$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft File: KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft (raw, json) Hash identifier: 1BUi1ecfPHzpYSzJkyy8/w3gfUWIU5v32QZXXz35MGQ= Subject key identifier: 90:FE:52:E1:83:0B:15:E7:C8:D5:15:5F:C5:97:76:9E:93:72:F4:FB Authority key identifier: 29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C Certificate issuer: /CN=A91A3456/serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Certificate serial: 0A47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft Manifest number: 0A42 Signing time: Thu 02 May 2024 20:32:46 +0000 Manifest this update: Thu 02 May 2024 20:32:46 +0000 Manifest next update: Thu 09 May 2024 20:32:46 +0000 Files and hashes: 1: KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl (hash: L1SeKUyb7/kCJ16T6lNDZos0U3mC7XqJootOEr+c0/c=) 2: 496096EE41A311EABAADCE0AC4F9AE02.roa (hash: qxIEJ9q4++BUQfNl/x9T14VLLuH+zqgDIVc9RNJF+8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 20:32:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2631 (0xa47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3456/serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Validity Not Before: May 2 20:32:46 2024 GMT Not After : May 9 20:32:46 2024 GMT Subject: CN=6633f86e-cd55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:24:23:b8:b4:a6:06:63:01:5a:68:75:b1:5a: b0:8b:84:23:76:55:53:9e:41:40:86:7f:08:62:c5: 24:6a:4b:69:3a:24:ec:8f:63:68:dd:70:b1:0b:e2: 68:c4:f9:63:af:57:69:3d:d1:12:89:41:c1:b1:65: 34:43:9c:32:c1:0a:c1:d8:23:b8:65:26:20:15:54: fa:eb:ee:35:20:ab:bf:c0:4c:16:be:35:da:b3:5e: 0e:8a:1b:de:3f:1c:0d:b9:18:cc:d7:01:83:bf:08: 18:3c:54:d7:bd:8f:9c:4c:af:cc:11:4c:6f:c1:db: ee:b4:96:1a:50:34:6a:fd:82:8a:34:6b:64:c9:03: ab:28:0c:b7:92:68:15:b8:b0:14:31:a0:b0:55:32: fc:9f:00:c5:90:5d:81:3e:fb:92:10:4d:99:7f:31: 79:e3:78:ac:78:52:2f:c0:a8:9d:a6:05:24:78:9b: 2d:d7:42:76:8c:7b:6d:2f:46:67:2b:41:90:ac:95: 25:d2:da:d5:f4:f0:0a:9c:64:2a:38:94:a2:74:e4: bd:75:7e:f7:06:f2:f4:b8:2b:30:17:22:88:7a:1c: 0c:19:d1:10:ab:a6:47:36:de:2b:b8:b5:64:2a:a4: a5:32:2b:af:a2:4a:5f:fd:b0:e5:bb:98:8a:6a:f6: 97:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:FE:52:E1:83:0B:15:E7:C8:D5:15:5F:C5:97:76:9E:93:72:F4:FB X509v3 Authority Key Identifier: keyid:29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:27:dd:dc:57:b1:5d:11:49:07:ef:5f:90:40:7f:f9:d1:fe: 49:4e:37:a2:70:59:07:1a:6a:37:f3:d1:93:cd:76:1e:f6:b9: 8c:08:31:4c:fc:68:9b:1b:a0:d8:2e:57:73:4a:8e:9a:47:fd: a7:d0:ed:85:78:39:ff:a4:d9:e0:eb:87:33:15:93:e1:4a:00: b6:6f:27:04:66:a4:ee:d4:7f:d3:be:85:58:b0:ed:43:3d:b8: be:2e:f2:e5:37:bd:41:fb:c0:9d:51:d5:05:53:05:c9:9c:3b: f9:a6:63:bb:53:9d:7d:cd:c9:d0:85:24:39:4e:6b:80:bb:95: 56:42:06:95:b7:ae:c9:d8:a2:19:8a:15:71:6d:7d:93:8b:96: 8d:b9:7d:70:a2:b4:c8:58:d0:64:6b:93:05:96:47:16:6d:3d: c1:57:f4:27:a9:ce:ee:24:a2:d6:f5:92:85:6c:95:1d:9c:c0: ad:ed:0c:f6:16:5d:c0:7f:62:0c:15:82:cc:66:fc:4d:aa:f1: 1d:97:a9:e0:45:fd:65:5a:1d:c2:f1:be:cd:59:7d:08:3d:d1: 58:16:0b:ee:56:fc:78:62:e9:00:c6:9a:8f:01:3a:9d:ce:5f: 21:bb:14:c1:65:e1:ab:e3:85:b4:a1:90:f4:cb:f1:4d:36:4e: 43:af:48:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM0NTYxMTAvBgNVBAUTKDI5MEM0MDEwRkFEQzQ3Njk0N0UwMDkzRjQzRjcwMDRG MEQ3QzVDMUMwHhcNMjQwNTAyMjAzMjQ2WhcNMjQwNTA5MjAzMjQ2WjAYMRYwFAYD VQQDEw02NjMzZjg2ZS1jZDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlSQjuLSmBmMBWmh1sVqwi4QjdlVTnkFAhn8IYsUkaktpOiTsj2No3XCxC+Jo xPljr1dpPdESiUHBsWU0Q5wywQrB2CO4ZSYgFVT66+41IKu/wEwWvjXas14Oihve PxwNuRjM1wGDvwgYPFTXvY+cTK/MEUxvwdvutJYaUDRq/YKKNGtkyQOrKAy3kmgV uLAUMaCwVTL8nwDFkF2BPvuSEE2ZfzF543iseFIvwKidpgUkeJst10J2jHttL0Zn K0GQrJUl0trV9PAKnGQqOJSidOS9dX73BvL0uCswFyKIehwMGdEQq6ZHNt4ruLVk KqSlMiuvokpf/bDlu5iKavaXNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJD+UuGD CxXnyNUVX8WXdp6TcvT7MB8GA1UdIwQYMBaAFCkMQBD63EdpR+AJP0P3AE8NfFwc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzQ1Ni82QzI3RjI1QTQx QTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1IybEg0QWtfUV9jQVR3MThY QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tReEFFUHJjUjJsSDRBa19RX2NBVHcxOFhCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzQ1Ni82QzI3RjI1QTQxQTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1Iy bEg0QWtfUV9jQVR3MThYQncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuJ93cV7FdEUkH71+QQH/50f5JTjeicFkHGmo389GTzXYe9rmMCDFM /GibG6DYLldzSo6aR/2n0O2FeDn/pNng64czFZPhSgC2bycEZqTu1H/TvoVYsO1D Pbi+LvLlN71B+8CdUdUFUwXJnDv5pmO7U519zcnQhSQ5TmuAu5VWQgaVt67J2KIZ ihVxbX2Ti5aNuX1worTIWNBka5MFlkcWbT3BV/Qnqc7uJKLW9ZKFbJUdnMCt7Qz2 Fl3Af2IMFYLMZvxNqvEdl6ngRf1lWh3C8b7NWX0IPdFYFgvuVvx4YukAxpqPATqd zl8huxTBZeGr44W0oZD0y/FNNk5Dr0gT -----END CERTIFICATE-----Generated at Thu May 2 22:28:54 2024 by rpki-client on console-ams.rpki-client.org