$ rpki-client -vvf rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft File: Qyo25tVwCwvKzOD0FXauaxPK08A.mft (raw, json) Hash identifier: qneZNXGQmaIX8k7eB0AawNaTP8rldlQQJ7W3h+yMMHQ= Subject key identifier: 67:6E:C4:7D:AC:35:53:F4:5C:F5:74:E4:AF:32:10:F6:10:65:BA:D3 Authority key identifier: 43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 Certificate issuer: /CN=A91627B1/serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft Manifest number: 60 Signing time: Sun 19 May 2024 07:39:25 +0000 Manifest this update: Sun 19 May 2024 07:39:25 +0000 Manifest next update: Sun 26 May 2024 07:39:24 +0000 Files and hashes: 1: Qyo25tVwCwvKzOD0FXauaxPK08A.crl (hash: ofuGZ2Q9+Mdxz+E76woroaf69EMpTNBa4Q1It5kw6F4=) 2: 3ED152FE82A411EE87690C58C4F9AE02.roa (hash: n4N0FT2lZDwaB7NLBXSRmim8K1WaikU2H0XvlYORAuA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91627B1/serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Validity Not Before: May 19 07:39:25 2024 GMT Not After : May 26 07:39:24 2024 GMT Subject: CN=6649acad-1e07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:46:47:89:06:ec:1b:90:82:16:0f:69:4d:e9: 45:8e:14:97:39:9d:ef:2f:1b:65:cb:7f:84:97:ba: 96:68:33:22:61:6c:17:bc:55:09:41:de:86:1d:ed: 4c:3a:f1:3c:8c:0e:f6:81:f8:3d:76:9a:c0:12:20: 53:b8:45:d3:f6:bf:f1:45:e4:dd:07:ec:3a:52:31: 4c:d0:87:de:a1:b2:b4:3d:f6:d4:44:d0:08:57:19: 77:1d:4a:71:1c:cb:f8:5d:9f:26:f9:9a:fb:0a:a6: 53:ff:6c:5b:ab:06:21:d2:48:e6:9e:5d:94:6f:3c: 1f:f2:0d:12:cf:a2:86:bc:b0:4f:42:c3:c8:90:18: 95:17:da:6a:8c:c9:5e:4e:af:0e:2f:35:42:ea:e5: b7:d3:47:69:a6:fa:e8:ea:66:61:c3:92:74:62:22: d0:56:c2:6f:36:d6:26:f6:ea:f4:2b:d8:36:70:2a: c9:7c:03:c9:ca:a8:6d:87:7b:6c:ab:75:cd:ad:33: 74:b7:07:ea:9b:41:08:5a:d7:a3:f1:a8:4b:a3:35: fd:d1:fc:1b:e4:df:e6:8b:80:46:33:3e:f7:8b:2f: 2d:3f:f8:73:07:83:65:43:e6:02:a4:aa:3f:55:55: 9d:7f:b0:a9:2b:5c:ff:37:ce:da:da:c2:95:31:9d: 33:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:6E:C4:7D:AC:35:53:F4:5C:F5:74:E4:AF:32:10:F6:10:65:BA:D3 X509v3 Authority Key Identifier: keyid:43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:47:43:ec:4c:32:9a:21:92:f4:f9:ba:ed:a8:4b:38:a7:61: 62:16:cc:fb:27:03:85:81:95:37:d2:cd:6d:07:68:e3:15:bb: 7f:20:2e:e4:62:9d:03:8c:a6:cb:49:bb:f1:1c:ff:2d:c0:0e: 