$ rpki-client -vvf rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft File: q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft (raw, json) Hash identifier: fnIH7Q8JGa2O2Aq8Y6NF2GQIg8KM6GaXEJVaUquoanY= Subject key identifier: 22:00:77:E2:27:CB:44:AD:5E:F6:30:62:03:3B:6F:D6:8F:8C:D4:84 Authority key identifier: AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F Certificate issuer: /CN=A918B5FE/serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Certificate serial: 05EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft Manifest number: 05DB Signing time: Wed 01 May 2024 00:23:36 +0000 Manifest this update: Wed 01 May 2024 00:23:35 +0000 Manifest next update: Wed 08 May 2024 00:23:35 +0000 Files and hashes: 1: q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl (hash: lVosrm93bGsH/HwT2K2MIDSFy4wXorHJO184oUnAmWI=) 2: DAE15A7248F911EC9F04C439C4F9AE02.roa (hash: niEg+Xsx0oqYdS4X69wgtu3+3vhMpOvh/aAltkHxhWk=) 3: DBB4BB6A48F911EC9F04C439C4F9AE02.roa (hash: 11VkQI+E+84mFrKdiJkSQBv4lT+5KYpL0SIaXbMKQDE=) 4: DCC969B048F911EC9F04C439C4F9AE02.roa (hash: TRi55DykuT4uCR8NeO+iEjQwZaROcr7QOdXwW6pXu8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 17:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1514 (0x5ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B5FE/serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Validity Not Before: May 1 00:23:35 2024 GMT Not After : May 8 00:23:35 2024 GMT Subject: CN=66318b88-2b20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d7:80:fe:71:89:fb:cd:4e:f1:1c:ae:54:84: 8e:b0:c1:7c:af:6b:70:27:de:c6:13:65:a5:13:98: 4e:1a:27:c9:14:94:5e:a0:5f:04:26:83:ef:3e:47: f6:ac:fa:60:78:f4:54:82:4b:30:0f:66:81:70:6b: bc:69:60:14:ad:41:0c:ba:ad:aa:54:9c:92:e2:71: 6e:8b:48:1b:0e:d0:70:e9:2b:42:3d:12:42:8d:ef: 22:7a:aa:fb:57:fb:c3:95:06:3e:b4:2a:92:c7:98: d7:42:8f:d6:e1:5a:71:bc:93:68:46:f5:fb:f8:50: bd:8e:07:c4:c9:26:49:8f:60:96:90:23:d8:56:5b: 5e:4a:e7:f9:69:68:98:a1:eb:fd:fe:7f:33:c3:1b: 5b:bb:b6:bd:fb:ed:59:90:02:83:34:ff:f9:2e:19: 38:78:30:d6:b3:5c:d0:e3:59:f2:d7:8d:cd:8e:3c: b2:6c:e3:c6:e9:b9:5c:2c:8d:bc:cb:e5:b2:ae:44: 62:e7:85:9b:cf:79:8e:4b:f9:21:1d:04:5a:c3:ec: 39:0d:a7:97:48:93:45:d2:7c:1b:94:aa:db:fb:da: 2f:4e:b1:b6:8e:b8:8b:6d:77:a0:d6:79:cc:da:a7: 6c:ba:04:ab:e3:f1:ae:6f:37:c3:8f:66:e1:a2:6e: d0:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:00:77:E2:27:CB:44:AD:5E:F6:30:62:03:3B:6F:D6:8F:8C:D4:84 X509v3 Authority Key Identifier: