$ rpki-client -vvf rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft File: Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft (raw, json) Hash identifier: 0tD+zWtKvM+RYsufD8SNbQLtz/fdBj9caOTa6fj8/b4= Subject key identifier: 44:D3:4E:4A:10:C8:17:FB:D4:BC:29:6C:57:A2:A8:B7:47:BF:9A:F1 Authority key identifier: 43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 Certificate issuer: /CN=A91580A1/serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Certificate serial: 0745 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft Manifest number: 11A7 Signing time: Tue 30 Apr 2024 20:36:12 +0000 Manifest this update: Tue 30 Apr 2024 20:36:12 +0000 Manifest next update: Tue 07 May 2024 20:36:12 +0000 Files and hashes: 1: Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl (hash: fUkVJ+TmDoxxznXQ4NZ2WdBRBSaRCTVmumeQmjFVAf8=) 2: B65A4FACE18C11ECB1697F55C4F9AE02.roa (hash: rNj9UKePqt1KCwLzyB9+jxKB/s3eAfxg5UiOqql2aqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 20:36:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1861 (0x745) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580A1/serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Validity Not Before: Apr 30 20:36:12 2024 GMT Not After : May 7 20:36:12 2024 GMT Subject: CN=6631563c-6edb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a7:a8:b4:a7:df:91:33:e5:fd:74:2f:06:f3: 65:29:e4:29:f9:71:3e:43:77:88:f8:85:09:e3:7c: 9d:ec:22:1c:ad:21:ba:11:4a:11:04:a7:e9:30:3d: da:c3:ec:61:c2:64:c8:81:44:f3:5e:b7:22:a6:5e: 89:24:7c:e9:88:b9:f0:66:f2:49:1f:fc:99:12:79: 4a:88:f6:e4:f2:eb:6f:b1:22:e6:0c:71:1e:0d:3a: 3d:8c:e1:9f:58:48:8f:79:52:e6:4d:a4:b5:00:88: 3d:57:ad:ab:21:6e:eb:c8:b6:a6:3a:9a:d8:da:8b: 21:68:e5:24:09:51:02:dd:6c:b9:fa:de:ec:82:a9: 0f:62:88:fc:91:89:d7:e8:31:5d:e9:07:1d:e1:bd: 0d:7f:d4:76:c3:83:3c:02:4a:78:92:20:0c:ca:4f: 02:b8:3f:b0:f9:74:4b:ee:ca:cd:5c:74:04:e6:f9: e6:71:61:24:30:b7:cc:e9:7e:98:33:b9:c4:32:17: f9:8f:85:6f:8b:6d:a5:30:ea:52:29:11:48:ae:f8: d5:ae:46:44:2f:e8:f8:f5:c8:9f:6c:4b:73:06:3b: 69:92:4c:1d:5f:64:ac:8e:d8:0d:d9:6f:d4:8d:86: a8:39:fc:c6:8b:ed:ed:a2:33:31:4e:18:a3:cb:c8: f9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:D3:4E:4A:10:C8:17:FB:D4:BC:29:6C:57:A2:A8:B7:47:BF:9A:F1 X509v3 Authority Key Identifier: keyid:43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:07:2e:4f:dc:27:f1:4d:b5:14:c0:02:c2:e4:6e:07:d4:29: e0:1a:79:0b:21:9e:6a:b9:5a:5a:ba:55:f5:65:02:03:ff:ff: 22:56:eb:29:8d:b1:70:95:63:c2:cc:d1:e2:fc:b8:9d:6c:9c: 47:c2:c1:12:42:0b:d9:b1:d0:e6:01:56:ab:90:8f:e2:8c:28: 14:95:3f:23:50:74:36:d1:61:66:a2:fc:42:b7:36:ee:fc:9c: 0a:4a:51:60:e2:5b:2d:1b:a5:7f:78:6f:9b:ac:d5:b8:7c:34: e4:2b:c5:29:12:00:2f:e4:e7:35:b7:3e:33:a1:d3:e1:10:8d: 5c:f1:05:17:89:d2:35:21:76:a1:ce:13:91:e2:03:9c:4e:78: c1:24:3e:40:84:ff:86:c6:00:db:fb:0b:8b:a1:8b:7c:ad:94: dc:2d:63:a1:d9:a8:6c:04:b9:49:63:7f:2f:84:27:50:9c:53: 32:d7:11:e8:24:a6:2e:6a:31:c5:52:ca:6e:96:ae:8a:88:c0: 8a:b9:f5:4d:fd:4a:27:75:fc:15:0e:ba:8b:df:63:62:96:ea: e0:79:19:0d:62:4d:0c:c2:4b:fd:3a:2e:ba:7a:75:f7:b9:d5: ca:4b:bd:52:f0:c1:b3:a8:3b:0d:c6:fd:8b:ef:87:b7:0e:e7: 9a:3e:bb:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwQTExMTAvBgNVBAUTKDQzN0ZGMzRFRTdCQzcwNTBDOUM4NDg4NkFBOTRDRThD RjUwQzI0RjkwHhcNMjQwNDMwMjAzNjEyWhcNMjQwNTA3MjAzNjEyWjAYMRYwFAYD VQQDEw02NjMxNTYzYy02ZWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqeotKffkTPl/XQvBvNlKeQp+XE+Q3eI+IUJ43yd7CIcrSG6EUoRBKfpMD3a w+xhwmTIgUTzXrcipl6JJHzpiLnwZvJJH/yZEnlKiPbk8utvsSLmDHEeDTo9jOGf WEiPeVLmTaS1AIg9V62rIW7ryLamOprY2oshaOUkCVEC3Wy5+t7sgqkPYoj8kYnX 6DFd6Qcd4b0Nf9R2w4M8Akp4kiAMyk8CuD+w+XRL7srNXHQE5vnmcWEkMLfM6X6Y M7nEMhf5j4Vvi22lMOpSKRFIrvjVrkZEL+j49cifbEtzBjtpkkwdX2SsjtgN2W/U jYaoOfzGi+3tojMxThijy8j5qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETTTkoQ yBf71LwpbFeiqLdHv5rxMB8GA1UdIwQYMBaAFEN/807nvHBQychIhqqUzoz1DCT5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODBBMS85MjU2MEE2QTM3 NEQxMUVBQTBBM0JFNTVDNEY5QUUwMi9RM196VHVlOGNGREp5RWlHcXBUT2pQVU1K UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EzX3pUdWU4Y0ZESnlFaUdxcFRPalBVTUpQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODBBMS85MjU2MEE2QTM3NEQxMUVBQTBBM0JFNTVDNEY5QUUwMi9RM196VHVlOGNG REp5RWlHcXBUT2pQVU1KUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+By5P3CfxTbUUwALC5G4H1CngGnkLIZ5quVpaulX1ZQID//8iVusp jbFwlWPCzNHi/LidbJxHwsESQgvZsdDmAVarkI/ijCgUlT8jUHQ20WFmovxCtzbu /JwKSlFg4lstG6V/eG+brNW4fDTkK8UpEgAv5Oc1tz4zodPhEI1c8QUXidI1IXah zhOR4gOcTnjBJD5AhP+GxgDb+wuLoYt8rZTcLWOh2ahsBLlJY38vhCdQnFMy1xHo JKYuajHFUspulq6KiMCKufVN/UondfwVDrqL32NilurgeRkNYk0Mwkv9Oi66enX3 udXKS71S8MGzqDsNxv2L74e3DueaPrvA -----END CERTIFICATE-----Generated at Tue Apr 30 21:58:54 2024 by rpki-client on console-ams.rpki-client.org