$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft File: qhOo9ipv0n6bme44axRRnm_MhjI.mft (raw, json) Hash identifier: HrbiU1+cxktkfpq3UkkeK3rbolTORSJIXd1D/r8gmgQ= Subject key identifier: F7:81:FD:87:F5:30:CF:A4:48:96:1E:6C:69:22:73:56:B4:03:DF:BC Authority key identifier: AA:13:A8:F6:2A:6F:D2:7E:9B:99:EE:38:6B:14:51:9E:6F:CC:86:32 Certificate issuer: /CN=A91DB04D/serialNumber=AA13A8F62A6FD27E9B99EE386B14519E6FCC8632 Certificate serial: 0459 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qhOo9ipv0n6bme44axRRnm_MhjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft Manifest number: 0455 Signing time: Sat 27 Apr 2024 01:49:15 +0000 Manifest this update: Sat 27 Apr 2024 01:49:14 +0000 Manifest next update: Sat 04 May 2024 01:49:14 +0000 Files and hashes: 1: qhOo9ipv0n6bme44axRRnm_MhjI.crl (hash: 9cbtYeXP8hyHxXm8kk4cN7rZLnfc20Wk+7W9mjadrKs=) 2: 5913DBAA01A011ECBFF72849C4F9AE02.roa (hash: lQ+1jqh0wfjJhsVaKK8sy3efDGbMHWeel7kX3lnMMu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.crl rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qhOo9ipv0n6bme44axRRnm_MhjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 01:49:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1113 (0x459) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB04D/serialNumber=AA13A8F62A6FD27E9B99EE386B14519E6FCC8632 Validity Not Before: Apr 27 01:49:14 2024 GMT Not After : May 4 01:49:14 2024 GMT Subject: CN=662c599b-aa51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:c8:12:1d:6f:d3:11:3e:27:12:f3:d0:61:e2: e2:ba:d9:a1:6c:5f:10:01:1c:cc:14:b2:66:df:45: 73:d7:33:a5:7c:e3:46:6d:8c:c8:15:f6:f1:03:8a: 74:81:63:4c:c3:ab:dd:68:9a:93:89:2d:a8:f2:2a: 8b:05:72:95:b3:2e:bf:cd:d2:11:6d:dc:c7:3e:bb: a1:15:78:e1:ad:91:86:3e:2b:8d:50:41:d4:d2:3e: 8c:7b:21:fe:f3:0c:57:2e:c2:ea:a0:71:ce:67:63: 6a:3a:e1:b7:f8:96:b0:0c:d1:fd:2b:32:e5:d1:44: 5e:61:3d:a0:ee:ca:16:64:98:a3:9e:cc:78:cc:61: 7a:17:08:5f:b7:cb:1c:35:1d:9a:88:91:b6:40:ef: a3:63:c2:76:45:09:95:d4:ae:68:1f:9c:7c:3e:21: 92:cb:b5:87:eb:f9:48:55:5e:bd:9a:8a:92:e8:91: 36:35:cb:4a:65:85:f9:b5:3d:74:30:05:27:a0:9a: 94:8d:78:df:14:7f:67:90:45:22:ae:2b:5b:b0:aa: a9:b1:3f:e8:1c:d0:e8:bb:a4:e2:e7:06:d0:f3:6a: 2d:6d:02:03:d1:92:c5:f9:0a:4a:fa:55:26:6b:45: 6d:5b:44:c8:39:78:01:08:cd:b9:41:46:1a:45:77: f2:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:81:FD:87:F5:30:CF:A4:48:96:1E:6C:69:22:73:56:B4:03:DF:BC X509v3 Authority Key Identifier: keyid:AA:13:A8:F6:2A:6F:D2:7E:9B:99:EE:38:6B:14:51:9E:6F:CC:86:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qhOo9ipv0n6bme44axRRnm_MhjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:c7:7d:6b:27:63:1a:7f:71:40:7a:de:04:13:b6:51:21:39: e4:99:10:d7:33:a2:55:5d:9c:97:1c:05:20:26:7e:b9:35:87: 10:0f:dc:3c:34:5d:e8:cd:52:b9:1f:fe:9c:4e:32:d2:ee:ac: 42:ca:de:8b:f7:f1:44:42:80:8e:24:dc:35:e9:f8:06:02:e5: 00:1c:c9:ab:21:22:66:b9:5c:0f:b5:eb:18:f7:b5:13:66:50: 00:34:14:a2:8e:c0:15:85:40:c5:80:ba:57:91:c1:09:f2:8b: 07:09:2d:24:54:2f:2f:b1:cf:f5:60:e3:65:1c:0e:1c:c6:d4: c2:5b:65:43:29:d7:23:cc:d2:af:31:d5:ec:3c:04:75:6f:14: 37:41:a6:05:ae:71:b6:1f:99:1d:a5:c3:ca:d2:17:a0:f9:b4: db:d2:dd:e2:bf:c1:a3:0c:3f:d3:78:00:60:56:27:77:90:a1: 9d:a4:04:9e:e9:0e:e9:13:09:20:ff:2b:2c:3e:db:35:61:57: 09:44:6e:6c:ca:a3:1a:e5:a2:eb:fc:e2:ec:5c:f8:e4:35:64: 40:d7:31:7c:cf:73:82:a1:00:6c:a1:d8:36:dc:4b:eb:68:a6: d1:fb:4c:04:f3:e9:e4:8d:ad:cb:20:66:2c:78:af:8b:6b:eb: 72:bb:8f:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwNEQxMTAvBgNVBAUTKEFBMTNBOEY2MkE2RkQyN0U5Qjk5RUUzODZCMTQ1MTlF NkZDQzg2MzIwHhcNMjQwNDI3MDE0OTE0WhcNMjQwNTA0MDE0OTE0WjAYMRYwFAYD VQQDEw02NjJjNTk5Yi1hYTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8MgSHW/TET4nEvPQYeLiutmhbF8QARzMFLJm30Vz1zOlfONGbYzIFfbxA4p0 gWNMw6vdaJqTiS2o8iqLBXKVsy6/zdIRbdzHPruhFXjhrZGGPiuNUEHU0j6MeyH+ 8wxXLsLqoHHOZ2NqOuG3+JawDNH9KzLl0UReYT2g7soWZJijnsx4zGF6Fwhft8sc NR2aiJG2QO+jY8J2RQmV1K5oH5x8PiGSy7WH6/lIVV69moqS6JE2NctKZYX5tT10 MAUnoJqUjXjfFH9nkEUiritbsKqpsT/oHNDou6Ti5wbQ82otbQID0ZLF+QpK+lUm a0VtW0TIOXgBCM25QUYaRXfyowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPeB/Yf1 MM+kSJYebGkic1a0A9+8MB8GA1UdIwQYMBaAFKoTqPYqb9J+m5nuOGsUUZ5vzIYy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjA0RC9FOTU4QUZFNjAx OUMxMUVDOTE2NDRCN0JDNEY5QUUwMi9xaE9vOWlwdjBuNmJtZTQ0YXhSUm5tX01o akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FoT285aXB2MG42Ym1lNDRheFJSbm1fTWhqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjA0RC9FOTU4QUZFNjAxOUMxMUVDOTE2NDRCN0JDNEY5QUUwMi9xaE9vOWlwdjBu NmJtZTQ0YXhSUm5tX01oakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkx31rJ2Maf3FAet4EE7ZRITnkmRDXM6JVXZyXHAUgJn65NYcQD9w8 NF3ozVK5H/6cTjLS7qxCyt6L9/FEQoCOJNw16fgGAuUAHMmrISJmuVwPtesY97UT ZlAANBSijsAVhUDFgLpXkcEJ8osHCS0kVC8vsc/1YONlHA4cxtTCW2VDKdcjzNKv MdXsPAR1bxQ3QaYFrnG2H5kdpcPK0heg+bTb0t3iv8GjDD/TeABgVid3kKGdpASe 6Q7pEwkg/yssPts1YVcJRG5syqMa5aLr/OLsXPjkNWRA1zF8z3OCoQBsodg23Evr aKbR+0wE8+nkja3LIGYseK+La+tyu48V -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:39 2024 by rpki-client on console-ams.rpki-client.org