$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft File: sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft (raw, json) Hash identifier: rmgr6dqzlBM+KItcOK+Ug0RAeKirokcqodBQ3zKXugQ= Subject key identifier: 1B:74:33:16:2B:DC:83:2D:32:27:A2:FE:67:26:78:E2:88:09:E8:11 Authority key identifier: B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 Certificate issuer: /CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Certificate serial: 0B44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft Manifest number: 0B22 Signing time: Mon 06 May 2024 20:01:21 +0000 Manifest this update: Mon 06 May 2024 20:01:20 +0000 Manifest next update: Mon 13 May 2024 20:01:20 +0000 Files and hashes: 1: sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl (hash: 1EJJKGgKN9Q0ULkZU6VRtTSV8a7w7Kf3OeCEKvZ8jJQ=) 2: A6A53FA2D67E11EEAA2CA218C4F9AE02.roa (hash: S9FtoobeEXjBIMtrH5kmu9M+KuE/HN8Pt+tkB33Mzwo=) 3: 5DA849821C1211EA819EA46EC4F9AE02.roa (hash: D1neVkUYlxFZ0EMc3pDpN6WJMnlgVEuPxL9BgHGg7yA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2884 (0xb44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Validity Not Before: May 6 20:01:20 2024 GMT Not After : May 13 20:01:20 2024 GMT Subject: CN=66393711-b1af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b2:93:3e:33:b3:d2:89:f0:87:7d:a7:4e:40: 40:6b:2c:13:4d:60:f2:b4:60:02:43:02:8a:e4:7c: fa:6c:57:4e:c7:1e:77:96:71:a1:e2:ad:55:3d:31: 43:35:c2:aa:0f:41:02:0c:ed:81:9d:bf:fd:67:f3: cf:f6:3e:03:a4:e2:91:29:49:45:cb:5e:53:5a:a8: 01:4f:78:4f:f3:10:f2:6e:27:ac:ae:71:a6:f3:6c: b7:4c:3c:6b:97:5e:2a:da:f8:6b:4e:c0:99:c9:78: 42:11:40:40:87:a6:6c:6b:22:06:f7:48:6b:0d:fb: f9:f2:ee:5b:a0:11:14:d2:49:ea:7f:fe:db:e9:93: 37:b8:39:d8:4d:35:80:6f:a5:80:fd:27:c5:cc:52: 4b:e9:13:62:e5:f9:df:21:8f:e2:6a:b4:7a:ab:3b: 75:6c:21:97:47:58:96:8f:e6:d2:50:92:fb:9f:74: 3e:c9:4f:b8:6d:9b:c4:8c:ad:d6:20:64:9a:f5:a0: 9f:d9:e5:bb:4e:28:78:c4:71:8a:c2:bc:f7:d2:45: 29:ee:e2:23:55:c6:c3:80:4b:2e:c3:01:9f:5a:2f: 13:06:14:a6:2d:ef:be:eb:4d:5d:27:73:b4:ea:24: 37:ec:9c:25:79:39:13:a9:fd:39:1d:db:61:09:db: 77:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:74:33:16:2B:DC:83:2D:32:27:A2:FE:67:26:78:E2:88:09:E8:11 X509v3 Authority Key Identifier: keyid:B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:90:2c:13:83:d5:7e:4b:23:56:7f:5a:7e:c0:10:0c:36:5c: 46:4a:28:55:9a:60:24:75:3e:b6:70:9f:50:cc:8d:65:4c:f1: 52:bc:5c:ca:ce:35:64:1e:f9:42:48:0d:9e:fd:7f:f6:96:20: 85:e1:34:75:7e:ea:11:45:1d:b3:14:83:4f:55:9e:91:a4:be: 26:68:3d:f9:e4:cd:81:fc:24:18:a2:45:74:03:84:03:4d:74: 88:61:8d:91:2a:82:98:5d:00:d0:eb:89:42:5c:af:f1:cb:16: 62:3f:6e:b7:b9:a1:04:17:a7:30:fc:6c:24:85:8b:92:af:66: 00:cd:f6:7a:00:c3:fd:48:c0:0f:33:a3:8f:7a:0c:7a:bb:4b: 45:77:18:85:4f:1c:c6:01:ba:2b:13:01:1f:8c:88:f0:5f:05: 03:c4:30:04:9d:b9:76:f3:a4:50:d8:78:1b:75:25:2e:c7:e5: 1b:42:f0:4b:d2:61:47:00:e7:a9:d0:1a:7c:e0:2a:79:4a:f3: 07:30:06:fa:c6:d7:6c:41:02:28:09:14:d8:74:48:77:8a:12: 9f:be:ab:8d:37:b9:f9:59:00:4b:92:36:ba:dd:13:19:7b:fb: d8:3d:11:41:1d:35:9e:6f:02:c1:3f:64:50:70:de:1f:89:53: bd:1e:c5:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM5NjYxMTAvBgNVBAUTKEIyQTI1RERFMUE5RUM5MUI1OTk4NkE1MzJGNzg4MzU0 MzYxODMyNDgwHhcNMjQwNTA2MjAwMTIwWhcNMjQwNTEzMjAwMTIwWjAYMRYwFAYD VQQDEw02NjM5MzcxMS1iMWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5LKTPjOz0onwh32nTkBAaywTTWDytGACQwKK5Hz6bFdOxx53lnGh4q1VPTFD NcKqD0ECDO2Bnb/9Z/PP9j4DpOKRKUlFy15TWqgBT3hP8xDybiesrnGm82y3TDxr l14q2vhrTsCZyXhCEUBAh6ZsayIG90hrDfv58u5boBEU0knqf/7b6ZM3uDnYTTWA b6WA/SfFzFJL6RNi5fnfIY/iarR6qzt1bCGXR1iWj+bSUJL7n3Q+yU+4bZvEjK3W IGSa9aCf2eW7Tih4xHGKwrz30kUp7uIjVcbDgEsuwwGfWi8TBhSmLe++601dJ3O0 6iQ37JwleTkTqf05HdthCdt3nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBt0MxYr 3IMtMiei/mcmeOKICegRMB8GA1UdIwQYMBaAFLKiXd4anskbWZhqUy94g1Q2GDJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzk2Ni9BMTk1MkJBMjFD MTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlSdFptR3BUTDNpRFZEWVlN a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxSmQzaHFleVJ0Wm1HcFRMM2lEVkRZWU1rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Qzk2Ni9BMTk1MkJBMjFDMTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlS dFptR3BUTDNpRFZEWVlNa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRkCwTg9V+SyNWf1p+wBAMNlxGSihVmmAkdT62cJ9QzI1lTPFSvFzK zjVkHvlCSA2e/X/2liCF4TR1fuoRRR2zFINPVZ6RpL4maD355M2B/CQYokV0A4QD TXSIYY2RKoKYXQDQ64lCXK/xyxZiP263uaEEF6cw/GwkhYuSr2YAzfZ6AMP9SMAP M6OPegx6u0tFdxiFTxzGAborEwEfjIjwXwUDxDAEnbl286RQ2HgbdSUux+UbQvBL 0mFHAOep0Bp84Cp5SvMHMAb6xtdsQQIoCRTYdEh3ihKfvquNN7n5WQBLkja63RMZ e/vYPRFBHTWebwLBP2RQcN4fiVO9HsVE -----END CERTIFICATE-----Generated at Mon May 6 23:05:48 2024 by rpki-client on console-fra.rpki-client.org