$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF18F/1683924843E811EA8AB65E35C4F9AE02/qaamgasBulFfIZosreoJRbStWZ0.mft File: qaamgasBulFfIZosreoJRbStWZ0.mft (raw, json) Hash identifier: QbMvoXCguifGn5Md4NBXqidS0rjc36Y/uUwEeFwsesw= Subject key identifier: 3A:9A:74:E4:31:E2:60:F8:2F:93:E0:CC:AC:B6:6B:93:3A:0E:61:DF Authority key identifier: A9:A6:A6:81:AB:01:BA:51:5F:21:9A:2C:AD:EA:09:45:B4:AD:59:9D Certificate issuer: /CN=A91FF18F/serialNumber=A9A6A681AB01BA515F219A2CADEA0945B4AD599D Certificate serial: 0A35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qaamgasBulFfIZosreoJRbStWZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF18F/1683924843E811EA8AB65E35C4F9AE02/qaamgasBulFfIZosreoJRbStWZ0.mft Manifest number: 0A35 Signing time: Sat 04 May 2024 20:40:59 +0000 Manifest this update: Sat 04 May 2024 20:40:58 +0000 Manifest next update: Sat 11 May 2024 20:40:58 +0000 Files and hashes: 1: qaamgasBulFfIZosreoJRbStWZ0.crl (hash: 4I4HMUSJ0DYtt6XmQEvbp/p3D8CcTBh3EOmlJ/H2xPU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF18F/1683924843E811EA8AB65E35C4F9AE02/qaamgasBulFfIZosreoJRbStWZ0.crl rsync://rpki.apnic.net/member_repository/A91FF18F/1683924843E811EA8AB65E35C4F9AE02/qaamgasBulFfIZosreoJRbStWZ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qaamgasBulFfIZosreoJRbStWZ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2613 (0xa35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF18F/serialNumber=A9A6A681AB01BA515F219A2CADEA0945B4AD599D Validity Not Before: May 4 20:40:58 2024 GMT Not After : May 11 20:40:58 2024 GMT Subject: CN=66369d5a-85d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:6f:02:24:d6:d5:94:5d:ad:ea:dc:c9:8a:79: 62:f4:dd:ec:d0:36:56:b6:ff:8a:8a:dd:dd:c8:64: 7c:af:d4:b9:56:b2:2a:bd:93:c1:14:10:19:de:19: 77:75:05:b1:d9:b1:b9:12:22:5d:ec:63:5f:d9:e3: 4a:81:42:df:66:51:9a:a1:17:b1:f5:a0:8d:0d:9b: 72:f2:42:95:9c:01:0b:8c:eb:b3:04:1f:b7:e0:47: 68:0c:78:9c:a6:4d:f6:bf:28:ce:64:e8:a0:4b:8a: c7:97:29:9d:cd:85:7d:bd:d5:b3:59:2a:9f:30:4d: 3a:66:2b:61:56:40:4f:67:4f:ae:b6:c6:78:ae:fc: 46:38:9a:f3:21:fd:cf:d0:bc:fe:ca:48:ae:33:5f: ce:73:86:c3:ea:77:b7:8b:87:b0:d8:ed:1c:1e:6b: 3d:3f:6d:e7:96:6c:df:ae:57:ae:60:99:1c:0a:02: e7:cd:f2:e3:55:35:0c:cb:57:02:4a:ad:08:98:af: 48:79:6e:db:c8:34:8a:0a:0c:df:10:91:7c:68:9a: 48:d4:2f:19:d2:64:5a:89:40:37:97:38:e4:7a:81: 70:ae:b1:ab:5a:42:a3:8b:ca:f9:ba:1a:c6:52:9b: d1:8b:a5:12:be:2a:14:ed:6a:a7:9e:59:47:3f:82: dc:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:9A:74:E4:31:E2:60:F8:2F:93:E0:CC:AC:B6:6B:93:3A:0E:61:DF X509v3 Authority Key Identifier: