$ rpki-client -vvf rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft File: 7qiugNcT5rItsOxgkVfwxZpS_X8.mft (raw, json) Hash identifier: hhEK4f2sX/SJrDw1iqCf9TXAD9BM5gYDSpqmdqw1mU8= Subject key identifier: A2:42:27:DB:9D:18:D6:44:6F:61:25:7D:71:19:02:1E:3D:92:75:C6 Authority key identifier: EE:A8:AE:80:D7:13:E6:B2:2D:B0:EC:60:91:57:F0:C5:9A:52:FD:7F Certificate issuer: /CN=A918D6B7/serialNumber=EEA8AE80D713E6B22DB0EC609157F0C59A52FD7F Certificate serial: 3420 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft Manifest number: 33E9 Signing time: Sat 04 May 2024 15:00:41 +0000 Manifest this update: Sat 04 May 2024 15:00:41 +0000 Manifest next update: Sat 11 May 2024 15:00:41 +0000 Files and hashes: 1: 7qiugNcT5rItsOxgkVfwxZpS_X8.crl (hash: rjfUV+nEUHyM/Ftqquv48rMh6pcmhI26UdDeWpj6rcU=) 2: F026CE74927411EDB020A481C4F9AE02.roa (hash: 2eNq7B1oRtkvbsC2TVkQztsqFUCoR8AJK2q0jX2j5u8=) 3: 6C0C85D0A43011ECA230771BC4F9AE02.roa (hash: dUee/Bbms779/aJc/DgZhfMMYOVtsmQDkN3x2T2FOz0=) 4: 2ACF9E0C855C11EB8C076013C4F9AE02.roa (hash: 4TkDiS4BXR3T4N5XwdICjn7FuRsbCcoxM3qg2k7EAn8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.crl rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13344 (0x3420) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D6B7/serialNumber=EEA8AE80D713E6B22DB0EC609157F0C59A52FD7F Validity Not Before: May 4 15:00:41 2024 GMT Not After : May 11 15:00:41 2024 GMT Subject: CN=66364d99-2422 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2c:ba:96:6a:b9:63:b8:1e:b1:e7:6b:4e:3b: 1c:ba:f0:ed:0a:20:71:f7:4b:ab:33:07:a2:a2:45: 7c:42:f4:1b:fe:2b:a5:10:62:92:11:eb:c9:f1:73: 52:aa:fd:7b:76:dd:13:42:56:d3:ff:9e:d2:ce:53: d1:38:87:0f:75:1e:0b:40:b2:1c:e6:81:6f:54:be: 60:2f:bd:d2:d4:2a:0e:3d:80:7e:7c:dc:f1:3d:7f: 88:24:bd:19:3e:2e:34:b6:b7:b7:dc:3a:97:27:cc: 0c:60:be:3d:b7:44:0d:ee:60:a8:ce:95:f4:49:c8: 22:44:dc:5f:12:cb:c2:bf:42:cc:d7:aa:ed:dd:66: 57:22:3e:67:a3:67:9c:b6:88:26:00:77:8f:eb:72: d7:7d:d1:5c:88:3a:bc:01:c5:3e:e9:ec:9d:b0:25: cc:21:f8:9c:22:a0:7e:e3:5b:74:54:b1:3c:47:89: 9a:8f:89:e6:ee:4c:e9:8e:0e:73:41:2d:f2:34:ca: 57:2a:d7:0e:af:94:c1:68:f6:a7:6f:93:72:5d:fd: c0:3c:a3:17:b9:f5:51:d7:87:4b:8a:c5:10:f1:ef: d1:30:3b:90:bd:97:70:46:64:85:e2:db:2c:58:02: 35:fa:6b:d6:f4:78:b5:e8:e6:d3:f7:22:6e:b5:7a: 7d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:42:27:DB:9D:18:D6:44:6F:61:25:7D:71:19:02:1E:3D:92:75:C6 X509v3 Authority Key Identifier: