$ rpki-client -vvf rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft File: sQtPQ0P6rissTT3WYGS-km7HTJ8.mft (raw, json) Hash identifier: 9ca5KbqbnBh1rPwVdqXJDkeNIMHGBkMYgOw8JGGFtfA= Subject key identifier: 98:AA:80:33:80:77:BD:02:A3:BE:95:E7:04:77:A2:38:40:64:C3:BC Authority key identifier: B1:0B:4F:43:43:FA:AE:2B:2C:4D:3D:D6:60:64:BE:92:6E:C7:4C:9F Certificate issuer: /CN=A915CE2F/serialNumber=B10B4F4343FAAE2B2C4D3DD66064BE926EC74C9F Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft Manifest number: 0111 Signing time: Tue 07 May 2024 05:24:32 +0000 Manifest this update: Tue 07 May 2024 05:24:32 +0000 Manifest next update: Tue 14 May 2024 05:24:32 +0000 Files and hashes: 1: sQtPQ0P6rissTT3WYGS-km7HTJ8.crl (hash: Jd4sh6jUvuSG9gN/mt4gRmg0nkhNPe/DhUG1d/VMOco=) 2: 670087C4EEF011ED9C693D31C4F9AE02.roa (hash: YOFyOlTHwQt80VE+lXNOUMnksRbADb71CcqhR7ykXMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.crl rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 05:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CE2F/serialNumber=B10B4F4343FAAE2B2C4D3DD66064BE926EC74C9F Validity Not Before: May 7 05:24:32 2024 GMT Not After : May 14 05:24:32 2024 GMT Subject: CN=6639bb10-6ebf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e8:d2:32:b7:bf:b3:9f:81:5d:0c:83:44:46: a6:dc:2f:61:c5:86:e0:a1:48:60:b0:5c:a9:61:c8: c3:b3:5e:27:fc:e2:52:5e:08:96:03:75:7b:a4:52: 99:15:c9:7f:33:77:e2:78:2a:ff:2b:c1:7f:e7:fb: da:75:0e:c2:eb:66:23:8f:a9:96:eb:3a:f2:80:c1: de:0c:15:2c:7f:ca:7f:4b:df:d0:fa:95:94:d9:e5: c5:f2:8a:9a:61:a8:bd:f0:67:a2:01:92:41:39:c8: fe:ed:01:a8:f0:91:17:b2:63:a9:80:d4:b9:c6:18: cf:0b:f2:dc:a6:07:b6:14:b5:35:da:8a:39:f2:1c: 84:b7:9a:48:9c:17:8f:ad:24:2b:55:06:71:ec:da: 17:f2:96:1c:0d:b9:d4:af:fb:fb:41:84:51:a7:28: 7d:dd:30:1e:32:4e:af:c2:77:6c:56:ad:63:d1:b4: cf:b8:8b:ba:57:2a:54:43:0c:f8:c6:79:66:41:52: fe:f2:47:49:b9:3b:fe:9c:8d:28:66:6c:2e:ca:22: 7c:37:43:eb:2a:8e:3b:c4:c8:42:93:98:f5:90:a9: 99:f7:29:31:c5:c5:79:08:c0:4c:31:f3:be:16:14: f7:79:09:e4:4a:c9:1b:b7:fb:fe:da:44:3f:6e:43: fa:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:AA:80:33:80:77:BD:02:A3:BE:95:E7:04:77:A2:38:40:64:C3:BC X509v3 Authority Key Identifier: keyid:B1:0B:4F:43:43:FA:AE:2B:2C:4D:3D:D6:60:64:BE:92:6E:C7:4C:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:00:94:cb:4c:d9:93:70:b7:d5:8e:b6:93:04:08:27:f6:8e: 