl4Edkf4aE1SyDW6epLqWA6cBj/PSb26tYSlapxEd 3/w5GHUTqYEhU9+hVzmu9KdrjIixvubK -----END CERTIFICATE-----Generated at Sat May 4 19:58:38 2024 by rpki-client on console-ams.rpki-client.org