$ rpki-client -vvf rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft File: QhgvX3GliYTOiFmuYKTKynP-g2E.mft (raw, json) Hash identifier: YwhLnSajTmtAZxxh9D099qTKGc+KdG9L8U8E18aTXTU= Subject key identifier: 16:77:D8:39:98:F8:EF:DA:F3:15:76:C6:65:81:17:9F:86:54:66:00 Authority key identifier: 42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 Certificate issuer: /CN=A916EF5E/serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Certificate serial: 0EF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft Manifest number: 244E Signing time: Thu 02 May 2024 17:20:35 +0000 Manifest this update: Thu 02 May 2024 17:20:34 +0000 Manifest next update: Thu 09 May 2024 17:20:34 +0000 Files and hashes: 1: QhgvX3GliYTOiFmuYKTKynP-g2E.crl (hash: OwgPvmpEXuBMzgc5H/bakbEDXT/eNIFz/hpfm0h2aDk=) 2: 258F8662BBDF11ED8CE89144C4F9AE02.roa (hash: 3d0yhTisV6gk7gaFUK1Mlf4a3VLR1uTy7ao2iXqrA3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 17:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3833 (0xef9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EF5E/serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Validity Not Before: May 2 17:20:34 2024 GMT Not After : May 9 17:20:34 2024 GMT Subject: CN=6633cb62-99e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:15:7a:7a:40:98:07:cc:3a:ca:72:14:8a:04: 75:cd:26:7b:d9:6e:91:cf:9c:71:b5:70:8f:cc:eb: 2b:ad:63:c1:19:8f:b1:14:08:5e:ac:5a:d5:1d:80: 7c:65:2e:60:03:4f:59:26:29:6d:ec:65:90:b9:d7: ba:f1:ef:5e:8c:43:c0:50:80:c6:b0:0e:92:2e:0e: c3:90:1b:f4:4e:04:ae:00:0c:af:21:e4:0c:0b:7c: d4:48:72:7d:50:79:c2:7a:9f:54:cf:6c:55:0d:7a: 0b:82:99:87:df:99:c9:36:62:be:b6:91:04:d4:03: ac:b5:3f:0e:9f:97:e5:17:e6:58:98:d9:9c:b2:33: ff:35:ac:8a:b3:11:80:b3:df:08:07:1f:fd:1d:98: c7:89:a4:23:ce:e4:ba:fa:27:9d:1d:2d:2d:d3:c2: d8:0c:b5:07:ea:89:41:0a:c3:0b:33:b7:d5:eb:d2: 3f:e9:04:71:64:40:14:49:0d:3a:3c:2b:12:15:f2: 08:3d:70:09:7e:60:fe:11:d9:66:67:0f:df:d8:43: 5c:04:7f:c5:44:08:f1:3b:10:35:56:c8:fe:2c:62: c8:f0:f6:18:91:df:a9:81:53:3c:e6:9f:b4:70:c2: c4:1e:e7:69:7a:c8:0f:07:b6:3d:71:dd:a1:96:de: 96:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:77:D8:39:98:F8:EF:DA:F3:15:76:C6:65:81:17:9F:86:54:66:00 X509v3 Authority Key Identifier: keyid:42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:a5:0f:0f:62:39:c3:4b:25:30:25:a8:b5:56:09:86:50:27: