$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft File: qpoNy1ExOS1xlqhEGKioRkVTH5c.mft (raw, json) Hash identifier: WnTKpVkbWIN81kiWz8+etNGNasyG93/rs9fnvr/+8Is= Subject key identifier: 33:33:35:E6:11:00:28:B7:4B:31:33:D1:8C:A6:58:CB:C3:9A:C0:56 Authority key identifier: AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97 Certificate issuer: /CN=A91EF66D/serialNumber=AA9A0DCB5131392D7196A84418A8A84645531F97 Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft Manifest number: 6F Signing time: Fri 17 May 2024 07:37:36 +0000 Manifest this update: Fri 17 May 2024 07:37:35 +0000 Manifest next update: Fri 24 May 2024 07:37:35 +0000 Files and hashes: 1: qpoNy1ExOS1xlqhEGKioRkVTH5c.crl (hash: duT0iUsfy5rjPcAAjhACXYQJ9Pk0aITGaKJVnJelP84=) 2: C2D66F8271A911EEAEEE351CC4F9AE02.roa (hash: P8RCG3anUB4OlTp6lr7fbucHFI/jOy6jB+56lSRIUq0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.crl rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:35:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF66D/serialNumber=AA9A0DCB5131392D7196A84418A8A84645531F97 Validity Not Before: May 17 07:37:35 2024 GMT Not After : May 24 07:37:35 2024 GMT Subject: CN=66470940-3d8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9f:ab:9a:d5:99:62:d1:18:74:bd:ee:9a:9d: 31:d5:0f:88:03:bb:89:02:74:cf:af:10:35:47:93: c8:39:22:40:41:51:68:13:49:c4:20:31:98:c7:4b: 0d:34:7b:6c:09:de:3b:02:e2:71:86:0f:b7:33:91: 9f:8a:93:3f:23:ff:64:01:2f:ef:6d:06:ca:1c:87: 3d:a2:47:78:80:b4:05:a6:c0:6e:8c:64:79:b5:64: 22:96:79:bd:ae:ca:9a:56:62:f2:83:b2:8d:4e:a7: d4:3b:78:c5:64:54:b4:db:8c:a5:dc:ba:67:90:31: e9:36:8d:ef:71:96:6d:c0:74:5c:b2:a7:da:88:24: b2:86:c7:49:37:40:2a:5f:ca:11:5b:02:07:f7:e6: 1d:fa:f0:9b:c0:69:15:9b:4e:46:0f:be:6c:6f:bf: 59:75:b4:ef:b3:37:57:89:31:fc:25:74:4d:48:2a: f9:60:a1:f8:3a:8b:a6:3c:ae:d7:a8:8e:7a:5d:b1: 20:34:a2:17:2c:12:8c:b4:8f:f7:92:92:e9:64:c5: 44:5a:28:8c:a2:f7:ff:32:a9:26:6d:57:58:bd:e1: 9d:d2:62:62:28:4b:83:d6:16:eb:83:45:81:c2:f3: 77:7e:9d:6b:ac:39:10:87:a9:70:1d:e7:25:0f:6f: cb:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:33:35:E6:11:00:28:B7:4B:31:33:D1:8C:A6:58:CB:C3:9A:C0:56 X509v3 Authority Key Identifier: keyid:AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:42:be:a9:61:68:73:cc:9f:9e:50:f9:3d:d8:dc:9c:62:97: 6e:e9:18:df:eb:ca:3d:06:0e:b7:b8:68:a0:35:fb:50:ca:81: