$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft File: QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft (raw, json) Hash identifier: y+G/oZX+hdi5lF4+ADhKZXmJlnTrX2BeIFOvxY9Vhc4= Subject key identifier: 80:71:AB:3E:F1:D5:08:8D:B5:5C:A1:A7:8B:C0:87:75:D7:42:BA:66 Authority key identifier: 41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B Certificate issuer: /CN=A91F4F4C/serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B Certificate serial: 06FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft Manifest number: 06F7 Signing time: Sat 04 May 2024 22:52:42 +0000 Manifest this update: Sat 04 May 2024 22:52:41 +0000 Manifest next update: Sat 11 May 2024 22:52:41 +0000 Files and hashes: 1: QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl (hash: yLp1fz3TWiqQ0hCx3+xrNC9LGzcsfaSoCgsq8/fMLK4=) 2: 770BCA98F97A11EAB938DA5DC4F9AE02.roa (hash: RjSOFXpfw2A4twZkT8dbNOTBhSL4gnSS9dQweN02wIQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1789 (0x6fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F4C/serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B Validity Not Before: May 4 22:52:41 2024 GMT Not After : May 11 22:52:41 2024 GMT Subject: CN=6636bc39-9bff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:72:97:b7:1e:cd:e3:9b:57:e9:0a:86:7f:99: 0b:92:4a:c1:0d:4f:27:de:cd:e1:8b:e1:3e:f3:3a: 6f:cb:0a:1e:d4:bf:14:0d:66:cb:eb:c7:e7:f2:3a: a2:33:b6:7b:fb:a2:24:0b:75:4a:62:17:db:13:e6: 74:f8:fa:db:31:e6:5e:e8:7c:d6:56:47:91:5d:2d: cc:d1:0c:44:4f:22:d8:fa:66:79:e3:60:71:c6:7f: 99:b3:ee:13:cb:dc:d5:d9:ec:75:a5:3c:b6:e4:da: d1:e5:94:42:d9:a0:4c:27:1f:1a:0f:9e:d7:93:83: 90:38:c1:62:f1:76:8f:52:02:7c:0b:30:7c:b9:9b: 95:c4:3d:1b:dc:38:ca:11:01:65:bd:ac:43:d5:c0: 65:0b:37:4c:5b:68:13:91:a3:70:9b:41:05:38:b1: b1:d1:de:18:91:d9:de:1f:3a:fa:0c:5e:77:97:0c: 26:58:fc:86:70:cd:0f:e8:15:4b:9c:e6:2f:c0:41: b5:1d:6a:6e:7f:46:b8:0e:0d:c0:ea:5d:56:02:57: 03:b7:65:81:47:e0:48:0a:71:27:e6:7d:64:a6:f6: 28:3f:ee:f6:4d:0b:89:2e:f7:3f:4c:26:81:1e:89: 85:c9:fa:61:b2:04:3d:69:6a:02:15:2c:2f:65:33: 97:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:71:AB:3E:F1:D5:08:8D:B5:5C:A1:A7:8B:C0:87:75:D7:42:BA:66 X509v3 Authority Key Identifier: keyid:41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:6b:09:77:5b:dc:4e:55:5d:b0:55:a7:f1:43:9b:98:4e:1c: 48:00:ae:00:32:d1:26:c1:e6:0c:26:e5:ef:c3:a4:bf:d7:b7: b6:d0:e9:b3:14:f7:55:5d:51:1b:87:67:46:7f:a0:c7:f3:8e: 31:55:60:34:0c:9a:21:12:1a:ab:66:77:ac:d1:a6:da:5d:1d: 0a:da:4d:93:a1:62:c3:f5:a4:50:ff:bd:a6:fb:bc:f9:57:1f: 26:57:20:bb:57:2f:f0:62:c0:60:fa:64:36:03:08:95:9e:89: 64:75:36:36:40:07:5c:07:2b:95:5c:e9:f8:e4:6e:db:8f:b6: c5:b0:b0:7d:e9:67:2b:c7:b8:81:7d:3b:bd:83:0c:ef:5c:73: f4:0b:40:75:74:60:ad:da:10:13:0a:ec:b3:bd:ac:9e:24:24: 51:f8:42:1a:22:5f:7a:6a:67:ac:70:69:2d:a2:2b:b3:0f:b0: e0:d1:62:68:ef:bd:7e:e8:21:68:0a:53:22:32:15:8e:85:87: 4d:ec:a4:e4:98:a5:85:90:37:14:5e:98:cb:53:38:fd:75:28: cf:c2:b9:52:6e:bb:cb:ee:d9:6b:5c:e3:5a:07:4a:29:a1:d8: 15:84:9f:4b:03:8b:0c:07:20:08:ca:10:69:53:03:f6:9d:7a: 80:81:c3:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGNEMxMTAvBgNVBAUTKDQxRTM4MEEwQzlGQUJDQzEwRjhFQTMyOTYzNTJFNkE3 ODc4RDM1M0IwHhcNMjQwNTA0MjI1MjQxWhcNMjQwNTExMjI1MjQxWjAYMRYwFAYD VQQDEw02NjM2YmMzOS05YmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1nKXtx7N45tX6QqGf5kLkkrBDU8n3s3hi+E+8zpvywoe1L8UDWbL68fn8jqi M7Z7+6IkC3VKYhfbE+Z0+PrbMeZe6HzWVkeRXS3M0QxETyLY+mZ542Bxxn+Zs+4T y9zV2ex1pTy25NrR5ZRC2aBMJx8aD57Xk4OQOMFi8XaPUgJ8CzB8uZuVxD0b3DjK EQFlvaxD1cBlCzdMW2gTkaNwm0EFOLGx0d4YkdneHzr6DF53lwwmWPyGcM0P6BVL nOYvwEG1HWpuf0a4Dg3A6l1WAlcDt2WBR+BICnEn5n1kpvYoP+72TQuJLvc/TCaB HomFyfphsgQ9aWoCFSwvZTOXPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIBxqz7x 1QiNtVyhp4vAh3XXQrpmMB8GA1UdIwQYMBaAFEHjgKDJ+rzBD46jKWNS5qeHjTU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEY0Qy85NDA3NjVGQ0Y5 NzYxMUVBOTUzNEMwNDNDNEY5QUUwMi9RZU9Bb01uNnZNRVBqcU1wWTFMbXA0ZU5O VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FlT0FvTW42dk1FUGpxTXBZMUxtcDRlTk5Ucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEY0Qy85NDA3NjVGQ0Y5NzYxMUVBOTUzNEMwNDNDNEY5QUUwMi9RZU9Bb01uNnZN RVBqcU1wWTFMbXA0ZU5OVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKawl3W9xOVV2wVafxQ5uYThxIAK4AMtEmweYMJuXvw6S/17e20Omz FPdVXVEbh2dGf6DH844xVWA0DJohEhqrZnes0abaXR0K2k2ToWLD9aRQ/72m+7z5 Vx8mVyC7Vy/wYsBg+mQ2AwiVnolkdTY2QAdcByuVXOn45G7bj7bFsLB96Wcrx7iB fTu9gwzvXHP0C0B1dGCt2hATCuyzvayeJCRR+EIaIl96amescGktoiuzD7Dg0WJo 771+6CFoClMiMhWOhYdN7KTkmKWFkDcUXpjLUzj9dSjPwrlSbrvL7tlrXONaB0op odgVhJ9LA4sMByAIyhBpUwP2nXqAgcPE -----END CERTIFICATE-----Generated at Sun May 5 00:14:48 2024 by rpki-client on console-ams.rpki-client.org