$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: GZgJztmMR5aNwDPsbjiyrXx7Hgi5E4PN+c807xHZzLI= Subject key identifier: BE:F4:65:4A:27:32:AC:19:AB:96:FB:5E:82:09:DE:D6:48:DF:77:69 Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: 85 Signing time: Wed 15 May 2024 07:13:45 +0000 Manifest this update: Wed 15 May 2024 07:13:44 +0000 Manifest next update: Wed 22 May 2024 07:13:44 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: Lve3amwKIUm/apC6jERC5A5aCUYq2MAgQBtuExh6GvM=) 2: A99E5658488011EE8113A766C4F9AE02.roa (hash: 8Dn//xxk+Kx/zIBBYcJin19jgdcY8gKSviqPRnpbGGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:13:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: May 15 07:13:44 2024 GMT Not After : May 22 07:13:44 2024 GMT Subject: CN=664460a8-e076 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:69:47:3b:10:5f:b3:84:af:23:ce:d5:8e:28: 87:1d:02:87:5a:08:e4:f1:31:f1:9b:29:3f:08:8a: 8c:b5:12:18:d4:be:4d:86:09:e1:85:56:4b:7a:6a: 7f:bc:68:98:6e:7c:b0:c5:0a:83:06:57:61:bb:8c: d8:65:1f:2f:f0:3a:2e:22:d3:09:8c:90:b4:da:b7: f7:d2:33:67:95:cb:19:37:20:2a:a2:ca:a5:4e:a8: 73:be:77:c9:be:21:bf:93:75:c0:10:f2:6a:de:63: 57:be:da:b7:40:0c:5a:5b:f7:e5:a6:e9:5a:dc:b2: 92:6b:a7:5b:43:d5:d1:0a:67:92:12:18:e2:61:1a: d1:68:12:49:6e:c9:25:6c:9f:3e:f5:fb:8e:90:d8: 51:c7:ee:36:3b:ad:fd:7c:80:c5:c1:a5:ab:8c:82: d6:84:38:7c:27:e1:1d:8f:39:fd:ec:b4:14:8a:47: 11:34:b6:6c:a4:d1:20:b0:ff:b4:81:f0:c9:90:11: e3:98:67:c0:85:35:2b:e1:a8:32:f7:3d:d1:f0:75: 38:65:49:a1:1a:ae:1b:7a:5f:1c:e4:a1:90:97:07: 5c:9e:9b:41:12:d0:09:65:9c:3b:74:64:7f:a9:ed: 2b:35:f0:ed:94:32:c3:7b:f4:2e:0e:9a:8d:b6:02: 58:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:F4:65:4A:27:32:AC:19:AB:96:FB:5E:82:09:DE:D6:48:DF:77:69 X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:59:98:5b:f9:ca:dd:28:9e:7b:9d:ba:d5:0d:05:de:b6:ac: 6a:14:58:03:f9:0f:b4:65:ae:29:41:fd:c6:81:95:da:26:22: 10:14:04:23:a6:e5:34:7c:61:a4:d1:b0:49:1b:72:9e:44:5d: 5c:09:e2:c0:8a:6b:2f:bc:de:77:a2:a7:88:31:a2:cb:1d:6b: ac:89:07:51:1f:60:77:b6:45:6b:2d:9a:01:ac:23:63:93:72: 8b:72:ad:51:35:6f:8f:a2:44:05:07:5c:e1:a9:73:66:96:a4: 25:12:aa:9b:38:c3:4f:a2:73:d9:1d:87:fc:01:95:a1:1a:98: 4b:54:26:ba:47:dc:f9:75:d4:6e:5a:d8:e0:18:70:85:ee:a6: aa:8a:c6:c1:42:73:d0:86:bd:6f:80:2b:d3:4e:97:1e:ed:31: 98:17:16:61:30:92:c3:f0:b8:83:50:59:bb:a0:32:22:d9:2e: 22:13:c7:3b:48:12:f1:f0:96:60:8c:5e:fd:93:5e:d0:00:87: 17:61:ea:9c:ec:48:e2:54:bd:2a:e2:1e:92:b3:6a:36:1d:85: 3f:58:d7:6a:41:5e:a0:c3:e0:30:05:64:79:66:5d:b9:16:44: 25:60:39:65:4b:6f:91:8a:b8:9e:ae:5c:4c:e0:be:ad:a3:45: c2:03:e9:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjQwNTE1MDcxMzQ0WhcNMjQwNTIyMDcxMzQ0WjAYMRYwFAYD VQQDEw02NjQ0NjBhOC1lMDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumlHOxBfs4SvI87VjiiHHQKHWgjk8THxmyk/CIqMtRIY1L5NhgnhhVZLemp/ vGiYbnywxQqDBldhu4zYZR8v8DouItMJjJC02rf30jNnlcsZNyAqosqlTqhzvnfJ viG/k3XAEPJq3mNXvtq3QAxaW/flpula3LKSa6dbQ9XRCmeSEhjiYRrRaBJJbskl bJ8+9fuOkNhRx+42O639fIDFwaWrjILWhDh8J+Edjzn97LQUikcRNLZspNEgsP+0 gfDJkBHjmGfAhTUr4agy9z3R8HU4ZUmhGq4bel8c5KGQlwdcnptBEtAJZZw7dGR/ qe0rNfDtlDLDe/QuDpqNtgJYfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL70ZUon MqwZq5b7XoIJ3tZI33dpMB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMWZhb+crdKJ57nbrVDQXetqxqFFgD+Q+0Za4pQf3GgZXaJiIQFAQj puU0fGGk0bBJG3KeRF1cCeLAimsvvN53oqeIMaLLHWusiQdRH2B3tkVrLZoBrCNj k3KLcq1RNW+PokQFB1zhqXNmlqQlEqqbOMNPonPZHYf8AZWhGphLVCa6R9z5ddRu WtjgGHCF7qaqisbBQnPQhr1vgCvTTpce7TGYFxZhMJLD8LiDUFm7oDIi2S4iE8c7 SBLx8JZgjF79k17QAIcXYeqc7EjiVL0q4h6Ss2o2HYU/WNdqQV6gw+AwBWR5Zl25 FkQlYDllS2+RirierlxM4L6to0XCA+na -----END CERTIFICATE-----Generated at Wed May 15 09:04:42 2024 by rpki-client on console-ams.rpki-client.org