$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft File: 1lqglKUeKDl1O1khC2zyxUkVwB4.mft (raw, json) Hash identifier: qN9yt8zx4TZgwLLTv/dT8IVZTvo7tPHGSLIDFIlmCvw= Subject key identifier: 90:0F:55:49:C5:C5:04:4D:9B:20:DB:1C:4D:AE:B3:E4:AE:88:4D:0C Authority key identifier: D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E Certificate issuer: /CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Certificate serial: 090A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft Manifest number: 0905 Signing time: Sun 28 Apr 2024 21:14:31 +0000 Manifest this update: Sun 28 Apr 2024 21:14:31 +0000 Manifest next update: Sun 05 May 2024 21:14:31 +0000 Files and hashes: 1: 1lqglKUeKDl1O1khC2zyxUkVwB4.crl (hash: m5RjPXCj9zJMYM2Z+skVKKRgRnms/GQh/C1h/apwdws=) 2: 220853047F2211EA8E730F35C4F9AE02.roa (hash: SnzGBaNdDpAegueaTfpYpR5ZGnsDRjQUHbdtHLPgHxE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 21:11:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2314 (0x90a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Validity Not Before: Apr 28 21:14:31 2024 GMT Not After : May 5 21:14:31 2024 GMT Subject: CN=662ebc37-a406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1c:85:77:4f:76:91:b0:6f:3c:38:e4:e6:a7: 1f:9b:7a:35:c9:70:12:b9:3d:af:b5:22:5b:13:01: bc:ca:bb:5f:b0:33:96:a8:c4:ed:d7:59:48:65:52: cf:5e:f4:6b:e9:f6:79:2b:d1:ca:60:1c:fb:ea:b9: a1:6f:56:6a:ec:39:f3:ab:df:fe:6b:cb:ac:e5:fb: 3c:b1:8c:a1:8f:89:e6:81:ca:a4:bb:27:b4:00:e3: df:67:5c:74:7a:6d:b9:b1:aa:0f:a6:75:cb:d2:85: a0:4c:fb:6a:8b:09:73:f5:a6:4c:ac:a5:f4:31:9f: 0c:82:52:dc:18:c5:18:f4:fa:59:c6:cd:71:80:b0: 67:55:42:9f:10:d4:5e:7b:d2:3b:72:43:80:9d:ac: 5f:f4:d6:d4:f1:3a:dc:13:e8:b2:b1:d9:ec:b0:3b: db:42:0b:9a:ad:e1:84:46:3c:d3:9b:ff:7d:b3:b7: b8:aa:a1:9c:53:e2:6b:47:d5:f7:0a:4e:a5:f7:5e: 68:7b:51:af:3a:51:7d:e7:00:30:31:e2:61:8f:38: 0f:ed:29:ca:51:ce:a7:e3:98:49:39:69:ca:56:ec: dc:4e:72:a8:19:40:5f:8b:af:7e:9c:be:c9:b8:79: 79:7c:d6:1e:0b:d7:6b:37:1b:d4:62:73:62:3f:9c: 29:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:0F:55:49:C5:C5:04:4D:9B:20:DB:1C:4D:AE:B3:E4:AE:88:4D:0C X509v3 Authority Key Identifier: keyid:D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:42:fe:15:9c:00:f8:12:35:fe:17:85:03:47:37:06:97:27: 9e:e0:e2:b9:f5:8c:6b:f9:7d:2a:ab:df:b9:f9:39:53:1f:9c: 2f:a8:10:83:d9:65:f6:1a:5c:6d:a3:6d:4a:4a:b6:d5:c0:93: c6:7e:99:c6:bc:04:89:53:94:7c:4b:5e:ba:2f:f8:2e:05:7a: b1:4f:28:3f:de:5a:92:7b:8f:e3:86:93:89:7b:d4:f2:e1:99: 66:2d:a9:4f:94:85:47:18:2b:d3:76:33:7f:12:18:c3:2d:86: 3b:7f:29:5b:34:60:04:9c:67:56:59:6e:e5:22:9d:81:0e:33: eb:9e:55:e7:15:c2:8c:12:1a:6d:9e:78:8f:0b:82:a8:c6:3e: 02:f9:6d:a7:82:1d:00:2c:cd:99:cf:19:b9:ce:fc:d4:16:2e: 74:21:5b:96:6a:26:3f:93:fb:be:ea:df:41:f1:7d:87:01:9a: 34:26:cc:23:f0:22:5b:c5:d0:b8:ca:8d:f2:cc:80:66:58:5a: fd:26:e8:27:46:59:51:d2:a8:20:83:e0:6b:aa:f4:bf:9b:83: 0b:74:af:00:50:a6:17:44:6f:d1:67:a4:66:bd:e4:3d:20:f7: 51:35:e5:fc:7a:92:0f:93:f7:7b:6f:0c:1b:0f:e1:cb:9c:2c: 3f:20:ca:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxQUExMTAvBgNVBAUTKEQ2NUFBMDk0QTUxRTI4Mzk3NTNCNTkyMTBCNkNGMkM1 NDkxNUMwMUUwHhcNMjQwNDI4MjExNDMxWhcNMjQwNTA1MjExNDMxWjAYMRYwFAYD VQQDEw02NjJlYmMzNy1hNDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhyFd092kbBvPDjk5qcfm3o1yXASuT2vtSJbEwG8yrtfsDOWqMTt11lIZVLP XvRr6fZ5K9HKYBz76rmhb1Zq7Dnzq9/+a8us5fs8sYyhj4nmgcqkuye0AOPfZ1x0 em25saoPpnXL0oWgTPtqiwlz9aZMrKX0MZ8MglLcGMUY9PpZxs1xgLBnVUKfENRe e9I7ckOAnaxf9NbU8TrcE+iysdnssDvbQguareGERjzTm/99s7e4qqGcU+JrR9X3 Ck6l915oe1GvOlF95wAwMeJhjzgP7SnKUc6n45hJOWnKVuzcTnKoGUBfi69+nL7J uHl5fNYeC9drNxvUYnNiP5wpqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJAPVUnF xQRNmyDbHE2us+SuiE0MMB8GA1UdIwQYMBaAFNZaoJSlHig5dTtZIQts8sVJFcAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFBQS82QzlEMjYzMDdG MjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtEbDFPMWtoQzJ6eXhVa1Z3 QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFscWdsS1VlS0RsMU8xa2hDMnp5eFVrVndCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFBQS82QzlEMjYzMDdGMjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtE bDFPMWtoQzJ6eXhVa1Z3QjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAQv4VnAD4EjX+F4UDRzcGlyee4OK59Yxr+X0qq9+5+TlTH5wvqBCD 2WX2Glxto21KSrbVwJPGfpnGvASJU5R8S166L/guBXqxTyg/3lqSe4/jhpOJe9Ty 4ZlmLalPlIVHGCvTdjN/EhjDLYY7fylbNGAEnGdWWW7lIp2BDjPrnlXnFcKMEhpt nniPC4Koxj4C+W2ngh0ALM2Zzxm5zvzUFi50IVuWaiY/k/u+6t9B8X2HAZo0Jswj 8CJbxdC4yo3yzIBmWFr9JugnRllR0qggg+BrqvS/m4MLdK8AUKYXRG/RZ6RmveQ9 IPdRNeX8epIPk/d7bwwbD+HLnCw/IMqA -----END CERTIFICATE-----Generated at Sun Apr 28 21:57:51 2024 by rpki-client on console-fra.rpki-client.org