84:d8:4e:0d:ac:b4:cf:a7:82:87:ab:c6:2c:17:84:b2:71:ca: eb:36:97:87:2f:a3:11:6d:86:80:a5:fc:90:18:2a:50:ac:36: 88:ce:72:00:93:10:7d:a6:33:b2:fd:a4:16:3b:11:ef:40:43: 04:09:47:5f:d2:9e:80:b9:c8:26:58:4d:3b:14:0c:82:8b:24: ab:06:d3:b0:d2:f3:2a:a0:3e:df:d2:a2:6a:a4:94:a6:99:c8: 06:24:2f:de:09:db:d3:05:14:78:0a:44:aa:5b:73:83:da:c6: 65:41:e4:fd:78:7a:c8:23:0b:ec:59:1a:e8:02:a8:3c:78:71: f0:cb:d2:78:44:73:bc:16:16:d6:9e:30:1e:c5:14:25:c2:93: 23:e0:98:bb:20:65:20:80:0f:2c:bf:73:49:50:d2:36:41:44: 95:79:c6:b2:91:d5:9f:38:f3:82:20:92:9f:33:71:e1:b7:e6: bb:f9:c7:46:1d:84:76:fd:01:83:1e:8d:0a:f4:e0:75:1f:a0: 7b:b5:a8:cc:41:2e:64:22:d7:92:4a:a2:a9:f1:7e:67:80:fb: 19:1f:06:6f:c2:f6:fb:bf:2c:a9:c5:96:64:8b:4f:c2:57:68: 44:73:ab:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNFMkYxMTAvBgNVBAUTKEIxMEI0RjQzNDNGQUFFMkIyQzREM0RENjYwNjRCRTky NkVDNzRDOUYwHhcNMjQwNTA3MDUyNDMyWhcNMjQwNTE0MDUyNDMyWjAYMRYwFAYD VQQDEw02NjM5YmIxMC02ZWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvujSMre/s5+BXQyDREam3C9hxYbgoUhgsFypYcjDs14n/OJSXgiWA3V7pFKZ Fcl/M3fieCr/K8F/5/vadQ7C62Yjj6mW6zrygMHeDBUsf8p/S9/Q+pWU2eXF8oqa Yai98GeiAZJBOcj+7QGo8JEXsmOpgNS5xhjPC/Lcpge2FLU12oo58hyEt5pInBeP rSQrVQZx7NoX8pYcDbnUr/v7QYRRpyh93TAeMk6vwndsVq1j0bTPuIu6VypUQwz4 xnlmQVL+8kdJuTv+nI0oZmwuyiJ8N0PrKo47xMhCk5j1kKmZ9ykxxcV5CMBMMfO+ FhT3eQnkSskbt/v+2kQ/bkP6UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJiqgDOA d70Co76V5wR3ojhAZMO8MB8GA1UdIwQYMBaAFLELT0ND+q4rLE091mBkvpJux0yf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0UyRi8wQkRFQTUyODcw RTMxMUVEQjU3NzA0M0ZDNEY5QUUwMi9zUXRQUTBQNnJpc3NUVDNXWUdTLWttN0hU SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NRdFBRMFA2cmlzc1RUM1dZR1Mta203SFRKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0UyRi8wQkRFQTUyODcwRTMxMUVEQjU3NzA0M0ZDNEY5QUUwMi9zUXRQUTBQNnJp c3NUVDNXWUdTLWttN0hUSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArAJTLTNmTcLfVjraTBAgn9o6E2E4NrLTPp4KHq8YsF4SyccrrNpeH L6MRbYaApfyQGCpQrDaIznIAkxB9pjOy/aQWOxHvQEMECUdf0p6AucgmWE07FAyC iySrBtOw0vMqoD7f0qJqpJSmmcgGJC/eCdvTBRR4CkSqW3OD2sZlQeT9eHrIIwvs WRroAqg8eHHwy9J4RHO8FhbWnjAexRQlwpMj4Ji7IGUggA8sv3NJUNI2QUSVecay kdWfOPOCIJKfM3Hht+a7+cdGHYR2/QGDHo0K9OB1H6B7tajMQS5kIteSSqKp8X5n gPsZHwZvwvb7vyypxZZki0/CV2hEc6t3 -----END CERTIFICATE-----Generated at Tue May 7 06:29:47 2024 by rpki-client on console-ams.rpki-client.org