$ rpki-client -vvf rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.mft File: eg_QMrwoEhCzyVIrRxWNVszepgo.mft (raw, json) Hash identifier: PlVILcn+7a7mfnIP7LvQi1pCpl2y8cLaTJ5S4gHFMds= Subject key identifier: 30:69:01:93:E6:C5:47:DE:8F:FC:62:28:4C:BA:89:CD:B1:84:5F:83 Authority key identifier: 7A:0F:D0:32:BC:28:12:10:B3:C9:52:2B:47:15:8D:56:CC:DE:A6:0A Certificate issuer: /CN=A912582A/serialNumber=7A0FD032BC281210B3C9522B47158D56CCDEA60A Certificate serial: 25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eg_QMrwoEhCzyVIrRxWNVszepgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.mft Manifest number: 24 Signing time: Sun 19 May 2024 08:31:06 +0000 Manifest this update: Sun 19 May 2024 08:31:06 +0000 Manifest next update: Sun 26 May 2024 08:31:06 +0000 Files and hashes: 1: eg_QMrwoEhCzyVIrRxWNVszepgo.crl (hash: Esvlag1lTLYxoqDsGUmf9e4GM7HxWrGfBboEpit1ZDI=) 2: 690FA4F8DDE911EE941C8616C4F9AE02.roa (hash: TzTskh1EXnnXRoHpIoeKDbk1NGpUY9aCQqaJZRMb3Wc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.crl rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eg_QMrwoEhCzyVIrRxWNVszepgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912582A/serialNumber=7A0FD032BC281210B3C9522B47158D56CCDEA60A Validity Not Before: May 19 08:31:06 2024 GMT Not After : May 26 08:31:06 2024 GMT Subject: CN=6649b8ca-0fae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:bb:8f:a6:60:78:ae:0e:32:5a:93:c4:ab:2b: 79:db:1a:db:51:77:2e:7c:92:ff:fa:7f:9e:96:34: 02:9b:0d:a2:37:76:73:c8:ad:6c:a9:79:d2:e3:e8: fe:97:89:5e:f3:91:d7:8f:4c:93:18:e7:2f:43:da: c9:0b:8a:9f:47:09:e4:88:ba:43:02:e3:a3:ad:66: 1d:52:04:37:a6:40:5c:ba:a4:36:cb:0b:14:6a:64: e5:04:cc:63:9b:9e:b3:b8:15:8e:2b:cd:5c:97:c8: 21:77:5b:56:71:f5:f2:37:09:9f:ea:66:35:e7:7e: b9:2c:88:c6:43:2f:6b:2b:db:ef:c8:39:66:1f:80: 1e:fd:79:cb:6c:6d:59:42:90:d5:af:ba:02:bd:bb: 5b:d3:72:3f:cb:7a:d7:fe:6b:d7:07:4b:ab:ba:e2: cb:2f:da:ab:c7:50:30:bc:f2:4c:ec:9e:71:5e:fc: 7d:71:c3:41:a8:ab:2f:1b:11:52:df:a1:88:14:81: ee:f1:7e:7d:99:d4:71:95:a0:ab:52:12:e1:61:8a: e3:f0:ea:3b:f4:7a:a0:11:85:ad:66:07:aa:df:68: c0:a7:ea:75:5c:c3:4a:43:7c:27:eb:b4:a4:d0:43: d4:47:c0:c6:1c:58:2e:c7:2f:12:af:6d:b9:1d:6a: 0b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:69:01:93:E6:C5:47:DE:8F:FC:62:28:4C:BA:89:CD:B1:84:5F:83 X509v3 Authority Key Identifier: keyid:7A:0F:D0:32:BC:28:12:10:B3:C9:52:2B:47:15:8D:56:CC:DE:A6:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eg_QMrwoEhCzyVIrRxWNVszepgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:36:e7:0d:d3:2e:24:f6:0b:03:f7:dc:1b:7d:fa:fb:77:57: 