keyid:AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:06:4f:51:4e:f1:31:80:01:9a:7b:b9:8f:45:1b:2f:79:f1: 3c:dc:40:68:4a:45:0c:cf:d0:da:28:33:27:50:11:37:27:72: bf:fd:d1:b0:52:a8:60:e2:c6:e4:d7:96:54:18:7b:19:65:74: 59:b3:b7:7f:92:86:d1:bf:3e:43:ca:4e:9a:db:bf:b4:3b:ae: 24:6f:5a:e3:ff:ee:2f:e5:b3:16:4d:4d:b0:f9:93:b5:77:2e: 0c:5c:bd:fa:b0:d5:9c:58:31:ac:18:db:27:dc:36:5e:e9:a4: 2c:75:73:d0:66:04:82:5d:f1:5c:78:b9:ee:9a:cb:7f:29:eb: e1:4e:36:4a:c6:d1:ae:80:78:ca:bd:ee:4a:85:04:cb:cf:dc: 0e:71:47:ca:53:b1:6f:26:c1:41:69:96:3a:4e:d0:5f:0d:53: 5c:4d:58:05:7e:44:0f:a3:6c:ec:60:43:f9:0e:35:96:1c:b1: f2:26:0a:25:e8:c2:c5:fe:16:8e:40:f0:4a:39:e2:83:9c:c1: a2:6a:12:f3:c5:53:6d:b0:b3:6f:ee:86:ad:ff:8b:49:9b:77: 2e:17:04:35:d8:96:c8:e1:41:b9:0d:40:98:cc:37:ee:ab:c9: 81:a1:48:53:84:bc:41:0f:c1:44:a7:87:d4:ce:e1:0f:26:5d: 62:fb:2a:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI1RkUxMTAvBgNVBAUTKEFCOTA1RERDMEFGQkJEMTU0OUY2NkVGRTgxMTdBRTE1 MDAwQTVFMEYwHhcNMjQwNTAxMDAyMzM1WhcNMjQwNTA4MDAyMzM1WjAYMRYwFAYD VQQDEw02NjMxOGI4OC0yYjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudeA/nGJ+81O8RyuVISOsMF8r2twJ97GE2WlE5hOGifJFJReoF8EJoPvPkf2 rPpgePRUgkswD2aBcGu8aWAUrUEMuq2qVJyS4nFui0gbDtBw6StCPRJCje8ieqr7 V/vDlQY+tCqSx5jXQo/W4VpxvJNoRvX7+FC9jgfEySZJj2CWkCPYVlteSuf5aWiY oev9/n8zwxtbu7a9++1ZkAKDNP/5Lhk4eDDWs1zQ41ny143NjjyybOPG6blcLI28 y+WyrkRi54Wbz3mOS/khHQRaw+w5DaeXSJNF0nwblKrb+9ovTrG2jriLbXeg1nnM 2qdsugSr4/GubzfDj2bhom7QiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCIAd+In y0StXvYwYgM7b9aPjNSEMB8GA1UdIwQYMBaAFKuQXdwK+70VSfZu/oEXrhUACl4P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjVGRS8zMkMzMDAyODZB OUUxMUVCQjY3NjIzMThDNEY5QUUwMi9xNUJkM0FyN3ZSVko5bTctZ1JldUZRQUtY ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3E1QmQzQXI3dlJWSjltNy1nUmV1RlFBS1hnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjVGRS8zMkMzMDAyODZBOUUxMUVCQjY3NjIzMThDNEY5QUUwMi9xNUJkM0FyN3ZS Vko5bTctZ1JldUZRQUtYZzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6Bk9RTvExgAGae7mPRRsvefE83EBoSkUMz9DaKDMnUBE3J3K//dGw Uqhg4sbk15ZUGHsZZXRZs7d/kobRvz5Dyk6a27+0O64kb1rj/+4v5bMWTU2w+ZO1 dy4MXL36sNWcWDGsGNsn3DZe6aQsdXPQZgSCXfFceLnumst/KevhTjZKxtGugHjK ve5KhQTLz9wOcUfKU7FvJsFBaZY6TtBfDVNcTVgFfkQPo2zsYEP5DjWWHLHyJgol 6MLF/haOQPBKOeKDnMGiahLzxVNtsLNv7oat/4tJm3cuFwQ12JbI4UG5DUCYzDfu q8mBoUhThLxBD8FEp4fUzuEPJl1i+yr6 -----END CERTIFICATE-----Generated at Wed May 1 01:04:05 2024 by rpki-client on console-fra.rpki-client.org