$ rpki-client -vvf rpki.apnic.net/member_repository/A9182A08/D19D58F0BF5011EA92777E46C4F9AE02/q-qRlIiGd5J8UJA_u_Hd43TQYsk.mft File: q-qRlIiGd5J8UJA_u_Hd43TQYsk.mft (raw, json) Hash identifier: 7Ag30efd6qrD0AuWP0Pqq84asZCWVIzF0vhxMx7YGB0= Subject key identifier: B7:76:2E:45:2A:A2:2E:0B:A2:6D:0C:E2:8E:9F:91:A2:9A:20:76:0D Authority key identifier: AB:EA:91:94:88:86:77:92:7C:50:90:3F:BB:F1:DD:E3:74:D0:62:C9 Certificate issuer: /CN=A9182A08/serialNumber=ABEA9194888677927C50903FBBF1DDE374D062C9 Certificate serial: 07C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-qRlIiGd5J8UJA_u_Hd43TQYsk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182A08/D19D58F0BF5011EA92777E46C4F9AE02/q-qRlIiGd5J8UJA_u_Hd43TQYsk.mft Manifest number: 07BF Signing time: Sat 04 May 2024 22:13:23 +0000 Manifest this update: Sat 04 May 2024 22:13:23 +0000 Manifest next update: Sat 11 May 2024 22:13:23 +0000 Files and hashes: 1: q-qRlIiGd5J8UJA_u_Hd43TQYsk.crl (hash: lc8JyrjsEgGFghWbAhgxdi8JAnlRBEI80Es1Cq3QvoI=) 2: AAA8232C123411ED90E8CA59C4F9AE02.roa (hash: hjGTo2niGmbhJLskoVKlmKdaL91kHhC5WFfV0I0Duo0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182A08/D19D58F0BF5011EA92777E46C4F9AE02/q-qRlIiGd5J8UJA_u_Hd43TQYsk.crl rsync://rpki.apnic.net/member_repository/A9182A08/D19D58F0BF5011EA92777E46C4F9AE02/q-qRlIiGd5J8UJA_u_Hd43TQYsk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-qRlIiGd5J8UJA_u_Hd43TQYsk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1987 (0x7c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182A08/serialNumber=ABEA9194888677927C50903FBBF1DDE374D062C9 Validity Not Before: May 4 22:13:23 2024 GMT Not After : May 11 22:13:23 2024 GMT Subject: CN=6636b303-f240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:74:ea:3a:73:45:05:38:19:d5:76:f4:3d:09: a9:c9:37:ef:ef:2c:74:d9:80:fd:61:9c:58:35:bc: be:73:34:04:fd:47:b3:54:71:00:45:c3:0c:69:93: 44:94:95:09:45:10:45:d7:5e:8c:a9:64:e9:ce:e1: 88:bd:ad:9d:e3:4b:17:aa:16:67:c8:a7:7b:58:76: 7d:52:07:6a:fd:31:45:05:f5:46:3f:9a:ec:bd:2e: 39:6a:e7:0b:f1:07:7b:be:df:71:75:c4:bb:03:5c: 40:45:8f:b4:7d:bd:f1:5a:35:55:b6:87:f4:6e:95: 1a:2d:1a:70:2b:93:d8:40:61:c9:5a:8d:12:74:73: 9a:13:7b:48:5c:f1:96:29:91:54:d6:95:51:a1:f7: 90:65:ba:ee:c6:a3:d8:9e:f3:a1:b7:9b:1b:34:95: aa:5a:21:26:fb:50:a9:08:0b:97:db:4e:49:6a:e3: a7:75:89:39:0e:fa:d5:a3:93:1e:05:e0:0a:6d:2e: 22:46:d0:04:02:7f:b3:c2:7d:7e:86:fb:72:b9:97: 4f:04:b7:02:64:37:06:ee:ee:40:31:32:7c:78:62: 00:39:96:7e:ea:ac:dc:7d:9f:98:33:89:45:eb:44: ce:90:4b:f7:d0:c6:dd:58:16:b3:0b:46:31:5b:cd: 38:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:76:2E:45:2A:A2:2E:0B:A2:6D:0C:E2:8E:9F:91:A2:9A:20:76:0D X509v3 Authority Key Identifier: keyid:AB:EA:91:94:88:86:77:92:7C:50:90:3F:BB:F1:DD:E3:74:D0:62:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182A08/D19D58F0BF5011EA92777E46C4F9AE02/q-qRlIiGd5J8UJA_u_Hd43TQYsk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-qRlIiGd5J8UJA_u_Hd43TQYsk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182A08/D19D58F0BF5011EA92777E46C4F9AE02/q-qRlIiGd5J8UJA_u_Hd43TQYsk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:df:8a:5f:26:88:92:e0:dc:35:40:70:e3:61:80:45:47:af: fc:1a:d2:eb:14:c7:38:4a:61:9c:5c:bf:f1:b4:83:ec:27:37: 53:2e:77:86:77:6a:99:2e:96:a8:ba:fa:72:49:3f:f7:95:a6: 45:6e:a2:82:b0:f2:8d:c4:e7:d7:d4:e5:df:5e:7a:13:73:db: c1:e0:f2:94:cf:b0:e1:86:2f:96:a2:b9:87:d3:f9:47:63:bb: 92:e3:6f:d2:63:bd:c2:c2:5a:49:ab:0f:84:88:2b:60:cb:8b: dd:8b:b5:06:81:a9:f6:8b:f3:76:af:d6:17:4b:d8:4d:03:f7: a9:b6:9e:98:6b:c7:5d:4f:d6:3b:78:98:7d:63:86:99:c8:47: 98:a5:f5:0f:82:51:81:c1:bd:44:20:89:f2:c0:59:83:8c:8e: e6:31:e6:54:be:94:a3:ae:c6:89:c1:e0:f7:8c:85:5f:77:9a: 4e:ee:5e:f9:04:31:80:69:dd:a3:c6:66:47:2a:e0:d5:00:9c: 5c:18:1f:a8:d4:2f:9a:28:ef:3e:24:25:df:c8:cf:57:96:ca: 37:2a:c1:2e:b4:e8:07:26:bd:c0:52:17:70:15:61:41:c0:b8: a1:12:55:66:4b:7c:fd:f3:04:08:0f:fb:d4:8f:c7:85:79:71: 92:f6:32:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODJBMDgxMTAvBgNVBAUTKEFCRUE5MTk0ODg4Njc3OTI3QzUwOTAzRkJCRjFEREUz NzREMDYyQzkwHhcNMjQwNTA0MjIxMzIzWhcNMjQwNTExMjIxMzIzWjAYMRYwFAYD VQQDEw02NjM2YjMwMy1mMjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXTqOnNFBTgZ1Xb0PQmpyTfv7yx02YD9YZxYNby+czQE/UezVHEARcMMaZNE lJUJRRBF116MqWTpzuGIva2d40sXqhZnyKd7WHZ9Ugdq/TFFBfVGP5rsvS45aucL 8Qd7vt9xdcS7A1xARY+0fb3xWjVVtof0bpUaLRpwK5PYQGHJWo0SdHOaE3tIXPGW KZFU1pVRofeQZbruxqPYnvOht5sbNJWqWiEm+1CpCAuX205JauOndYk5DvrVo5Me BeAKbS4iRtAEAn+zwn1+hvtyuZdPBLcCZDcG7u5AMTJ8eGIAOZZ+6qzcfZ+YM4lF 60TOkEv30MbdWBazC0YxW804lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLd2LkUq oi4Lom0M4o6fkaKaIHYNMB8GA1UdIwQYMBaAFKvqkZSIhneSfFCQP7vx3eN00GLJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MkEwOC9EMTlENThGMEJG NTAxMUVBOTI3NzdFNDZDNEY5QUUwMi9xLXFSbElpR2Q1SjhVSkFfdV9IZDQzVFFZ c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EtcVJsSWlHZDVKOFVKQV91X0hkNDNUUVlzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MkEwOC9EMTlENThGMEJGNTAxMUVBOTI3NzdFNDZDNEY5QUUwMi9xLXFSbElpR2Q1 SjhVSkFfdV9IZDQzVFFZc2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBh34pfJoiS4Nw1QHDjYYBFR6/8GtLrFMc4SmGcXL/xtIPsJzdTLneG d2qZLpaouvpyST/3laZFbqKCsPKNxOfX1OXfXnoTc9vB4PKUz7Dhhi+WormH0/lH Y7uS42/SY73CwlpJqw+EiCtgy4vdi7UGgan2i/N2r9YXS9hNA/eptp6Ya8ddT9Y7 eJh9Y4aZyEeYpfUPglGBwb1EIInywFmDjI7mMeZUvpSjrsaJweD3jIVfd5pO7l75 BDGAad2jxmZHKuDVAJxcGB+o1C+aKO8+JCXfyM9Xlso3KsEutOgHJr3AUhdwFWFB wLihElVmS3z98wQID/vUj8eFeXGS9jII -----END CERTIFICATE-----Generated at Sun May 5 00:14:43 2024 by rpki-client on console-ams.rpki-client.org