$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft File: Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json) Hash identifier: REAWK+tg8auuPmKFohL3qi6GKStkE1jHJcjj25eNEzE= Subject key identifier: A6:F4:D0:AB:F2:88:7C:0D:E8:CA:D4:52:A0:5D:1C:ED:DF:E1:29:A4 Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 Certificate issuer: /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Certificate serial: 01DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft Manifest number: 01D7 Signing time: Sun 19 May 2024 04:21:34 +0000 Manifest this update: Sun 19 May 2024 04:21:33 +0000 Manifest next update: Sun 26 May 2024 04:21:33 +0000 Files and hashes: 1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: CvhEYJMZzbQESijTpfR6KG0XX+RAsoqTijVzb8cKQg8=) 2: E2ADBF4E022F11EDA851B357C4F9AE02.roa (hash: DJ9fAitzYrXHF3IunSSLVjEaj/9g7JqpjpFtVblvC94=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 475 (0x1db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Validity Not Before: May 19 04:21:33 2024 GMT Not After : May 26 04:21:33 2024 GMT Subject: CN=66497e4d-ecb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:cc:fa:54:5b:f3:2c:1d:64:e8:da:dd:20:aa: c9:6a:8f:10:82:5c:b7:44:99:66:8a:e1:d8:7a:61: aa:68:00:a0:3f:2c:18:d0:e2:2e:94:77:dc:92:63: c5:29:04:40:93:73:d9:d8:c4:83:33:bb:a2:13:b0: 3a:cf:8a:da:aa:d4:53:09:f0:0d:58:fe:19:aa:68: d7:73:30:55:0f:fe:b0:26:93:f1:68:a8:25:8a:61: cf:e3:25:e8:8e:39:07:72:21:8f:4c:1d:1f:b8:c0: aa:47:0f:37:54:23:c1:77:b2:3b:01:72:47:79:f9: 32:51:cd:42:1e:41:42:46:ef:26:dd:f2:a1:9d:81: df:20:24:2b:70:cf:9d:3d:ee:d7:df:db:65:68:62: 5f:22:0f:d5:c5:99:43:3e:f6:b9:29:70:f5:59:95: 18:2e:8f:db:ad:26:86:c8:af:3f:96:69:a4:38:18: bb:64:dd:ae:b0:0c:ba:c5:31:63:54:ae:d1:60:c5: 9c:25:db:92:db:0d:e6:e8:3a:72:1a:9c:c3:89:f1: b4:7a:f8:2b:b1:1d:07:4e:5b:ae:2f:3d:91:9e:ae: 31:6a:8d:51:54:c1:4d:cc:e2:30:4a:41:45:37:ab: 36:94:d6:cf:6c:9f:c8:07:e4:94:38:4d:0d:0f:77: cb:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:F4:D0:AB:F2:88:7C:0D:E8:CA:D4:52:A0:5D:1C:ED:DF:E1:29:A4 X509v3 Authority Key Identifier: keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:b8:f8:1e:5c:a2:33:e7:1e:8d:21:1b:03:7f:84:26:6e:44: 89:f2:dd:c2:53:30:75:81:68:00:5b:3f:c9:c1:86:8a:2a:68: 96:f2:40:da:07:ae:34:22:b9:0d:e7:2e:ea:eb:ce:18:50:43: 04:d2:05:2c:02:d6:ad:cc:b9:94:91:d5:8f:d8:68:4e:65:34: 0f:0a:39:3e:f4:9b:83:46:18:43:e8:ba:40:ab:15:d5:78:a4: 4b:75:a7:27:27:39:55:47:57:96:1b:04:1b:e7:22:fe:a2:27: 40:1d:21:74:b3:27:6c:1a:fa:51:56:65:bd:e6:9c:c4:94:de: 80:6d:8e:07:02:62:99:18:90:4b:30:0a:8c:05:df:5d:42:61: 5a:52:98:1d:4f:ed:55:8e:36:a6:1c:85:bc:67:b3:57:80:c8: 96:a7:40:d8:f5:ba:eb:ec:9d:11:e0:d1:53:05:ff:b7:36:23: 93:32:df:37:97:eb:ee:91:cc:e4:fa:0d:ce:5e:fe:a3:50:7c: a8:06:c8:fb:13:db:61:51:72:49:e7:98:91:03:1e:9c:e5:c4: d6:7e:2e:0d:80:09:ff:5e:b4:3a:33:ba:7e:83:77:96:a1:c7: 0f:5b:28:71:48:a6:55:5c:4b:3c:b3:64:8b:19:6a:51:18:ca: 23:d3:04:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1NTUxMTAvBgNVBAUTKDQzNjVEMTc5RDVCNzNFOEE5N0VERTA1MDVGMjlFRjAw QzJENjNFRjkwHhcNMjQwNTE5MDQyMTMzWhcNMjQwNTI2MDQyMTMzWjAYMRYwFAYD VQQDEw02NjQ5N2U0ZC1lY2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8z6VFvzLB1k6NrdIKrJao8Qgly3RJlmiuHYemGqaACgPywY0OIulHfckmPF KQRAk3PZ2MSDM7uiE7A6z4raqtRTCfANWP4ZqmjXczBVD/6wJpPxaKglimHP4yXo jjkHciGPTB0fuMCqRw83VCPBd7I7AXJHefkyUc1CHkFCRu8m3fKhnYHfICQrcM+d Pe7X39tlaGJfIg/VxZlDPva5KXD1WZUYLo/brSaGyK8/lmmkOBi7ZN2usAy6xTFj VK7RYMWcJduS2w3m6DpyGpzDifG0evgrsR0HTluuLz2Rnq4xao1RVMFNzOIwSkFF N6s2lNbPbJ/IB+SUOE0ND3fLuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKb00Kvy iHwN6MrUUqBdHO3f4SmkMB8GA1UdIwQYMBaAFENl0XnVtz6Kl+3gUF8p7wDC1j75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTU1NS9EQzdEMTQ1QTAy MkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1BvcVg3ZUJRWHludkFNTFdQ dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EyWFJlZFczUG9xWDdlQlFYeW52QU1MV1B2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTU1NS9EQzdEMTQ1QTAyMkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1Bv cVg3ZUJRWHludkFNTFdQdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmuPgeXKIz5x6NIRsDf4QmbkSJ8t3CUzB1gWgAWz/JwYaKKmiW8kDa B640IrkN5y7q684YUEME0gUsAtatzLmUkdWP2GhOZTQPCjk+9JuDRhhD6LpAqxXV eKRLdacnJzlVR1eWGwQb5yL+oidAHSF0sydsGvpRVmW95pzElN6AbY4HAmKZGJBL MAqMBd9dQmFaUpgdT+1VjjamHIW8Z7NXgMiWp0DY9brr7J0R4NFTBf+3NiOTMt83 l+vukczk+g3OXv6jUHyoBsj7E9thUXJJ55iRAx6c5cTWfi4NgAn/XrQ6M7p+g3eW occPWyhxSKZVXEs8s2SLGWpRGMoj0wTr -----END CERTIFICATE-----Generated at Sun May 19 04:56:54 2024 by rpki-client on console-fra.rpki-client.org