$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft File: qK6pspMKYU1coxq59-hDeTYaL0M.mft (raw, json) Hash identifier: Tulxmi8A0Y7mTpcqnm/qG093yreHAqJwrvVkJsHXE2c= Subject key identifier: 1F:97:C7:25:30:B8:87:7D:13:95:AF:3B:3D:63:C3:AD:78:14:4A:82 Authority key identifier: A8:AE:A9:B2:93:0A:61:4D:5C:A3:1A:B9:F7:E8:43:79:36:1A:2F:43 Certificate issuer: /CN=A91D7C1D/serialNumber=A8AEA9B2930A614D5CA31AB9F7E84379361A2F43 Certificate serial: 08E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft Manifest number: 08D5 Signing time: Sat 04 May 2024 21:35:33 +0000 Manifest this update: Sat 04 May 2024 21:35:32 +0000 Manifest next update: Sat 11 May 2024 21:35:32 +0000 Files and hashes: 1: qK6pspMKYU1coxq59-hDeTYaL0M.crl (hash: 3STeDaO75gfcuLWjWYoJzsuXcXVpLT62Iua1woFcOwE=) 2: A292E3529E9711EEB6899B1CC4F9AE02.roa (hash: 0wjP1uODiw9qs77sylZOXqRU2/u3e13328VftUqEk2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.crl rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2274 (0x8e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7C1D/serialNumber=A8AEA9B2930A614D5CA31AB9F7E84379361A2F43 Validity Not Before: May 4 21:35:32 2024 GMT Not After : May 11 21:35:32 2024 GMT Subject: CN=6636aa24-16c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b5:c5:d1:eb:1a:d6:ff:f6:3e:fa:e6:03:e7: 29:d1:f1:47:94:fb:7c:1f:08:53:2f:6f:3a:5b:98: aa:4c:ad:51:b3:03:36:78:6d:2f:24:66:8a:cc:9f: c1:30:e3:67:45:fd:04:e6:e1:e2:b8:f6:fb:14:7f: d3:9b:62:ad:88:0e:25:dd:c7:1e:a3:f1:9d:2a:7e: 37:ce:fb:54:a6:cb:59:f7:ef:67:2f:98:be:24:02: 3b:ac:73:27:13:14:a6:59:91:70:d5:0e:fa:b5:43: 5e:04:8c:a7:c2:a8:b5:20:e2:54:73:be:45:9c:32: 97:61:77:7f:8b:2d:73:b5:1e:8c:2f:51:85:f1:fe: 84:53:f0:1c:7f:07:8d:b5:29:b0:4c:41:24:1b:72: e9:bb:7d:2b:df:86:e3:5d:22:41:db:44:60:c7:08: 1e:10:c0:47:23:d0:dc:f3:23:e6:10:2c:c5:bc:d3: 9c:69:ea:02:73:ab:b0:77:f7:03:5b:b5:4f:18:3c: 76:6b:e4:da:e4:0e:6f:75:9c:50:ca:3b:61:b5:87: ff:e7:56:df:45:ca:f0:91:11:2e:5a:59:87:38:e5: c8:a4:cc:a6:bb:64:c3:21:bf:47:21:5e:1a:de:54: 29:48:87:b4:58:d9:58:6d:be:2d:e4:01:9a:5e:72: a4:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:97:C7:25:30:B8:87:7D:13:95:AF:3B:3D:63:C3:AD:78:14:4A:82 X509v3 Authority Key Identifier: keyid:A8:AE:A9:B2:93:0A:61:4D:5C:A3:1A:B9:F7:E8:43:79:36:1A:2F:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:fa:c3:4f:97:75:8b:9c:31:82:78:85:1a:0f:b7:87:36:48: a4:18:79:b1:e1:6d:ad:f7:93:49:c1:12:f7:e7:25:cc:17:65: 41:d9:f1:fa:46:d2:87:bf:de:87:8a:8c:7c:83:ca:01:09:c0: 24:80:bb:f9:88:36:68:a9:3f:20:4b:3d:18:a4:2c:36:2c:c7: cb:4a:b9:92:93:2a:6d:36:46:ca:6f:35:9e:d6:05:a1:f3:fa: bc:42:54:2d:d5:e3:6b:bc:53:d9:99:2c:f4:cf:7f:9d:9a:09: 45:6d:80:f8:f2:02:73:1a:0b:00:90:a2:c2:8a:40:56:87:47: ff:e1:56:0d:ce:83:1e:d6:b2:1b:3a:b3:8b:6a:f4:05:31:b3: e1:aa:bb:2d:d6:60:14:6e:c0:c9:49:13:d5:b0:fb:14:2b:6b: 78:c1:c9:ac:c7:05:86:46:cd:6f:5b:93:00:66:46:2b:24:c4: 2e:8b:ef:d6:38:41:c6:cf:1e:ff:82:c5:ac:aa:6c:69:de:d1: 7d:f6:a1:c4:ac:42:8d:6e:cf:be:42:f2:b0:01:0a:71:b0:5b: 71:70:91:cd:b7:3e:43:0b:96:4d:96:a5:b7:53:4b:61:8d:7a: e0:d2:28:e7:d2:56:81:45:b9:69:a2:f5:ba:cc:eb:66:d4:1b: a6:34:c9:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDdDMUQxMTAvBgNVBAUTKEE4QUVBOUIyOTMwQTYxNEQ1Q0EzMUFCOUY3RTg0Mzc5 MzYxQTJGNDMwHhcNMjQwNTA0MjEzNTMyWhcNMjQwNTExMjEzNTMyWjAYMRYwFAYD VQQDEw02NjM2YWEyNC0xNmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7XF0esa1v/2PvrmA+cp0fFHlPt8HwhTL286W5iqTK1RswM2eG0vJGaKzJ/B MONnRf0E5uHiuPb7FH/Tm2KtiA4l3cceo/GdKn43zvtUpstZ9+9nL5i+JAI7rHMn ExSmWZFw1Q76tUNeBIynwqi1IOJUc75FnDKXYXd/iy1ztR6ML1GF8f6EU/AcfweN tSmwTEEkG3Lpu30r34bjXSJB20RgxwgeEMBHI9Dc8yPmECzFvNOcaeoCc6uwd/cD W7VPGDx2a+Ta5A5vdZxQyjthtYf/51bfRcrwkREuWlmHOOXIpMymu2TDIb9HIV4a 3lQpSIe0WNlYbb4t5AGaXnKknQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB+XxyUw uId9E5WvOz1jw614FEqCMB8GA1UdIwQYMBaAFKiuqbKTCmFNXKMauffoQ3k2Gi9D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEN0MxRC9BODA3MEFGMjhB RjAxMUVBQTk1MjgzMDlDNEY5QUUwMi9xSzZwc3BNS1lVMWNveHE1OS1oRGVUWWFM ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FLNnBzcE1LWVUxY294cTU5LWhEZVRZYUwwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE N0MxRC9BODA3MEFGMjhBRjAxMUVBQTk1MjgzMDlDNEY5QUUwMi9xSzZwc3BNS1lV MWNveHE1OS1oRGVUWWFMME0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2+sNPl3WLnDGCeIUaD7eHNkikGHmx4W2t95NJwRL35yXMF2VB2fH6 RtKHv96Hiox8g8oBCcAkgLv5iDZoqT8gSz0YpCw2LMfLSrmSkyptNkbKbzWe1gWh 8/q8QlQt1eNrvFPZmSz0z3+dmglFbYD48gJzGgsAkKLCikBWh0f/4VYNzoMe1rIb OrOLavQFMbPhqrst1mAUbsDJSRPVsPsUK2t4wcmsxwWGRs1vW5MAZkYrJMQui+/W OEHGzx7/gsWsqmxp3tF99qHErEKNbs++QvKwAQpxsFtxcJHNtz5DC5ZNlqW3U0th jXrg0ijn0laBRblpovW6zOtm1BumNMmX -----END CERTIFICATE-----Generated at Sun May 5 00:12:33 2024 by rpki-client on console-fra.rpki-client.org