87:af:74:f4:c9:c5:75:29:e6:e1:ee:d4:20:2b:8c:41:19:6d: 20:04:a3:6b:7b:95:32:da:7a:37:ea:dd:c1:2f:7a:70:c6:d4: 01:6b:fd:04:d5:89:ee:17:bc:70:84:d5:2f:88:cb:ec:55:f8: e5:3e:ab:e5:1b:42:60:4f:17:09:7b:f3:a1:43:dd:b6:1a:21: 8c:d5:a8:0d:eb:16:c7:fb:97:34:26:51:77:1c:d0:cd:3b:66: 3a:f0:0e:fb:ed:cc:9c:2b:bd:ee:63:4d:bd:da:50:cd:44:4c: 7a:0b:66:2d:95:6c:27:14:c2:89:c1:99:63:1a:53:64:77:e1: 04:9d:b8:a1:1e:e1:99:5d:ca:f9:14:d6:1e:e2:f5:1d:5d:37: ea:32:f9:0b:bc:49:b2:e8:c3:5a:10:d6:34:58:31:9f:35:73: 4e:90:96:58:92:a2:b3:ea:03:ba:12:3d:8e:2c:72:af:00:5b: 72:af:80:6a:b4:06:ea:64:ac:37:cb:f8:57:e7:3e:5f:f2:4b: bc:88:e9:7d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MjdCMTExMC8GA1UEBRMoNDMyQTM2RTZENTcwMEIwQkNBQ0NFMEY0MTU3NkFFNkIx M0NBRDNDMDAeFw0yNDA1MTkwNzM5MjVaFw0yNDA1MjYwNzM5MjRaMBgxFjAUBgNV BAMTDTY2NDlhY2FkLTFlMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaRkeJBuwbkIIWD2lN6UWOFJc5ne8vG2XLf4SXupZoMyJhbBe8VQlB3oYd7Uw6 8TyMDvaB+D12msASIFO4RdP2v/FF5N0H7DpSMUzQh96hsrQ99tRE0AhXGXcdSnEc y/hdnyb5mvsKplP/bFurBiHSSOaeXZRvPB/yDRLPooa8sE9Cw8iQGJUX2mqMyV5O rw4vNULq5bfTR2mm+ujqZmHDknRiItBWwm821ib26vQr2DZwKsl8A8nKqG2He2yr dc2tM3S3B+qbQQha16PxqEujNf3R/Bvk3+aLgEYzPveLLy0/+HMHg2VD5gKkqj9V VZ1/sKkrXP83ztrawpUxnTOlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZ27Efaw1 U/Rc9XTkrzIQ9hBlutMwHwYDVR0jBBgwFoAUQyo25tVwCwvKzOD0FXauaxPK08Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYyN0IxLzhGQUYyQkRFODJB MzExRUVBQzY5RjQ1NkM0RjlBRTAyL1F5bzI1dFZ3Q3d2S3pPRDBGWGF1YXhQSzA4 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUXlvMjV0VndDd3ZLek9EMEZYYXVheFBLMDhBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYy N0IxLzhGQUYyQkRFODJBMzExRUVBQzY5RjQ1NkM0RjlBRTAyL1F5bzI1dFZ3Q3d2 S3pPRDBGWGF1YXhQSzA4QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHpHQ+xMMpohkvT5uu2oSzinYWIWzPsnA4WBlTfSzW0HaOMVu38gLuRi nQOMpstJu/Ec/y3ADoevdPTJxXUp5uHu1CArjEEZbSAEo2t7lTLaejfq3cEvenDG 1AFr/QTVie4XvHCE1S+Iy+xV+OU+q+UbQmBPFwl786FD3bYaIYzVqA3rFsf7lzQm UXcc0M07ZjrwDvvtzJwrve5jTb3aUM1ETHoLZi2VbCcUwonBmWMaU2R34QSduKEe 4ZldyvkU1h7i9R1dN+oy+Qu8SbLow1oQ1jRYMZ81c06QlliSorPqA7oSPY4scq8A W3KvgGq0BupkrDfL+FfnPl/yS7yI6X0= -----END CERTIFICATE-----Generated at Sun May 19 08:25:01 2024 by rpki-client on console-ams.rpki-client.org