keyid:A9:A6:A6:81:AB:01:BA:51:5F:21:9A:2C:AD:EA:09:45:B4:AD:59:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF18F/1683924843E811EA8AB65E35C4F9AE02/qaamgasBulFfIZosreoJRbStWZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qaamgasBulFfIZosreoJRbStWZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF18F/1683924843E811EA8AB65E35C4F9AE02/qaamgasBulFfIZosreoJRbStWZ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:e0:e6:23:65:fa:01:27:fb:e2:58:80:93:c4:bb:c5:2b:9b: 0d:d1:72:a9:63:b1:2b:44:4f:18:09:4a:2d:36:a7:11:5c:c6: 6b:f0:02:22:2e:e7:cc:29:1d:de:b8:66:0a:b4:ba:44:16:85: c1:dc:6c:16:e0:25:5b:48:03:0e:fc:72:bd:3f:b6:b9:98:33: 58:8a:32:94:59:b5:30:48:f7:9a:66:4e:82:20:d5:99:db:f9: ba:19:59:d4:66:81:0b:e4:ee:d1:d8:e1:4d:bf:7a:eb:68:3f: 2c:ca:41:c4:5b:e4:02:d5:8b:fe:ad:ec:22:7f:c0:04:bc:5a: 39:60:b7:d5:f6:4a:7b:8d:eb:3e:81:fe:42:d7:67:f5:97:39: da:82:97:b2:82:d5:0d:32:dd:66:47:d0:69:34:33:f5:de:82: 3d:61:9f:5e:b0:1f:cb:9a:c0:ad:bf:c7:31:0f:4f:03:19:5b: aa:91:35:e2:5e:ce:24:a4:2c:05:45:0a:55:8f:cf:03:00:3d: a3:31:2c:1c:08:b8:36:df:c4:00:c5:6e:e3:13:7f:57:fb:84: b1:c9:04:ed:22:54:a3:2f:45:14:d1:90:12:02:00:f8:b9:2f: 3b:63:49:d5:f4:fb:7c:37:56:eb:cd:e3:6a:6c:b9:fd:d6:bb: ef:cc:de:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkYxOEYxMTAvBgNVBAUTKEE5QTZBNjgxQUIwMUJBNTE1RjIxOUEyQ0FERUEwOTQ1 QjRBRDU5OUQwHhcNMjQwNTA0MjA0MDU4WhcNMjQwNTExMjA0MDU4WjAYMRYwFAYD VQQDEw02NjM2OWQ1YS04NWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6G8CJNbVlF2t6tzJinli9N3s0DZWtv+Kit3dyGR8r9S5VrIqvZPBFBAZ3hl3 dQWx2bG5EiJd7GNf2eNKgULfZlGaoRex9aCNDZty8kKVnAELjOuzBB+34EdoDHic pk32vyjOZOigS4rHlymdzYV9vdWzWSqfME06ZithVkBPZ0+utsZ4rvxGOJrzIf3P 0Lz+ykiuM1/Oc4bD6ne3i4ew2O0cHms9P23nlmzfrleuYJkcCgLnzfLjVTUMy1cC Sq0ImK9IeW7byDSKCgzfEJF8aJpI1C8Z0mRaiUA3lzjkeoFwrrGrWkKji8r5uhrG UpvRi6USvioU7WqnnllHP4LcPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDqadOQx 4mD4L5PgzKy2a5M6DmHfMB8GA1UdIwQYMBaAFKmmpoGrAbpRXyGaLK3qCUW0rVmd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjE4Ri8xNjgzOTI0ODQz RTgxMUVBOEFCNjVFMzVDNEY5QUUwMi9xYWFtZ2FzQnVsRmZJWm9zcmVvSlJiU3RX WjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FhYW1nYXNCdWxGZklab3NyZW9KUmJTdFdaMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjE4Ri8xNjgzOTI0ODQzRTgxMUVBOEFCNjVFMzVDNEY5QUUwMi9xYWFtZ2FzQnVs RmZJWm9zcmVvSlJiU3RXWjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV4OYjZfoBJ/viWICTxLvFK5sN0XKpY7ErRE8YCUotNqcRXMZr8AIi LufMKR3euGYKtLpEFoXB3GwW4CVbSAMO/HK9P7a5mDNYijKUWbUwSPeaZk6CINWZ 2/m6GVnUZoEL5O7R2OFNv3rraD8sykHEW+QC1Yv+rewif8AEvFo5YLfV9kp7jes+ gf5C12f1lznagpeygtUNMt1mR9BpNDP13oI9YZ9esB/LmsCtv8cxD08DGVuqkTXi Xs4kpCwFRQpVj88DAD2jMSwcCLg238QAxW7jE39X+4SxyQTtIlSjL0UU0ZASAgD4 uS87Y0nV9Pt8N1brzeNqbLn91rvvzN5A -----END CERTIFICATE-----Generated at Sat May 4 21:33:02 2024 by rpki-client on console-fra.rpki-client.org