$ rpki-client -vvf rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft File: QBS8tK-bGBlk17ekDRv51vieCP8.mft (raw, json) Hash identifier: z2WZ3BcQKNLORQVdUvoeutLlwENzCOf7KUxnfRIB6Dg= Subject key identifier: 4C:AF:9A:58:FB:84:CC:05:A4:A5:64:06:EA:83:64:13:1C:AC:05:D6 Authority key identifier: 40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF Certificate issuer: /CN=A91323E4/serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Certificate serial: 070B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft Manifest number: 070B Signing time: Sat 18 May 2024 22:36:53 +0000 Manifest this update: Sat 18 May 2024 22:36:53 +0000 Manifest next update: Sat 25 May 2024 22:36:53 +0000 Files and hashes: 1: QBS8tK-bGBlk17ekDRv51vieCP8.crl (hash: m2hqSYbWwgndbRpFbqn0yZTns3rfp6jZZt7J1tmQwC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1803 (0x70b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91323E4/serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Validity Not Before: May 18 22:36:53 2024 GMT Not After : May 25 22:36:53 2024 GMT Subject: CN=66492d85-5555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a6:78:79:4c:f8:26:e5:98:0e:a4:d8:08:9f: a5:4c:3b:eb:bf:cf:af:cd:b2:f9:9e:13:72:9e:fc: a2:52:db:de:ee:ee:fb:66:eb:60:cd:fe:77:29:b9: 78:8a:4e:eb:10:97:c6:af:06:72:ac:b6:3e:11:a0: 87:d1:0c:12:de:93:65:98:ad:45:65:7b:d7:31:3d: 65:7f:a3:dd:ce:10:57:78:01:9b:8c:a8:bc:ef:18: 28:fd:f6:b9:58:de:87:f4:68:fa:ed:ca:d4:85:4c: 3f:b8:5b:4e:69:7b:da:0c:3c:47:c0:86:b1:38:16: fa:36:ab:30:b1:e7:bb:31:4e:5c:29:dc:64:d0:60: 8e:8c:2b:9d:56:a4:21:f7:88:5f:d9:a7:70:b8:31: a1:1f:39:c0:f4:a2:f4:d9:2a:bf:d6:ba:8b:df:f5: 21:ed:87:0a:0d:2a:ea:d4:b0:11:bb:aa:7e:20:a8: 7e:00:7a:96:86:bd:1c:7f:97:ce:8b:71:84:80:0d: b4:37:43:77:1d:67:43:69:2c:7e:f0:c9:d3:99:2a: 42:e6:2f:35:4a:0f:d6:51:8c:f2:53:fa:d7:94:51: 19:67:47:18:af:28:de:13:d8:df:32:45:d3:15:a7: 32:30:aa:14:03:a2:22:4d:ab:9b:9e:b1:84:d8:f5: c4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:AF:9A:58:FB:84:CC:05:A4:A5:64:06:EA:83:64:13:1C:AC:05:D6 X509v3 Authority Key Identifier: keyid:40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:3a:9f:85:b4:ee:f7:56:2d:11:55:fe:96:86:61:43:3d:6d: 76:63:69:b3:45:b7:ee:cf:f6:9d:6e:d5:d6:c0:a2:8e:95:e9: c4:a6:e4:a2:04:4c:0d:71:dd:e2:fb:3d:b3:05:e2:15:a8:fe: 39:17:c6:5c:d4:ee:17:26:68:9c:ea:7c:4f:a5:77:5a:2c:c2: 4a:0c:a6:29:d9:a1:8c:c1:7a:3e:54:33:f1:0a:9a:a0:f4:e0: 09:f1:45:15:84:7a:b2:95:a0:db:03:87:9b:b5:36:c4:00:91: 2c:76:a6:c8:1d:d9:64:96:c8:6f:b6:7f:b2:71:9e:d3:2d:55: a8:c7:68:6d:c8:e8:a9:4a:b0:6d:81:14:aa:c0:8c:b1:b9:c2: 57:bd:60:ee:40:03:aa:86:14:74:04:96:b0:7b:92:f9:21:39: 78:77:06:a7:83:b9:3e:e0:4f:67:73:59:bc:86:29:54:b9:d3: 10:2c:d4:d8:0d:fd:6e:ce:d1:f2:b7:78:48:09:b7:d8:58:13: f9:df:0e:44:38:94:dd:c2:86:d2:38:45:d2:e0:fe:f5:50:4a: 15:dc:eb:a8:85:60:69:86:b4:7d:f7:cf:d9:ae:1e:b1:68:dc: 02:61:cc:83:b9:2c:ca:44:f6:b4:fb:56:e8:62:8e:f0:ae:a5: ef:28:90:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzIzRTQxMTAvBgNVBAUTKDQwMTRCQ0I0QUY5QjE4MTk2NEQ3QjdBNDBEMUJGOUQ2 Rjg5RTA4RkYwHhcNMjQwNTE4MjIzNjUzWhcNMjQwNTI1MjIzNjUzWjAYMRYwFAYD VQQDEw02NjQ5MmQ4NS01NTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2aZ4eUz4JuWYDqTYCJ+lTDvrv8+vzbL5nhNynvyiUtve7u77Zutgzf53Kbl4 ik7rEJfGrwZyrLY+EaCH0QwS3pNlmK1FZXvXMT1lf6PdzhBXeAGbjKi87xgo/fa5 WN6H9Gj67crUhUw/uFtOaXvaDDxHwIaxOBb6Nqswsee7MU5cKdxk0GCOjCudVqQh 94hf2adwuDGhHznA9KL02Sq/1rqL3/Uh7YcKDSrq1LARu6p+IKh+AHqWhr0cf5fO i3GEgA20N0N3HWdDaSx+8MnTmSpC5i81Sg/WUYzyU/rXlFEZZ0cYryjeE9jfMkXT FacyMKoUA6IiTaubnrGE2PXEqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEyvmlj7 hMwFpKVkBuqDZBMcrAXWMB8GA1UdIwQYMBaAFEAUvLSvmxgZZNe3pA0b+db4ngj/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjNFNC8xOTBCMEQwNkYy NjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdCbGsxN2VrRFJ2NTF2aWVD UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCUzh0Sy1iR0JsazE3ZWtEUnY1MXZpZUNQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjNFNC8xOTBCMEQwNkYyNjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdC bGsxN2VrRFJ2NTF2aWVDUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5Op+FtO73Vi0RVf6WhmFDPW12Y2mzRbfuz/adbtXWwKKOlenEpuSi BEwNcd3i+z2zBeIVqP45F8Zc1O4XJmic6nxPpXdaLMJKDKYp2aGMwXo+VDPxCpqg 9OAJ8UUVhHqylaDbA4ebtTbEAJEsdqbIHdlklshvtn+ycZ7TLVWox2htyOipSrBt gRSqwIyxucJXvWDuQAOqhhR0BJawe5L5ITl4dwang7k+4E9nc1m8hilUudMQLNTY Df1uztHyt3hICbfYWBP53w5EOJTdwobSOEXS4P71UEoV3OuohWBphrR998/Zrh6x aNwCYcyDuSzKRPa0+1boYo7wrqXvKJA4 -----END CERTIFICATE-----Generated at Sun May 19 00:16:12 2024 by rpki-client on console-fra.rpki-client.org