c3:e4:bf:c5:e9:d9:f8:f0:b0:65:81:ea:05:2c:4e:65:cb:39: ef:97:ee:3a:2b:d1:41:eb:5d:91:c8:df:ea:4c:da:c8:c4:50: 1f:b7:cb:ed:08:bf:5a:d7:4d:f9:50:ec:c3:14:ae:30:bb:d5: 92:0d:09:2c:10:be:92:57:a9:11:04:f7:53:a6:d0:fc:5f:ec: dd:93:ea:7b:f3:2d:9c:a2:04:85:53:6b:fd:4f:51:82:75:67: ee:59:5a:c7:2e:0f:c1:f3:7a:66:e1:a9:e5:60:be:9d:ef:83: 3c:81:a8:64:b9:61:67:3c:59:89:0e:e4:11:ae:b8:2b:be:ca: 8e:87:3c:e8:c8:96:a1:23:f1:f5:50:40:8f:7b:2f:3f:0e:38: 6f:65:b4:79:fb:c1:4d:c6:4a:92:48:2b:2a:59:d3:ae:0f:52: 40:b9:7e:5a:1e:1c:39:ca:a2:45:2c:56:6b:db:7e:cd:8e:d8: 9b:d6:cc:ef:4a:a1:34:fc:ac:af:f1:7a:1c:57:e4:13:5e:5d: 1a:74:db:36:14:cb:6f:01:ff:cd:65:44:5c:98:7d:6a:ea:f2: 61:95:6b:ce -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RjY2RDExMC8GA1UEBRMoQUE5QTBEQ0I1MTMxMzkyRDcxOTZBODQ0MThBOEE4NDY0 NTUzMUY5NzAeFw0yNDA1MTcwNzM3MzVaFw0yNDA1MjQwNzM3MzVaMBgxFjAUBgNV BAMTDTY2NDcwOTQwLTNkOGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8n6ua1Zli0Rh0ve6anTHVD4gDu4kCdM+vEDVHk8g5IkBBUWgTScQgMZjHSw00 e2wJ3jsC4nGGD7czkZ+Kkz8j/2QBL+9tBsochz2iR3iAtAWmwG6MZHm1ZCKWeb2u yppWYvKDso1Op9Q7eMVkVLTbjKXcumeQMek2je9xlm3AdFyyp9qIJLKGx0k3QCpf yhFbAgf35h368JvAaRWbTkYPvmxvv1l1tO+zN1eJMfwldE1IKvlgofg6i6Y8rteo jnpdsSA0ohcsEoy0j/eSkulkxURaKIyi9/8yqSZtV1i94Z3SYmIoS4PWFuuDRYHC 83d+nWusORCHqXAd5yUPb8sJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMzM15hEA KLdLMTPRjKZYy8OawFYwHwYDVR0jBBgwFoAUqpoNy1ExOS1xlqhEGKioRkVTH5cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVGNjZELzUxMUE4OTJFNzFB ODExRUVCNDM3RjE4MUM0RjlBRTAyL3Fwb055MUV4T1MxeGxxaEVHS2lvUmtWVEg1 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcXBvTnkxRXhPUzF4bHFoRUdLaW9Sa1ZUSDVjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVG NjZELzUxMUE4OTJFNzFBODExRUVCNDM3RjE4MUM0RjlBRTAyL3Fwb055MUV4T1Mx eGxxaEVHS2lvUmtWVEg1Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABFCvqlhaHPMn55Q+T3Y3Jxil27pGN/ryj0GDre4aKA1+1DKgcPkv8Xp 2fjwsGWB6gUsTmXLOe+X7jor0UHrXZHI3+pM2sjEUB+3y+0Iv1rXTflQ7MMUrjC7 1ZINCSwQvpJXqREE91Om0Pxf7N2T6nvzLZyiBIVTa/1PUYJ1Z+5ZWscuD8Hzembh qeVgvp3vgzyBqGS5YWc8WYkO5BGuuCu+yo6HPOjIlqEj8fVQQI97Lz8OOG9ltHn7 wU3GSpJIKypZ064PUkC5floeHDnKokUsVmvbfs2O2JvWzO9KoTT8rK/xehxX5BNe XRp02zYUy28B/81lRFyYfWrq8mGVa84= -----END CERTIFICATE-----Generated at Fri May 17 08:13:55 2024 by rpki-client on console-fra.rpki-client.org