19:7a:a1:c0:c4:30:5d:03:aa:a5:b8:99:1e:e7:d6:8c:07:ec: 68:cf:45:bf:b2:88:6a:b3:44:e0:f1:e1:51:e7:6a:c6:59:ae: 7f:41:ed:09:0d:31:4b:98:10:d6:e9:ef:91:be:7d:62:34:ba: df:73:51:7a:b2:52:e7:cc:5a:18:2f:9f:fe:a7:e0:81:e3:8d: 67:88:9f:5a:d8:0a:81:58:48:16:37:bf:77:c7:75:86:22:49: b2:1e:a2:af:49:21:a7:2b:8c:8b:ab:c3:a6:e1:fa:61:ac:2b: fd:bf:5c:e0:10:9c:3b:92:5c:a9:0e:9f:77:b9:31:9e:8c:46: f9:eb:c6:e6:a2:ba:b8:92:fa:d6:32:8d:db:02:b9:74:91:b3: d3:23:ae:bd:16:4b:cd:59:ea:e2:61:9d:f9:60:42:7a:0e:65: e0:35:0c:c4:4f:fd:63:7b:88:d3:c3:81:d6:75:c7:b9:24:21: f4:fd:bf:99:4b:6c:c6:9e:fd:f2:10:6b:cf:ee:01:d9:bb:85: 62:1e:a7:bd:89:b6:4c:24:3a:22:9f:b4:21:84:03:82:1f:18: 03:42:99:b8:d5:87:41:42:40:b6:70:df:42:9a:a7:4c:fa:aa: 31:7b:42:2e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTgyQTExMC8GA1UEBRMoN0EwRkQwMzJCQzI4MTIxMEIzQzk1MjJCNDcxNThENTZD Q0RFQTYwQTAeFw0yNDA1MTkwODMxMDZaFw0yNDA1MjYwODMxMDZaMBgxFjAUBgNV BAMTDTY2NDliOGNhLTBmYWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYu4+mYHiuDjJak8SrK3nbGttRdy58kv/6f56WNAKbDaI3dnPIrWypedLj6P6X iV7zkdePTJMY5y9D2skLip9HCeSIukMC46OtZh1SBDemQFy6pDbLCxRqZOUEzGOb nrO4FY4rzVyXyCF3W1Zx9fI3CZ/qZjXnfrksiMZDL2sr2+/IOWYfgB79ectsbVlC kNWvugK9u1vTcj/Letf+a9cHS6u64ssv2qvHUDC88kzsnnFe/H1xw0Goqy8bEVLf oYgUge7xfn2Z1HGVoKtSEuFhiuPw6jv0eqARha1mB6rfaMCn6nVcw0pDfCfrtKTQ Q9RHwMYcWC7HLxKvbbkdagt1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMGkBk+bF R96P/GIoTLqJzbGEX4MwHwYDVR0jBBgwFoAUeg/QMrwoEhCzyVIrRxWNVszepgow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1ODJBLzc4RDc0OTZFRERF ODExRUVBM0IwRTcxM0M0RjlBRTAyL2VnX1FNcndvRWhDenlWSXJSeFdOVnN6ZXBn by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZWdfUU1yd29FaEN6eVZJclJ4V05Wc3plcGdvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 ODJBLzc4RDc0OTZFRERFODExRUVBM0IwRTcxM0M0RjlBRTAyL2VnX1FNcndvRWhD enlWSXJSeFdOVnN6ZXBnby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFI25w3TLiT2CwP33Bt9+vt3Vxl6ocDEMF0DqqW4mR7n1owH7GjPRb+y iGqzRODx4VHnasZZrn9B7QkNMUuYENbp75G+fWI0ut9zUXqyUufMWhgvn/6n4IHj jWeIn1rYCoFYSBY3v3fHdYYiSbIeoq9JIacrjIurw6bh+mGsK/2/XOAQnDuSXKkO n3e5MZ6MRvnrxuaiuriS+tYyjdsCuXSRs9Mjrr0WS81Z6uJhnflgQnoOZeA1DMRP /WN7iNPDgdZ1x7kkIfT9v5lLbMae/fIQa8/uAdm7hWIep72JtkwkOiKftCGEA4If GANCmbjVh0FCQLZw30Kap0z6qjF7Qi4= -----END CERTIFICATE-----Generated at Sun May 19 09:04:12 2024 by rpki-client on console-fra.rpki-client.org