$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft File: ixqAZb6Iqmwbo_7bVOCH59KttN4.mft (raw, json) Hash identifier: XP0YXhasSUBVQAIUwlNfcpjYJ1in953PnOtXdVOGrWI= Subject key identifier: A4:49:15:FE:06:C3:CC:B9:4A:53:E7:4E:C0:7C:E8:85:6D:A6:F7:D0 Authority key identifier: 8B:1A:80:65:BE:88:AA:6C:1B:A3:FE:DB:54:E0:87:E7:D2:AD:B4:DE Certificate issuer: /CN=A91DC068/serialNumber=8B1A8065BE88AA6C1BA3FEDB54E087E7D2ADB4DE Certificate serial: 2D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft Manifest number: 2B Signing time: Fri 17 May 2024 08:36:42 +0000 Manifest this update: Fri 17 May 2024 08:36:42 +0000 Manifest next update: Fri 24 May 2024 08:36:42 +0000 Files and hashes: 1: ixqAZb6Iqmwbo_7bVOCH59KttN4.crl (hash: HxyCP/BMJS7TDsX9N/3M8x1gnpQ0kTYxaxqqK8b3poQ=) 2: 4DDA8A18D5DD11EEA5B1C711C4F9AE02.roa (hash: 7NF0a7gVZb8HkKVv5D+iUAVQYzeaU/GvlIm5srrDqhc=) 3: 4D69D2D2D5DD11EEA5B1C711C4F9AE02.roa (hash: iquf1jLmI/5hIALZdOdH20RZr48fjxEqckCcFT9dYVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.crl rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC068/serialNumber=8B1A8065BE88AA6C1BA3FEDB54E087E7D2ADB4DE Validity Not Before: May 17 08:36:42 2024 GMT Not After : May 24 08:36:42 2024 GMT Subject: CN=6647171a-cfbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:1c:f4:19:ae:0f:3e:eb:73:db:21:b8:bc:47: 56:eb:6f:93:8a:ec:60:07:2d:ff:62:88:41:fe:2c: 79:bb:c6:8e:e9:0c:6c:23:52:d9:57:7a:51:fc:9b: 47:f0:f5:ac:75:93:74:85:a2:ed:df:78:b5:1f:a6: d5:a4:78:70:f8:b2:a5:1e:1d:5b:6c:d0:e2:00:a5: e2:fa:ef:3b:11:23:ca:4b:7e:0b:d4:b0:16:1a:a4: 19:1f:ce:2c:6c:76:a4:59:16:00:92:9c:99:d6:ea: e5:ea:92:d1:5e:fd:fd:40:92:87:a8:a6:10:6d:8c: 3b:2a:16:06:bc:13:a3:54:89:0f:13:02:10:7a:ea: af:34:07:c7:f5:02:52:79:62:4a:7b:4e:31:f5:40: b1:e1:f5:75:e7:44:f3:5a:e4:68:be:46:d6:54:42: 78:7c:3b:b0:79:6b:b9:07:4a:4e:86:57:6c:36:c1: eb:9f:1a:e9:0b:38:6c:f9:59:38:99:3f:31:df:c6: 99:c2:a4:45:c7:2a:d5:28:72:5a:88:f6:64:6d:2d: ed:1d:32:ae:27:f0:97:5a:a2:85:fe:ed:3a:b3:8b: fd:a2:88:fe:1a:b6:3f:69:5f:e1:90:37:c2:31:be: 4a:d5:5d:a8:f3:02:b2:21:83:21:41:98:04:75:8d: c1:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:49:15:FE:06:C3:CC:B9:4A:53:E7:4E:C0:7C:E8:85:6D:A6:F7:D0 X509v3 Authority Key Identifier: keyid:8B:1A:80:65:BE:88:AA:6C:1B:A3:FE:DB:54:E0:87:E7:D2:AD:B4:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:48:c0:9c:7b:33:48:d9:bf:0f:7b:40:d5:34:17:dc:3c:9b: 