$ rpki-client -vvf rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.mft File: cqUfTuqiGLczbu_3p6WMsa5UQjk.mft (raw, json) Hash identifier: 4Ul/hB5w2fC8yuRifJwKkx90u01wdSMVAs7g+wzdjI4= Subject key identifier: 1E:35:1F:DA:53:6D:5A:61:BF:4C:74:B8:38:32:37:95:28:EA:BD:F7 Authority key identifier: 72:A5:1F:4E:EA:A2:18:B7:33:6E:EF:F7:A7:A5:8C:B1:AE:54:42:39 Certificate issuer: /CN=A917D121/serialNumber=72A51F4EEAA218B7336EEFF7A7A58CB1AE544239 Certificate serial: 06C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqUfTuqiGLczbu_3p6WMsa5UQjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.mft Manifest number: 06C0 Signing time: Thu 02 May 2024 23:12:52 +0000 Manifest this update: Thu 02 May 2024 23:12:51 +0000 Manifest next update: Thu 09 May 2024 23:12:51 +0000 Files and hashes: 1: cqUfTuqiGLczbu_3p6WMsa5UQjk.crl (hash: z1zm1ZLjlPq5W7wSF4StYQra/4L/SOXKPj/CxmPzMOE=) 2: DAAB94840EC911EBA913852BC4F9AE02.roa (hash: 5YoPL7nE7xz232jtV+9whkhe2x++vTXRcep/e7rSL8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.crl rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqUfTuqiGLczbu_3p6WMsa5UQjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:53:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1733 (0x6c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D121/serialNumber=72A51F4EEAA218B7336EEFF7A7A58CB1AE544239 Validity Not Before: May 2 23:12:51 2024 GMT Not After : May 9 23:12:51 2024 GMT Subject: CN=66341df4-6fb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8e:9a:ab:96:80:4e:b5:ca:48:10:03:3f:92: 10:ec:59:d7:8c:11:a7:90:62:4d:fe:0b:72:e2:84: e9:72:e4:f2:e4:b9:22:34:ba:d2:7b:61:d9:f6:a1: e3:59:30:b9:01:ee:b3:6c:c8:3e:65:21:07:86:14: 86:7f:9b:3e:50:60:19:18:07:d0:2f:36:73:be:09: 63:a2:d5:a9:01:b2:26:0f:98:4d:05:57:f7:a5:cb: 87:b0:83:c2:76:f2:a6:78:42:c2:60:95:e6:fe:f4: 1e:19:33:12:0a:32:68:00:5b:22:c2:3f:b0:a2:ef: 49:6b:91:ce:e3:6d:77:bb:a5:72:bb:d2:f6:b4:18: 49:c0:97:54:58:20:fe:4b:12:b3:d1:97:87:7e:cd: 41:5e:22:0b:5f:6c:9b:4b:f7:e7:84:df:6c:16:76: 0a:1d:69:d2:d3:af:71:76:6b:40:b0:bc:7f:73:aa: a2:4e:2d:61:b7:9a:e4:21:21:64:2b:90:48:22:a4: e5:ae:89:1f:94:1f:4e:e0:24:9f:d2:07:d3:a4:1e: b4:ce:6a:96:3f:28:93:28:b4:55:a4:26:0e:0a:79: 5a:8c:79:98:50:d8:7e:e3:b0:91:f5:ff:cc:9f:bb: 23:dc:d6:21:28:7f:48:52:fa:dd:fc:7a:c2:b5:80: b6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:35:1F:DA:53:6D:5A:61:BF:4C:74:B8:38:32:37:95:28:EA:BD:F7 X509v3 Authority Key Identifier: keyid:72:A5:1F:4E:EA:A2:18:B7:33:6E:EF:F7:A7:A5:8C:B1:AE:54:42:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqUfTuqiGLczbu_3p6WMsa5UQjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:0b:12:96:f6:fd:77:fe:62:3d:09:10:3c:33:1f:eb:5c:4b: d5:4c:a5:a4:6b:99:cd:79:8b:c6:79:10:11:9c:c6:a9:6a:60: 74:ee:3b:b8:78:87:6d:fc:0f:b1:7f:be:15:3a:1f:c9:e9:3d: 27:26:4f:64:37:85:5f:c4:29:5d:40:b2:73:8e:b1:eb:2b:e6: ab:ac:cf:ad:d2:67:47:81:b8:74:c9:d3:92:99:a9:95:22:ea: 4d:65:e7:dc:1f:60:e3:1a:60:24:cb:62:26:fe:7b:b4:02:ea: fe:64:84:07:4a:ed:e2:68:0f:0a:14:3d:c5:cf:0d:e9:0b:03: 7c:de:4d:e0:3c:16:a8:c3:17:9f:c5:b8:9d:b5:67:d4:28:5e: 92:e6:6a:04:66:89:5c:5e:f5:dd:73:c4:d2:15:35:5f:e6:0d: c9:59:a4:6c:19:06:43:c0:ad:13:cb:5f:77:d1:df:ff:6c:b8: b5:53:62:5b:fb:7b:f5:d2:ab:3a:1e:89:51:96:8d:e2:3c:af: 8f:8d:d1:40:01:6e:d7:54:3f:dd:e0:cd:6e:1f:f0:61:2f:ce: a4:d3:5f:3a:a6:c9:ba:5f:e9:6d:6e:55:08:03:65:7f:70:d6: e9:b7:84:ff:e3:e8:98:c1:bd:f2:d0:02:e3:c2:e3:0b:34:4f: 0c:80:af:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QxMjExMTAvBgNVBAUTKDcyQTUxRjRFRUFBMjE4QjczMzZFRUZGN0E3QTU4Q0Ix QUU1NDQyMzkwHhcNMjQwNTAyMjMxMjUxWhcNMjQwNTA5MjMxMjUxWjAYMRYwFAYD VQQDEw02NjM0MWRmNC02ZmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq46aq5aATrXKSBADP5IQ7FnXjBGnkGJN/gty4oTpcuTy5LkiNLrSe2HZ9qHj WTC5Ae6zbMg+ZSEHhhSGf5s+UGAZGAfQLzZzvgljotWpAbImD5hNBVf3pcuHsIPC dvKmeELCYJXm/vQeGTMSCjJoAFsiwj+wou9Ja5HO4213u6Vyu9L2tBhJwJdUWCD+ SxKz0ZeHfs1BXiILX2ybS/fnhN9sFnYKHWnS069xdmtAsLx/c6qiTi1ht5rkISFk K5BIIqTlrokflB9O4CSf0gfTpB60zmqWPyiTKLRVpCYOCnlajHmYUNh+47CR9f/M n7sj3NYhKH9IUvrd/HrCtYC2vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB41H9pT bVphv0x0uDgyN5Uo6r33MB8GA1UdIwQYMBaAFHKlH07qohi3M27v96eljLGuVEI5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDEyMS84QjBGOEIwQzBF QzgxMUVCQTUwNDJDMkFDNEY5QUUwMi9jcVVmVHVxaUdMY3pidV8zcDZXTXNhNVVR amsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxVWZUdXFpR0xjemJ1XzNwNldNc2E1VVFqay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDEyMS84QjBGOEIwQzBFQzgxMUVCQTUwNDJDMkFDNEY5QUUwMi9jcVVmVHVxaUdM Y3pidV8zcDZXTXNhNVVRamsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlCxKW9v13/mI9CRA8Mx/rXEvVTKWka5nNeYvGeRARnMapamB07ju4 eIdt/A+xf74VOh/J6T0nJk9kN4VfxCldQLJzjrHrK+arrM+t0mdHgbh0ydOSmamV IupNZefcH2DjGmAky2Im/nu0Aur+ZIQHSu3iaA8KFD3Fzw3pCwN83k3gPBaowxef xbidtWfUKF6S5moEZolcXvXdc8TSFTVf5g3JWaRsGQZDwK0Ty1930d//bLi1U2Jb +3v10qs6HolRlo3iPK+PjdFAAW7XVD/d4M1uH/BhL86k0186psm6X+ltblUIA2V/ cNbpt4T/4+iYwb3y0ALjwuMLNE8MgK/b -----END CERTIFICATE-----Generated at Fri May 3 00:07:13 2024 by rpki-client on console-ams.rpki-client.org