$ rpki-client -vvf rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft File: Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft (raw, json) Hash identifier: Dsdr2zVEMuGiePbCK9PxdqSfo0Wbz/e7ZKQkvsgHTkA= Subject key identifier: E5:FF:1B:DC:59:87:2A:42:DD:3A:C3:5D:10:A6:81:24:00:B0:8F:0A Authority key identifier: 43:82:F9:AA:30:16:FC:BF:31:F9:24:CF:13:2E:95:BF:92:70:9A:DD Certificate issuer: /CN=A91237A2/serialNumber=4382F9AA3016FCBF31F924CF132E95BF92709ADD Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft Manifest number: 57 Signing time: Sun 19 May 2024 07:51:00 +0000 Manifest this update: Sun 19 May 2024 07:50:59 +0000 Manifest next update: Sun 26 May 2024 07:50:59 +0000 Files and hashes: 1: Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.crl (hash: 3Ot+UESHrxNh34EoABg+X+lQ4l0MMyuiwxJG+9vGtt4=) 2: 9BD4B85894D611EE85EDE844C4F9AE02.roa (hash: rpiYBDsqN0Qgx3RcPEzlC3AIVSlHVQLYFZRws5f6fHA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.crl rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91237A2/serialNumber=4382F9AA3016FCBF31F924CF132E95BF92709ADD Validity Not Before: May 19 07:50:59 2024 GMT Not After : May 26 07:50:59 2024 GMT Subject: CN=6649af63-a056 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7d:0d:ce:93:39:44:50:6f:ca:eb:a2:6c:40: 99:00:02:5b:27:6d:61:43:2d:41:1f:f7:30:e3:65: 47:2b:ad:6a:76:ab:e7:57:a5:ba:3f:04:04:13:a3: 49:98:2e:64:d9:97:3a:e2:e1:97:8b:98:8a:78:4e: 29:09:b3:c3:e5:b7:39:a6:be:de:5d:ea:0a:c7:94: 22:ca:30:dd:47:ca:f9:80:ff:6b:02:19:0a:4a:0c: 1c:3e:bc:62:7f:0b:9a:78:b4:3d:d0:5f:38:ce:ba: 39:94:21:05:37:ef:69:9c:b7:bb:98:4e:c6:8a:55: 9e:48:4a:7c:74:8c:64:a4:c4:17:4a:6d:7d:5d:ca: a9:1c:60:c9:d3:8f:68:e8:1f:81:ef:48:66:c5:3e: f9:9f:02:c7:dd:f2:0c:00:22:1a:ca:46:9f:72:1d: 0e:4e:38:90:58:a9:d2:57:a3:08:e2:fc:af:aa:98: 79:1e:b0:18:35:0c:c9:1e:d6:85:17:26:65:d3:c9: 93:4c:f2:de:d6:fa:3b:44:2c:68:5d:2d:9d:06:56: 4c:bc:0e:e8:1b:75:73:ce:9e:af:a4:dc:11:2f:aa: 70:db:d0:a2:8b:90:9e:0b:1e:37:0a:2f:ae:f5:e4: db:6f:64:85:e6:6c:1c:d5:f0:8b:84:8f:95:c2:4c: d3:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:FF:1B:DC:59:87:2A:42:DD:3A:C3:5D:10:A6:81:24:00:B0:8F:0A X509v3 Authority Key Identifier: keyid:43:82:F9:AA:30:16:FC:BF:31:F9:24:CF:13:2E:95:BF:92:70:9A:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:6c:09:6f:98:66:d9:c9:ca:68:6c:83:0e:be:a6:19:82:1b: