$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft File: -qIKGvsgkct_URR4g_NkpFMJQTE.mft (raw, json) Hash identifier: H0iNe+6oinbKoSVfYQSQccxPIStNpKmvY/JAOyNlMio= Subject key identifier: 88:81:5B:B0:1E:5C:7E:35:68:C0:D1:EB:1E:13:53:AE:29:BF:B5:FA Authority key identifier: FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 Certificate issuer: /CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Certificate serial: 33D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft Manifest number: 33C6 Signing time: Mon 06 May 2024 15:20:48 +0000 Manifest this update: Mon 06 May 2024 15:20:47 +0000 Manifest next update: Mon 13 May 2024 15:20:47 +0000 Files and hashes: 1: -qIKGvsgkct_URR4g_NkpFMJQTE.crl (hash: NcYv8X6B4U+9QGmp2xfJ5Ar8SwvMu6v0c2XsN8KiGDE=) 2: 0A956A80B48711EC83327546C4F9AE02.roa (hash: 9LTH0YNpJSoOIQpkw88J8KChbFMDLdSzcK4sN/Oo+iE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 15:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13264 (0x33d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Validity Not Before: May 6 15:20:47 2024 GMT Not After : May 13 15:20:47 2024 GMT Subject: CN=6638f54f-8779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:69:5c:07:6a:6b:30:3a:44:ce:ba:69:7f:ba: 70:b4:c3:3a:14:ce:92:ad:e3:19:eb:d0:cb:c0:76: 30:06:b3:d4:63:cd:c6:4d:ca:c0:97:97:38:6f:93: 30:4f:9b:71:ec:e7:b6:d0:94:72:6a:20:ed:b7:e5: dd:e8:42:dd:cf:63:ca:cc:e3:e3:4e:de:8a:9d:80: 94:cf:53:7e:13:b8:70:a6:73:32:ed:eb:b8:14:47: e6:e2:91:37:7f:71:a2:c4:46:77:6f:9a:4e:e8:65: 07:67:03:2e:3c:2c:6f:72:3d:a4:24:ea:a1:a8:b7: 18:34:f3:6c:8c:10:53:45:5c:af:39:9d:d4:8f:3d: ae:5f:b3:04:f0:02:e7:b6:02:ef:73:49:67:1f:dc: d0:b4:ff:7a:29:15:a5:a0:2b:e6:60:38:c6:70:64: 33:bd:64:6f:4f:34:ce:f3:e9:97:59:48:ac:3e:db: 27:6b:0e:fe:a2:a3:71:59:c8:d5:87:99:b9:d9:c2: d6:28:11:de:51:63:c4:a6:2b:48:fe:19:e8:e3:b8: 1b:5f:ea:bd:98:b7:fa:15:56:8e:fa:68:7f:6f:dc: 7c:3b:79:cd:95:33:1f:05:39:9e:0e:51:78:f1:7d: 22:be:46:13:f9:7b:6d:fb:c6:22:83:fd:91:82:71: 71:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:81:5B:B0:1E:5C:7E:35:68:C0:D1:EB:1E:13:53:AE:29:BF:B5:FA X509v3 Authority Key Identifier: keyid:FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:74:e7:80:9e:df:80:0d:df:76:f3:65:c9:1a:9f:ce:a7:94: d0:f5:52:50:d2:52:f6:ef:48:1b:2a:01:23:74:24:cf:46:86: 93:ee:1a:01:31:f3:15:c1:e0:dc:2f:c6:44:f3:17:73:ad:ea: 33:e4:5e:df:a5:c4:38:c2:f2:d0:7f:65:ce:f7:ad:01:23:c2: f5:a8:2b:98:18:a9:15:f7:38:48:7f:d0:5a:f8:1d:a5:1a:8d: da:e0:df:5d:3d:92:a9:2e:b5:a8:b5:0a:04:1e:ac:3f:bc:49: 2e:5d:25:c3:78:54:0c:35:d6:cc:da:9e:91:56:6e:32:94:36: 38:90:0e:d7:a7:1c:54:da:d1:98:f2:39:72:67:ce:cf:8b:d3: a9:75:26:fb:d2:9b:3b:fe:41:e7:e5:2e:33:f6:c6:dd:8e:70: 7f:7b:e1:c6:b1:e0:7a:02:69:02:ae:15:bd:d8:9c:c3:de:fa: 05:ab:d3:2a:b1:35:7f:b8:ed:3a:3f:3d:3e:c0:9e:89:92:b9: fd:de:1e:c7:0b:fe:0d:89:a5:85:d9:f8:59:a5:33:1c:d3:3b: 60:79:3f:ee:12:ef:fb:78:2f:e6:ac:7c:6f:f0:4b:21:dc:db: ad:1a:d2:f7:f0:23:db:2b:bd:ac:6a:c8:e2:69:61:e1:6b:bb: 97:c1:fa:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwRTgxMTAvBgNVBAUTKEZBQTIwQTFBRkIyMDkxQ0I3RjUxMTQ3ODgzRjM2NEE0 NTMwOTQxMzEwHhcNMjQwNTA2MTUyMDQ3WhcNMjQwNTEzMTUyMDQ3WjAYMRYwFAYD VQQDEw02NjM4ZjU0Zi04Nzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmlcB2prMDpEzrppf7pwtMM6FM6SreMZ69DLwHYwBrPUY83GTcrAl5c4b5Mw T5tx7Oe20JRyaiDtt+Xd6ELdz2PKzOPjTt6KnYCUz1N+E7hwpnMy7eu4FEfm4pE3 f3GixEZ3b5pO6GUHZwMuPCxvcj2kJOqhqLcYNPNsjBBTRVyvOZ3Ujz2uX7ME8ALn tgLvc0lnH9zQtP96KRWloCvmYDjGcGQzvWRvTzTO8+mXWUisPtsnaw7+oqNxWcjV h5m52cLWKBHeUWPEpitI/hno47gbX+q9mLf6FVaO+mh/b9x8O3nNlTMfBTmeDlF4 8X0ivkYT+Xtt+8Yig/2RgnFx4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIiBW7Ae XH41aMDR6x4TU64pv7X6MB8GA1UdIwQYMBaAFPqiChr7IJHLf1EUeIPzZKRTCUEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjBFOC80NTc5NkFEMjFE QTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tjdF9VUlI0Z19Oa3BGTUpR VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1xSUtHdnNna2N0X1VSUjRnX05rcEZNSlFURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjBFOC80NTc5NkFEMjFEQTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tj dF9VUlI0Z19Oa3BGTUpRVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfdOeAnt+ADd9282XJGp/Op5TQ9VJQ0lL270gbKgEjdCTPRoaT7hoB MfMVweDcL8ZE8xdzreoz5F7fpcQ4wvLQf2XO960BI8L1qCuYGKkV9zhIf9Ba+B2l Go3a4N9dPZKpLrWotQoEHqw/vEkuXSXDeFQMNdbM2p6RVm4ylDY4kA7XpxxU2tGY 8jlyZ87Pi9OpdSb70ps7/kHn5S4z9sbdjnB/e+HGseB6AmkCrhW92JzD3voFq9Mq sTV/uO06Pz0+wJ6Jkrn93h7HC/4NiaWF2fhZpTMc0ztgeT/uEu/7eC/mrHxv8Esh 3NutGtL38CPbK72sasjiaWHha7uXwfpT -----END CERTIFICATE-----Generated at Mon May 6 17:43:25 2024 by rpki-client on console-ams.rpki-client.org