$ rpki-client -vvf rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft File: qleQsPfXYr6TK53GEbfWm5BoWk4.mft (raw, json) Hash identifier: 3zfBscTL+9LX9vzbmxjZbogn7gg01pRbcQHqx09CNlM= Subject key identifier: 2E:70:77:0C:D1:5A:4F:8C:87:00:26:5D:E1:B3:63:5C:B8:35:B9:A7 Authority key identifier: AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E Certificate issuer: /CN=A91977F9/serialNumber=AA5790B0F7D762BE932B9DC611B7D69B90685A4E Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft Manifest number: 016E Signing time: Fri 03 May 2024 04:55:34 +0000 Manifest this update: Fri 03 May 2024 04:55:34 +0000 Manifest next update: Fri 10 May 2024 04:55:34 +0000 Files and hashes: 1: qleQsPfXYr6TK53GEbfWm5BoWk4.crl (hash: d9SrFtxoDBw7T/6fBmSpKb4f+/C9NBoFtv6VCd73vWc=) 2: 728286AE27BF11EDA6A02960C4F9AE02.roa (hash: BhHsuDvF2f7620isXUel0aXspowaKrXhDpQE+ZQofDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.crl rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91977F9/serialNumber=AA5790B0F7D762BE932B9DC611B7D69B90685A4E Validity Not Before: May 3 04:55:34 2024 GMT Not After : May 10 04:55:34 2024 GMT Subject: CN=66346e46-235c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ad:60:01:24:6a:cb:05:ad:48:d9:ee:16:9d: 11:82:e3:71:38:10:de:82:e4:88:70:19:5b:a9:54: b3:6a:6c:27:fa:63:af:3e:4a:71:25:15:1e:b7:eb: c7:92:36:38:13:1c:92:17:44:33:67:22:c1:2d:69: 0c:17:be:f5:9e:db:d7:b0:08:76:07:6a:ce:71:e8: 35:54:02:01:55:bf:d4:fa:04:29:e7:24:74:8a:5e: 38:bc:ac:a0:61:ba:06:0d:d6:7c:6b:4c:fa:0c:ec: 4b:8b:46:8e:f9:ab:81:7d:96:50:4a:a0:b0:33:44: e7:5e:67:6c:90:f1:a1:e7:21:07:41:b1:42:0e:b1: 69:41:a1:f0:52:ee:8a:19:ab:b5:e8:e7:7b:e9:2b: 6f:2b:40:e2:7e:be:b8:50:31:ea:08:79:e9:dc:43: 7d:64:5b:36:81:ae:45:99:a1:5c:c7:14:51:5f:37: e5:c4:21:d8:7f:5c:2e:2b:64:a2:f7:cc:85:4b:35: 2c:72:cb:ef:d8:ba:4e:39:f9:1b:43:64:af:a6:a7: 5e:23:9f:4e:9a:be:7c:3f:c4:3c:c7:e2:73:37:61: 35:73:c6:f7:7f:62:b2:9c:d7:0e:79:ab:27:09:d1: 7d:92:b0:1f:0d:aa:b7:c3:30:64:79:9e:4a:14:84: f4:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:70:77:0C:D1:5A:4F:8C:87:00:26:5D:E1:B3:63:5C:B8:35:B9:A7 X509v3 Authority Key Identifier: keyid:AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:67:6b:31:a9:39:42:fb:2e:54:86:61:5f:1b:16:47:ef:5d: bd:98:11:0e:a6:a9:a5:6e:0a:6a:e0:3d:40:82:90:98:e7:e8: e3:08:c8:fe:cd:1b:4a:0c:09:0c:b7:4a:92:de:e1:10:c3:de: 5f:2e:97:98:98:7e:ca:31:69:78:20:68:10:3b:2c:36:d9:86: 01:3f:19:bc:2e:21:be:a2:1d:91:03:5d:0d:38:5a:1c:c9:39: d0:a6:a1:9d:c2:c6:24:48:69:29:4d:7c:7e:a2:c1:9b:4e:bf: 9a:82:18:4e:a7:37:85:7b:9d:b7:a6:92:8e:29:47:07:55:42: 02:88:58:8a:be:c5:55:2c:bf:2c:c4:8e:e0:a6:05:20:38:f4: 70:2e:22:44:bf:0e:d2:58:13:d2:7d:b5:c5:7c:3a:d1:ec:c7: 51:b2:45:30:9e:11:f5:47:f4:78:e9:3b:f8:02:13:d6:7d:bd: cc:59:90:c6:b5:15:5d:30:c6:87:9e:d8:f4:44:46:02:20:9d: ff:71:26:c0:7b:c7:39:f7:33:ae:02:d3:87:6c:b0:d3:bf:2a: 21:4b:5d:ba:4f:de:27:de:04:d3:87:9d:e5:59:d2:45:41:c2: d4:9b:ec:13:ad:7d:d1:b7:9a:6a:68:2d:f5:e0:89:87:69:4f: 25:ae:cd:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc3RjkxMTAvBgNVBAUTKEFBNTc5MEIwRjdENzYyQkU5MzJCOURDNjExQjdENjlC OTA2ODVBNEUwHhcNMjQwNTAzMDQ1NTM0WhcNMjQwNTEwMDQ1NTM0WjAYMRYwFAYD VQQDEw02NjM0NmU0Ni0yMzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvq1gASRqywWtSNnuFp0RguNxOBDeguSIcBlbqVSzamwn+mOvPkpxJRUet+vH kjY4ExySF0QzZyLBLWkMF771ntvXsAh2B2rOceg1VAIBVb/U+gQp5yR0il44vKyg YboGDdZ8a0z6DOxLi0aO+auBfZZQSqCwM0TnXmdskPGh5yEHQbFCDrFpQaHwUu6K Gau16Od76StvK0Difr64UDHqCHnp3EN9ZFs2ga5FmaFcxxRRXzflxCHYf1wuK2Si 98yFSzUscsvv2LpOOfkbQ2SvpqdeI59Omr58P8Q8x+JzN2E1c8b3f2KynNcOeasn CdF9krAfDaq3wzBkeZ5KFIT0iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5wdwzR Wk+MhwAmXeGzY1y4NbmnMB8GA1UdIwQYMBaAFKpXkLD312K+kyudxhG31puQaFpO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzdGOS8yQUVDRTY2QTI3 QkQxMUVEQjU4ODRENUZDNEY5QUUwMi9xbGVRc1BmWFlyNlRLNTNHRWJmV201Qm9X azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FsZVFzUGZYWXI2VEs1M0dFYmZXbTVCb1drNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzdGOS8yQUVDRTY2QTI3QkQxMUVEQjU4ODRENUZDNEY5QUUwMi9xbGVRc1BmWFly NlRLNTNHRWJmV201Qm9XazQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcZ2sxqTlC+y5UhmFfGxZH7129mBEOpqmlbgpq4D1AgpCY5+jjCMj+ zRtKDAkMt0qS3uEQw95fLpeYmH7KMWl4IGgQOyw22YYBPxm8LiG+oh2RA10NOFoc yTnQpqGdwsYkSGkpTXx+osGbTr+aghhOpzeFe523ppKOKUcHVUICiFiKvsVVLL8s xI7gpgUgOPRwLiJEvw7SWBPSfbXFfDrR7MdRskUwnhH1R/R46Tv4AhPWfb3MWZDG tRVdMMaHntj0REYCIJ3/cSbAe8c59zOuAtOHbLDTvyohS126T94n3gTTh53lWdJF QcLUm+wTrX3Rt5pqaC314ImHaU8lrs3C -----END CERTIFICATE-----Generated at Fri May 3 06:29:20 2024 by rpki-client on console-fra.rpki-client.org