bc:c8:75:e6:81:83:c0:8f:3b:be:52:1a:7a:2a:cb:d3:87:08: c6:5b:b4:45:8c:fd:98:9b:97:8d:47:b7:3e:09:7d:a2:12:b9: 19:e9:c6:e0:5c:94:2c:39:42:3c:2c:92:66:24:e7:10:97:da: e6:04:fb:2e:19:c0:99:bb:7a:af:c1:94:50:2f:db:a6:8e:9f: 70:3f:1c:7b:e1:41:d3:37:1b:7f:cc:00:aa:6d:02:46:05:ca: ca:bb:a6:9a:3e:bf:97:e8:5f:ee:8f:29:4d:32:c5:8d:aa:4b: 31:10:3d:85:9d:ad:76:5f:fc:e0:a9:01:1a:b2:26:4c:aa:97: cb:ba:91:99:19:9c:05:5b:56:59:5c:37:cd:74:ed:7b:3d:25: 16:ea:cb:1f:21:26:5f:2d:1d:0b:17:10:fd:f4:fe:6e:89:18: 7f:31:8c:bc:e1:10:e2:61:5f:6b:be:a1:c3:b1:05:e0:79:0d: a2:6e:d3:e2:2c:e4:f8:1d:c0:e0:14:5d:07:c7:98:05:0a:9f: 6d:fb:cd:95:f5:ee:59:ba:b4:ae:90:8c:d9:64:8d:0a:48:c5: f3:4a:21:26:27:03:2a:6a:a2:52:60:82:61:a3:11:d0:d6:89: 6d:76:ef:1d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MzdBMjExMC8GA1UEBRMoNDM4MkY5QUEzMDE2RkNCRjMxRjkyNENGMTMyRTk1QkY5 MjcwOUFERDAeFw0yNDA1MTkwNzUwNTlaFw0yNDA1MjYwNzUwNTlaMBgxFjAUBgNV BAMTDTY2NDlhZjYzLWEwNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGfQ3OkzlEUG/K66JsQJkAAlsnbWFDLUEf9zDjZUcrrWp2q+dXpbo/BAQTo0mY LmTZlzri4ZeLmIp4TikJs8Pltzmmvt5d6grHlCLKMN1HyvmA/2sCGQpKDBw+vGJ/ C5p4tD3QXzjOujmUIQU372mct7uYTsaKVZ5ISnx0jGSkxBdKbX1dyqkcYMnTj2jo H4HvSGbFPvmfAsfd8gwAIhrKRp9yHQ5OOJBYqdJXowji/K+qmHkesBg1DMke1oUX JmXTyZNM8t7W+jtELGhdLZ0GVky8DugbdXPOnq+k3BEvqnDb0KKLkJ4LHjcKL671 5NtvZIXmbBzV8IuEj5XCTNP9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5f8b3FmH KkLdOsNdEKaBJACwjwowHwYDVR0jBBgwFoAUQ4L5qjAW/L8x+STPEy6Vv5Jwmt0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIzN0EyLzQ5RTZFM0Q2OTMz QzExRUVCNDIxMEYyOUM0RjlBRTAyL1E0TDVxakFXX0w4eC1TVFBFeTZWdjVKd210 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUTRMNXFqQVdfTDh4LVNUUEV5NlZ2NUp3bXQwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIz N0EyLzQ5RTZFM0Q2OTMzQzExRUVCNDIxMEYyOUM0RjlBRTAyL1E0TDVxakFXX0w4 eC1TVFBFeTZWdjVKd210MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIhsCW+YZtnJymhsgw6+phmCG7zIdeaBg8CPO75SGnoqy9OHCMZbtEWM /Zibl41Htz4JfaISuRnpxuBclCw5QjwskmYk5xCX2uYE+y4ZwJm7eq/BlFAv26aO n3A/HHvhQdM3G3/MAKptAkYFysq7ppo+v5foX+6PKU0yxY2qSzEQPYWdrXZf/OCp ARqyJkyql8u6kZkZnAVbVllcN8107Xs9JRbqyx8hJl8tHQsXEP30/m6JGH8xjLzh EOJhX2u+ocOxBeB5DaJu0+Is5PgdwOAUXQfHmAUKn237zZX17lm6tK6QjNlkjQpI xfNKISYnAypqolJggmGjEdDWiW127x0= -----END CERTIFICATE-----Generated at Sun May 19 08:26:42 2024 by rpki-client on console-fra.rpki-client.org