5e:95:e9:44:ed:1c:ae:8d:56:d1:80:a6:00:3a:4f:4d:ba:fd: 74:45:35:0e:ed:8b:56:9b:82:40:8f:c6:39:85:11:4e:f7:d3: f1:59:91:85:c4:66:1c:64:98:2c:dd:b0:44:27:bc:73:c4:a3: ed:74:88:da:45:5c:85:de:95:84:dc:df:16:17:ed:7c:65:26: d6:8c:bf:2e:f9:a2:24:00:e6:08:ee:60:97:4a:16:bc:65:e3: c2:a0:6e:c1:26:5b:00:46:46:a9:4c:ef:af:6f:a0:fb:c8:59: 54:05:61:da:1c:dc:be:2c:ce:e3:d9:0a:bd:14:25:fc:5f:5d: eb:02:ce:41:a5:f7:62:dd:a8:42:5c:97:96:31:f2:ca:99:92: 3c:16:9d:e7:bb:db:ab:2c:fd:e1:ab:da:0e:e6:50:22:f2:6b: 8e:95:2a:e2:1f:8f:9e:34:5a:f2:2b:3c:e7:d6:16:37:91:95: 5e:9e:fc:c9:c3:8b:44:93:41:03:c4:b9:5b:68:40:fb:9c:70: 77:14:10:cf:f6:4b:87:66:ec:66:8f:91:48:5f:b1:d0:4d:f7: e1:1b:6c:c4:c3:0f:b0:49:e1:6c:fa:5c:ce:bc:12:ca:d9:51: 31:ef:a7:da -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QzA2ODExMC8GA1UEBRMoOEIxQTgwNjVCRTg4QUE2QzFCQTNGRURCNTRFMDg3RTdE MkFEQjRERTAeFw0yNDA1MTcwODM2NDJaFw0yNDA1MjQwODM2NDJaMBgxFjAUBgNV BAMTDTY2NDcxNzFhLWNmYmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlHPQZrg8+63PbIbi8R1brb5OK7GAHLf9iiEH+LHm7xo7pDGwjUtlXelH8m0fw 9ax1k3SFou3feLUfptWkeHD4sqUeHVts0OIApeL67zsRI8pLfgvUsBYapBkfzixs dqRZFgCSnJnW6uXqktFe/f1AkoeophBtjDsqFga8E6NUiQ8TAhB66q80B8f1AlJ5 Ykp7TjH1QLHh9XXnRPNa5Gi+RtZUQnh8O7B5a7kHSk6GV2w2weufGukLOGz5WTiZ PzHfxpnCpEXHKtUoclqI9mRtLe0dMq4n8JdaooX+7Tqzi/2iiP4atj9pX+GQN8Ix vkrVXajzArIhgyFBmAR1jcFHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpEkV/gbD zLlKU+dOwHzohW2m99AwHwYDVR0jBBgwFoAUixqAZb6Iqmwbo/7bVOCH59KttN4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDMDY4L0Q3N0I5RDY2RDVD NDExRUU4OUMxOTcwREM0RjlBRTAyL2l4cUFaYjZJcW13Ym9fN2JWT0NINTlLdHRO NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaXhxQVpiNklxbXdib183YlZPQ0g1OUt0dE40LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURD MDY4L0Q3N0I5RDY2RDVDNDExRUU4OUMxOTcwREM0RjlBRTAyL2l4cUFaYjZJcW13 Ym9fN2JWT0NINTlLdHRONC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG5IwJx7M0jZvw97QNU0F9w8m16V6UTtHK6NVtGApgA6T026/XRFNQ7t i1abgkCPxjmFEU730/FZkYXEZhxkmCzdsEQnvHPEo+10iNpFXIXelYTc3xYX7Xxl JtaMvy75oiQA5gjuYJdKFrxl48KgbsEmWwBGRqlM769voPvIWVQFYdoc3L4szuPZ Cr0UJfxfXesCzkGl92LdqEJcl5Yx8sqZkjwWnee726ss/eGr2g7mUCLya46VKuIf j540WvIrPOfWFjeRlV6e/MnDi0STQQPEuVtoQPuccHcUEM/2S4dm7GaPkUhfsdBN 9+EbbMTDD7BJ4Wz6XM68EsrZUTHvp9o= -----END CERTIFICATE-----Generated at Fri May 17 10:59:14 2024 by rpki-client on console-ams.rpki-client.org