$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft File: qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft (raw, json) Hash identifier: xnnmDUy4q2DEhCr2kd+TIl8lo+7TAN20WPj0/lQauEg= Subject key identifier: F8:A7:E8:3C:1F:93:60:5A:AE:DB:A3:D1:EF:FE:9A:CC:C0:8B:8E:06 Authority key identifier: AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E Certificate issuer: /CN=A917E4BA/serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Certificate serial: 0A09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft Manifest number: 09FC Signing time: Sat 04 May 2024 20:52:52 +0000 Manifest this update: Sat 04 May 2024 20:52:51 +0000 Manifest next update: Sat 11 May 2024 20:52:51 +0000 Files and hashes: 1: qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl (hash: LyuUFmLx8Ah6Dzmo64eJEVLjVafYpXLm3gYqN0Rb8BM=) 2: 2512D04C22BE11EC9240097DC4F9AE02.roa (hash: /Y6lIt9MMjzPd7oqbEM3bpWnNkzrAJqUKj5To40fFxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2569 (0xa09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA/serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Validity Not Before: May 4 20:52:51 2024 GMT Not After : May 11 20:52:51 2024 GMT Subject: CN=6636a024-e73c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:cb:47:f4:f8:c6:02:67:e2:97:63:b8:dd:43: 93:31:62:00:45:06:2a:54:e1:81:cb:71:b9:87:e9: 70:f9:d7:33:c4:5d:bf:e2:36:13:02:d3:0a:9f:7b: d3:54:d5:25:e6:49:fe:e6:fb:3c:ca:24:48:40:d5: fe:7e:f3:22:ed:55:bf:fe:c3:0c:e7:58:b6:b4:84: 1a:d0:2e:57:23:cb:62:f2:8f:ce:56:cf:f6:b8:18: a3:9b:8c:71:e6:93:d2:81:e9:53:f0:24:36:6a:87: fa:50:5c:ec:b0:b0:f8:12:89:83:a8:65:16:56:70: 85:3a:23:1e:da:fa:44:e2:b7:22:7c:82:57:6a:9b: 8f:b5:1f:97:1a:ad:11:91:6f:c5:60:9f:da:e0:3a: 35:27:53:74:27:82:26:6d:72:1b:9f:0e:6c:62:b9: b8:bb:4a:e0:6a:f1:22:50:72:07:a8:49:59:2f:59: 75:d7:6b:d1:8a:44:41:48:84:03:67:a2:44:b1:80: f8:29:47:19:d6:e8:b1:de:48:f9:d5:6f:fe:a6:66: 0e:69:dd:6c:d2:5e:e7:40:db:b5:ee:22:82:b6:47: 8b:f2:ad:90:70:e4:5f:23:86:78:f0:ea:d3:6d:2e: 37:ab:a2:c0:d9:85:fe:ed:9e:18:bc:fc:1e:87:a3: 97:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:A7:E8:3C:1F:93:60:5A:AE:DB:A3:D1:EF:FE:9A:CC:C0:8B:8E:06 X509v3 Authority Key Identifier: keyid:AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:d2:44:43:cf:ba:c3:f0:30:bc:7d:15:93:ec:91:d1:36:ce: 3d:44:f9:e6:05:c5:e8:03:1b:0f:11:35:9c:02:9c:0e:16:8a: f6:b6:43:47:62:27:04:e5:6e:89:a1:b2:48:37:f6:99:3a:d2: 21:9e:3a:02:81:33:1b:53:53:33:0a:4d:8d:77:4c:ec:f5:58: 07:ce:bc:88:2d:2d:8a:d1:68:94:f7:70:2d:f8:52:c4:5b:0b: 2f:5a:21:da:78:70:35:00:ce:3a:72:74:09:cd:42:f8:19:74: 25:c6:a6:e4:da:b7:4f:96:16:cc:89:08:d2:e5:3d:ff:d2:a9: ee:58:4c:48:61:e1:0d:72:42:25:d5:6d:71:e6:3e:76:79:ca: ee:4f:8e:60:36:d9:af:61:b4:d1:06:79:67:9c:54:a3:c2:0d: 28:33:52:ab:f6:be:f0:60:ae:18:fe:32:cd:2b:a7:9b:8e:98: 18:a1:88:6b:6f:66:30:00:59:03:4d:09:bb:5a:ed:21:41:e2: 3d:dd:b9:ef:e4:a5:18:aa:fc:f3:6f:0a:30:88:03:e2:b4:a6: bf:7f:73:79:f5:70:f8:12:01:df:65:36:5f:62:8e:9d:a8:7d: 54:a1:92:40:86:34:90:60:cc:3c:3b:e8:0b:06:88:48:cc:94: 90:92:9d:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKEFBNDM2QUFGQzY4ODA0NUJGNTE0ODg2MTU0NkZBM0ZE Q0E5ODQwOEUwHhcNMjQwNTA0MjA1MjUxWhcNMjQwNTExMjA1MjUxWjAYMRYwFAYD VQQDEw02NjM2YTAyNC1lNzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxctH9PjGAmfil2O43UOTMWIARQYqVOGBy3G5h+lw+dczxF2/4jYTAtMKn3vT VNUl5kn+5vs8yiRIQNX+fvMi7VW//sMM51i2tIQa0C5XI8ti8o/OVs/2uBijm4xx 5pPSgelT8CQ2aof6UFzssLD4EomDqGUWVnCFOiMe2vpE4rcifIJXapuPtR+XGq0R kW/FYJ/a4Do1J1N0J4ImbXIbnw5sYrm4u0rgavEiUHIHqElZL1l112vRikRBSIQD Z6JEsYD4KUcZ1uix3kj51W/+pmYOad1s0l7nQNu17iKCtkeL8q2QcORfI4Z48OrT bS43q6LA2YX+7Z4YvPweh6OX/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPin6Dwf k2Bartuj0e/+mszAi44GMB8GA1UdIwQYMBaAFKpDaq/GiARb9RSIYVRvo/3KmECO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9EMDZCRjMyODUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJGdjFGSWhoVkctal9jcVlR STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrTnFyOGFJQkZ2MUZJaGhWRy1qX2NxWVFJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9EMDZCRjMyODUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJG djFGSWhoVkctal9jcVlRSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg0kRDz7rD8DC8fRWT7JHRNs49RPnmBcXoAxsPETWcApwOFor2tkNH YicE5W6JobJIN/aZOtIhnjoCgTMbU1MzCk2Nd0zs9VgHzryILS2K0WiU93At+FLE WwsvWiHaeHA1AM46cnQJzUL4GXQlxqbk2rdPlhbMiQjS5T3/0qnuWExIYeENckIl 1W1x5j52ecruT45gNtmvYbTRBnlnnFSjwg0oM1Kr9r7wYK4Y/jLNK6ebjpgYoYhr b2YwAFkDTQm7Wu0hQeI93bnv5KUYqvzzbwowiAPitKa/f3N59XD4EgHfZTZfYo6d qH1UoZJAhjSQYMw8O+gLBohIzJSQkp0A -----END CERTIFICATE-----Generated at Sat May 4 21:32:59 2024 by rpki-client on console-fra.rpki-client.org