d1:a8:cc:e0:6d:22:1e:10:59:e2:0a:80:de:d5:94:aa:f6:4c: 81:7b:97:6e:e8:54:07:6e:fb:d5:06:b1:ea:96:6b:b0:76:e3: e0:00:ce:5f:f2:83:9e:21:02:59:55:af:cb:4d:b1:7c:80:d3: b3:31:a6:78:02:47:41:d5:6d:e2:6a:1a:36:b1:ff:12:f1:20: 55:ab:6c:a6:37:f9:31:6a:e1:b9:2f:86:89:17:c2:cc:d0:a7: e1:04:af:9d:89:7f:a9:1e:6f:cb:e5:bb:e9:eb:91:af:c5:a5: a2:b2:b0:ad:b8:34:c5:39:18:9c:38:ab:05:f3:42:f8:d0:d1: 2f:12:b4:49:49:bc:64:0d:36:03:c3:8c:ed:b0:5d:d6:fd:df: 1a:ef:3f:ba:5d:9b:e8:30:44:83:be:c5:5f:f5:78:2c:0c:11: af:1f:00:40:d3:bb:81:35:cf:62:60:70:a9:e0:45:5b:34:e3: e6:be:35:f4:fe:d6:d2:81:7a:37:f7:30:e4:30:0f:18:e4:90: 54:65:0d:b0:fc:f7:df:06:2e:cc:3a:8a:1a:4e:2f:99:d0:35: cc:56:f0:4b:92:69:8f:91:02:13:f4:9d:4a:d9:14:5d:a3:83: d1:60:98:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVGNUUxMTAvBgNVBAUTKDQyMTgyRjVGNzFBNTg5ODRDRTg4NTlBRTYwQTRDQUNB NzNGRTgzNjEwHhcNMjQwNTAyMTcyMDM0WhcNMjQwNTA5MTcyMDM0WjAYMRYwFAYD VQQDEw02NjMzY2I2Mi05OWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2RV6ekCYB8w6ynIUigR1zSZ72W6Rz5xxtXCPzOsrrWPBGY+xFAherFrVHYB8 ZS5gA09ZJilt7GWQude68e9ejEPAUIDGsA6SLg7DkBv0TgSuAAyvIeQMC3zUSHJ9 UHnCep9Uz2xVDXoLgpmH35nJNmK+tpEE1AOstT8On5flF+ZYmNmcsjP/NayKsxGA s98IBx/9HZjHiaQjzuS6+iedHS0t08LYDLUH6olBCsMLM7fV69I/6QRxZEAUSQ06 PCsSFfIIPXAJfmD+EdlmZw/f2ENcBH/FRAjxOxA1Vsj+LGLI8PYYkd+pgVM85p+0 cMLEHudpesgPB7Y9cd2hlt6WlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZ32DmY +O/a8xV2xmWBF5+GVGYAMB8GA1UdIwQYMBaAFEIYL19xpYmEzohZrmCkyspz/oNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUY1RS9GMzhEQ0Y4QTEw NkIxMUU4QjhDQTAyMEJDNEY5QUUwMi9RaGd2WDNHbGlZVE9pRm11WUtUS3luUC1n MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FoZ3ZYM0dsaVlUT2lGbXVZS1RLeW5QLWcyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUY1RS9GMzhEQ0Y4QTEwNkIxMUU4QjhDQTAyMEJDNEY5QUUwMi9RaGd2WDNHbGlZ VE9pRm11WUtUS3luUC1nMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFpQ8PYjnDSyUwJai1VgmGUCfRqMzgbSIeEFniCoDe1ZSq9kyBe5du 6FQHbvvVBrHqlmuwduPgAM5f8oOeIQJZVa/LTbF8gNOzMaZ4AkdB1W3iaho2sf8S 8SBVq2ymN/kxauG5L4aJF8LM0KfhBK+diX+pHm/L5bvp65GvxaWisrCtuDTFORic OKsF80L40NEvErRJSbxkDTYDw4ztsF3W/d8a7z+6XZvoMESDvsVf9XgsDBGvHwBA 07uBNc9iYHCp4EVbNOPmvjX0/tbSgXo39zDkMA8Y5JBUZQ2w/PffBi7MOooaTi+Z 0DXMVvBLkmmPkQIT9J1K2RRdo4PRYJgB -----END CERTIFICATE-----Generated at Thu May 2 20:04:39 2024 by rpki-client on console-ams.rpki-client.org