keyid:EE:A8:AE:80:D7:13:E6:B2:2D:B0:EC:60:91:57:F0:C5:9A:52:FD:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:47:95:6a:e4:ff:3a:0d:06:b4:6a:12:ea:f2:25:fe:ec:a5: f9:c8:0c:68:94:51:ac:77:6e:95:32:b7:ce:1d:41:e7:b2:5e: 41:fc:a1:59:26:76:cd:60:d8:e1:58:58:a3:74:e6:10:d4:c7: eb:31:a5:fd:6d:b9:90:b5:02:6b:f8:3d:ba:70:2c:23:34:79: 85:87:cb:76:9b:c1:be:aa:c1:34:ef:03:eb:44:30:ce:07:5e: 90:53:b5:13:7c:6f:3c:c8:fe:41:e9:7c:46:46:fe:5b:8d:8d: fa:4a:63:bf:84:a8:66:37:26:8c:2c:90:3f:cb:3d:f6:b1:0a: 18:9b:ea:2e:89:fe:99:3d:21:ad:11:c5:7f:e2:51:80:33:7c: 90:ba:b1:2d:eb:4c:fe:f2:ce:5d:ee:9e:18:e3:bb:82:02:ec: 39:c1:98:28:7a:fe:59:7a:b6:ea:1d:43:86:d1:6e:d4:bc:e2: 07:4a:3d:b3:ed:6f:43:a4:43:22:81:87:ac:1d:ba:26:41:7f: 61:6b:ff:7a:0f:31:b3:aa:eb:ac:79:0a:60:b1:e0:3c:80:56: e3:5a:39:3b:26:3f:72:06:2e:37:ad:a3:9c:06:99:8c:64:9c: 81:d7:ff:33:b4:a9:45:95:af:43:79:e5:a5:8a:ee:a9:2c:3b: c9:a8:36:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ2QjcxMTAvBgNVBAUTKEVFQThBRTgwRDcxM0U2QjIyREIwRUM2MDkxNTdGMEM1 OUE1MkZEN0YwHhcNMjQwNTA0MTUwMDQxWhcNMjQwNTExMTUwMDQxWjAYMRYwFAYD VQQDEw02NjM2NGQ5OS0yNDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyy6lmq5Y7gesedrTjscuvDtCiBx90urMweiokV8QvQb/iulEGKSEevJ8XNS qv17dt0TQlbT/57SzlPROIcPdR4LQLIc5oFvVL5gL73S1CoOPYB+fNzxPX+IJL0Z Pi40tre33DqXJ8wMYL49t0QN7mCozpX0ScgiRNxfEsvCv0LM16rt3WZXIj5no2ec togmAHeP63LXfdFciDq8AcU+6eydsCXMIficIqB+41t0VLE8R4maj4nm7kzpjg5z QS3yNMpXKtcOr5TBaPanb5NyXf3APKMXufVR14dLisUQ8e/RMDuQvZdwRmSF4tss WAI1+mvW9Hi16ObT9yJutXp9uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJCJ9ud GNZEb2ElfXEZAh49knXGMB8GA1UdIwQYMBaAFO6oroDXE+ayLbDsYJFX8MWaUv1/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDZCNy8xQzE2NjQxQzFE OTcxMUUyOTZEMDMwODAwOEIwMkNEMi83cWl1Z05jVDVySXRzT3hna1Zmd3hacFNf WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdxaXVnTmNUNXJJdHNPeGdrVmZ3eFpwU19YOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDZCNy8xQzE2NjQxQzFEOTcxMUUyOTZEMDMwODAwOEIwMkNEMi83cWl1Z05jVDVy SXRzT3hna1Zmd3hacFNfWDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQR5Vq5P86DQa0ahLq8iX+7KX5yAxolFGsd26VMrfOHUHnsl5B/KFZ JnbNYNjhWFijdOYQ1MfrMaX9bbmQtQJr+D26cCwjNHmFh8t2m8G+qsE07wPrRDDO B16QU7UTfG88yP5B6XxGRv5bjY36SmO/hKhmNyaMLJA/yz32sQoYm+ouif6ZPSGt EcV/4lGAM3yQurEt60z+8s5d7p4Y47uCAuw5wZgoev5ZerbqHUOG0W7UvOIHSj2z 7W9DpEMigYesHbomQX9ha/96DzGzquuseQpgseA8gFbjWjk7Jj9yBi43raOcBpmM ZJyB1/8ztKlFla9DeeWliu6pLDvJqDYD -----END CERTIFICATE-----Generated at Sat May 4 15:55:02 2024 by rpki-client on console-ams.rpki-client.org