$ rpki-client -vvf rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft File: qAw2f5IilG-YuDa86PbQA2SIHHw.mft (raw, json) Hash identifier: 0qEm+wSPgrXv6GmPMcrsFsuKK8W8LWsToyKajNDNhWw= Subject key identifier: 61:78:64:8D:BC:60:68:0D:93:58:A0:1C:4E:98:59:C3:26:52:E7:19 Authority key identifier: A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C Certificate issuer: /CN=A919D1D9/serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Certificate serial: 0D07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft Manifest number: 0CE7 Signing time: Thu 02 May 2024 18:52:52 +0000 Manifest this update: Thu 02 May 2024 18:52:52 +0000 Manifest next update: Thu 09 May 2024 18:52:52 +0000 Files and hashes: 1: qAw2f5IilG-YuDa86PbQA2SIHHw.crl (hash: 7TOOu7iHsRGKdy4uqsA2DllXl5JYjpXJxYiLdPMRggI=) 2: C2ED1EEE617111EBBC678459C4F9AE02.roa (hash: CQft3yyWlVqgdkhk6LgKtfX2CG+KNS0t1dkDLmcZkgI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 18:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3335 (0xd07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D1D9/serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Validity Not Before: May 2 18:52:52 2024 GMT Not After : May 9 18:52:52 2024 GMT Subject: CN=6633e104-734e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e4:f0:f8:c7:73:b4:f4:a2:72:df:83:e2:da: bc:c0:ec:2d:57:81:70:ec:53:8c:9b:0c:94:63:82: 26:04:df:a2:43:8f:58:11:88:bd:09:13:ec:8a:60: ee:5a:23:73:f4:da:cd:7f:3e:c8:30:ec:3b:c5:51: e5:a0:1e:cd:ed:46:fc:63:ed:01:bc:1c:63:c2:9e: c9:1a:5f:fc:1b:3f:9a:54:62:40:3b:76:cc:af:3e: a4:77:7a:53:f3:48:6d:5c:e8:ed:05:f0:9c:3f:f6: a6:20:f8:d3:ac:a5:80:ef:f0:40:c3:0d:d4:f0:4e: d0:e2:a2:3f:a0:c9:3a:25:19:9a:4d:01:97:03:66: c9:1d:90:be:41:64:5d:fe:33:19:03:32:58:4c:d9: fa:96:07:42:77:17:cb:f8:03:0e:5f:54:f8:9d:6c: 5c:e8:c9:af:be:9d:10:9d:0c:70:dd:20:c0:e7:32: c4:bf:37:22:0b:01:50:30:21:17:dc:35:ac:b6:c2: 2a:b2:48:2e:62:0b:4e:8f:0b:08:1b:c4:d7:10:0b: 65:3c:1c:93:3f:8d:2e:a1:e5:99:a9:94:ab:f1:09: 69:30:71:45:df:28:8d:e3:00:b3:f5:b4:89:ff:6b: ab:6a:f6:a2:fe:ca:c0:d9:f1:de:fe:5d:4b:e8:dd: 19:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:78:64:8D:BC:60:68:0D:93:58:A0:1C:4E:98:59:C3:26:52:E7:19 X509v3 Authority Key Identifier: keyid:A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:d1:e8:3b:b2:65:25:6c:ec:01:38:90:95:4c:b9:3a:62:92: fb:d2:a5:12:63:5d:c1:25:f9:4d:71:12:3e:bf:61:74:a9:42: 45:31:1c:05:36:9a:3d:5e:27:6c:25:62:bc:70:60:41:39:d8: d9:c8:63:eb:69:81:85:3d:f5:ad:b9:48:9f:d7:8f:93:52:59: 4e:b2:df:89:af:0f:1c:97:f8:30:0e:52:76:d0:00:b4:4b:95: 36:3c:8d:0c:44:66:48:97:a5:36:37:9c:da:c1:b2:a0:fd:ee: 9b:74:a9:97:1a:76:db:df:1d:7c:1e:e7:9e:52:dc:c1:7d:f1: 78:21:4a:fa:64:16:c5:73:81:fe:92:14:dd:d8:bd:a6:1b:df: db:be:c8:44:3a:86:cd:09:05:c7:cf:5d:ad:a3:44:dc:99:e2: 6c:4c:10:d4:17:4c:79:b5:39:3f:bb:c2:5f:cf:2b:64:10:03: 90:7c:8b:b2:ab:67:33:ac:54:8b:5d:9b:f9:1d:d8:29:0a:9a: 85:92:bd:18:12:99:3f:e1:c0:b5:e0:bd:6e:38:97:ba:76:d8: 53:a7:2c:18:a6:88:b1:7c:83:ff:cb:ee:7f:d1:58:39:37:a7: fe:77:03:6b:df:7c:a1:06:c8:27:c7:2b:e7:80:50:04:8e:14: 94:a2:2a:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxRDkxMTAvBgNVBAUTKEE4MEMzNjdGOTIyMjk0NkY5OEI4MzZCQ0U4RjZEMDAz NjQ4ODFDN0MwHhcNMjQwNTAyMTg1MjUyWhcNMjQwNTA5MTg1MjUyWjAYMRYwFAYD VQQDEw02NjMzZTEwNC03MzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOTw+MdztPSict+D4tq8wOwtV4Fw7FOMmwyUY4ImBN+iQ49YEYi9CRPsimDu WiNz9NrNfz7IMOw7xVHloB7N7Ub8Y+0BvBxjwp7JGl/8Gz+aVGJAO3bMrz6kd3pT 80htXOjtBfCcP/amIPjTrKWA7/BAww3U8E7Q4qI/oMk6JRmaTQGXA2bJHZC+QWRd /jMZAzJYTNn6lgdCdxfL+AMOX1T4nWxc6Mmvvp0QnQxw3SDA5zLEvzciCwFQMCEX 3DWstsIqskguYgtOjwsIG8TXEAtlPByTP40uoeWZqZSr8QlpMHFF3yiN4wCz9bSJ /2uravai/srA2fHe/l1L6N0Z8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGF4ZI28 YGgNk1igHE6YWcMmUucZMB8GA1UdIwQYMBaAFKgMNn+SIpRvmLg2vOj20ANkiBx8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDFEOS82QTM5QTBERUMz MzgxMUU5ODA0OEZCN0RDNEY5QUUwMi9xQXcyZjVJaWxHLVl1RGE4NlBiUUEyU0lI SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FBdzJmNUlpbEctWXVEYTg2UGJRQTJTSUhIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDFEOS82QTM5QTBERUMzMzgxMUU5ODA0OEZCN0RDNEY5QUUwMi9xQXcyZjVJaWxH LVl1RGE4NlBiUUEyU0lISHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH0eg7smUlbOwBOJCVTLk6YpL70qUSY13BJflNcRI+v2F0qUJFMRwF Npo9XidsJWK8cGBBOdjZyGPraYGFPfWtuUif14+TUllOst+Jrw8cl/gwDlJ20AC0 S5U2PI0MRGZIl6U2N5zawbKg/e6bdKmXGnbb3x18HueeUtzBffF4IUr6ZBbFc4H+ khTd2L2mG9/bvshEOobNCQXHz12to0TcmeJsTBDUF0x5tTk/u8JfzytkEAOQfIuy q2czrFSLXZv5HdgpCpqFkr0YEpk/4cC14L1uOJe6dthTpywYpoixfIP/y+5/0Vg5 N6f+dwNr33yhBsgnxyvngFAEjhSUoipw -----END CERTIFICATE-----Generated at Thu May 2 20:04:50 2024 by rpki-client on console-ams.rpki-client.org