$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft File: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft (raw, json) Hash identifier: e7X3FHyyxFlq5ES0VK5zMWvclrvkVpHprkw5D+zRj2g= Subject key identifier: 1A:62:34:FE:6F:52:1E:F4:AF:51:99:60:D5:CA:FD:FB:99:4A:93:8E Authority key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 Certificate issuer: /CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Certificate serial: 03D0 Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft Manifest number: 03CB Signing time: Sat 25 May 2024 02:33:21 +0000 Manifest this update: Sat 25 May 2024 02:33:20 +0000 Manifest next update: Sat 01 Jun 2024 02:33:20 +0000 Files and hashes: 1: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl (hash: 4I22U7zB4cF0zyVU64um4NePGk+xYJAwRdWM3Iv7aIY=) 2: 887BE0D0405D11ECA642D813C4F9AE02.roa (hash: F1QNCH1RoC6ZkUfmQLfZBiY5CIVlSxxGTrB6pens2Bw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 02:33:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 976 (0x3d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Validity Not Before: May 25 02:33:20 2024 GMT Not After : Jun 1 02:33:20 2024 GMT Subject: CN=66514df0-8db8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:7a:f3:dd:60:6a:f6:fe:36:3f:96:d1:f6:7b: 7b:c1:a3:cb:70:fe:8f:01:d5:4b:fa:2e:7f:5b:6f: 82:6c:d3:20:cf:87:21:0a:fc:fb:96:6d:46:67:5d: c5:a6:ad:b9:95:d0:7d:6f:ea:c1:99:97:58:5e:0f: 0e:93:a1:d3:c4:68:af:f6:f3:11:15:70:d5:ac:bc: e4:44:0a:4d:55:17:ea:8e:bf:db:91:71:60:96:0a: 3e:ad:3c:a4:cd:0e:2e:78:a9:b3:f9:e8:66:fd:58: da:88:cb:09:40:61:6b:11:5b:f7:8e:af:b9:a6:cd: f9:f4:13:05:25:9f:3a:69:0a:96:28:3d:55:f3:b6: 87:63:79:6c:49:28:5f:2f:26:9c:7b:52:02:96:a7: 9d:af:8a:34:af:60:51:21:1b:e1:d7:0a:f8:11:cf: b0:e3:e6:7b:36:8d:01:f4:b7:c0:2d:6e:7d:15:59: de:99:71:fe:9c:cd:a0:e6:86:8f:b9:52:2d:ee:fa: e0:53:38:ab:ef:5e:b0:07:b8:64:9d:ca:6b:a2:ee: 46:fd:4b:91:b0:92:71:e1:ed:d1:45:98:13:57:03: 25:aa:04:be:39:dc:e8:ee:3c:3d:71:f0:a2:97:1a: 6f:54:a2:63:bb:41:1d:63:89:50:c0:e2:25:d3:7e: 59:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:62:34:FE:6F:52:1E:F4:AF:51:99:60:D5:CA:FD:FB:99:4A:93:8E X509v3 Authority Key Identifier: keyid:AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:b2:f5:1b:66:2b:14:e0:c6:c5:08:ad:c9:31:76:22:45:a7: 37:cd:b1:81:17:af:9d:1f:3f:34:a5:9d:c2:5e:5e:6f:8f:99: d0:48:5f:1f:a1:36:39:35:ad:49:e4:d4:f7:cc:c1:c2:dd:5d: 59:69:7d:45:31:ac:00:46:83:a3:b6:8c:01:c9:90:93:1b:51: 6c:37:a3:3f:13:9d:bc:fc:b8:73:bf:bf:54:4e:8c:04:c4:eb: 30:bd:d1:7a:06:6c:81:89:e4:41:c0:fc:7d:90:9d:47:4f:02: e4:2d:f9:98:70:18:3e:c1:5a:41:29:21:2a:a1:6f:b3:1b:08: 3f:90:6d:86:c6:8a:d1:13:97:04:6f:11:ae:a9:34:c6:e3:2a: 6f:9a:d5:3f:95:19:9d:fe:1e:a8:44:a4:3e:3a:3c:83:22:27: 99:13:4b:cd:c1:71:14:ef:e6:c7:7a:b6:68:70:ea:98:88:f5: 43:f7:cb:92:a2:e1:69:30:13:1d:53:05:bb:a6:30:2d:09:8a: 2f:c8:ee:db:f7:7c:6b:51:e2:fc:07:66:d8:26:b7:e0:cf:b0: aa:62:96:69:7c:de:aa:32:d8:33:d7:58:d7:46:25:6b:c4:8d: 28:3e:d1:a7:f8:28:4a:bc:80:8a:b6:17:11:b0:63:55:d4:00: 2b:d8:fd:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKEFCQzZGQkE0Qjc4NDI4Mzg3OTE5MERDNzE3RTM0QjRD RDg4MkRBMDgwHhcNMjQwNTI1MDIzMzIwWhcNMjQwNjAxMDIzMzIwWjAYMRYwFAYD VQQDEw02NjUxNGRmMC04ZGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznrz3WBq9v42P5bR9nt7waPLcP6PAdVL+i5/W2+CbNMgz4chCvz7lm1GZ13F pq25ldB9b+rBmZdYXg8Ok6HTxGiv9vMRFXDVrLzkRApNVRfqjr/bkXFglgo+rTyk zQ4ueKmz+ehm/VjaiMsJQGFrEVv3jq+5ps359BMFJZ86aQqWKD1V87aHY3lsSShf Lyace1IClqedr4o0r2BRIRvh1wr4Ec+w4+Z7No0B9LfALW59FVnemXH+nM2g5oaP uVIt7vrgUzir716wB7hkncprou5G/UuRsJJx4e3RRZgTVwMlqgS+Odzo7jw9cfCi lxpvVKJju0EdY4lQwOIl035Z9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBpiNP5v Uh70r1GZYNXK/fuZSpOOMB8GA1UdIwQYMBaAFKvG+6S3hCg4eRkNxxfjS0zYgtoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy81RDc4OTlGNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtEaDVHUTNIRi1OTFROaUMy Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL3E4YjdwTGVFS0RoNUdRM0hGLU5MVE5pQzJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy81RDc4OTlGNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtE aDVHUTNIRi1OTFROaUMyZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCsvUbZisU4MbFCK3JMXYiRac3zbGBF6+dHz80pZ3CXl5vj5nQSF8f oTY5Na1J5NT3zMHC3V1ZaX1FMawARoOjtowByZCTG1FsN6M/E528/Lhzv79UTowE xOswvdF6BmyBieRBwPx9kJ1HTwLkLfmYcBg+wVpBKSEqoW+zGwg/kG2GxorRE5cE bxGuqTTG4ypvmtU/lRmd/h6oRKQ+OjyDIieZE0vNwXEU7+bHerZocOqYiPVD98uS ouFpMBMdUwW7pjAtCYovyO7b93xrUeL8B2bYJrfgz7CqYpZpfN6qMtgz11jXRiVr xI0oPtGn+ChKvICKthcRsGNV1AAr2P0P -----END CERTIFICATE-----Generated at Sat May 25 04:35:18 2024 by rpki-client on console-ams.rpki-client.org